| name |
MultiApp V5.1 JCSConfiguration 1 : 5.1 revision B version 2 (0x3055) et filter set 0x00,configuration 2 : 5.1 revision C version 2 (0x3055) et filter set 0x10,configuration 3 : 5.1 revision B version 2 (0x3055) et filter set 0x14,configuration 4 : 5.1 revision C version 2 (0x3055) et filter set 0x24(ANSSI-CC-2025/55) |
secunet konnektor 2.0.0 und 2.0.1, Version 5.50.1:2.0.0 und 5.50.1:2.0.1 |
| category |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
Other Devices and Systems |
| scheme |
FR |
DE |
| status |
active |
active |
| not_valid_after |
04.02.2031 |
18.10.2028 |
| not_valid_before |
04.02.2026 |
19.10.2023 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-55-certificat.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1044V7c_pdf.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-55-rapport.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1044V7a_pdf.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-55-cible.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1044V7b_pdf.pdf |
| manufacturer |
THALES DIS FRANCE SA |
Secunet Security Networks AG |
| manufacturer_web |
https://www.thalesgroup.com/en/europe/france |
https://www.secunet.com/en/ |
| security_level |
ALC_FLR.2, EAL6+ |
ADV_IMP.1, ADV_TDS.3, ADV_FSP.4, AVA_VAN.5, ALC_TAT.1, ALC_FLR.2, EAL3+ |
| dgst |
2317867e9472732a |
298babdc373a838c |
| heuristics/cert_id |
ANSSI-CC-2025/55 |
BSI-DSZ-CC-1044-V7-2023 |
| heuristics/cert_lab |
[] |
BSI |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ALC_CMS.5, ADV_INT.3, ADV_IMP.2, ASE_ECD.1, ATE_FUN.2, AVA_VAN.5, ATE_IND.2, AGD_PRE.1, ASE_OBJ.2, ADV_TDS.5, ALC_DVS.2, AGD_OPE.1, ASE_TSS.2, ATE_COV.3, ALC_CMC.5, ADV_SPM.1, ATE_DPT.3, ASE_REQ.2, ALC_TAT.3, ADV_ARC.1, ALC_DEL.1, ALC_FLR.2, ASE_INT.1, ASE_CCL.1, ALC_LCD.1, ADV_FSP.5, ASE_SPD.1 |
ADV_ARC.1, ALC_CMS.4, ADV_IMP.1, ADV_FSP.4, ATE_DPT.1, AGD_PRE.1, AVA_VAN.5, ALC_FLR.2, ALC_DEL.1, ADV_TDS.3, ALC_TAT.1, AGD_OPE.1 |
| heuristics/extracted_versions |
5.1 |
2.0.0, 5.50.1, 2.0.1 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
ANSSI-CC-2026/02, ANSSI-CC-2025/58 |
BSI-DSZ-CC-1044-V8-2025 |
| heuristics/report_references/directly_referencing |
ANSSI-CC-2023/01-R01 |
{} |
| heuristics/report_references/indirectly_referenced_by |
ANSSI-CC-2026/02, ANSSI-CC-2025/58 |
BSI-DSZ-CC-1044-V8-2025 |
| heuristics/report_references/indirectly_referencing |
ANSSI-CC-2023/01-R01 |
{} |
| heuristics/scheme_data |
|
- category: eHealth
- cert_id: BSI-DSZ-CC-1128-V6-2023
- certification_date: 19.10.2023
- enhanced:
- applicant: secunet Security Networks AG Kurfürstenstraße 58 45138 Essen
- assurance_level: EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4
- cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile&v=1
- certification_date: 19.10.2023
- description: The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards.
- entries: [frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)', 'description': 'Hardware'}), frozendict({'id': 'BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)', 'description': 'Hardware'}), frozendict({'id': 'BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)', 'description': 'Server'}), frozendict({'id': 'BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)', 'description': 'Certificate'}), frozendict({'id': 'BSI-DSZ-CC-1128-V2-2020 (06.11.2020) Zertifizierungsreport / Certification Report', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)', 'description': '-instances of the net-connector which are installed on two separate circuit boards.'}), frozendict({'id': 'BSI-DSZ-CC-1128-2019 (20.12.2019) Zertifizierungsreport / Certification Report', 'description': 'Certificate'})]
- evaluation_facility: SRC Security Research & Consulting GmbH
- expiration_date: 18.10.2028
- product: secunet konnektor 2.1.0, Version 5.50.1:2.1.0
- protection_profile: Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021
- report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile&v=1
- target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile&v=1
- product: secunet konnektor 2.1.0, Version 5.50.1:2.1.0
- subcategory: Software
- url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html
- vendor: secunet Security Networks AG
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
ANSSI-CC-2023/01-R01 |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
ANSSI-CC-2023/01-R01 |
{} |
| heuristics/protection_profiles |
7f886b64878b68c1 |
19e2d2b1593c97a5 |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0099V2b_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0097V2b_pdf.pdf |
| pdf_data/cert_filename |
ANSSI-CC-2025-55-certificat.pdf |
1044V7c_pdf.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1044-V7-2023: 1
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
- EAL:
- EAL 2: 1
- EAL 3: 1
- EAL 4: 1
- EAL 5: 1
|
| pdf_data/cert_keywords/cc_sar |
|
- ADV:
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
- ALC:
- ALC_FLR: 1
- ALC_FLR.2: 1
- ALC_TAT.1: 1
- AVA:
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
ANSSI-CC-2025-55-rapport.pdf |
1044V7a_pdf.pdf |
| pdf_data/report_frontpage |
|
- FR:
- DE:
- cert_id: BSI-DSZ-CC-1044-V7-2023
- cert_item: secunet konnektor 2.0.0 und 2.0.1, Version 5.50.1:2.0.0 und 5.50.1:2.0.1
- cert_lab: BSI
- developer: secunet Security Networks AG
- match_rules: ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)']
|
| pdf_data/report_keywords/cc_cert_id |
- FR:
- ANSSI-CC-2023/01-R01: 2
- ANSSI-CC-2025/55: 3
|
- DE:
- BSI-DSZ-CC-1044-V6-2022-MA-01: 2
- BSI-DSZ-CC-1044-V7-2023: 18
|
| pdf_data/report_keywords/cc_protection_profile_id |
- BSI:
- BSI-CC-PP-0099-V2-2020: 2
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 2: 3
- EAL 3: 4
- EAL 4: 4
- EAL 5: 1
- EAL 5+: 1
- EAL 6: 1
|
| pdf_data/report_keywords/cc_sar |
|
- ADV:
- ADV_FSP.4: 4
- ADV_IMP.1: 4
- ADV_TDS.3: 4
- ALC:
- ALC_CMS: 1
- ALC_CMS.4: 1
- ALC_FLR: 3
- ALC_FLR.2: 4
- ALC_TAT.1: 4
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
- FCS:
- FCS_CKM: 6
- FCS_CKM.1: 1
- FCS_COP: 14
- FDP:
- FPT:
- FTP:
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
- SRC:
- SRC Security Research & Consulting: 2
|
| pdf_data/report_keywords/symmetric_crypto |
|
- AES_competition:
- constructions:
- MAC:
- HMAC: 12
- HMAC-SHA-256: 1
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
- IKE:
- IPsec:
- TLS:
- TLS:
- TLS: 34
- TLS v1.2: 7
- TLSv1.2: 1
- VPN:
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
- BSI:
- BSI 7148: 1
- BSI TR-02102: 1
- BSI TR-03116-1: 1
- BSI TR-03154: 1
- BSI TR-03155: 1
- BSI TR-03157: 2
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
|
- BSI:
- AIS 20: 2
- AIS 32: 1
- AIS 34: 2
- FIPS:
- FIPS 180-4: 10
- FIPS 197: 4
- FIPS PUB 180-4: 1
- FIPS180-4: 5
- FIPS186-4: 2
- FIPS197: 1
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18045: 4
- PKCS:
- RFC:
- RFC 2104: 1
- RFC 3268: 1
- RFC 7027: 1
- RFC-2104: 3
- RFC-2404: 1
- RFC-3268: 3
- RFC-3526: 1
- RFC-3602: 2
- RFC-4106: 1
- RFC-4301: 3
- RFC-4303: 3
- RFC-4492: 2
- RFC-4868: 1
- RFC-4880: 1
- RFC-5116: 1
- RFC-5246: 4
- RFC-5289: 1
- RFC-5639: 6
- RFC-6931: 1
- RFC-6954: 1
- RFC-7296: 3
- RFC-8017: 5
- RFC-8247: 1
- RFC2104: 1
- RFC2404: 1
- RFC3268: 1
- RFC3526: 2
- RFC3602: 1
- RFC4055: 1
- RFC4106: 1
- RFC4301: 1
- RFC4303: 1
- RFC4346: 1
- RFC4868: 1
- RFC4880: 1
- RFC5246: 1
- RFC5280: 1
- RFC5289: 1
- RFC5639: 2
- RFC5996: 1
- RFC7027: 1
- RFC7292: 1
- RFC7296: 3
- RFC8017: 3
- RFC8247: 1
- X509:
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
|
- /Author: Bundesamt für Sicherheit in der Informtionstechnik
- /Keywords: "Common Criteria, Certification, Zertifizierung, Konnektor"
- /Subject: Common Criteria, Certification, Zertifizierung, Konnektor
- /Title: Zertifizierungsreport BSI-DSZ-CC-1044-V7-2023
- pdf_file_size_bytes: 620033
- pdf_hyperlinks: https://www.commoncriteriaportal.org/, https://www.bsi.bund.de/, https://www.bsi.bund.de/AIS, https://www.iana.org/assignments/ikev2-parameters/ikev2-parameters.xhtml#ikev2-parameters-6, https://www.commoncriteriaportal.org/cc/, https://www.bsi.bund.de/zertifizierung, https://www.sogis.eu/, https://www.bsi.bund.de/zertifizierungsreporte
- pdf_is_encrypted: False
- pdf_number_of_pages: 35
|
| pdf_data/st_filename |
ANSSI-CC-2025-55-cible.pdf |
1044V7b_pdf.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1044-V7-2023: 1
|
| pdf_data/st_keywords/cc_protection_profile_id |
- BSI:
- BSI-CC-PP-0068-V2-2011-MA-01: 1
- BSI-CC-PP-0084-2014: 1
- BSI-CC-PP-0099-V2-2020: 1
- BSI-PP-0055-2009: 1
- BSI-PP-0056-V2-MA-2012: 1
|
- BSI:
- BSI-CC-PP-0097: 4
- BSI-CC-PP-0097“: 2
- BSI-CC-PP-0098: 6
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL 6+: 1
