| name |
d'COMPASS version 2.0.0 |
Secure Microcontroller SA23YL80B with Cryptographic Library NesLib SA rev 1.0 |
| category |
Other Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
MY |
FR |
| status |
archived |
archived |
| not_valid_after |
24.12.2019 |
01.09.2019 |
| not_valid_before |
24.12.2014 |
16.09.2008 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C056-CR-v1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/dcssi-2008_30en.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/d'COMPASS%20Security%20Target%20v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cible2008_30en.pdf |
| manufacturer |
TriAset Sdn Bhd |
STMicroelectronics |
| manufacturer_web |
https://triaset.com/ |
https://www.st.com/ |
| security_level |
EAL2 |
EAL5+, AVA_VAN.5, ALC_DVS.2 |
| dgst |
2437da21a2df0903 |
adde9964900e7fa7 |
| heuristics/cert_id |
ISCB-5-RPT-C056-CR-v1 |
ANSSI-CC-2008/30 |
| heuristics/cert_lab |
[] |
SERMA |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_CCL.1, ATE_FUN.1, ASE_OBJ.2, ALC_CMS.2, ASE_INT.1, ASE_REQ.2, AGD_PRE.1, ATE_IND.2, ASE_ECD.1, AVA_VAN.2, ADV_TDS.1, ASE_SPD.1, ALC_CMC.2, ADV_FSP.2, ATE_COV.1, AGD_OPE.1, ALC_DEL.1, ASE_TSS.1, ADV_ARC.1 |
ADV_TDS.4, ALC_LCD.1, ALC_DVS.2, AGD_PRE.1, ALC_CMS.5, ATE_IND.2, ATE_DPT.3, AVA_VAN.5, ATE_FUN.1, AGD_OPE.1, ATE_COV.2, ALC_CMC.4, ADV_FSP.5, ALC_DEL.1, ADV_ARC.1, ADV_INT.2, ALC_TAT.2, ADV_IMP.1 |
| heuristics/extracted_versions |
2.0.0 |
1.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
ANSSI-CC-2008/29 |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
ANSSI-CC-2008/29 |
| heuristics/scheme_data |
- cert_no: 2014-004-C056
- certification_date: 24.12.2014
- developer: TriAset Sdn Bhd
- enhanced:
- assurance_level: EAL2
- category: Other Devices and Systems
- cert_id: C056
- certification_date: 24.12.2014
- developer: Elaine TanCorporate Service ManagerTriAset Sdn BhdUnit 23-5, 5th Floor Block E1 Jalan PJU 1/42Dataran Prima 47301 Petaling Jaya, Selangor, Malaysia URL: http://triaset.com/Email: [email protected]: +603 7880 9562Fax: +603 7880 9563
- expiration_date: 24.12.2019
- mutual_recognition: CCRA
- product: d'COMPASS version 2.0.0
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/ISCB-5-RPT-C056-CR-v1.pdf
- scope: d'COMPASS v2.0.0 is an online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks. It is a web application that is developed entirely from Java-based technologies which is installed into a Java EE-compliant application server and accessible via a web browser and it also provides a complete solution from back to the front office fund management operation. Following are the major security functions provided by the TOE: Access control - the TOE manages access control within each organisation based on user Ids, user roles and access control lists. Each ACL maps users and roles to the operations that they are permitted to perform on the object. Identification and Authentication - the TOE requires that each user is successfully identified (user IDs) and authenticated (password) before any interaction with protected resources is permitted. Security Management - the TOE provides functions that allow management of the TOE and its security functions. The TOE restricts access to the management functions based on the role of the user. Security Communication - the TOE is able to protect the user data from disclosure and modification using SSL as a secure communication between users’ browser and the TOE.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C056/d'COMPASS%20Security%20Target%20v1.0.pdf
- type: Online Treasury Management System that caters for managing and operating treasury, financial asset investment and financial risks.
- expiration_date: 24.12.2019
- level: EAL2
- product: d'COMPASS version 2.0.0
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/146
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
ISCB-5-RPT-C056-CR-v1.pdf |
dcssi-2008_30en.pdf |
| pdf_data/report_frontpage |
|
- FR:
- cc_security_level: EAL 5 augmented ALC_DVS.2, AVA_VAN.5
- cc_version: Common Criteria version 3.1
- cert_id: DCSSI-2008/30
- cert_item: SA23YL80B Secure Microcontroller including the cryptographic library NesLib SA revision 1.0
- cert_item_version: SA23YL80 revision B (dedicated software AIB, maskset K2K0A, cryptographic library NesLib SA révision 1.0
- cert_lab: Serma Technologies 30 avenue Gustave Eiffel, 33608 Pessac, France Phone: +33 (0)5 57 26 08 75, email : [email protected]
- developer: STMicroelectronics Smartcard IC division, 190 Avenue Célestin Coq, 13106 Rousset Cedex, France Sponsor STMicroelectronics Smartcard IC division, 190 Avenue Célestin Coq, 13106 Rousset Cedex, France
- match_rules: ['Certification report reference(.+)Product name(.+)Product reference(.+)Protection profile conformity(.+)Evaluation criteria and version(.+)Evaluation level(.+)Developer (.+)Evaluation facility(.+)Recognition arrangements']
- ref_protection_profiles: BSI-PP-0035-2007 version 1.0
|
| pdf_data/report_keywords/cc_cert_id |
- MY:
- ISCB-5-RPT-C056-CR-v1: 25
|
- FR:
- DCSSI-2008/29: 1
- DCSSI-2008/30: 17
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 3: 1
- EAL 5: 3
- EAL 5 augmented: 2
- EAL 7: 1
- EAL4: 3
- EAL7: 1
- ITSEC:
|
| pdf_data/report_keywords/cc_sar |
|
- ADO:
- ADV:
- ADV_ARC: 1
- ADV_FSP: 1
- ADV_IMP: 1
- ADV_INT: 1
- ADV_SPM: 1
- ADV_TDS: 1
- AGD:
- ALC:
- ALC_CMC: 1
- ALC_CMS: 1
- ALC_DVS: 1
- ALC_DVS.2: 1
- ALC_FLR: 2
- ALC_TAT: 1
- ASE:
- ASE_CCL: 1
- ASE_ECD: 1
- ASE_INT: 1
- ASE_OBJ: 1
- ASE_REQ: 1
- ASE_SPD: 1
- ASE_TSS: 1
- ATE:
- ATE_COV: 1
- ATE_DPT: 1
- ATE_FUN: 1
- ATE_IND: 1
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
- FCS:
- FDP:
- FDP_ACC.1: 1
- FDP_ACF.1: 1
- FIA:
- FIA_UAU.2: 1
- FIA_UID.2: 1
- FMT:
- FMT_MSA.1: 1
- FMT_MTD: 2
- FMT_SMF.1: 1
- FMT_SMR.1: 2
- FTP:
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
- STMicroelectronics:
- STM: 12
- STMicroelectronics: 19
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- BSI:
- CC:
- CCMB-2006-09-001: 1
- CCMB-2007-09-002: 1
- CCMB-2007-09-003: 1
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
|
- /Author: Mathieu Robert
- /CreationDate: D:20080916142233+02'00'
- /Creator: Acrobat PDFMaker 5.0 pour Word
- /Keywords: CER/F/07.5
- /ModDate: D:20080916142236+03'00'
- /Producer: Acrobat Distiller 5.0 (Windows)
- /Subject: SA23YL80B Secure Microcontroller including the cryptographic library NesLib SA revision 1.0
- /Title: DCSSI-2008/30
- pdf_file_size_bytes: 268140
- pdf_hyperlinks: http://www.ssi.gouv.fr/, mailto:[email protected]
- pdf_is_encrypted: True
- pdf_number_of_pages: 16
|
| pdf_data/st_filename |
d'COMPASS Security Target v1.0.pdf |
cible2008_30en.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 5: 2
- EAL 5 augmented: 2
- EAL4: 1
- EAL5: 18
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.2: 1
- ADV_TDS.1: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.2: 1
- ALC_CMS.2: 1
- ALC_DEL.1: 1
- ASE:
- ASE_CCL.1: 4
- ASE_ECD.1: 1
- ASE_INT.1: 4
- ASE_OBJ.2: 4
- ASE_REQ.2: 4
- ASE_SPD.1: 4
- ASE_TSS.1: 4
- ATE:
- ATE_COV.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
- ADO:
- ADV:
- ADV_ARC: 2
- ADV_ARC.1: 1
- ADV_FSP: 3
- ADV_FSP.5: 3
- ADV_IMP: 1
- ADV_IMP.1: 1
- ADV_INT.2: 1
- ADV_TDS.4: 1
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 1
- AGD_PRE: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC: 1
- ALC_CMC.4: 1
- ALC_CMS: 1
- ALC_CMS.5: 1
- ALC_DEL.1: 1
- ALC_DVS: 1
- ALC_DVS.2: 3
- ALC_LCD.1: 1
- ALC_TAT.2: 1
- ATE:
- ATE_COV: 3
- ATE_COV.2: 1
- ATE_DPT.3: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FCS:
- FCS_CKM.1: 3
- FCS_CKM.4: 3
- FCS_COP.1: 6
- FCS_COP.1.1: 1
- FDP:
- FDP_ACC.1: 12
- FDP_ACC.1.1: 1
- FDP_ACF.1: 7
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FDP_IFC.1: 2
- FDP_IFF: 2
- FDP_ITC.1: 2
- FDP_ITC.2: 2
- FIA:
- FIA_UAU.1: 1
- FIA_UAU.2: 6
- FIA_UAU.2.1: 1
- FIA_UID.1: 4
- FIA_UID.2: 7
- FIA_UID.2.1: 1
- FMT:
- FMT_MSA.1: 6
- FMT_MSA.1.1: 1
- FMT_MTD: 14
- FMT_SMF.1: 15
- FMT_SMF.1.1: 1
- FMT_SMR.1: 14
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FTP:
- FTP_TRP.1: 6
- FTP_TRP.1.1: 1
- FTP_TRP.1.2: 1
- FTP_TRP.1.3: 1
|
- FAU:
- FCS:
- FCS_CKM.1: 12
- FCS_CKM.4: 2
- FCS_COP.1: 13
- FCS_RNG: 1
- FCS_RNG.1: 5
- FDP:
- FDP_ACC.1: 1
- FDP_ACC.2: 9
- FDP_ACF.1: 10
- FDP_CKM.2: 1
- FDP_IFC.1: 9
- FDP_ITC.1: 1
- FDP_ITC.2: 1
- FDP_ITT.1: 7
- FMT:
- FMT_LIM: 1
- FMT_LIM.1: 7
- FMT_LIM.2: 8
- FMT_MSA.1: 12
- FMT_MSA.2: 2
- FMT_MSA.3: 9
- FMT_SMF.1: 4
- FMT_SMR.1: 2
- FPT:
- FPT_FLS.1: 7
- FPT_ITT.1: 6
- FPT_PHP.3: 6
- FRU:
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMIN: 3
- A.ENVIRONMENT: 2
- A.PASSWORD: 3
- A.PATCH: 2
- A.PHYSICAL: 3
- A.SSL_CONFIG: 2
- O:
- O.ACCESS: 5
- O.COMM: 4
- O.MANAGE: 4
- O.PASSWORD_DAT: 1
- O.PASSWORD_DATA: 3
- O.USER: 5
- OE:
- OE.ADMIN: 2
- OE.AUTHDATA: 3
- OE.ENVIRONMENT: 2
- OE.PATCH: 2
- OE.PHYSICAL: 2
- OE.SSL_CONFIG: 3
- T:
- T.EAVESDROP: 3
- T.MANAGEMENT: 2
- T.PASSWORD_DATA: 3
- T.UNAUTHORISED_A: 1
- T.UNAUTHORISED_AC: 1
|
|
| pdf_data/st_keywords/vendor |
|
- Infineon:
- Philips:
- STMicroelectronics:
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 9
- Physical tampering: 2
- fault injection: 2
- malfunction: 1
- physical tampering: 1
- SCA:
- DPA: 3
- Leak-Inherent: 10
- Physical Probing: 4
- SPA: 2
- physical probing: 2
- side channel: 2
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- BSI:
- CC:
- CCMB-2006-09-001: 2
- CCMB-2007-09-002: 10
- CCMB-2007-09-003: 2
- FIPS:
- ISO:
- ISO/IEC 10116:1997: 1
- ISO/IEC 9797:1994: 2
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /Author:
- /CreationDate: D:20150205003146+08'00'
- /Creator:
- /Keywords:
- /ModDate: D:20150205003255+08'00'
- /Producer: Foxit Reader PDF Printer Version 7.0.1.831
- /Subject:
- /Title:
- pdf_file_size_bytes: 748344
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 28
|
- /Author: miller jsrt
- /CreationDate: D:20080724102543Z
- /Creator: FrameMaker 8.0
- /ModDate: D:20080902120145+02'00'
- /Producer: Acrobat Distiller 8.1.0 (Windows)
- /Title: SMD_SA23YL80_V1_1.book
- pdf_file_size_bytes: 809933
- pdf_hyperlinks: http://www.st.com
- pdf_is_encrypted: False
- pdf_number_of_pages: 50
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |