This page was not yet optimized for use on mobile devices.

TCOS ID Version 3.0 Release 1/P71

CSV information ?

Status	active
Valid from	18.04.2023
Valid until	18.04.2028
Scheme	🇩🇪 DE
Manufacturer	Deutsche Telekom Security GmbH
Category	ICs, Smart Cards and Smart Card-Related Devices and Systems
Security level	EAL4+, AVA_VAN.5, ALC_DVS.2, ATE_DPT.2
Protection profiles	MR.ED-PP_V2.2
Maintenance updates	TCOS ID Version 3.0 Release 1/P71 (25.10.2024) Certification report

Heuristics summary ?

Certificate ID: BSI-DSZ-CC-1188-2023

Certificate ?

Certificate PDF TXT

Extracted keywords

Security level

EAL 4, EAL 5, EAL 2, EAL 4 augmented

Security Assurance Requirements (SAR)

ALC_DVS.2, ATE_DPT.2, AVA_VAN.5

Protection profiles

BSI-CC-PP-0087-V2-2016-MA-01, BSI-CC-PP-0090-2016

Certificates

BSI-DSZ-CC-1188-2023

Evaluation facilities

Deutsche Telekom Security

Standards

ISO/IEC 15408, ISO/IEC 18045

File metadata

Title	Certificate BSI-DSZ-CC-1188-2023
Subject	Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign
Keywords	"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign"
Author	Bundesamt für Sicherheit in der Informationstechnik
Pages	1

Certification report ?

Certification report PDF TXT

Extracted keywords

Symmetric Algorithms

AES, AES-256, CMAC

Asymmetric Algorithms

ECDH, ECDSA, ECC, Diffie-Hellman

Hash functions

SHA-512, SHA-256

Schemes

MAC, Key Agreement

Protocols

PACE

Randomness

RNG

Elliptic Curves

brainpoolP512t1

Block cipher modes

CBC, OFB

Vendor

NXP Semiconductors, NXP

Security level

EAL 4, EAL 5, EAL 2, EAL 1, EAL5+, EAL6, EAL 5+, EAL 6, EAL 4 augmented

Security Assurance Requirements (SAR)

ADV_ARC, ALC_DVS.2, ALC_FLR, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, AVA_VAN.5

Security Functional Requirements (SFR)

FCS_COP, FCS_CKM, FCS_RND, FIA_API, FIA_UAU, FTP_ITC

Protection profiles

BSI-CC-PP-0087-V2-2016-MA-01, BSI-CC-PP-0090-2016, BSI-CC-PP-0056-V2-2012-MA-02, BSI-CC-PP-0086-2015, BSI-CC-PP-0068-V2-2011-MA-01, BSI-CC-PP-0087-V2-, BSI-CC-PP-0059-2009-MA-02, BSI-CC-PP-0068-V2-

Certificates

BSI-DSZ-CC-1188-2023, BSI-DSZ-CC-1149-2022, BSI-DSZ-CC-1149-2022-MA-01, BSI-DSZ-CC-1188, BSI-DSZ-CC-S-0208-2022

Evaluation facilities

TÜV Informationstechnik, Deutsche Telekom Security, SRC Security Research & Consulting

Side-channel analysis

side channel, malfunction, fault injection, deep learning, JIL

Certification process

being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, ID Version 3.0 Release 1/P71, Version 1.1, 05 April 2023, SRC Security Research & Consulting GmbH (confidential document) [14] Configuration List BSI-DSZ-CC-1188, Konfigurationsliste von TCOS ID Version 3.0 Release 1, P71D600, Version 1.0, 28 March 2023, Deutsche Telekom Security GmbH (confidential document) [15] TCOS ID card Version 3.0 Release 1, Guidance Document – Common Part, Guidance Documentation, Evaluation (ETR COMP), BSI-DSZ-CC- 1149, Version 3, 10 May 2022, TÜV Informationstechnik GmbH (confidential document) [23] Certification Report BSI-DSZ-CC-S-0208-2022 for Bundesdruckerei GmbH manufacturing site for, Zufallszahlengenerierung in TCOS, Version 1.4, 13 January 2023, Deutsche Telekom Security GmbH (confidential document) [UiF] Spezifikation ‘Update im Feld’ aus Applikationssicht, Version 0.12, 04 August 2022, Deutsche, Security GmbH (confidential document) Note: End of report 38 / 38

Standards

FIPS186, FIPS197, FIPS180, FIPS PUB 180-4, AIS 34, AIS 36, AIS 37, AIS 26, AIS 25, AIS 20, AIS 31, AIS 46, AIS 1, AIS 14, AIS 19, AIS 23, AIS 32, AIS 38, AIS31, AIS20, RFC 5639, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ICAO

Technical reports

BSI TR-03110, BSI TR-03116-2, BSI TR-02102-1, BSI TR-03116, BSI 7148

File metadata

Title	Certification Report BSI-DSZ-CC-1188-2023
Subject	Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign
Keywords	"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign"
Author	Bundesamt für Sicherheit in der Informationstechnik
Pages	38

Frontpage

Certificate ID	BSI-DSZ-CC-1188-2023
Certified item	TCOS ID Version 3.0 Release 1/P71
Certification lab	BSI
Developer	Deutsche Telekom Security GmbH

References

Outgoing

BSI-DSZ-CC-1149-2022 - active - NXP Secure Smart Card Controller N7122 with IC Dedicated Software and Crypto Library (R1)

Security target ?

Security target PDF TXT

Extracted keywords

Symmetric Algorithms

AES, AES-256, 3DES, Triple-DES, TDES, KMAC, CMAC

Asymmetric Algorithms

ECDH, ECDSA, ECC, Diffie-Hellman, DH, DSA

Hash functions

SHA-1, SHA-224, SHA-256, SHA-384, SHA-512

Schemes

MAC, Key Agreement

Protocols

PACE

Randomness

RND, RNG

Elliptic Curves

P-256, P-192, P-384, NIST P-256, brainpoolP192r1, brainpoolP192t1, brainpoolP224r1, brainpoolP224t1, brainpoolP256r1, brainpoolP256t1, brainpoolP320r1, brainpoolP320t1, brainpoolP384r1, brainpoolP384t1, brainpoolP512r1, brainpoolP512t1

Block cipher modes

CBC, CTR, OFB

IC data groups

EF.DG3, EF.DG4, EF.DG14, EF.DG1, EF.DG16, EF.DG2, EF.SOD, EF.ChipSecurity

Vendor

NXP, NXP Semiconductors

Security level

EAL4, EAL 6+, EAL 4, EAL 6, EAL4 augmented, EAL 4 augmented, EAL 6 augmented

Claims

O.RND, O.AES, O.TDES, O.PUF, O.RSA, O.ECC, T.RND, A.CGA, A.SCA, OE.HID_VAD

Security Assurance Requirements (SAR)

ADV_ARC.1, ADV_TDS.3, ADV_FUN.1, ADV_FSP.4, ADV_IMP.1, ADV_ARC, ADV_FSP, AGD_PRE.1, AGD_OPE.1, AGD_OPE, ALC_DVS.2, ALC_DEL.1, ALC_DEL, ALC_DVS, ALC_CMS, ALC_CMC, ALC_FLR.1, ALC_CMC.4, ALC_CMS.4, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, ATE_DPT.1, ATE_COV, ATE_FUN, ATE_IND, ATE_DPT.3, ATE_COV.2, ATE_FUN.1, AVA_VAN.5, AVA_VAN, ASE_TSS.2

Security Functional Requirements (SFR)

FAU_SAS, FAU_SAS.1, FAU_SAS.1.1, FCS_RND, FCS_RND.1, FCS_RND.1.1, FCS_CKM, FCS_COP, FCS_CKM.1, FCS_CKM.2, FCS_COP.1, FCS_CKM.4, FCS_RNG, FDP_ACF, FDP_ACF.1, FDP_RIP, FDP_SDI, FDP_ITC.1, FDP_ITC.2, FDP_RIP.1, FDP_ACC, FDP_UCT, FDP_UIT, FDP_IFC, FDP_IFF, FDP_ACC.1, FDP_IFC.1, FDP_UCT.1, FDP_UIT.1, FDP_IFF.1, FDP_SDI.1, FDP_SDI.2, FDP_SDC.1, FDP_ITT.1, FIA_API, FIA_UAU, FIA_API.1, FIA_API.1.1, FIA_AFL, FIA_UID, FIA_UIA, FIA_UAU.1, FIA_AFL.1, FIA_UID.1, FIA_UAU.4, FIA_UAU.5, FIA_UAU.6, FMT_LIM, FMT_SMR.1, FMT_LIM.1, FMT_LIM.2, FMT_LIM.1.1, FMT_LIM.2.1, FMT_SMR, FMT_MTD, FMT_MTD.3, FMT_MSA.3, FMT_MSA.1, FMT_SMF.1.1, FMT_MSA, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMF, FMT_MOF, FMT_SMF.1, FMT_MTD.1, FMT_MOF.1, FMT_MSA.4, FPT_EMS, FPT_EMS.1, FPT_EMS.1.1, FPT_EMS.1.2, FPT_FLS.1, FPT_TST, FPT_TST.1, FPT_FLS, FPT_PHP, FPT_PHP.3, FPT_PHP.1, FPT_ITT.1, FRU_FLT.2, FTP_ITC, FTP_ITC.1, FTP_TRP.1

Protection profiles

BSI-CC-PP-0087-V2-2016-MA-01, BSI-CC-PP-0090-, BSI-CC-PP-0056-V2-, BSI-CC-PP- 0086-2015, BSI-CC-PP-0068-V2-2011-MA-01, BSI-CC-PP-0059-2009-MA-02, BSI-CC-PP0084, BSI-CC-PP0087, BSI-CC-PP-0084-2014, BSI-PP-0087, BSI-PP-0055-2009, BSI-PP-0056-V2-2012-MA02, BSI-CC-PP-0086-2015, BSI-CC-PP-0090-2016, BSI-CC-PP-0068-V2-2011-MA01

Certificates

BSI-DSZ-CC-1188, BSI-DSZ-CC-1149-2022, BSI-DSZ-CC-1149-2022-MA-01

Evaluation facilities

Deutsche Telekom Security

Side-channel analysis

Leak-Inherent, physical probing, DPA, Physical Tampering, Physical tampering, physical tampering, Malfunction, malfunction, fault injection, reverse engineering

Certification process

out of scope, For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf, For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf. [EACTR Part 3, B.7]). 13 For the ePass Application, the, by these terminals was given already in chapter 1.3.3. 71 Others than above listed terminals are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are not supported by the TOE

Standards

FIPS186, FIPS 180-4, FIPS180, FIPS197, FIPS PUB 180-4, FIPS PUB 186-4, PKCS#3, AIS36, AIS31, AIS 31, AIS 36, RFC5639, RFC 2631, RFC 5639, ICAO, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2012-09-004, CCMB-2017-04-004

Technical reports

BSI TR-03110

File metadata

Title	TCOS ID Version 3.0 Release 1 (NXP)
Subject	TCOS ID Version 3.0 Release 1
Keywords	Electronic Identity Card, Residence Permit Card, eID, eIDAS, Passport
Author	Markus Blick, Ernst-G. Giessman
Pages	152

References

Outgoing

BSI-DSZ-CC-1149-2022 - active - NXP Secure Smart Card Controller N7122 with IC Dedicated Software and Crypto Library (R1)

Heuristics ?

Certificate ID: BSI-DSZ-CC-1188-2023

Extracted SARs

ALC_DEL.1, ALC_CMC.4, ALC_DVS.2, AVA_VAN.5, ATE_FUN.1, ADV_ARC.1, ADV_TDS.3, ALC_CMS.4, ADV_IMP.1, ALC_TAT.1, ASE_TSS.2, ATE_COV.2, AGD_OPE.1, ADV_FSP.4, ADV_FUN.1, AGD_PRE.1, ALC_LCD.1, ALC_FLR.1, ATE_DPT.2

Similar certificates

Name	Certificate ID
TCOS Passport Version 1.0 Release 2 / P5CD072V0Q and TCOS Passport Version 1.0 Release 3 / SLE66CLX641P/m1522-a14	BSI-DSZ-CC-0445-2007	Compare
TCOS Passport Version 1.0 Release 2 / P5CD072V0Q and TCOS Passport Version 1.0 Release 2 / SLE66CLX641P/m1522-a12	BSI-DSZ-CC-0362-2006	Compare

Scheme data ?

Enhanced
Cert Id	BSI-DSZ-CC-1188-2023
Product	TCOS ID Version 3.0 Release 1/P71
Vendor	Deutsche Telekom Security GmbH
Certification Date	18.04.2023
Category	Electronic ID documents
Url	https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1188.html
	Product	TCOS ID Version 3.0 Release 1/P71
	Applicant	Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen
	Evaluation Facility	SRC Security Research & Consulting GmbH
	Assurance Level	EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5
	Protection Profile	Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP), Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016
	Certification Date	18.04.2023
	Expiration Date	17.04.2028
	Entries	[frozendict({'id': 'Machine-Readable'}), frozendict({'id': 'Common'})]
	Cert Link	https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188c_pdf.pdf?__blob=publicationFile&v=2
	Report Link	https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188a_pdf.pdf?__blob=publicationFile&v=2
	Target Link	https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188b_pdf.pdf?__blob=publicationFile&v=2
	Description	The Target of Evaluation (TOE) is the product TCOS ID Version 3.0 Release 1/P71 provided by Deutsche Telekom Security GmbH, based on the hardware platform P71 (N7122) by NXP Semiconductors GmbH. It is an electronic Identity Card representing a smart card with contactless interface programmed according to the Technical Guideline BSI TR-03110 and the ICAO specifications. The evaluation of the product is based on the Protection Profiles BSI-CC-PP-0087-V2-2016-MA-01 and BSI-CC-PP-0090-2016 (including further referenced Protections Profiles). Additionally, the TOE meets the requirements of the Technical Guideline BSI TR-03116-2 as part of the qualification for the use within electronic ID card projects of the Federal Republic of Germany. The smart card provides the following authentication mechanisms: Passive Authentication, Password Authenticated Connection Establishment (PACE), Chip Authentication version 1, 2 and 3, Terminal Authentication version 1 and 2. The smart card contains at least one of the following applications that are all subject of the TOE’s evaluation: • ePassport Application • eID Application • eSign Application Two different major configurations of the TOE exist that only differ in the installed file system or applications respectively: • Passport • ID Document Furthermore, the TOE provides the so-called Update-in-Field mechanism. This secure update mechanism allows to install code-signed updates of the TOE Embedded Software (operating system part) by authorized staff during operational use. The TOE’s evaluation only covers the Update-in-Field mechanism itself, but does not cover any update packages.
Subcategory	IC with applications

References ?

Updates ?

12.11.2024 The certificate data changed.
Certificate changed

The Maintenance Updates of the certificate were updated.
- The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.cc.CCCertificate.MaintenanceReport', 'maintenance_date': '2024-10-25', 'maintenance_title': 'TCOS ID Version 3.0 Release 1/P71', 'maintenance_report_link': 'https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188RA01a_pdf.pdf', 'maintenance_st_link': None}]}.
09.11.2024 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The scheme_data property was updated, with the {'certification_date': '2023-04-18', 'enhanced': {'__update__': {'applicant': 'Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen', 'protection_profile': 'Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP), Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016', 'certification_date': '2023-04-18', 'expiration_date': '2028-04-17', 'description': 'The Target of Evaluation (TOE) is the product TCOS ID Version 3.0 Release 1/P71 provided by Deutsche Telekom Security GmbH, based on the hardware platform P71 (N7122) by NXP Semiconductors GmbH. It is an electronic Identity Card representing a smart card with contactless interface programmed according to the Technical Guideline BSI TR-03110 and the ICAO specifications. The evaluation of the product is based on the Protection Profiles BSI-CC-PP-0087-V2-2016-MA-01 and BSI-CC-PP-0090-2016 (including further referenced Protections Profiles). Additionally, the TOE meets the requirements of the Technical Guideline BSI TR-03116-2 as part of the qualification for the use within electronic ID card projects of the Federal Republic of Germany. The smart card provides the following authentication mechanisms: Passive Authentication, Password Authenticated Connection Establishment (PACE), Chip Authentication version 1, 2 and 3, Terminal Authentication version 1 and 2. The smart card contains at least one of the following applications that are all subject of the TOE’s evaluation: • ePassport Application • eID Application • eSign Application Two different major configurations of the TOE exist that only differ in the installed file system or applications respectively: • Passport • ID Document Furthermore, the TOE provides the so-called Update-in-Field mechanism. This secure update mechanism allows to install code-signed updates of the TOE Embedded Software (operating system part) by authorized staff during operational use. The TOE’s evaluation only covers the Update-in-Field mechanism itself, but does not cover any update packages.'}}} data.
17.10.2024 The certificate data changed.
Certificate changed

The Protection Profiles of the certificate were updated.
- The following values were removed: {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use', 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0087V2b_pdf.pdf', 'pp_ids': None}]}.
- The following values were added: {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use', 'pp_eal': 'EAL4+', 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/pp0087V2b_pdf.pdf', 'pp_ids': {'_type': 'Set', 'elements': ['MR.ED-PP_V2.2']}}]}.
22.08.2024 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'e958d128c6ea4ff389776cd5ca44bd7b9fd7f035f77e1ebe257303e4444c1661', 'txt_hash': 'dffdb6df92784ae39505d3806f654a63c7f07e0a83ea334085a1f9f9d8540e4f'} data.
- The cert property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'b3a7eb6449b872c88f1177d1eec4c8550b5483c77f0adfe0352851a38d24d914', 'txt_hash': 'a90e8e6b59c13bbbb836d570af2be0bec7a32560ba45a9b00f02410575f9f4af'} data.
The PDF extraction data was updated.
- The st_metadata property was set to {'pdf_file_size_bytes': 2069185, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 152, '/Author': 'Markus Blick, Ernst-G. Giessman', '/Keywords': 'Electronic Identity Card, Residence Permit Card, eID, eIDAS, Passport', '/Subject': 'TCOS ID Version 3.0 Release 1', '/Title': 'TCOS ID Version 3.0 Release 1 (NXP)', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.
- The cert_metadata property was set to {'pdf_file_size_bytes': 232861, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign"', '/Subject': 'Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign', '/Title': 'Certificate BSI-DSZ-CC-1188-2023', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.
- The st_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1188': 1, 'BSI-DSZ-CC-1149-2022': 1, 'BSI-DSZ-CC-1149-2022-MA-01': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0087-V2-2016-MA-01': 2, 'BSI-CC-PP-0090-': 1, 'BSI-CC-PP-0056-V2-': 1, 'BSI-CC-PP- 0086-2015': 1, 'BSI-CC-PP-0068-V2-2011-MA-01': 1, 'BSI-CC-PP-0059-2009-MA-02': 2, 'BSI-CC-PP0084': 1, 'BSI-CC-PP0087': 1, 'BSI-CC-PP-0084-2014': 1, 'BSI-PP-0087': 1, 'BSI-PP-0055-2009': 1, 'BSI-PP-0056-V2-2012-MA02': 1, 'BSI-CC-PP-0086-2015': 1, 'BSI-CC-PP-0090-2016': 1, 'BSI-CC-PP-0068-V2-2011-MA01': 1}}, 'cc_security_level': {'EAL': {'EAL4': 10, 'EAL 6+': 1, 'EAL 4': 1, 'EAL 6': 1, 'EAL4 augmented': 3, 'EAL 4 augmented': 1, 'EAL 6 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 4, 'ADV_TDS.3': 3, 'ADV_FUN.1': 1, 'ADV_FSP.4': 2, 'ADV_IMP.1': 2, 'ADV_ARC': 1, 'ADV_FSP': 1}, 'AGD': {'AGD_PRE.1': 3, 'AGD_OPE.1': 2, 'AGD_OPE': 1}, 'ALC': {'ALC_DVS.2': 7, 'ALC_DEL.1': 2, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_CMS': 1, 'ALC_CMC': 1, 'ALC_FLR.1': 1, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_DPT.2': 5, 'ATE_DPT.1': 1, 'ATE_COV': 1, 'ATE_FUN': 1, 'ATE_IND': 1, 'ATE_DPT.3': 1, 'ATE_COV.2': 1, 'ATE_FUN.1': 1}, 'AVA': {'AVA_VAN.5': 8, 'AVA_VAN': 1}, 'ASE': {'ASE_TSS.2': 1}}, 'cc_sfr': {'FAU': {'FAU_SAS': 21, 'FAU_SAS.1': 7, 'FAU_SAS.1.1': 1}, 'FCS': {'FCS_RND': 13, 'FCS_RND.1': 10, 'FCS_RND.1.1': 1, 'FCS_CKM': 73, 'FCS_COP': 97, 'FCS_CKM.1': 29, 'FCS_CKM.2': 9, 'FCS_COP.1': 29, 'FCS_CKM.4': 31, 'FCS_RNG': 3}, 'FDP': {'FDP_ACF': 59, 'FDP_ACF.1': 51, 'FDP_RIP': 19, 'FDP_SDI': 12, 'FDP_ITC.1': 18, 'FDP_ITC.2': 19, 'FDP_RIP.1': 12, 'FDP_ACC': 44, 'FDP_UCT': 7, 'FDP_UIT': 7, 'FDP_IFC': 5, 'FDP_IFF': 8, 'FDP_ACC.1': 21, 'FDP_IFC.1': 8, 'FDP_UCT.1': 3, 'FDP_UIT.1': 4, 'FDP_IFF.1': 5, 'FDP_SDI.1': 3, 'FDP_SDI.2': 5, 'FDP_SDC.1': 1, 'FDP_ITT.1': 1}, 'FIA': {'FIA_API': 34, 'FIA_UAU': 83, 'FIA_API.1': 10, 'FIA_API.1.1': 1, 'FIA_AFL': 37, 'FIA_UID': 37, 'FIA_UIA': 1, 'FIA_UAU.1': 16, 'FIA_AFL.1': 11, 'FIA_UID.1': 17, 'FIA_UAU.4': 3, 'FIA_UAU.5': 7, 'FIA_UAU.6': 5}, 'FMT': {'FMT_LIM': 31, 'FMT_SMR.1': 39, 'FMT_LIM.1': 21, 'FMT_LIM.2': 17, 'FMT_LIM.1.1': 1, 'FMT_LIM.2.1': 1, 'FMT_SMR': 12, 'FMT_MTD': 123, 'FMT_MTD.3': 5, 'FMT_MSA.3': 8, 'FMT_MSA.1': 6, 'FMT_SMF.1.1': 1, 'FMT_MSA': 34, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_SMF': 28, 'FMT_MOF': 6, 'FMT_SMF.1': 36, 'FMT_MTD.1': 18, 'FMT_MOF.1': 1, 'FMT_MSA.4': 1}, 'FPT': {'FPT_EMS': 23, 'FPT_EMS.1': 17, 'FPT_EMS.1.1': 3, 'FPT_EMS.1.2': 4, 'FPT_FLS.1': 7, 'FPT_TST': 17, 'FPT_TST.1': 12, 'FPT_FLS': 16, 'FPT_PHP': 17, 'FPT_PHP.3': 5, 'FPT_PHP.1': 2, 'FPT_ITT.1': 1}, 'FRU': {'FRU_FLT.2': 1}, 'FTP': {'FTP_ITC': 34, 'FTP_ITC.1': 20, 'FTP_TRP.1': 4}}, 'cc_claims': {'O': {'O.RND': 3, 'O.AES': 1, 'O.TDES': 1, 'O.PUF': 1, 'O.RSA': 1, 'O.ECC': 1}, 'T': {'T.RND': 1}, 'A': {'A.CGA': 2, 'A.SCA': 2}, 'OE': {'OE.HID_VAD': 4}}, 'vendor': {'NXP': {'NXP': 4, 'NXP Semiconductors': 2}}, 'eval_facility': {'DeutscheTelekom': {'Deutsche Telekom Security': 158}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 19, 'AES-256': 1}}, 'DES': {'3DES': {'3DES': 1, 'Triple-DES': 3, 'TDES': 4}}, 'constructions': {'MAC': {'KMAC': 4, 'CMAC': 6}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 15}, 'ECDSA': {'ECDSA': 2}, 'ECC': {'ECC': 6}}, 'FF': {'DH': {'Diffie-Hellman': 9, 'DH': 4}, 'DSA': {'DSA': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 1}, 'SHA2': {'SHA-224': 1, 'SHA-256': 1, 'SHA-384': 1, 'SHA-512': 1}}}, 'crypto_scheme': {'MAC': {'MAC': 9}, 'KA': {'Key Agreement': 2}}, 'crypto_protocol': {'PACE': {'PACE': 167}}, 'randomness': {'RNG': {'RND': 4, 'RNG': 7}}, 'cipher_mode': {'CBC': {'CBC': 3}, 'CTR': {'CTR': 1}, 'OFB': {'OFB': 1}}, 'ecc_curve': {'NIST': {'P-256': 3, 'P-192': 2, 'P-384': 2, 'NIST P-256': 1}, 'Brainpool': {'brainpoolP192r1': 1, 'brainpoolP192t1': 1, 'brainpoolP224r1': 1, 'brainpoolP224t1': 1, 'brainpoolP256r1': 2, 'brainpoolP256t1': 1, 'brainpoolP320r1': 1, 'brainpoolP320t1': 1, 'brainpoolP384r1': 2, 'brainpoolP384t1': 1, 'brainpoolP512r1': 2, 'brainpoolP512t1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'Leak-Inherent': 6, 'physical probing': 3, 'DPA': 1}, 'FI': {'Physical Tampering': 2, 'Physical tampering': 2, 'physical tampering': 5, 'Malfunction': 6, 'malfunction': 5, 'fault injection': 1}, 'other': {'reverse engineering': 1}}, 'technical_report_id': {'BSI': {'BSI TR-03110': 4}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {'EF': {'EF.DG3': 5, 'EF.DG4': 5, 'EF.DG14': 3, 'EF.DG1': 3, 'EF.DG16': 2, 'EF.DG2': 1, 'EF.SOD': 2, 'EF.ChipSecurity': 1}}, 'standard_id': {'FIPS': {'FIPS186': 7, 'FIPS 180-4': 1, 'FIPS180': 2, 'FIPS197': 3, 'FIPS PUB 180-4': 1, 'FIPS PUB 186-4': 1}, 'PKCS': {'PKCS#3': 8}, 'BSI': {'AIS36': 2, 'AIS31': 2, 'AIS 31': 1, 'AIS 36': 1}, 'RFC': {'RFC5639': 27, 'RFC 2631': 1, 'RFC 5639': 1}, 'ICAO': {'ICAO': 6}, 'CC': {'CCMB-2017-04-001': 2, 'CCMB-2017-04-002': 2, 'CCMB-2017-04-003': 2, 'CCMB-2012-09-004': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 2, ' For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf': 1, ' For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf. [EACTR Part 3, B.7]). 13 For the ePass Application, the': 1, 'by these terminals was given already in chapter 1.3.3. 71 Others than above listed terminals are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are not supported by the TOE': 1}}}.
- The cert_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1188-2023': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0087-V2-2016-MA-01': 1, 'BSI-CC-PP-0090-2016': 1}}, 'cc_security_level': {'EAL': {'EAL 4': 1, 'EAL 5': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_DVS.2': 1}, 'ATE': {'ATE_DPT.2': 1}, 'AVA': {'AVA_VAN.5': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'DeutscheTelekom': {'Deutsche Telekom Security': 1}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
- The st_filename property was set to 1188b_pdf.pdf.
- The cert_filename property was set to 1188c_pdf.pdf.
The computed heuristics were updated.
- The st_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}} data.
- The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}]} values added.
17.08.2024 The certificate data changed.
Certificate changed

The report_link was updated.
- The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188a_pdf.pdf.
The st_link was updated.
- The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188b_pdf.pdf.
The state of the certificate object was updated.
- The report property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd26e49683426ad60c72ac2be876546a30dddd9f8b9212da1ea368b71bf2a88cb', 'txt_hash': 'cfceadfe083c4d884bb0e7b94b4da9bbf4a7c09468d27d96ee4f621e15acaf39'} data.
- The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
- The cert property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
The PDF extraction data was updated.
- The report_metadata property was set to {'pdf_file_size_bytes': 561710, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 38, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign"', '/Subject': 'Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign', '/Title': 'Certification Report BSI-DSZ-CC-1188-2023', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/', 'http://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/zertifizierung', 'http://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/AIS', 'https://www.bsi.bund.de/zertifizierungsreporte', 'https://www.sogis.eu/']}}.
- The st_metadata property was set to None.
- The cert_metadata property was set to None.
- The report_frontpage property was set to {'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-1188-2023', 'cert_item': 'TCOS ID Version 3.0 Release 1/P71', 'developer': 'Deutsche Telekom Security GmbH', 'cert_lab': 'BSI', 'ref_protection_profiles': 'Common Criteria Protection Profile Machine- Readable Electronic Documents based on BSI TR- 03110 for Official Use [MR.ED-PP], Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01 Common Criteria PP Configuration Machine Readable Electronic Documents – Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016', 'cc_version': 'PP conformant Common Criteria Part 2 extended', 'cc_security_level': 'Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2, AVA_VAN.5'}}.
- The report_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1188-2023': 21, 'BSI-DSZ-CC-1149-2022': 6, 'BSI-DSZ-CC-1149-2022-MA-01': 5, 'BSI-DSZ-CC-1188': 3, 'BSI-DSZ-CC-S-0208-2022': 2}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0087-V2-2016-MA-01': 1, 'BSI-CC-PP-0090-2016': 4, 'BSI-CC-PP-0056-V2-2012-MA-02': 2, 'BSI-CC-PP-0086-2015': 3, 'BSI-CC-PP-0068-V2-2011-MA-01': 2, 'BSI-CC-PP-0087-V2-': 1, 'BSI-CC-PP-0059-2009-MA-02': 1, 'BSI-CC-PP-0068-V2-': 1}}, 'cc_security_level': {'EAL': {'EAL 4': 5, 'EAL 5': 4, 'EAL 2': 3, 'EAL 1': 1, 'EAL5+': 1, 'EAL6': 1, 'EAL 5+': 1, 'EAL 6': 1, 'EAL 4 augmented': 3}}, 'cc_sar': {'ADV': {'ADV_ARC': 1}, 'ALC': {'ALC_DVS.2': 5, 'ALC_FLR': 2, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_DPT.2': 4}, 'AVA': {'AVA_VAN.5': 4}}, 'cc_sfr': {'FCS': {'FCS_COP': 23, 'FCS_CKM': 22, 'FCS_RND': 1}, 'FIA': {'FIA_API': 1, 'FIA_UAU': 6}, 'FTP': {'FTP_ITC': 6}}, 'cc_claims': {}, 'vendor': {'NXP': {'NXP Semiconductors': 10, 'NXP': 11}}, 'eval_facility': {'TUV': {'TÜV Informationstechnik': 1}, 'DeutscheTelekom': {'Deutsche Telekom Security': 19}, 'SRC': {'SRC Security Research & Consulting': 3}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 12, 'AES-256': 1}}, 'constructions': {'MAC': {'CMAC': 4}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 8}, 'ECDSA': {'ECDSA': 4}, 'ECC': {'ECC': 5}}, 'FF': {'DH': {'Diffie-Hellman': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-512': 1, 'SHA-256': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 1}, 'KA': {'Key Agreement': 4}}, 'crypto_protocol': {'PACE': {'PACE': 18}}, 'randomness': {'RNG': {'RNG': 6}}, 'cipher_mode': {'CBC': {'CBC': 2}, 'OFB': {'OFB': 2}}, 'ecc_curve': {'Brainpool': {'brainpoolP512t1': 2}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'side channel': 2}, 'FI': {'malfunction': 1, 'fault injection': 1}, 'other': {'deep learning': 1, 'JIL': 5}}, 'technical_report_id': {'BSI': {'BSI TR-03110': 8, 'BSI TR-03116-2': 2, 'BSI TR-02102-1': 1, 'BSI TR-03116': 3, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS186': 12, 'FIPS197': 4, 'FIPS180': 3, 'FIPS PUB 180-4': 1}, 'BSI': {'AIS 34': 4, 'AIS 36': 4, 'AIS 37': 2, 'AIS 26': 4, 'AIS 25': 4, 'AIS 20': 3, 'AIS 31': 3, 'AIS 46': 2, 'AIS 1': 1, 'AIS 14': 1, 'AIS 19': 1, 'AIS 23': 1, 'AIS 32': 1, 'AIS 38': 1, 'AIS31': 2, 'AIS20': 2}, 'RFC': {'RFC 5639': 15}, 'ISO': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}, 'ICAO': {'ICAO': 15}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, 'ID Version 3.0 Release 1/P71, Version 1.1, 05 April 2023, SRC Security Research & Consulting GmbH (confidential document) [14] Configuration List BSI-DSZ-CC-1188, Konfigurationsliste von TCOS ID Version 3.0 Release 1': 1, 'P71D600, Version 1.0, 28 March 2023, Deutsche Telekom Security GmbH (confidential document) [15] TCOS ID card Version 3.0 Release 1, Guidance Document – Common Part, Guidance Documentation': 1, 'Evaluation (ETR COMP), BSI-DSZ-CC- 1149, Version 3, 10 May 2022, TÜV Informationstechnik GmbH (confidential document) [23] Certification Report BSI-DSZ-CC-S-0208-2022 for Bundesdruckerei GmbH manufacturing site for': 1, 'Zufallszahlengenerierung in TCOS, Version 1.4, 13 January 2023, Deutsche Telekom Security GmbH (confidential document) [UiF] Spezifikation ‘Update im Feld’ aus Applikationssicht, Version 0.12, 04 August 2022, Deutsche': 1, 'Security GmbH (confidential document) Note: End of report 38 / 38': 1}}}.
- The st_keywords property was set to None.
- The cert_keywords property was set to None.
- The report_filename property was set to 1188a_pdf.pdf.
- The st_filename property was set to None.
- The cert_filename property was set to None.
The computed heuristics were updated.
- The cert_lab property was set to ['BSI'].
- The report_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}} data.
- The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}]} values discarded.
12.08.2024 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The report property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
The PDF extraction data was updated.
- The report_metadata property was set to None.
- The report_frontpage property was set to None.
- The report_keywords property was set to None.
- The report_filename property was set to None.
The computed heuristics were updated.
- The cert_lab property was set to None.
- The st_references property was updated, with the {'directly_referencing': None, 'indirectly_referencing': None} data.
- The report_references property was updated, with the {'directly_referencing': None, 'indirectly_referencing': None} data.
23.07.2024 The certificate was first processed.

New certificate

A new Common Criteria certificate with the product name TCOS ID Version 3.0 Release 1/P71 was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188c_pdf.pdf",
  "dgst": "cfe95a153cff5649",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "BSI-DSZ-CC-1188-2023",
    "cert_lab": [
      "BSI"
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FUN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_ARC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DVS",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_LCD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DEL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_IMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 5
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_TDS",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_COV",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_TAT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_DPT",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_FUN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 2
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.0"
      ]
    },
    "indirect_transitive_cves": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1149-2022"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1149-2022"
        ]
      }
    },
    "scheme_data": {
      "category": "Electronic ID documents",
      "cert_id": "BSI-DSZ-CC-1188-2023",
      "certification_date": "2023-04-18",
      "enhanced": {
        "applicant": "Deutsche Telekom Security GmbH Untere Industriestra\u00dfe 20 57250 Netphen",
        "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5",
        "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188c_pdf.pdf?__blob=publicationFile\u0026v=2",
        "certification_date": "2023-04-18",
        "description": "The Target of Evaluation (TOE) is the product TCOS ID Version 3.0 Release 1/P71 provided by Deutsche Telekom Security GmbH, based on the hardware platform P71 (N7122) by NXP Semiconductors GmbH. It is an electronic Identity Card representing a smart card with contactless interface programmed according to the Technical Guideline BSI TR-03110 and the ICAO specifications. The evaluation of the product is based on the Protection Profiles BSI-CC-PP-0087-V2-2016-MA-01 and BSI-CC-PP-0090-2016 (including further referenced Protections Profiles). Additionally, the TOE meets the requirements of the Technical Guideline BSI TR-03116-2 as part of the qualification for the use within electronic ID card projects of the Federal Republic of Germany. The smart card provides the following authentication mechanisms: Passive Authentication, Password Authenticated Connection Establishment (PACE), Chip Authentication version 1, 2 and 3, Terminal Authentication version 1 and 2. The smart card contains at least one of the following applications that are all subject of the TOE\u2019s evaluation: \u2022 ePassport Application \u2022 eID Application \u2022 eSign Application Two different major configurations of the TOE exist that only differ in the installed file system or applications respectively: \u2022 Passport \u2022 ID Document Furthermore, the TOE provides the so-called Update-in-Field mechanism. This secure update mechanism allows to install code-signed updates of the TOE Embedded Software (operating system part) by authorized staff during operational use. The TOE\u2019s evaluation only covers the Update-in-Field mechanism itself, but does not cover any update packages.",
        "entries": [
          {
            "id": "Machine-Readable"
          },
          {
            "id": "Common"
          }
        ],
        "evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
        "expiration_date": "2028-04-17",
        "product": "TCOS ID Version 3.0 Release 1/P71",
        "protection_profile": "Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP), Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016",
        "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188a_pdf.pdf?__blob=publicationFile\u0026v=2",
        "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188b_pdf.pdf?__blob=publicationFile\u0026v=2"
      },
      "product": "TCOS ID Version 3.0 Release 1/P71",
      "subcategory": "IC with applications",
      "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1188.html",
      "vendor": "Deutsche Telekom Security GmbH"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1149-2022"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1149-2022"
        ]
      }
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.cc.CCCertificate.MaintenanceReport",
        "maintenance_date": "2024-10-25",
        "maintenance_report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188RA01a_pdf.pdf",
        "maintenance_st_link": null,
        "maintenance_title": "TCOS ID Version 3.0 Release 1/P71"
      }
    ]
  },
  "manufacturer": "Deutsche Telekom Security GmbH",
  "manufacturer_web": "https://www.telekom.de/security",
  "name": "TCOS ID Version 3.0 Release 1/P71",
  "not_valid_after": "2028-04-18",
  "not_valid_before": "2023-04-18",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "1188c_pdf.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1188-2023": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0087-V2-2016-MA-01": 1,
          "BSI-CC-PP-0090-2016": 1
        }
      },
      "cc_sar": {
        "ALC": {
          "ALC_DVS.2": 1
        },
        "ATE": {
          "ATE_DPT.2": 1
        },
        "AVA": {
          "AVA_VAN.5": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 2": 1,
          "EAL 4": 1,
          "EAL 4 augmented": 1,
          "EAL 5": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "DeutscheTelekom": {
          "Deutsche Telekom Security": 1
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408": 2,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign\"",
      "/Subject": "Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign",
      "/Title": "Certificate BSI-DSZ-CC-1188-2023",
      "pdf_file_size_bytes": 232861,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "1188a_pdf.pdf",
    "report_frontpage": {
      "DE": {
        "cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2, AVA_VAN.5",
        "cc_version": "PP conformant Common Criteria Part 2 extended",
        "cert_id": "BSI-DSZ-CC-1188-2023",
        "cert_item": "TCOS ID Version 3.0 Release 1/P71",
        "cert_lab": "BSI",
        "developer": "Deutsche Telekom Security GmbH",
        "match_rules": [
          "(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
        ],
        "ref_protection_profiles": "Common Criteria Protection Profile Machine- Readable Electronic Documents based on BSI TR- 03110 for Official Use [MR.ED-PP], Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01 Common Criteria PP Configuration Machine Readable Electronic Documents \u2013 Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 5
          },
          "ECDH": {
            "ECDH": 8
          },
          "ECDSA": {
            "ECDSA": 4
          }
        },
        "FF": {
          "DH": {
            "Diffie-Hellman": 1
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1149-2022": 6,
          "BSI-DSZ-CC-1149-2022-MA-01": 5,
          "BSI-DSZ-CC-1188": 3,
          "BSI-DSZ-CC-1188-2023": 21,
          "BSI-DSZ-CC-S-0208-2022": 2
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0056-V2-2012-MA-02": 2,
          "BSI-CC-PP-0059-2009-MA-02": 1,
          "BSI-CC-PP-0068-V2-": 1,
          "BSI-CC-PP-0068-V2-2011-MA-01": 2,
          "BSI-CC-PP-0086-2015": 3,
          "BSI-CC-PP-0087-V2-": 1,
          "BSI-CC-PP-0087-V2-2016-MA-01": 1,
          "BSI-CC-PP-0090-2016": 4
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1
        },
        "ALC": {
          "ALC_CMC.4": 1,
          "ALC_CMS.4": 1,
          "ALC_DEL.1": 1,
          "ALC_DVS.2": 5,
          "ALC_FLR": 2,
          "ALC_LCD.1": 1,
          "ALC_TAT.1": 1
        },
        "ATE": {
          "ATE_DPT.2": 4
        },
        "AVA": {
          "AVA_VAN.5": 4
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 2": 3,
          "EAL 4": 5,
          "EAL 4 augmented": 3,
          "EAL 5": 4,
          "EAL 5+": 1,
          "EAL 6": 1,
          "EAL5+": 1,
          "EAL6": 1
        }
      },
      "cc_sfr": {
        "FCS": {
          "FCS_CKM": 22,
          "FCS_COP": 23,
          "FCS_RND": 1
        },
        "FIA": {
          "FIA_API": 1,
          "FIA_UAU": 6
        },
        "FTP": {
          "FTP_ITC": 6
        }
      },
      "certification_process": {
        "ConfidentialDocument": {
          "Evaluation (ETR COMP), BSI-DSZ-CC- 1149, Version 3, 10 May 2022, T\u00dcV Informationstechnik GmbH (confidential document) [23] Certification Report BSI-DSZ-CC-S-0208-2022 for Bundesdruckerei GmbH manufacturing site for": 1,
          "ID Version 3.0 Release 1/P71, Version 1.1, 05 April 2023, SRC Security Research \u0026 Consulting GmbH (confidential document) [14] Configuration List BSI-DSZ-CC-1188, Konfigurationsliste von TCOS ID Version 3.0 Release 1": 1,
          "P71D600, Version 1.0, 28 March 2023, Deutsche Telekom Security GmbH (confidential document) [15] TCOS ID card Version 3.0 Release 1, Guidance Document \u2013 Common Part, Guidance Documentation": 1,
          "Security GmbH (confidential document) Note: End of report 38 / 38": 1,
          "Zufallszahlengenerierung in TCOS, Version 1.4, 13 January 2023, Deutsche Telekom Security GmbH (confidential document) [UiF] Spezifikation \u2018Update im Feld\u2019 aus Applikationssicht, Version 0.12, 04 August 2022, Deutsche": 1,
          "being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "OFB": {
          "OFB": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "PACE": {
          "PACE": 18
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 4
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP512t1": 2
        }
      },
      "eval_facility": {
        "DeutscheTelekom": {
          "Deutsche Telekom Security": 19
        },
        "SRC": {
          "SRC Security Research \u0026 Consulting": 3
        },
        "TUV": {
          "T\u00dcV Informationstechnik": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 2,
            "SHA-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 6
        }
      },
      "side_channel_analysis": {
        "FI": {
          "fault injection": 1,
          "malfunction": 1
        },
        "SCA": {
          "side channel": 2
        },
        "other": {
          "JIL": 5,
          "deep learning": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 1": 1,
          "AIS 14": 1,
          "AIS 19": 1,
          "AIS 20": 3,
          "AIS 23": 1,
          "AIS 25": 4,
          "AIS 26": 4,
          "AIS 31": 3,
          "AIS 32": 1,
          "AIS 34": 4,
          "AIS 36": 4,
          "AIS 37": 2,
          "AIS 38": 1,
          "AIS 46": 2,
          "AIS20": 2,
          "AIS31": 2
        },
        "FIPS": {
          "FIPS PUB 180-4": 1,
          "FIPS180": 3,
          "FIPS186": 12,
          "FIPS197": 4
        },
        "ICAO": {
          "ICAO": 15
        },
        "ISO": {
          "ISO/IEC 15408": 4,
          "ISO/IEC 17065": 2,
          "ISO/IEC 18045": 4
        },
        "RFC": {
          "RFC 5639": 15
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 12,
            "AES-256": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 4
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI 7148": 1,
          "BSI TR-02102-1": 1,
          "BSI TR-03110": 8,
          "BSI TR-03116": 3,
          "BSI TR-03116-2": 2
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "NXP": {
          "NXP": 11,
          "NXP Semiconductors": 10
        }
      },
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign\"",
      "/Subject": "Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign",
      "/Title": "Certification Report BSI-DSZ-CC-1188-2023",
      "pdf_file_size_bytes": 561710,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.bsi.bund.de/zertifizierungsreporte",
          "http://www.commoncriteriaportal.org/",
          "https://www.bsi.bund.de/AIS",
          "http://www.commoncriteriaportal.org/cc/",
          "https://www.bsi.bund.de/",
          "https://www.bsi.bund.de/zertifizierung",
          "https://www.sogis.eu/",
          "https://www.commoncriteriaportal.org/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 38
    },
    "st_filename": "1188b_pdf.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 6
          },
          "ECDH": {
            "ECDH": 15
          },
          "ECDSA": {
            "ECDSA": 2
          }
        },
        "FF": {
          "DH": {
            "DH": 4,
            "Diffie-Hellman": 9
          },
          "DSA": {
            "DSA": 1
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1149-2022": 1,
          "BSI-DSZ-CC-1149-2022-MA-01": 1,
          "BSI-DSZ-CC-1188": 1
        }
      },
      "cc_claims": {
        "A": {
          "A.CGA": 2,
          "A.SCA": 2
        },
        "O": {
          "O.AES": 1,
          "O.ECC": 1,
          "O.PUF": 1,
          "O.RND": 3,
          "O.RSA": 1,
          "O.TDES": 1
        },
        "OE": {
          "OE.HID_VAD": 4
        },
        "T": {
          "T.RND": 1
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP- 0086-2015": 1,
          "BSI-CC-PP-0056-V2-": 1,
          "BSI-CC-PP-0059-2009-MA-02": 2,
          "BSI-CC-PP-0068-V2-2011-MA-01": 1,
          "BSI-CC-PP-0068-V2-2011-MA01": 1,
          "BSI-CC-PP-0084-2014": 1,
          "BSI-CC-PP-0086-2015": 1,
          "BSI-CC-PP-0087-V2-2016-MA-01": 2,
          "BSI-CC-PP-0090-": 1,
          "BSI-CC-PP-0090-2016": 1,
          "BSI-CC-PP0084": 1,
          "BSI-CC-PP0087": 1,
          "BSI-PP-0055-2009": 1,
          "BSI-PP-0056-V2-2012-MA02": 1,
          "BSI-PP-0087": 1
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1,
          "ADV_ARC.1": 4,
          "ADV_FSP": 1,
          "ADV_FSP.4": 2,
          "ADV_FUN.1": 1,
          "ADV_IMP.1": 2,
          "ADV_TDS.3": 3
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_OPE.1": 2,
          "AGD_PRE.1": 3
        },
        "ALC": {
          "ALC_CMC": 1,
          "ALC_CMC.4": 1,
          "ALC_CMS": 1,
          "ALC_CMS.4": 1,
          "ALC_DEL": 1,
          "ALC_DEL.1": 2,
          "ALC_DVS": 1,
          "ALC_DVS.2": 7,
          "ALC_FLR.1": 1,
          "ALC_LCD.1": 1,
          "ALC_TAT.1": 1
        },
        "ASE": {
          "ASE_TSS.2": 1
        },
        "ATE": {
          "ATE_COV": 1,
          "ATE_COV.2": 1,
          "ATE_DPT.1": 1,
          "ATE_DPT.2": 5,
          "ATE_DPT.3": 1,
          "ATE_FUN": 1,
          "ATE_FUN.1": 1,
          "ATE_IND": 1
        },
        "AVA": {
          "AVA_VAN": 1,
          "AVA_VAN.5": 8
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 4": 1,
          "EAL 4 augmented": 1,
          "EAL 6": 1,
          "EAL 6 augmented": 1,
          "EAL 6+": 1,
          "EAL4": 10,
          "EAL4 augmented": 3
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_SAS": 21,
          "FAU_SAS.1": 7,
          "FAU_SAS.1.1": 1
        },
        "FCS": {
          "FCS_CKM": 73,
          "FCS_CKM.1": 29,
          "FCS_CKM.2": 9,
          "FCS_CKM.4": 31,
          "FCS_COP": 97,
          "FCS_COP.1": 29,
          "FCS_RND": 13,
          "FCS_RND.1": 10,
          "FCS_RND.1.1": 1,
          "FCS_RNG": 3
        },
        "FDP": {
          "FDP_ACC": 44,
          "FDP_ACC.1": 21,
          "FDP_ACF": 59,
          "FDP_ACF.1": 51,
          "FDP_IFC": 5,
          "FDP_IFC.1": 8,
          "FDP_IFF": 8,
          "FDP_IFF.1": 5,
          "FDP_ITC.1": 18,
          "FDP_ITC.2": 19,
          "FDP_ITT.1": 1,
          "FDP_RIP": 19,
          "FDP_RIP.1": 12,
          "FDP_SDC.1": 1,
          "FDP_SDI": 12,
          "FDP_SDI.1": 3,
          "FDP_SDI.2": 5,
          "FDP_UCT": 7,
          "FDP_UCT.1": 3,
          "FDP_UIT": 7,
          "FDP_UIT.1": 4
        },
        "FIA": {
          "FIA_AFL": 37,
          "FIA_AFL.1": 11,
          "FIA_API": 34,
          "FIA_API.1": 10,
          "FIA_API.1.1": 1,
          "FIA_UAU": 83,
          "FIA_UAU.1": 16,
          "FIA_UAU.4": 3,
          "FIA_UAU.5": 7,
          "FIA_UAU.6": 5,
          "FIA_UIA": 1,
          "FIA_UID": 37,
          "FIA_UID.1": 17
        },
        "FMT": {
          "FMT_LIM": 31,
          "FMT_LIM.1": 21,
          "FMT_LIM.1.1": 1,
          "FMT_LIM.2": 17,
          "FMT_LIM.2.1": 1,
          "FMT_MOF": 6,
          "FMT_MOF.1": 1,
          "FMT_MSA": 34,
          "FMT_MSA.1": 6,
          "FMT_MSA.3": 8,
          "FMT_MSA.4": 1,
          "FMT_MTD": 123,
          "FMT_MTD.1": 18,
          "FMT_MTD.3": 5,
          "FMT_SMF": 28,
          "FMT_SMF.1": 36,
          "FMT_SMF.1.1": 1,
          "FMT_SMR": 12,
          "FMT_SMR.1": 39,
          "FMT_SMR.1.1": 1,
          "FMT_SMR.1.2": 1
        },
        "FPT": {
          "FPT_EMS": 23,
          "FPT_EMS.1": 17,
          "FPT_EMS.1.1": 3,
          "FPT_EMS.1.2": 4,
          "FPT_FLS": 16,
          "FPT_FLS.1": 7,
          "FPT_ITT.1": 1,
          "FPT_PHP": 17,
          "FPT_PHP.1": 2,
          "FPT_PHP.3": 5,
          "FPT_TST": 17,
          "FPT_TST.1": 12
        },
        "FRU": {
          "FRU_FLT.2": 1
        },
        "FTP": {
          "FTP_ITC": 34,
          "FTP_ITC.1": 20,
          "FTP_TRP.1": 4
        }
      },
      "certification_process": {
        "OutOfScope": {
          " For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf": 1,
          " For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf. [EACTR Part 3, B.7]). 13 For the ePass Application, the": 1,
          "by these terminals was given already in chapter 1.3.3. 71 Others than above listed terminals are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are not supported by the TOE": 1,
          "out of scope": 2
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CTR": {
          "CTR": 1
        },
        "OFB": {
          "OFB": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "PACE": {
          "PACE": 167
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 2
        },
        "MAC": {
          "MAC": 9
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP192r1": 1,
          "brainpoolP192t1": 1,
          "brainpoolP224r1": 1,
          "brainpoolP224t1": 1,
          "brainpoolP256r1": 2,
          "brainpoolP256t1": 1,
          "brainpoolP320r1": 1,
          "brainpoolP320t1": 1,
          "brainpoolP384r1": 2,
          "brainpoolP384t1": 1,
          "brainpoolP512r1": 2,
          "brainpoolP512t1": 1
        },
        "NIST": {
          "NIST P-256": 1,
          "P-192": 2,
          "P-256": 3,
          "P-384": 2
        }
      },
      "eval_facility": {
        "DeutscheTelekom": {
          "Deutsche Telekom Security": 158
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 1
          },
          "SHA2": {
            "SHA-224": 1,
            "SHA-256": 1,
            "SHA-384": 1,
            "SHA-512": 1
          }
        }
      },
      "ic_data_group": {
        "EF": {
          "EF.ChipSecurity": 1,
          "EF.DG1": 3,
          "EF.DG14": 3,
          "EF.DG16": 2,
          "EF.DG2": 1,
          "EF.DG3": 5,
          "EF.DG4": 5,
          "EF.SOD": 2
        }
      },
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RND": 4,
          "RNG": 7
        }
      },
      "side_channel_analysis": {
        "FI": {
          "Malfunction": 6,
          "Physical Tampering": 2,
          "Physical tampering": 2,
          "fault injection": 1,
          "malfunction": 5,
          "physical tampering": 5
        },
        "SCA": {
          "DPA": 1,
          "Leak-Inherent": 6,
          "physical probing": 3
        },
        "other": {
          "reverse engineering": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 31": 1,
          "AIS 36": 1,
          "AIS31": 2,
          "AIS36": 2
        },
        "CC": {
          "CCMB-2012-09-004": 1,
          "CCMB-2017-04-001": 2,
          "CCMB-2017-04-002": 2,
          "CCMB-2017-04-003": 2,
          "CCMB-2017-04-004": 1
        },
        "FIPS": {
          "FIPS 180-4": 1,
          "FIPS PUB 180-4": 1,
          "FIPS PUB 186-4": 1,
          "FIPS180": 2,
          "FIPS186": 7,
          "FIPS197": 3
        },
        "ICAO": {
          "ICAO": 6
        },
        "PKCS": {
          "PKCS#3": 8
        },
        "RFC": {
          "RFC 2631": 1,
          "RFC 5639": 1,
          "RFC5639": 27
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 19,
            "AES-256": 1
          }
        },
        "DES": {
          "3DES": {
            "3DES": 1,
            "TDES": 4,
            "Triple-DES": 3
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 6,
            "KMAC": 4
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI TR-03110": 4
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "NXP": {
          "NXP": 4,
          "NXP Semiconductors": 2
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Markus Blick, Ernst-G. Giessman",
      "/Keywords": "Electronic Identity Card, Residence Permit Card, eID, eIDAS, Passport",
      "/Subject": "TCOS ID Version 3.0 Release 1",
      "/Title": "TCOS ID Version 3.0 Release 1 (NXP)",
      "pdf_file_size_bytes": 2069185,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 152
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": "EAL4+",
        "pp_ids": {
          "_type": "Set",
          "elements": [
            "MR.ED-PP_V2.2"
          ]
        },
        "pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/pp0087V2b_pdf.pdf",
        "pp_name": "Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use"
      },
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": null,
        "pp_ids": null,
        "pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0090b_pdf.pdf",
        "pp_name": "Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (O..."
      }
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188a_pdf.pdf",
  "scheme": "DE",
  "security_level": {
    "_type": "Set",
    "elements": [
      "ALC_DVS.2",
      "EAL4+",
      "AVA_VAN.5",
      "ATE_DPT.2"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188b_pdf.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "b3a7eb6449b872c88f1177d1eec4c8550b5483c77f0adfe0352851a38d24d914",
      "txt_hash": "a90e8e6b59c13bbbb836d570af2be0bec7a32560ba45a9b00f02410575f9f4af"
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "d26e49683426ad60c72ac2be876546a30dddd9f8b9212da1ea368b71bf2a88cb",
      "txt_hash": "cfceadfe083c4d884bb0e7b94b4da9bbf4a7c09468d27d96ee4f621e15acaf39"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "e958d128c6ea4ff389776cd5ca44bd7b9fd7f035f77e1ebe257303e4444c1661",
      "txt_hash": "dffdb6df92784ae39505d3806f654a63c7f07e0a83ea334085a1f9f9d8540e4f"
    }
  },
  "status": "active"
}

TCOS ID Version 3.0 Release 1/P71

CSV information ?

Heuristics summary ?

Certificate ?

Extracted keywords

Common Criteria

Security level

Security Assurance Requirements (SAR)

Protection profiles

Certificates

Evaluation facilities

Other

Standards

File metadata

Certification report ?

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Elliptic Curves

Block cipher modes

Device

Vendor

Common Criteria

Security level

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Protection profiles

Certificates

Evaluation facilities

Security

Side-channel analysis

Certification process

Other

Standards

Technical reports

File metadata

Frontpage

References

Security target ?

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Randomness

Elliptic Curves

Block cipher modes

Device

IC data groups

Vendor

Common Criteria

Security level

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Protection profiles

Certificates

Evaluation facilities

Security

Side-channel analysis

Certification process

Other

Standards

Technical reports

File metadata

References

Heuristics ?

Extracted SARs

Similar certificates

Scheme data ?

References ?

Updates ?

Certificate changed