- EAL6: 34
- EAL6 augmented: 1
- EAL6+: 3
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC: 1
- ADV_ARC.1: 10
- ADV_FSP.1: 1
- ADV_FSP.2: 2
- ADV_FSP.4: 2
- ADV_FSP.5: 8
- ADV_IMP.1: 5
- ADV_IMP.2: 4
- ADV_INT.2: 2
- ADV_INT.3: 2
- ADV_SPM.1: 9
- ADV_TDS.1: 2
- ADV_TDS.3: 3
- ADV_TDS.4: 2
- ADV_TDS.5: 6
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 9
- AGD_PRE: 2
- AGD_PRE.1: 7
- ALC:
- ALC_CMC.4: 2
- ALC_CMC.5: 4
- ALC_CMS.5: 3
- ALC_DEL.1: 4
- ALC_DVS.2: 6
- ALC_FLR.2: 7
- ALC_LCD.1: 6
- ALC_TAT.1: 2
- ALC_TAT.2: 2
- ALC_TAT.3: 4
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ASE_TSS.2: 1
- ATE:
- ATE_COV.1: 2
- ATE_COV.2: 3
- ATE_COV.3: 2
- ATE_DPT.1: 1
- ATE_DPT.3: 4
- ATE_FUN.1: 6
- ATE_FUN.2: 4
- ATE_IND.2: 5
- AVA:
|
- ADV:
- ADV_ARC: 2
- ADV_ARC.1: 1
- ADV_FSP.4: 7
- ADV_IMP.1: 9
- ADV_TDS.1: 1
- ADV_TDS.2: 2
- ADV_TDS.3: 7
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 13
- AGD_PRE.1: 1
- ALC:
- ALC_DEL.1: 5
- ALC_FLR.2: 6
- ALC_TAT.1: 8
- ATE:
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_ARP.1: 16
- FAU_ARP.1.1: 1
- FAU_SAA.1: 2
- FAU_SAS.1: 2
- FCO:
- FCS:
- FCS_CKM: 53
- FCS_CKM.1: 30
- FCS_CKM.1.1: 3
- FCS_CKM.2: 11
- FCS_CKM.2.1: 1
- FCS_CKM.3: 6
- FCS_CKM.3.1: 1
- FCS_CKM.4: 30
- FCS_CKM.4.1: 2
- FCS_CMK.4: 1
- FCS_COP: 57
- FCS_COP.1: 25
- FCS_COP.1.1: 5
- FCS_RNG: 21
- FCS_RNG.1: 12
- FCS_RNG.1.1: 3
- FCS_RNG.1.2: 3
- FDP:
- FDP_ACC: 52
- FDP_ACC.1: 19
- FDP_ACC.2: 6
- FDP_ACF: 47
- FDP_ACF.1: 24
- FDP_IFC: 27
- FDP_IFC.1: 14
- FDP_IFC.2: 2
- FDP_IFF: 17
- FDP_IFF.1: 14
- FDP_ITC: 14
- FDP_ITC.1: 15
- FDP_ITC.2: 20
- FDP_ITT.1: 2
- FDP_RIP: 107
- FDP_RIP.1: 11
- FDP_RIP.1.1: 1
- FDP_ROL: 14
- FDP_ROL.1: 5
- FDP_SDC.1: 2
- FDP_SDI: 9
- FDP_SDI.2: 4
- FDP_UCT.1: 2
- FDP_UIT: 7
- FDP_UIT.1: 4
- FIA:
- FIA_AFL: 27
- FIA_AFL.1.1: 2
- FIA_AFL.1.2: 2
- FIA_API.1: 2
- FIA_ATD: 14
- FIA_ATD.1: 3
- FIA_UAU: 75
- FIA_UAU.1: 6
- FIA_UAU.1.1: 2
- FIA_UAU.1.2: 2
- FIA_UAU.4: 1
- FIA_UAU.4.1: 1
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
- FIA_UAU.6.1: 1
- FIA_UID: 44
- FIA_UID.1: 19
- FIA_UID.1.1: 2
- FIA_UID.1.2: 2
- FIA_UID.2: 1
- FIA_USB: 7
- FIA_USB.1: 3
- FMT:
- FMT_LIM: 42
- FMT_LIM.1: 18
- FMT_LIM.1.1: 2
- FMT_LIM.2: 17
- FMT_LIM.2.1: 2
- FMT_MSA: 114
- FMT_MSA.1: 15
- FMT_MSA.2: 2
- FMT_MSA.3: 22
- FMT_MTD: 69
- FMT_MTD.1: 13
- FMT_MTD.3: 1
- FMT_SMF: 83
- FMT_SMF.1: 29
- FMT_SMF.1.1: 2
- FMT_SMR: 94
- FMT_SMR.1: 35
- FMT_SMR.1.1: 2
- FMT_SMR.1.2: 2
- FPR:
- FPR_UNO: 6
- FPR_UNO.1: 9
- FPR_UNO.1.1: 1
- FPT:
- FPT_EMS: 4
- FPT_EMS.1: 16
- FPT_EMS.1.1: 3
- FPT_EMS.1.2: 3
- FPT_FLS: 54
- FPT_FLS.1: 18
- FPT_FLS.1.1: 2
- FPT_ITT: 7
- FPT_ITT.1: 2
- FPT_PHP: 8
- FPT_PHP.3: 19
- FPT_PHP.3.1: 1
- FPT_RCV: 15
- FPT_RCV.3: 4
- FPT_RCV.4: 1
- FPT_TDC.1: 8
- FPT_TDC.1.1: 1
- FPT_TDC.1.2: 1
- FPT_TST: 9
- FPT_TST.1: 16
- FPT_TST.1.1: 1
- FPT_TST.1.2: 1
- FPT_TST.1.3: 1
- FRU:
- FTP:
- FTP_ITC: 20
- FTP_ITC.1: 7
- FTP_ITC.1.1: 1
- FTP_ITC.1.2: 1
- FTP_ITC.1.3: 1
- FTP_TRP: 6
- FTP_TRP.1: 7
|
- FAU:
- FAU_GEN: 16
- FAU_GEN.1: 5
- FAU_GEN.2: 1
- FAU_STG: 2
- FCS:
- FCS_CKM: 87
- FCS_CKM.1: 14
- FCS_CKM.2: 6
- FCS_CKM.4: 13
- FCS_COP: 77
- FCS_COP.1: 12
- FDP:
- FDP_ACC: 11
- FDP_ACC.1: 7
- FDP_ACF: 5
- FDP_ACF.1: 5
- FDP_ETC: 8
- FDP_ETC.2: 4
- FDP_IFC: 18
- FDP_IFC.1: 7
- FDP_IFF: 20
- FDP_IFF.1: 20
- FDP_ITC: 17
- FDP_ITC.1: 15
- FDP_ITC.2: 17
- FDP_RIP: 6
- FDP_RIP.1: 1
- FDP_UIT: 6
- FDP_UIT.1: 2
- FIA:
- FIA_UAU: 11
- FIA_UAU.1: 2
- FIA_UID: 9
- FIA_UID.1: 5
- FMT:
- FMT_MOF: 12
- FMT_MOF.1: 1
- FMT_MSA: 40
- FMT_MSA.1: 2
- FMT_MSA.3: 7
- FMT_MTD: 7
- FMT_MTD.1: 2
- FMT_SMF: 19
- FMT_SMF.1: 4
- FMT_SMR.1: 28
- FMT_SMR.1.1: 1
- FPT:
- FPT_EMS: 16
- FPT_EMS.1: 7
- FPT_EMS.1.1: 2
- FPT_EMS.1.2: 2
- FPT_STM: 11
- FPT_STM.1: 2
- FPT_TDC: 22
- FPT_TDC.1: 6
- FPT_TST: 7
- FPT_TST.1: 3
- FTP:
- FTP_ITC: 41
- FTP_ITC.1: 21
- FTP_TRP: 13
- FTP_TRP.1: 6
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.CAP_FILE: 4
- A.DELETION: 4
- A.OS-UPDATE-EVIDENCE: 3
- A.SECURE_ACODE_MANAGEMENT: 3
- A.VERIFICATION: 3
- D:
- D.API_DATA: 3
- D.APP_CODE: 6
- D.APP_C_DATA: 3
- D.APP_I_DATA: 5
- D.APP_KEYS: 1
- D.CRYPTO: 5
- D.JCS_CODE: 6
- D.JCS_DATA: 8
- D.OS-: 1
- D.OS-UPDATE-CODE-ID: 3
- D.OS-UPDATE_ADDITIONALCODE: 5
- D.OS-UPDATE_DEC-KEY: 2
- D.OS-UPDATE_SGNVER-KEY: 2
- D.PIN: 4
- D.SEC_DATA: 7
- O:
- O.ALARM: 15
- O.APPLET: 28
- O.ARRAY_VIEWS_CONFID: 7
- O.ARRAY_VIEWS_INTEG: 3
- O.CARD-MANAGEMENT: 21
- O.CIPHER: 11
- O.CODE_CAP_FILE: 23
- O.CONFID-OS-UPDATE: 4
- O.DELETION: 4
- O.FIREWALL: 12
- O.GLOBAL_ARRAYS_CONFID: 9
- O.GLOBAL_ARRAYS_INTEG: 5
- O.INSTALL: 7
- O.JAVAOBJECT: 68
- O.KEY-MNGT: 6
- O.LOAD: 11
- O.NATIVE: 12
- O.OBJ-DELETION: 4
- O.OBJ_DELETION: 4
- O.OPERATE: 15
- O.PIN-MNGT: 6
- O.PIN_MNGT: 4
- O.REALLOCATION: 5
- O.RESOURCES: 9
- O.RND: 1
- O.RNG: 11
- O.SCP: 39
- O.SECURE_AC_ACTIVATION: 5
- O.SECURE_LOAD_ACODE: 9
- O.SID: 13
- O.TOE_IDENTIFICATION: 7
- O.TRANSACTION: 6
- OE:
- OE.CAP_FILE: 5
- OE.CARD-MANAGEMENT: 1
- OE.CODE-EVIDENCE: 11
- OE.NATIVE: 1
- OE.OS-UPDATE-ENCRYPTION: 6
- OE.OS-UPDATE-EVIDENCE: 3
- OE.SCP: 6
- OE.SECURE_ACODE_MANAGEMENT: 3
- OE.VERIFICATION: 25
- OP:
- OP.ARRAY_AASTORE: 3
- OP.ARRAY_ACCESS: 7
- OP.ARRAY_LENGTH: 3
- OP.ARRAY_T_ALOAD: 3
- OP.ARRAY_T_ASTORE: 3
- OP.CREATE: 11
- OP.DELETE_APPLET: 6
- OP.DELETE_CAP_FILE: 4
- OP.DELETE_CAP_FILE_APPLET: 4
- OP.INSTANCE_FIELD: 6
- OP.INVK_INTERFACE: 10
- OP.INVK_VIRTUAL: 8
- OP.JAVA: 8
- OP.PUT: 8
- OP.PUTFIELD: 1
- OP.PUTSTATIC: 1
- OP.THROW: 7
- OP.TYPE_ACCESS: 7
- OSP:
- OSP.ADDITIONAL_CODE_ENCRYPTION: 3
- OSP.ADDITIONAL_CODE_SIGNING: 3
- OSP.ATOMIC_ACTIVATION: 3
- OSP.RNG: 3
- OSP.TOE_IDENTIFICATION: 3
- OSP.VERIFICATION: 3
- OT:
- R:
- T:
- T.CONFID-APPLI-DATA: 3
- T.CONFID-JCS-CODE: 3
- T.CONFID-JCS-DATA: 3
- T.CONFID-OS-UPDATE_LOAD: 3
- T.DELETION: 3
- T.EXE-CODE: 6
- T.FAKE-SGNVER-KEY: 3
- T.INSTALL: 3
- T.INTEG-APPLI-CODE: 6
- T.INTEG-APPLI-DATA: 6
- T.INTEG-JCS-CODE: 3
- T.INTEG-JCS-DATA: 3
- T.INTEG-OS-UPDATE_LOAD: 3
- T.NATIVE: 3
- T.OBJ-DELETION: 3
- T.PHYSICAL: 3
- T.RESOURCES: 3
- T.SID: 6
- T.UNAUTHORIZED_TOE_CODE_UPDATE: 3
- T.WRONG-UPDATE-STATE: 3
|
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- DES:
- 3DES:
- 3DES: 2
- TDEA: 1
- TDES: 12
- Triple-DES: 3
- DES:
- constructions:
|
- AES_competition:
- AES:
- AES: 24
- AES-128: 3
- AES-256: 2
- HPC:
- constructions:
- MAC:
- HMAC: 33
- HMAC-SHA-256: 1
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-224: 1
- SHA-256: 2
- SHA-384: 1
- SHA-512: 2
- SHA2: 1
- SHA224: 1
- SHA3:
- SHA3: 2
- SHA3-384: 1
- SHA3-512: 1
|
- SHA:
- SHA1:
- SHA2:
- SHA-2: 2
- SHA-256: 6
- SHA256: 1
|
| pdf_data/st_keywords/crypto_scheme |
- KA:
- Key Agreement: 6
- Key agreement: 2
- MAC:
|
|
| pdf_data/st_keywords/crypto_protocol |
|
- IKE:
- IPsec:
- TLS:
- SSL:
- TLS:
- TLS: 148
- TLS 1.2: 2
- TLS 1.3: 2
- VPN:
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
- Brainpool:
- brainpoolP256r1: 4
- brainpoolP384r1: 1
- NIST:
- NIST P-256: 3
- P-256: 5
- P-384: 2
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
- TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 3
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 3
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 2
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 3
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 3
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 3
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 2
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384131: 1
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
- FI:
- Malfunction: 6
- Physical Tampering: 3
- fault induction: 2
- malfunction: 9
- physical tampering: 1
- SCA:
- DPA: 2
- Leak-Inherent: 3
- SPA: 1
- physical probing: 7
- timing attacks: 1
|
|
| pdf_data/st_keywords/technical_report_id |
|
- BSI:
- BSI TR-03111: 2
- BSI TR-03116-1: 3
- BSI TR-03144: 1
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
- EF:
- EF.DG1: 4
- EF.DG16: 4
- EF.DG3: 1
- EF.DG4: 1
|
|
| pdf_data/st_keywords/standard_id |
- BSI:
- AIS20: 1
- AIS31: 6
- BSI-AIS31: 1
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- FIPS:
- FIPS 197: 1
- FIPS180-4: 2
- FIPS197: 5
- FIPS202: 2
- ICAO:
- NIST:
- PKCS:
- SCP:
- SCP01: 4
- SCP02: 4
- SCP03: 5
|
- CC:
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
- FIPS:
- FIPS 180-4: 1
- FIPS 197: 2
- FIPS PUB 180-4: 5
- FIPS PUB 186-4: 2
- PKCS:
- PKCS #12: 1
- PKCS#1: 2
- PKCS#12: 2
- RFC:
- RFC 1323: 1
- RFC 2104: 2
- RFC 2131: 2
- RFC 2132: 2
- RFC 2401: 1
- RFC 2402: 1
- RFC 2404: 2
- RFC 2406: 2
- RFC 2460: 1
- RFC 2560: 1
- RFC 2663: 1
- RFC 3268: 1
- RFC 3526: 1
- RFC 3602: 3
- RFC 4055: 2
- RFC 4106: 2
- RFC 4301: 5
- RFC 4302: 2
- RFC 4303: 6
- RFC 4330: 1
- RFC 4868: 2
- RFC 5246: 4
- RFC 5280: 1
- RFC 5289: 2
- RFC 5639: 3
- RFC 5905: 1
- RFC 7027: 1
- RFC 7296: 7
- RFC 791: 1
- RFC 793: 1
- RFC 8017: 3
- RFC 8422: 2
- RFC 8446: 1
- RFC 958: 1
- RFC-5639: 1
- RFC-7027: 1
- RFC7296: 1
- X509:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
- com:
- com.gemalto.belpic: 1
- com.gemalto.javacard.eid: 1
- com.gemalto.javacard.fido.ctap: 1
- com.gemalto.javacard.iasclassic: 1
- com.gemalto.javacard.mspnp: 1
- com.gemalto.javacardx.gdp: 1
- com.gemalto.moc.client: 1
- com.gemalto.moc.server: 1
- com.gemalto.mpcos: 1
- com.gemalto.puredi: 1
- com.gemalto.tacho: 1
- java:
- javacard:
- javacard.eid: 1
- javacard.fido.ctap: 1
- javacard.framework: 3
- javacard.iasclassic: 1
- javacard.mspnp: 1
- javacardx:
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- • The DELETE and INSTALL APDU commands are out of scope of this SPM: 1
- 1 : MultiApp v5.1 Rev. B with biometry features but forbidden to use without patch (biometry is out of scope of the TOE) 2. Config 2 : MultiApp v5.1 Rev. C with biometry features but forbidden to use without: 1
- 1, are out of the scope of the SPM as they are linked to the applet loading or deletion that is out of scope of the SPM boundaries limited to VM opcodes The SFR FMT_MTD.3/JCRE is out of scope of the SPM: 1
- Context, the Selected Applet Context, and the Active Applets Note: the Selected Applet context is out of scope of the VM functionalities. It is a process that occurs prior to VM start The initial setting of: 1
- a timeout policy that prevent them from being blocked should a card fails to answer. That point is out of scope of this Security Target, though. Finally, the objectives O.SCP.RECOVERY and O.SCP.SUPPORT are: 1
- and deletion; see #.DELETION and #.INSTALL). • The DELETE and INSTALL APDU commands are out of scope of this SPM. The list of registred applets’ AIDs is proven to be not modified during the execution: 1
- as a null reference. Such a mechanism is implementation-dependent. The deletion of applets is out of scope of this SPM scope. In the case of an array type, fields are components of the array ([JVM], §2.14: 1
- because AID registry is created during loading phase, which is also out of scope of the SPM (Hypothesis 2 of the SPM document [MAV51_SPM]). MultiApp V5.1: JCS Security Target ST: 1
- biometry is out of scope of the TOE: 2
- biometry is out of scope of the TOE) 3. Config 3 : MultiApp v5.1 Rev. B with biometry features included in the TOE (Upgraded: 1
- filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE: 1
- for 2 others configurations (filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE. If another patch is required in the future, it would require at least a maintenance of: 1
- in §1.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE: 1
- in §1.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE. 2.4 TOE DESCRIPTION 2.4.1 Architecture The MultiApp V5.1 platform is an operating: 1
- is also out of scope (Hypothesis 4 of the SPM document [MAV51_SPM]).. 3) S.CAP_FILE performing OP.ARRAY_AASTORE of the: 1
- out of scope: 13
- the active context is not the same as the Selected Applet Context. Application note: This rule is out of scope of the SPM modelisation because CLEAR_ON_DESELECT objects can be created exclusively in the API: 1
|
|
| pdf_data/st_metadata |
- /CreationDate: D:20251211164905+01'00'
- /Creator: Microsoft® Word for Microsoft 365
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_ActionId: f58ac3a4-cc4c-4041-89a2-6ca192dcfb3a
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_ContentBits: 3
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Enabled: true
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Method: Privileged
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Name: DIS Limited Distribution Scope
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_SetDate: 2025-09-18T16:02:23Z
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_SiteId: 6e603289-5e46-4e26-ac7c-03a85420a9a5
- /ModDate: D:20251211164905+01'00'
- /Producer: Microsoft® Word for Microsoft 365
- pdf_file_size_bytes: 4460503
- pdf_hyperlinks: https://www.ssi.gouv.fr/uploads/2021/03/anssi-guide-mecanismes_crypto-2.04.pdf
- pdf_is_encrypted: False
- pdf_number_of_pages: 156
|
- /Author: Röhnelt, Andreas
- pdf_file_size_bytes: 1615315
- pdf_hyperlinks: http://tools.ietf.org/html/rfc4302, http://tools.ietf.org/html/rfc2401, http://tools.ietf.org/html/rfc2663, http://tools.ietf.org/html/rfc2460, http://tools.ietf.org/html/rfc1323, http://www.ietf.org/rfc/rfc2406.txt, http://www.eecis.udel.edu/~mills/ntp/html/release.html, http://tools.ietf.org/html/rfc793, http://tools.ietf.org/html/, http://www.ietf.org/rfc/rfc5905.txt, http://www.rfc-editor.org/rfc/rfc4055.txt, http://www.ietf.org/rfc/rfc2132.txt, http://www.ietf.org/rfc/rfc7296.txt, http://www.rfc-editor.org/rfc/rfc3526.txt, http://www.ietf.org/rfc/rfc5280.txt, http://www.dimdi.de/, http://www.bmg.bund.de/, http://www.ietf.org/rfc/rfc7027.txt, http://www.ietf.org/rfc/rfc4303.txt, http://www.gematik.de/, http://tools.ietf.org/html/rfc4301, http://www.rfc-editor.org/rfc/rfc3602.txt, http://tools.ietf.org/html/rfc791, http://www.rfc-editor.org/rfc/rfc4106.txt, https://tools.ietf.org/html/rfc5639, http://www.ietf.org/rfc/rfc2131.txt, http://www.bundesnetzagentur.de/, http://tools.ietf.org/html/rfc2402, http://www.rfc-editor.org/rfc/rfc2404.txt, http://www.rfc-editor.org/rfc/rfc8017.txt, http://tools.ietf.org/html/rfc4330, http://tools.ietf.org/html/rfc4303, http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf, http://www.rfc-editor.org/rfc/rfc4868.txt, http://tools.ietf.org/html/rfc958, http://tools.ietf.org/html/rfc2406
- pdf_is_encrypted: False
- pdf_number_of_pages: 155
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |