This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	TNOR Guard v. 1.1.3 SERTIT-120	NXP eDoc Suite v4.0 on JCOP4.5 71 - cryptovision ePasslet Suite - Java Card applet configuration providing Secure Signature Creation Device with key import (SSCD) NSCIB-CC-2200053-01-CR
name	TNOR Guard v. 1.1.3	NXP eDoc Suite v4.0 on JCOP4.5 71 - cryptovision ePasslet Suite - Java Card applet configuration providing Secure Signature Creation Device with key import (SSCD)
category	Boundary Protection Devices and Systems	ICs, Smart Cards and Smart Card-Related Devices and Systems
scheme	NO	NL
status	active	active
not_valid_after	12.05.2027	09.08.2028
not_valid_before	12.05.2022	09.08.2023
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/SERTIT-120%20C%20v1.0.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2200053-01-Cert.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/SERTIT-120%20CR%20v1.0.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2200053-01-CR.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/TNOR%20Guards%20739_20726_aaaa_sc_ed10-4-public.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2200053-01-ST_v14.pdf
manufacturer	Thales Norway AS	NXP Semiconductors Germany GmbH
manufacturer_web	https://www.thales.no/	https://www.nxp.com
security_level	EAL4+, AVA_VAN.4, ALC_FLR.3	ALC_DVS.2, EAL5+, AVA_VAN.5
dgst	03972af324dcd07f	4ffa9373e54896ef
heuristics/cert_id	SERTIT-120	NSCIB-CC-2200053-01-CR
heuristics/cert_lab	[]
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ASE_INT.1, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ASE_TSS.1, ASE_SPD.1, ALC_DEL.1, ALC_LCD.1, ALC_FLR.3, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ATE_DPT.1, ASE_REQ.2, ALC_DVS.1, ADV_FSP.4, ATE_IND.2, AVA_VAN.4, ASE_CCL.1	ASE_INT.1, ALC_DVS.2, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ASE_TSS.1, ASE_SPD.1, ALC_CMS.5, AVA_VAN.5, ALC_DEL.1, ALC_LCD.1, ADV_FSP.5, AGD_OPE.1, ADV_INT.2, AGD_PRE.1, ATE_FUN.1, ATE_DPT.3, ADV_ARC.1, ASE_OBJ.2, ALC_TAT.2, ADV_TDS.4, ASE_REQ.2, ATE_IND.2, ASE_CCL.1
heuristics/extracted_versions	1.1.3	4.0, 4.5
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	NSCIB-CC-2200053-02-CR
heuristics/report_references/directly_referencing	{}	NSCIB-CC-0313985-CR, BSI-DSZ-CC-1149-2022
heuristics/report_references/indirectly_referenced_by	{}	NSCIB-CC-2200053-02-CR
heuristics/report_references/indirectly_referencing	{}	NSCIB-CC-0313985-CR, BSI-DSZ-CC-1149-2022
heuristics/scheme_data	category: Boundary Protection Devices and Systems certification_date: 12.05.2022 developer: Thales Norway AS enhanced: category: Boundary Protection Devices and Systems cert_id: SERTIT-120 certification_date: 12.05.2022 description: TNOR Guard is a technology that provides controlled information flow between networks with different system and application security policies. The TNOR Guard (TOE) is part of the XOmail product family for messaging and information exchange in mission-critical military and civilian networks. The Guard implements high-assurance information flow control for the trusted exchange of information across security domain boundaries. This product is also described in this report as the Target of Evaluation (TOE). The main security feature of the TOE is to mediate a one-way or bidirectional flow between two security domains. The TOE inspects every information object that is requested sent between the security domains, and makes an automated release decision according to configured policy. The TOE covers the following four Guard products: STANAG 4406 Ed 2 Message Guard For connectivity towards the NATO standard Military Message Handling System (MMHS), SMTP Message Guard (E-mail) For connectivity towards standard e-mail systems such as Microsoft Exchange. Supports RFC 6477 for Military Message Handling attributes within the SMTP domain, Chat (XMPP) Guard Instant Messaging service between security domains. XML/SOAP Guard Exchange of XML/SOAP data between security domains. developer: Thales Norway AS documents: frozendict({'cert': [frozendict({'href': 'https://sertit.no/getfile.php/1311036-1656573547/SERTIT/Sertifikater/2022/120/SERTIT-120%20C%20v1.0.pdf'})], 'target': [frozendict({'href': 'https://sertit.no/getfile.php/1310630-1654589563/SERTIT/Sertifikater/2022/120/TNOR%20Guards%20739_20726_aaaa_sc_ed10-4-public.pdf'})], 'report': [frozendict({'href': 'https://sertit.no/getfile.php/1310627-1654589561/SERTIT/Sertifikater/2022/120/SERTIT-120%20CR%20v1.0.pdf'})]}) evaluation_facility: System Sikkerhet AS expiration_date: 12.05.2027 level: EAL 4, ALC_FLR.3, AVA_VAN.4 mutual_recognition: CCRA, SOG-IS product: TNOR Guard version 1.1.3 sponsor: Forsvarsmateriell IKT-kapasiteter product: TNOR Guard url: https://sertit.no/certified-products/tnor-guard-article2842-1919.html	cert_id: NSCIB-CC-2200053-01-CR cert_link: https://trustcb.com/download/?wpdmdl=3104 certification_date: 09.08.2023 developer: NXP Semiconductors GmbH evaluation_facility: SGS Brightsight level: EAL5 + ALC_DVS.2 and AVA_VAN.5 product: NXP eDoc Suite v4.0 on JCOP4.5 P71 - cryptovision ePasslet Suite - Java Card applet configuration providing Secure Signature Creation Device with Key generation(SSCD) report_link: https://trustcb.com/download/?wpdmdl=4036 status: Issued target_link: https://trustcb.com/download/?wpdmdl=3277
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	NSCIB-CC-0313985-CR
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	NSCIB-CC-0313985-CR
heuristics/protection_profiles	{}	27abdb9c6ab375a7
maintenance_updates		maintenance_date: 15.10.2024 maintenance_report_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2200054-01-MA1[1].pdf maintenance_st_link: https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-2200054-01-MA1-ST_lite[1].pdf maintenance_title: NXP eDoc Suite v4.0 on JCOP4.5 71 - cryptovision ePasslet Suite
protection_profiles
protection_profile_links	{}	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0075b_pdf.pdf
pdf_data/cert_filename	SERTIT-120 C v1.0.pdf	NSCIB-CC-2200053-01-Cert.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id	NO: SERTIT-120: 2	NL: NSCIB-2200053-01: 1 NSCIB-CC-2200053-01: 1
pdf_data/cert_keywords/cc_protection_profile_id		BSI: BSI-CC-PP-0059-: 1
pdf_data/cert_keywords/cc_security_level	EAL: EAL 2: 1 EAL 4: 2 EAL 4 augmented: 1	EAL: EAL2: 1 EAL5: 1 EAL5 augmented: 1 EAL7: 1
pdf_data/cert_keywords/cc_sar	ALC: ALC_FLR: 1	ALC: ALC_DVS.2: 1 ALC_FLR: 1 ALC_FLR.3: 1 AVA: AVA_VAN.5: 1
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor	Thales: Thales: 1	NXP: NXP: 1 NXP Semiconductors: 1
pdf_data/cert_keywords/eval_facility		BrightSight: Brightsight: 1 SGS: SGS: 1 SGS Brightsight: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name		JCOP: JCOP4: 1
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id		ISO: ISO/IEC 15408-1: 2 ISO/IEC 18045: 4 ISO/IEC 18045:2008: 1
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/Author: helgerudt /CreationDate: D:20220629133919+02'00' /Creator: Hewlett-Packard MFP /ModDate: D:20220629142649+02'00' /Producer: PixEdit AS, PixEdit Version 8.7.4.6 /Subject: 201676 201334 VEDLEGG01 pdf_file_size_bytes: 1289183 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1	/Author: Denise Cater /CreationDate: D:20230811080254+01'00' /Creator: Microsoft® Word 2021 /ModDate: D:20230811080254+01'00' /Producer: Microsoft® Word 2021 /Title: NSCIB Certificate pdf_file_size_bytes: 125805 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	SERTIT-120 CR v1.0.pdf	NSCIB-CC-2200053-01-CR.pdf
pdf_data/report_frontpage	NL:	NL: cert_id: NSCIB-CC-2200053-01-CR cert_item: NXP eDoc Suite v4.0 on JCOP4.5 P71 - cryptovision ePasslet Suite – Java Card applet configuration providing Secure Signature Creation Device with Key generation (SSCD cert_lab: SGS Brightsight B.V. developer: cv cryptovision GmbH
pdf_data/report_keywords/cc_cert_id	NO: SERTIT-120: 22	DE: BSI-DSZ-CC-1149-2022: 1 BSI-DSZ-CC-1149-2022-MA-01: 2 NL: CC-0313985-MA: 1 NSCIB-2200053-01: 1 NSCIB-CC-0313985-CR: 1 NSCIB-CC-2200053-01-CR: 12
pdf_data/report_keywords/cc_protection_profile_id		BSI: BSI-CC-PP-0059-2009-MA-02: 1
pdf_data/report_keywords/cc_security_level	EAL: EAL 2: 1 EAL 4: 27 EAL 4 augmented: 24	EAL: EAL 5: 1 EAL 5 augmented: 1 EAL4: 1 EAL5: 1 EAL5 augmented: 1 EAL5+: 1
pdf_data/report_keywords/cc_sar	ADV: ADV_ARC.1: 1 ADV_FSP.4: 1 ADV_IMP.1: 1 ADV_TDS.3: 1 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.4: 1 ALC_CMS.4: 1 ALC_DEL.1: 1 ALC_DVS.1: 1 ALC_FLR: 1 ALC_FLR.3: 26 ALC_LCD.1: 1 ASE: ASE_CCL.1: 1 ASE_ECD.1: 1 ASE_INT.1: 1 ASE_OBJ.2: 1 ASE_REQ.2: 1 ASE_SPD.1: 1 ASE_TSS.1: 1 ATE: ATE_COV.2: 1 ATE_DPT.1: 1 ATE_FUN.1: 1 ATE_IND.2: 1 AVA: AVA_VAN.4: 27	ADV: ADV_IMP: 1 AGD: AGD_OPE: 1 AGD_PRE: 1 ALC: ALC_DVS.2: 2 AVA: AVA_VAN.5: 1
pdf_data/report_keywords/cc_sfr
pdf_data/report_keywords/cc_claims
pdf_data/report_keywords/vendor	Microsoft: Microsoft: 1 Thales: Thales: 12	NXP: NXP: 23 NXP Semiconductors: 5
pdf_data/report_keywords/eval_facility		BrightSight: Brightsight: 2 SGS: SGS: 2 SGS Brightsight: 2
pdf_data/report_keywords/symmetric_crypto
pdf_data/report_keywords/asymmetric_crypto
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function
pdf_data/report_keywords/crypto_scheme	MAC: MAC: 2 PKE: PKE: 1
pdf_data/report_keywords/crypto_protocol		PACE: PACE: 3
pdf_data/report_keywords/randomness
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve	NIST: P-110: 1
pdf_data/report_keywords/crypto_engine
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis		other: JIL: 2 JIL-AAPS: 1 JIL-AM: 1
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name		JCOP: JCOP 4: 4 JCOP4: 18
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id	CC: CCMB-2017-04-004: 1 ISO: ISO/IEC 15408: 8 ISO/IEC 17025: 2 ISO/IEC 18045: 2 RFC: RFC 6477: 1	ICAO: ICAO: 2
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process
pdf_data/report_metadata	/CreationDate: D:20220518100037+02'00' /ModDate: D:20220518100037+02'00' pdf_file_size_bytes: 529073 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 22	/Author: Microsoft Office User /CreationDate: D:20230811080451+01'00' /Creator: Microsoft® Word 2021 /ModDate: D:20230811080451+01'00' /Producer: Microsoft® Word 2021 /Title: Certification Report pdf_file_size_bytes: 327123 pdf_hyperlinks: https://www.sogis.eu/, http://www.commoncriteriaportal.org/, https://trustcb.com/common-criteria/nscib/, https://nscib.nl/, mailto:[email protected] pdf_is_encrypted: False pdf_number_of_pages: 12
pdf_data/st_filename	TNOR Guards 739_20726_aaaa_sc_ed10-4-public.pdf	NSCIB-CC-2200053-01-ST_v14.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id		DE: BSI-DSZ-CC-1149: 1 BSI-DSZ-CC-1149-2022-MA-01: 1 NL: CC-1149-2022: 1 NSCIB-2200053-01: 1 NSCIB-CC-0313985: 2 NSCIB-CC-0313985-CR: 1
pdf_data/st_keywords/cc_protection_profile_id		BSI: BSI-CC-PP-0059-: 1 BSI-CC-PP-0059-2009-MA-02: 3 BSI-CC-PP-0084-: 1 BSI-CC-PP-0099-2017: 1 BSI-PP-0006-2002T: 1
pdf_data/st_keywords/cc_security_level	EAL: EAL4: 8 EAL4 augmented: 5	EAL: EAL 5: 2 EAL 5 augmented: 1 EAL 5+: 1 EAL 6+: 2 EAL4: 1 EAL4 augmented: 1 EAL5: 4 EAL5 augmented: 3
pdf_data/st_keywords/cc_sar	ALC: ALC_FLR.3: 6 ASE: ASE_CCL: 2 ASE_ECD: 2 ASE_INT: 2 ASE_OBJ: 2 ASE_REQ: 2 ASE_SPD: 2 ASE_TSS: 2 AVA: AVA_VAN.4: 6	ADV: ADV_ARC.1: 3 ADV_FSP.4: 1 ADV_FSP.5: 1 ADV_IMP.1: 2 ADV_INT.2: 1 ADV_TDS.3: 1 ADV_TDS.4: 1 AGD: AGD_OPE: 2 AGD_OPE.1: 2 AGD_PRE: 7 AGD_PRE.1: 2 ALC: ALC_CMC.4: 1 ALC_CMS.5: 1 ALC_DEL.1: 1 ALC_DVS.2: 7 ALC_LCD.1: 1 ALC_TAT.2: 1 ASE: ASE_CCL.1: 1 ASE_ECD.1: 1 ASE_INT.1: 1 ASE_OBJ.2: 1 ASE_REQ.2: 1 ASE_SPD.1: 1 ASE_TSS.1: 1 ATE: ATE_COV.2: 1 ATE_DPT.1: 1 ATE_DPT.3: 1 ATE_FUN.1: 1 ATE_IND.2: 1 AVA: AVA_VAN.5: 8
pdf_data/st_keywords/cc_sfr	FAU: FAU_ARP: 2 FAU_ARP.1: 9 FAU_GEN: 2 FAU_GEN.1: 13 FAU_GEN.2: 8 FAU_GEN.2.1: 1 FAU_SAA: 1 FAU_SAA.1: 10 FAU_SAR: 1 FAU_SAR.1: 11 FAU_SAR.2: 8 FAU_STG: 1 FAU_STG.1: 12 FAU_STG.3: 9 FAU_STG.4: 9 FCO: FCO_NRO: 1 FCO_NRO.1: 10 FCS: FCS_CKM.1: 2 FCS_CKM.4: 1 FCS_COP: 1 FCS_COP.1: 10 FCS_NRO.1: 1 FDP: FDP_ACC: 1 FDP_ACC.1: 9 FDP_ACC.2: 10 FDP_ACF: 1 FDP_ACF.1: 12 FDP_ETC: 1 FDP_ETC.2: 13 FDP_IFC: 19 FDP_IFC.1: 14 FDP_IFC.2: 11 FDP_IFF: 19 FDP_IFF.1: 16 FDP_IFF.2: 16 FDP_IFF.2.2: 1 FDP_ITC: 1 FDP_ITC.1: 2 FDP_ITC.2: 15 FDP_RIP: 1 FDP_RIP.1: 1 FDP_RIP.2: 10 FDP_UIT: 1 FDP_UIT.1: 9 FIA: FIA_ATD: 1 FIA_ATD.1: 9 FIA_UID: 1 FIA_UID.1: 7 FIA_UID.2: 13 FMT: FMT_MOF: 19 FMT_MOF.1: 5 FMT_MSA: 1 FMT_MSA.1: 10 FMT_MSA.3: 15 FMT_MTD: 2 FMT_MTD.1: 12 FMT_MTD.3: 8 FMT_MTS: 1 FMT_REV: 1 FMT_REV.1: 9 FMT_SMF: 1 FMT_SMF.1: 15 FMT_SMR: 1 FMT_SMR.1: 9 FMT_SMR.2: 16 FMT_TST.1: 1 FPT: FPT_FLS: 1 FPT_FLS.1: 11 FPT_RCV: 1 FPT_RCV.4: 10 FPT_STM.1: 2 FPT_TDC: 1 FPT_TDC.1: 11 FPT_TST: 1 FPT_TST.1: 12 FRU: FRU_PRS: 1 FRU_PRS.1: 10 FTP: FTP_ITC.1: 4 FTP_TRP: 1 FTP_TRP.1: 15 FTP_TRP.2: 2	FAU: FAU_ARP.1: 1 FAU_GEN: 1 FAU_SAS.1: 1 FCO: FCO_NRO.2: 1 FCS: FCS_CKM: 1 FCS_CKM.1: 21 FCS_CKM.1.1: 5 FCS_CKM.2: 3 FCS_CKM.3: 1 FCS_CKM.4: 15 FCS_CKM.4.1: 5 FCS_COP: 19 FCS_COP.1: 7 FCS_COP.1.1: 21 FCS_RND: 8 FCS_RND.1: 11 FCS_RND.1.1: 2 FCS_RNG.1: 2 FDP: FDP_ACC: 26 FDP_ACC.1: 24 FDP_ACC.2: 4 FDP_ACF: 17 FDP_ACF.1: 47 FDP_IFC.1: 10 FDP_IFC.2: 3 FDP_IFF.1: 5 FDP_ITC: 1 FDP_ITC.1: 6 FDP_ITC.2: 7 FDP_RIP.1: 15 FDP_RIP.1.1: 2 FDP_ROL.1: 2 FDP_SDI: 15 FDP_SDI.1: 2 FDP_SDI.2: 14 FDP_UIT.1: 1 FIA: FIA_AFL.1: 9 FIA_AFL.1.1: 3 FIA_AFL.1.2: 3 FIA_ATD.1: 2 FIA_UAU.1: 10 FIA_UAU.1.1: 4 FIA_UAU.1.2: 3 FIA_UAU.4: 2 FIA_UID.1: 17 FIA_UID.1.1: 3 FIA_UID.1.2: 3 FIA_UID.2: 1 FIA_USB.1: 2 FMT: FMT_MOF.1: 6 FMT_MOF.1.1: 2 FMT_MSA: 13 FMT_MSA.1: 17 FMT_MSA.2: 7 FMT_MSA.2.1: 2 FMT_MSA.3: 26 FMT_MSA.3.1: 2 FMT_MSA.3.2: 2 FMT_MSA.4: 8 FMT_MSA.4.1: 3 FMT_MTD: 13 FMT_MTD.1: 7 FMT_MTD.3: 1 FMT_SMF.1: 30 FMT_SMF.1.1: 2 FMT_SMR.1: 31 FMT_SMR.1.1: 4 FMT_SMR.1.2: 3 FPR: FPR_UNO.1: 1 FPT: FPT_EMS: 8 FPT_EMS.1: 11 FPT_EMS.1.1: 5 FPT_EMS.1.2: 4 FPT_FLS.1: 19 FPT_FLS.1.1: 2 FPT_PHP.1: 6 FPT_PHP.1.1: 3 FPT_PHP.1.2: 3 FPT_PHP.3: 11 FPT_PHP.3.1: 3 FPT_RCV.3: 1 FPT_TDC.1: 1 FPT_TST: 2 FPT_TST.1: 14 FPT_TST.1.1: 2 FPT_TST.1.2: 2 FPT_TST.1.3: 2 FTP: FTP_ITC.1: 1
pdf_data/st_keywords/cc_claims	A: A..Z: 1 A.APPROVED_CRYPTO: 3 A.APPROVED_PKI: 2 A.CORRECT_CONFIGURATION: 3 A.NETWORK_PROTECTED: 2 A.PHYSICAL_ACCESS_MANAGED: 3 A.TRUSTED_AND_TRAINED_ADMIN: 2 A.TRUSTED_LABELLER: 3 O: O.ACCESS: 8 O.AUDIT: 13 O.CMD_ACL: 10 O.CONFIGURATION_CHANGE: 5 O.CONTROLLED_INFORMATION: 1 O.CONTROLLED_INFORMATION_FLOW: 5 O.CORRECT_TSF_OPERATION: 6 O.INTERNAL_LEAST_PRIVILEG: 1 O.INTERNAL_LEAST_PRIVILEGE: 9 O.LABEL_MAPPING: 8 O.MAC: 5 O.MGMT_MODE: 6 O.MINIMAL_PROXY: 10 O.OBJECT_INTEGRITY: 9 O.RESIDUAL_INFORMATION: 7 O.RESOURCE_SHARING: 7 O.SECURE_STATE: 8 O.SUBJECT_ISOLATION: 12 O.TRANSITION: 5 O.TSF_INTEGRITY: 9 O.VALID_LABEL: 6 OE: OE.APPROVED_CRYPTO: 7 OE.APPROVED_PKI: 7 OE.BORDER_PROTECTION: 12 OE.CONFIGURATION: 8 OE.CONTENT_INSPECTION_S: 1 OE.CONTENT_INSPECTION_SE: 2 OE.CONTENT_INSPECTION_SERVICE: 6 OE.DIRECTORY_SERVICE: 6 OE.MINIMAL_POSTURE: 10 OE.NETWORK: 10 OE.PHYSICAL_ACCESS_MANA: 2 OE.PHYSICAL_ACCESS_MANAG: 1 OE.PHYSICAL_ACCESS_MANAGED: 6 OE.PLATFORM: 10 OE.TIME_SOURCE: 6 OE.TRUSTED_AND_TRAINED_: 1 OE.TRUSTED_AND_TRAINED_A: 1 OE.TRUSTED_AND_TRAINED_ADMIN: 8 OE.TRUSTED_AND_TRAINED_ADMINS: 1 OE.TRUSTED_LABELLER: 7 T: T.ADMIN_MASQUERADE: 4 T.AUDIT_COMPROMISE: 2 T.COVERT_CHANNEL: 2 T.DOS: 4 T.INFORMATION_LEAK: 2 T.INSECURE_STATE: 4 T.MALWARE_INJECTION: 2 T.METADATA_LEAK: 4 T.NETWORK_ATTACK: 2 T.OBJECT_TAMPERING: 4 T.RECONNAISSANCE: 4 T.RESIDUAL_DATA: 2 T.TSF_COMPROMISE: 3 T.UNATTENDED_ADMIN_SESSION: 2 T.UNAUTHORIZED_ACCESS: 4 T.UNNOTICED_ATTACK: 2	A: A.APPLET: 1 A.APPS-PROVIDER: 1 A.CGA: 2 A.PROCESS-SEC-IC: 1 A.SCA: 2 A.USE_DIAG: 1 A.USE_KEYS: 1 A.VERIFICATION: 1 A.VERIFICATION-AUTHORITY: 1 O: O.RBGS: 1 OE: OE.APPS-PROVIDER: 1 OE.CODE-EVIDENCE: 1 OE.CONFID-UPDATE-IMAGE: 1 OE.HID_VAD: 3 OE.KEY-CHANGE: 1 OE.PROCESS_SEC_IC: 1 OE.SECURITY-DOMAINS: 1 OE.USE_DIAG: 1 OE.USE_KEYS: 1 OE.VERIFICATION: 1 OE.VERIFICATION-AUTHORITY: 1 OT: OT.ALARM: 1 OT.APPLI-AUTH: 1 OT.AUTH-LOAD-UPDATE-IMAGE: 1 OT.BIO-MNGT: 1 OT.CARD-CONFIGURATION: 1 OT.CARD-MANAGEMENT: 1 OT.CIPHER: 1 OT.COMM_AUTH: 1 OT.COMM_CONFIDENTIALITY: 1 OT.COMM_INTEGRITY: 1 OT.CONFID-UPDATE-IMAGE: 1 OT.DOMAIN-RIGHTS: 1 OT.FIREWALL: 1 OT.GLOBAL_ARRAYS_CONFID: 1 OT.GLOBAL_ARRAYS_INTEG: 1 OT.IDENTIFICATION: 1 OT.KEY-MNGT: 1 OT.NATIVE: 1 OT.OBJ-DELETION: 1 OT.OPERATE: 1 OT.PIN-MNGT: 1 OT.REALLOCATION: 1 OT.RESOURCES: 1 OT.RND: 1 OT.SCP: 3 OT.SECURE_ACTIVATION_ADDITIONAL_CODE: 1 OT.SECURE_LOAD_ACODE: 1 OT.SEC_BOX_FW: 1 OT.SENSITIVE_RESULTS_INTEG: 1 OT.SID: 1 OT.SID_MODULE: 1 OT.TOE_IDENTIFICATION: 1 OT.TRANSACTION: 1 T: T.COM_EXPLOIT: 1 T.CONFID-APPLI-DATA: 1 T.CONFID-JCS-CODE: 1 T.CONFID-JCS-DATA: 1 T.CONFID-UPDATE-IMAGE: 1 T.CONFIG: 1 T.EXE-CODE: 2 T.INTEG-APPLI-CODE: 2 T.INTEG-APPLI-DATA: 2 T.INTEG-JCS-CODE: 1 T.INTEG-JCS-DATA: 1 T.INTEG-UPDATE-IMAGE: 1 T.INTERRUPT_OSU: 1 T.LIFE_CYCLE: 1 T.MODULE_EXEC: 1 T.MODULE_REPLACEMENT: 1 T.NATIVE: 1 T.OBJ-DELETION: 1 T.OS_OPERATE: 1 T.PHYSICAL: 1 T.RESOURCES: 1 T.SEC_BOX_BORDER: 1 T.SID: 2 T.UNAUTH-UPDATE-IMAGE: 1 T.UNAUTHORIZED_CARD_MNGT: 1
pdf_data/st_keywords/vendor	Microsoft: Microsoft: 1 Thales: Thales: 80	NXP: NXP: 43 NXP Semiconductors: 3
pdf_data/st_keywords/eval_facility
pdf_data/st_keywords/symmetric_crypto		AES_competition: AES: AES: 11 DES: 3DES: TripleDES: 1
pdf_data/st_keywords/asymmetric_crypto		ECC: ECC: ECC: 5 ECDSA: ECDSA: 6
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function		SHA: SHA2: SHA-224: 2 SHA-256: 2 SHA-384: 2 SHA-512: 2
pdf_data/st_keywords/crypto_scheme	MAC: MAC: 22 PKE: PKE: 1	MAC: MAC: 1
pdf_data/st_keywords/crypto_protocol	SSH: SSH: 3	PACE: PACE: 20
pdf_data/st_keywords/randomness		RNG: RND: 1 RNG: 7
pdf_data/st_keywords/cipher_mode		CCM: CCM: 4
pdf_data/st_keywords/ecc_curve
pdf_data/st_keywords/crypto_engine
pdf_data/st_keywords/tls_cipher_suite
pdf_data/st_keywords/crypto_library
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis		FI: DFA: 1 fault injection: 1 malfunction: 1 physical tampering: 11 SCA: DPA: 2 SPA: 2 physical probing: 1 timing attacks: 2
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name	IBM: SE: 1
pdf_data/st_keywords/os_name		JCOP: JCOP 4: 7 JCOP4: 121
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id	FIPS: FIPS PUB 180-4: 2 ISO: ISO/IEC 15408: 6 PKCS: PKCS #11: 2 PKCS#11: 4 PKCS11: 2 RFC: RFC 5321: 1 RFC 5322: 1 RFC 6120: 1 RFC 6121: 1 RFC 6477: 1 RFC 7622: 2 RFC3507: 2 RFC5905: 1 RFC6120: 2 RFC6121: 1 X509: X.509: 1	BSI: AIS 20: 1 AIS20: 7 CC: CCMB-2017-04-001: 2 CCMB-2017-04-002: 2 CCMB-2017-04-003: 2 CCMB-2017-04-004: 2 FIPS: FIPS PUB 186-3: 1 FIPS180-4: 2 FIPS186-3: 1 FIPS197: 2 ICAO: ICAO: 7 ISO: ISO/IEC 7816-4: 1 PKCS: PKCS#15: 4 PKCS1: 2 X509: X.509: 1
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process		OutOfScope: No contradiction to this ST. FDP_RIP.1[TRANSIENT] No correspondence. Out of scope (internal Java Card func- tionality: 1 No contradiction to this ST. FDP_RIP.1[bArray] No correspondence. Out of scope (internal Java Card func- tionality: 1 No contradiction to this ST. FIA_ATD.1[MODULAR-DESIGN] No correspondence Out of scope (internal Java Card func- tionality: 1 No contradiction to this ST. FMT_MSA.1[MODULAR-DESIGN] No correspondence Out of scope (internal Java Card func- tionality: 1 No contradiction to this ST. FMT_MSA.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality: 1 No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No correspondence Out of scope (internal Java Card Fire- wall: 1 No contradiction to this ST. FMT_SMF.1[MODULAR-DESIGN] No correspondence Out of scope (internal Java Card func- tionality: 1 No contradiction to this ST. FPT_FLS.1[INSTALLER] No correspondence Out of scope (internal Java Card func- tionality: 1 No contradiction to this ST. FPT_FLS.1[MODULAR-DESIGN] No correspondence Out of scope (internal Java Card func- tionality: 1 While D.Sig provides the TOE’s functionality claimed by this security target, the PKCS#15 part is out of scope of the certification: 1 While D.Sig provides the TOE’s functionality claimed by this security target, the PKCS#15 part is out of scope of the certification. 1.4.3 TOE delivery and identification The delivery comprises the following: 1 24 of 84 Platform SFR Correspondence in this ST References/Remarks FMT_MSA.3[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence: 1 32 of 84 Platform Threat Correspondence in this ST References/Remarks T.RESOURCES No correspondence Out of scope. No contradiction to this ST. T.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No: 1 7.2.7 in platform ST) FDP_IFC.2[CFG] No correspondence Complete information flow control (CFG). Out of scope (internal Java Card functionality). No contradiction to this ST. FDP_IFF.1[CFG] No correspondence: 1 84 Platform SFR Correspondence in this ST References/Remarks FMT_SMF.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. ModDesG Security Functional: 1 ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality: 1 CFG). Out of scope (in- ternal Java Card functionality: 1 CFG). Out of scope (internal Java Card func- tionality: 1 CFG). Out of scope (internal Java Card function- ality: 1 CFG). Out of scope (internal Java Card functional- ity: 1 CFG). Out of scope (internal Java Card functionality: 3 DTBS_Forgery, T.Sig_Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST. T.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to: 1 GLOBAL_ARRAYS_INTEG OT.DTBS_Integrity_TOE No contradiction to this ST. OT.NATIVE No correspondence Out of scope. No contra- diction to this ST. NXP eDoc Suite v4.0 on JCOP4.5 P71 – SSCD with Key Generation: 1 Mechanism). No contradiction to this ST. FIA_UAU.1[OSU] No correspondence Out of scope (Update Mechanism). No contradiction to this ST. FIA_UAU.4[OSU] No correspondence Out of scope: 1 Mechanism). No contradiction to this ST. FIA_UID.1[OSU] No correspondence Out of scope (Update Mechanism). No contradiction to this ST. FMT_MSA.1 [OSU] No correspondence Out of scope: 1 Mechanism). No contradiction to this ST. FMT_MSA.3[OSU] No correspondence Out of scope (Update Mechanism). No contradiction to this ST. FMT_SMF.1[OSU] No correspondence Out of scope: 1 Mechanism). No contradiction to this ST. FMT_SMR.1[OSU] No correspondence Out of scope (Update Mechanism). No contradiction to this ST. FPT_FLS.1[OSU] No correspondence Out of scope: 1 Modularity of plat- form). No contradiction to this ST. FMT_MSA.1[MDEL] No correspondence Out of scope (Modularity of plat- form: 1 Modularity of plat- form). No contradiction to this ST. FMT_MSA.3[MDEL] No correspondence Out of scope (Modularity of plat- form). No contradiction to this ST. FMT_SMF.1[MDEL] No correspondence Out of: 1 Modularity of plat- form). No contradiction to this ST. FMT_SMF.1[MDEL] No correspondence Out of scope (Modularity of plat- form: 1 Modularity of plat- form). No contradiction to this ST. FMT_SMR.1[MDEL] No correspondence Out of scope (Modularity of plat- form). No contradiction to this ST. FPT_FLS.1[MDEL] No correspondence Out of: 1 Modularity of plat- form). No contradiction to this ST. FPT_FLS.1[MDEL] No correspondence Out of scope (Modularity of plat- form: 1 Out of scope: 154 Out of scope (internal Java Card Fire- wall). The resulting requirements for NXP eDoc Suite v4.0 on JCOP4.5 P71: 1 Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. ADELG Security Functional: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[GlobalArray_Refined: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[TRANSIENT] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[FIREWALL] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_ATD.1[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[ADEL] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SecureBox] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SecureBox] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[ADEL] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ADEL] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[MODULAR-DESIGN] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_RCV.3[INSTALLER] No: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. Module Deletion Security: 1 Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v4.0 on JCOP4.5: 3 Out of scope. No contradiction to this ST. T.CONFIG No correspondence Out of scope. No contradiction to this ST. T.SEC_BOX_BORDER No correspondence Out of scope. No contradiction to: 1 Platform Objective Correspondence in this ST References/Remarks OT.SID No correspondence Out of scope. No contra- diction to this ST. OT.SID_MODULE No correspondence Out of scope. No contradiction to: 1 Requirements (chapter 7.2.10 in platform ST) FDP_ACC.2[MDEL] No correspondence Out of scope (Modularity of plat- form). No contradiction to this ST. FDP_ACF.1[MDEL] No correspondence Out of: 1 SID.2 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.2 No correspondence Out of scope. No contradiction to this: 1 ST. OT.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST. OT.CARD-MANAGEMENT No correspondence Out of scope. No contra- diction: 1 ST. OT.FIREWALL No correspondence Out of scope. No contra- diction to this ST. OT.GLOBAL_ARRAYS_CONFID OT.SCD_Secrecy No contradiction to this ST: 1 ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST. OT.IDENTIFICATION No correspondence Out of scope. No contradiction to: 1 ST. OT.SEC_BOX_FW No correspondence Out of scope. No contradiction to this ST. OT.CARD-CONFIGURATION No correspondence Out of scope. No: 1 ST. OT.TRANSACTION No correspondence Out of scope. No contra- diction to this ST. OT.OBJ-DELETION No correspondence Out of scope. No contra- diction: 1 ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST. T.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No: 1 ST. T.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST. T.SID.1 No correspondence Out of scope. No contradiction to this ST: 1 ST. T.MODULE_REPLACEMENT No correspondence Out of scope. No contradiction to this ST. T.CONFID-UPDATE-IMAGE.LOAD No correspondence Out of scope. No: 1 Security Functional Requirements (chapter 7.1.12 in platform ST) FAU_SAS.1[SCP] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_AFL.1[PIN] FIA_AFL.1: 1 Security Functional Requirements (chapter 7.2.11 in platform ST) FDP_IFC.2[OSU] No correspondence Out of scope (Update Mechanism). No contradiction to this ST. FDP_IFF.1[OSU] No correspondence Out of scope: 1 T.NATIVE No correspondence Out of scope. No contradiction to this ST. T.MODULE_EXEC No correspondence Out of scope. No contradiction to: 1 T.OBJ-DELETION No correspondence Out of scope. No contradiction to this ST. T.PHYSICAL T.Hack_Phys No contradiction to this ST. T.OS_OPERATE No: 1 T.SCD_Divulg, T.SCD_Derive No contradiction to this ST. T.CONFID-JCS-CODE No correspondence Out of scope. No contradiction to this ST. T.CONFID-JCS-DATA No correspondence Out of scope. No contradiction to: 1 Update Mechanism). No contradiction to this ST. FIA_UAU.1[OSU] No correspondence Out of scope (Update Mechanism: 1 Update Mechanism). No contradiction to this ST. FIA_UID.1[OSU] No correspondence Out of scope (Update Mechanism: 1 Update Mechanism). No contradiction to this ST. FMT_MSA.3[OSU] No correspondence Out of scope (Update Mechanism: 1 Update Mechanism). No contradiction to this ST. FMT_SMR.1[OSU] No correspondence Out of scope (Update Mechanism: 1 attribute initialisation (CFG). Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[CFG] No correspondence: 1 chapter 7.1.12 in platform ST) FAU_SAS.1[SCP] No correspondence Out of scope (internal Java Card func- tionality: 1 chapter 7.2.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall: 1 chapter 7.2.1.4 in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality: 1 chapter 7.2.10 in platform ST) FDP_ACC.2[MDEL] No correspondence Out of scope (Modularity of plat- form: 1 chapter 7.2.11 in platform ST) FDP_IFC.2[OSU] No correspondence Out of scope (Update Mechanism: 1 chapter 7.2.8 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality: 1 chapter 7.2.8 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SecureBox] No: 1 chapter 7.2.9 in platform ST) FDP_IFC.1[MODULAR-DESIGN] No correspondence Out of scope (internal Java Card func- tionality: 1 chapter 7.2.9 in platform ST) FDP_IFC.1[MODULAR-DESIGN] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[MODULAR-DESIGN] No: 1 complement Java Card OS mechanisms. No contradiction to this ST. FPT_TDC.1 No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. AID Management (chapter 7.2.1.4: 1 correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[bArray] No: 1 in the User Guidance of the TOE. No contradiction to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User: 1 in this ST References/Remarks No contradiction to this ST. FDP_RIP.1[MDEL] No correspondence Out of scope (Modularity of plat- form). No contradiction to this ST. FMT_MSA.1[MDEL] No correspondence Out of: 1 in this ST References/Remarks No contradiction to this ST. OT.COMM_AUTH No correspondence Out of scope. No contradiction to this ST. OT.COMM_INTEGRITY No correspondence Out of scope. No contradiction to: 1 in this ST References/Remarks No contradiction to this ST. OT.TOE_IDENTIFICATION No correspondence Out of scope. No contradiction to this ST. Table 5: Assessment of the platform objectives. 2.2.4 Assessment of: 1 internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out of scope (internal Java Card Fire- wall: 1 internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No: 1 internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of scope (internal Java Card Fire- wall: 1 internal Java Card Fire- wall). No contradiction to this ST. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. Application Programming Interface: 1 internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_ACC.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_ITC.2[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No correspondence. Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.4[SC] No correspondence: 1 internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.4[SC] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.1[JCRE] No: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v4.0 on JCOP4.5: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence: 1 internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence Out of scope (internal Java Card func- tionality: 1 internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v4.0 on JCOP4.5: 1 internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine: 1 internal Java Virtual Machine). No contradiction to this ST. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out: 1 manager (ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[ADEL] No: 1 of 84 Platform Objective Correspondence in this ST References/Remarks OT.OPERATE No correspondence Out of scope. No contra- diction to this ST. OT.REALLOCATION No correspondence Out of scope. No contra- diction: 1 of identification (CFG). Out of scope (internal Java Card functional- ity). No contradiction to this ST. SecBox Security Functional: 1 of management Func- tions (CFG). Out of scope (internal Java Card functionality). No contradiction to this ST. FIA_UID.1[CFG] No correspondence: 1 of security attributes (CFG). Out of scope (internal Java Card functionality). No contradiction to this ST. FMT_MSA.3[CFG] No correspondence: 1 of the TOE. No contradiction to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User: 1 of the TOE. No contradiction to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out: 1 of the TOE. No contradiction to this ST. FMT_MSA.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of: 1 out of scope: 1 platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.2[AID] No correspondence: 1 platform ST) Firewall Policy (chapter 7.2.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User: 1 random number generator. No contradiction to this ST. FDP_RIP.1[ABORT] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No: 1 requirement in this ST is equiva- lent to parts of the platform ST. FCS_CKM.2 No correspondence. Out of scope. No contradiction to this ST. FCS_CKM.3 No correspondence. Out of scope. No contradiction to this: 1 roles (CFG). Out of scope (in- ternal Java Card functionality). No contradiction to this ST. FMT_SMF.1[CFG] No correspondence: 1 security attributes (CFG). Out of scope (internal Java Card function- ality). No contradiction to this ST. FMT_MSA.1[CFG] No correspondence: 1 that owns the deleted objects by invoking a specific API method. FDP_RIP.1[ODEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ODEL] FPT_FLS.1 The: 1 the platform leads to secrecy of SCD. No contra- diction to this ST. OT.PIN-MNGT No correspondence Out of scope. No contra- diction to this ST. OT.BIO-MNGT No correspondence Out of scope. No contra- diction to: 1 this ST. OT.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST. OT.DOMAIN-RIGHTS No correspondence Out of scope. NXP eDoc Suite v4.0: 1 this ST. OT.RESOURCES No correspondence Out of scope. No contra- diction to this ST. OT.SENSITIVE_RESULTS_INTEG No correspondence Indirectly relevant: 1 this ST. OT.SCP.IC No correspondence Out of scope. No contradiction to this ST. OT.SCP.RECOVERY No correspondence Out of scope. No contradiction to: 1 to this ST. OT.CONFID-UPDATE-IMAGE.LOAD No correspondence Out of scope. No contradiction to this ST. OT.AUTH-LOAD-UPDATE-IMAGE No correspondence Out of scope. No: 1 to this ST. OT.SECURE_LOAD_ACODE No correspondence Out of scope. No contradiction to this ST. OT.SECURE_ACTIVATION_ADDITIONAL_CODE No correspondence Out of scope: 1 to this ST. T.COM_EXPLOIT No correspondence Out of scope. No contradiction to this ST. T.LIFE_CYCLE No correspondence Out of scope. No contradiction to this: 1 to this ST. T.INTEG-UPDATE-IMAGE.LOAD No correspondence Out of scope. No contradiction to this ST. T.UNAUTH-UPDATE-IMAGE.LOAD No correspondence Out of scope. No: 1 to this ST. T.INTERRUPT_OSU No correspondence Out of scope. No contradiction to this ST. Table 6: Threats of the platform ST. 2.2.5 Assessment of Platform: 1 verified, or that has been modified after bytecode verification. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence: 1 which addresses security aspects outside the runtime. FMT_SMR.1[INSTALLER] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[INSTALLER] No: 1
pdf_data/st_metadata	/Author: Radical /CreationDate: D:20220510093219+02'00' /Creator: Microsoft® Word 2016 /ModDate: D:20220510093219+02'00' /Producer: Microsoft® Word 2016 /Title: System/Subsystem Specification pdf_file_size_bytes: 3028038 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 78	/Author: bdrisch /CreationDate: D:20230830104320+02'00' /Creator: Microsoft® Word für Microsoft 365 /Keywords: SSCD, ePasslet Suite, electronic Signature /MSIP_Label_e463cba9-5f6c-478d-9329-7b2295e4e8ed_ActionId: 71f5ac0b-3117-4bc8-b525-daf0fa4f949f /MSIP_Label_e463cba9-5f6c-478d-9329-7b2295e4e8ed_ContentBits: 0 /MSIP_Label_e463cba9-5f6c-478d-9329-7b2295e4e8ed_Enabled: true /MSIP_Label_e463cba9-5f6c-478d-9329-7b2295e4e8ed_Method: Standard /MSIP_Label_e463cba9-5f6c-478d-9329-7b2295e4e8ed_Name: All Employees_2 /MSIP_Label_e463cba9-5f6c-478d-9329-7b2295e4e8ed_SetDate: 2023-08-08T11:35:26Z /MSIP_Label_e463cba9-5f6c-478d-9329-7b2295e4e8ed_SiteId: 33440fc6-b7c7-412c-bb73-0e70b0198d5a /ModDate: D:20230830104320+02'00' /Producer: Microsoft® Word für Microsoft 365 /Title: Security Target ePasslet/ePKI-SSCD pdf_file_size_bytes: 1570952 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 84
state/cert/convert_garbage	False	False
state/cert/convert_ok	True	True
state/cert/download_ok	True	True
state/cert/extract_ok	True	True
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	True
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	True
state/st/download_ok	True	True
state/st/extract_ok	True	True
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different