| name |
Bundesdruckerei Document Application with tamper-evident casing 2.5.1, Firmware Version 1.5.8, TOE Casing Version 0 |
MultiApp V5.1 GP-SE PlatformConfiguration 1 : 5.1 revision B version 2 (0x3055) et filter set 0x00,configuration 2 : 5.1 revision C version 2 (0x3055) et filter set 0x10,configuration 3 : 5.1 revision B version 2 (0x3055) et filter set 0x14,configuration 4 : 5.1 revision C version 2 (0x3055) et filter set 0x24(ANSSI-CC-2025/57) |
| category |
Other Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
DE |
FR |
| status |
active |
active |
| not_valid_after |
19.07.2028 |
04.02.2031 |
| not_valid_before |
20.07.2023 |
04.02.2026 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1215c_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-57-certificat.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1215a_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-57-rapport.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1215b_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-57-cible.pdf |
| manufacturer |
Bundesdruckerei GmbH |
THALES DIS FRANCE SA |
| manufacturer_web |
https://www.bundesdruckerei.de |
https://www.thalesgroup.com/en/europe/france |
| security_level |
EAL3 |
ALC_FLR.2, EAL6+ |
| dgst |
2ca8cb6f67dcfa4a |
31cf2a7aec823213 |
| heuristics/cert_id |
BSI-DSZ-CC-1215-2023 |
ANSSI-CC-2025/57 |
| heuristics/cert_lab |
BSI |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
AGD_OPE.1, ALC_DEL.1, ATE_FUN.1, ASE_CCL.1, ASE_TSS.1, AVA_VAN.5, ADV_ARC.1, ASE_INT.1, ATE_COV.2, ASE_REQ.2, ALC_CMC.3, ALC_LCD.1, ADV_TDS.2 |
ALC_DEL.1, ADV_INT.3, AVA_VAN.5, ASE_INT.1, ADV_SPM.1, ATE_DPT.3, ADV_TDS.5, AGD_OPE.1, ASE_CCL.1, ALC_CMS.5, ADV_ARC.1, ATE_FUN.2, ALC_TAT.3, ADV_FSP.5, ASE_TSS.2, ASE_SPD.1, ATE_IND.2, ATE_COV.3, ALC_CMC.5, ASE_ECD.1, AGD_PRE.1, ALC_FLR.2, ALC_DVS.2, ASE_REQ.2, ADV_IMP.2, ALC_LCD.1, ASE_OBJ.2 |
| heuristics/extracted_versions |
2.5.1, 1.5.8 |
5.1 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
BSI-DSZ-CC-1247-2025 |
{} |
| heuristics/report_references/directly_referencing |
BSI-DSZ-CC-1181-2021 |
ANSSI-CC-2023/01-R01 |
| heuristics/report_references/indirectly_referenced_by |
BSI-DSZ-CC-1247-2025 |
{} |
| heuristics/report_references/indirectly_referencing |
BSI-DSZ-CC-1181-2021, BSI-DSZ-CC-1125-2019, BSI-DSZ-CC-1161-2020, BSI-DSZ-CC-1093 |
ANSSI-CC-2023/01-R01 |
| heuristics/scheme_data |
- category: Electronic ID documents
- cert_id: BSI-DSZ-CC-1215-2023
- certification_date: 20.07.2023
- enhanced:
- applicant: Bundesdruckerei GmbH Kommandantenstraße 18 10969 Berlin
- assurance_level: EAL3
- cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1215c_pdf.pdf?__blob=publicationFile&v=2
- certification_date: 20.07.2023
- description: The Target of Evaluation (TOE) is the Bundesdruckerei Document Application with tamperevident casing 2.5.1. The Document Application is running on a Document Management Terminal (DMT). It is used to read the German Passport (ePass), to read and update the electronic data of the German identification card (“Personalausweis (PA)”) and electronic resident permit (“elektronischer Aufenthaltstitel (eAT)”) as well as to verify the document’s authenticity and the integrity of its data. The TOE is operated by governmental organisations, e.g. municipal office, police, government or other state approved agencies. The TOE is specifically applied in registration offices to allow card holders to verify that their ePass, PA or eAT is working correctly. In case of PA and eAT it is further possible to update the address information of the card holder, the card holder’s PIN for eID applications, and the community ID (“Gemeindeschlüssel”). In addition, the eID application functionality of the PA or eAT can be activated or deactivated. Additionally the TOE ensures secure communication to external control software and provides a tamper-evident enclosure. Necessary protocols for the communication of the TOE with the electronic identity documents like the ePass, PA or eAT are described in [ICAO_9303], [TR-03110-1], [TR-03110-2], and [TR-03110-3].
- evaluation_facility: TÜV Informationstechnik GmbH
- expiration_date: 19.07.2028
- product: Bundesdruckerei Document Application with tamper-evident casing 2.5.1, Firmware Version 1.5.8, TOE Casing Version 0
- protection_profile: Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064-V2-2018, Version: 2.0, 2018-06-06, Federal Office for Information Security (BSI)
- report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1215a_pdf.pdf?__blob=publicationFile&v=2
- target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1215b_pdf.pdf?__blob=publicationFile&v=2
- product: Bundesdruckerei Document Application with tamper-evident casing 2.5.1, Firmware Version 1.5.8, TOE Casing Version 0
- subcategory: Software
- url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-Software/1215.html
- vendor: Bundesdruckerei GmbH
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
ANSSI-CC-2023/01-R01 |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
ANSSI-CC-2023/01-R01 |
| heuristics/protection_profiles |
2f40ca96ef4a080e |
7f886b64878b68c1, 3ebd6b9f8d81e522 |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0064V2b_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CCN-CC-PP-5-2021.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0099V2b_pdf.pdf |
| pdf_data/cert_filename |
1215c_pdf.pdf |
ANSSI-CC-2025-57-certificat.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
1215a_pdf.pdf |
ANSSI-CC-2025-57-rapport.pdf |
| pdf_data/report_frontpage |
- FR:
- DE:
- cc_security_level: Common Criteria Part 3 conformant EAL 3 valid until: 19 July 2028
- cc_version: PP conformant Common Criteria Part 2 extended
- cert_id: BSI-DSZ-CC-1215-2023
- cert_item: Bundesdruckerei Document Application with tamper-evident casing 2.5.1 Firmware Version 1.5.8, TOE Casing Version 0
- cert_lab: BSI
- developer: Bundesdruckerei GmbH
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
- ref_protection_profiles: Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064- V2-2018, Version: 2.0, 2018-06-06, Federal Office for Information Security (BSI
|
|
| pdf_data/report_keywords/cc_cert_id |
- DE:
- BSI-DSZ-CC-1181-2021: 3
- BSI-DSZ-CC-1215: 1
- BSI-DSZ-CC-1215-2023: 15
|
- FR:
- ANSSI-CC-2023/01-R01: 2
- ANSSI-CC-2025/57: 3
|
| pdf_data/report_keywords/cc_protection_profile_id |
- BSI:
- BSI-CC-PP-0064-: 1
- BSI-CC-PP-0064-V2-2018: 3
|
- BSI:
- BSI-CC-PP-0099-V2-2020: 2
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 1: 1
- EAL 2: 3
- EAL 3: 4
- EAL 4: 1
|
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
- FAU:
- FIA:
- FIA_API.1: 1
- FIA_UAU.2: 1
- FIA_UAU.4: 1
- FIA_UAU.5: 1
- FIA_UAU.6: 1
- FIA_UID.2: 1
- FMT:
- FMT_MTD: 3
- FMT_SMF.1: 1
- FMT_SMR.1: 1
- FPT:
- FTP:
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
- TUV:
- TÜV Informationstechnik: 4
|
|
| pdf_data/report_keywords/symmetric_crypto |
- AES_competition:
- DES:
- constructions:
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA224: 1
- SHA256: 8
- SHA384: 5
- SHA512: 1
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- BSI:
- AIS 20: 1
- AIS 32: 1
- AIS 38: 1
- AIS 48: 1
- FIPS:
- FIPS 197: 8
- FIPS PUB 46-3: 2
- FIPS180-4: 8
- FIPS186-2: 6
- FIPS186-4: 1
- FIPS197: 1
- ICAO:
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 15946-: 6
- ISO/IEC 17065: 2
- ISO/IEC 18045: 4
- ISO/IEC 9797-: 2
- RFC:
|
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
- ConfidentialDocument:
- BSI) [9] Configuration list for the TOE, Version 1.43, 2023-04-26, ALC_CMS_DMT- V1.xx.xlsx (confidential document) [10] Guidance documentation for the TOE, Version 1.201, 2023-04-18, VISOTEC® V-ÄNDERUNGSTERMINAL: 1
- Evaluation Technical Report, Version 2, 2023-06-21, BSI-DSZ-CC-1215, TÜV Informationstechnik GmbH (confidential document) [8] Common Criteria Protection Profile for Document Management Terminal DMT-PP: 1
- being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
|
|
| pdf_data/report_metadata |
- /Author: Federal Office for Information Security
- /Keywords: "Common Criteria, Certification, Zertifizierung, Bundesdruckerei GmbH, Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064-V2-2018"
- /Subject: Common Criteria, Certification, Zertifizierung, Bundesdruckerei GmbH, Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064-V2-2018
- /Title: Certification Report BSI-DSZ-CC-1215-2023
- pdf_file_size_bytes: 443562
- pdf_hyperlinks: https://www.bsi.bund.de/, https://www.commoncriteriaportal.org/, https://www.bsi.bund.de/zertifizierung, http://www.commoncriteriaportal.org/, https://www.bsi.bund.de/zertifizierungsreporte, https://www.bsi.bund.de/AIS, https://www.sogis.eu/, http://www.commoncriteriaportal.org/cc/
- pdf_is_encrypted: False
- pdf_number_of_pages: 29
|
|
| pdf_data/st_filename |
1215b_pdf.pdf |
ANSSI-CC-2025-57-cible.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
- BSI:
- BSI-CC-PP-0064-: 1
- BSI-CC-PP-0064-V2-2018: 3
|
- BSI:
- BSI-CC-PP- 00842014: 1
- BSI-CC-PP-0084-2014: 1
- BSI-CC-PP-0099-V2-: 1
- BSI-PP-0056-V2-MA-2012: 1
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL 3: 4
- EAL3: 1
- EAL4+: 2
|
- EAL:
- EAL 6+: 1
- EAL4: 1
- EAL4 augmented: 1
- EAL6: 34
- EAL6 augmented: 1
- EAL6+: 3
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 1
- ADV_TDS.2: 1
- AGD:
- ALC:
- ALC_CMC.3: 1
- ALC_DEL.1: 1
- ALC_LCD.1: 1
- APE:
- ASE:
- ASE_CCL.1: 1
- ASE_INT.1: 1
- ASE_REQ.2: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.2: 1
- ATE_FUN.1: 1
- AVA:
- AVA_VAN.2: 1
- AVA_VAN.5: 2
|
- ADV:
- ADV_ARC: 2
- ADV_ARC.1: 10
- ADV_FSP: 1
- ADV_FSP.1: 1
- ADV_FSP.2: 2
- ADV_FSP.4: 2
- ADV_FSP.5: 8
- ADV_IMP: 1
- ADV_IMP.1: 5
- ADV_IMP.2: 4
- ADV_INT.2: 2
- ADV_INT.3: 2
- ADV_SPM.1: 9
- ADV_TDS: 1
- ADV_TDS.1: 2
- ADV_TDS.3: 3
- ADV_TDS.4: 2
- ADV_TDS.5: 6
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 10
- AGD_PRE: 2
- AGD_PRE.1: 7
- ALC:
- ALC_CMC.4: 2
- ALC_CMC.5: 4
- ALC_CMS.5: 3
- ALC_DEL.1: 4
- ALC_DVS.2: 7
- ALC_FLR.2: 7
- ALC_LCD.1: 6
- ALC_TAT.1: 2
- ALC_TAT.2: 2
- ALC_TAT.3: 4
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ASE_TSS.2: 1
- ATE:
- ATE_COV.1: 2
- ATE_COV.2: 3
- ATE_COV.3: 2
- ATE_DPT.1: 1
- ATE_DPT.3: 4
- ATE_FUN.1: 6
- ATE_FUN.2: 4
- ATE_IND.2: 5
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN: 1
- FAU_GEN.1: 5
- FAU_GEN.1.1: 3
- FAU_GEN.1.2: 2
- FCS:
- FCS_CKM: 13
- FCS_CKM.1: 15
- FCS_CKM.4: 5
- FCS_CKM.4.1: 1
- FCS_COP: 29
- FCS_COP.1: 25
- FCS_RNG: 3
- FCS_RNG.1: 6
- FCS_RNG.1.1: 1
- FCS_RNG.1.2: 1
- FDP:
- FDP_RIP.1: 4
- FDP_RIP.1.1: 1
- FIA:
- FIA_API: 1
- FIA_API.1: 6
- FIA_API.1.1: 1
- FIA_UAU.1: 3
- FIA_UAU.2: 6
- FIA_UAU.2.1: 1
- FIA_UAU.4: 5
- FIA_UAU.4.1: 1
- FIA_UAU.5: 4
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
- FIA_UAU.6: 4
- FIA_UAU.6.1: 1
- FIA_UID.1: 2
- FIA_UID.2: 6
- FIA_UID.2.1: 1
- FMT:
- FMT_MTD: 22
- FMT_MTD.1: 5
- FMT_SMF.1: 7
- FMT_SMF.1.1: 1
- FMT_SMR.1: 5
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FTP:
- FTP_TRP: 4
- FTP_TRP.1: 3
- FTP_TRP.1.2: 1
|
- FAU:
- FAU_ARP.1: 18
- FAU_ARP.1.1: 1
- FAU_SAA.1: 2
- FAU_SAS.1: 2
- FCO:
- FCO_NRO: 34
- FCO_NRO.2: 9
- FCO_NRR: 7
- FCO_NRR.1: 3
- FCS:
- FCS_CKM: 63
- FCS_CKM.1: 38
- FCS_CKM.1.1: 3
- FCS_CKM.2: 12
- FCS_CKM.2.1: 1
- FCS_CKM.3: 7
- FCS_CKM.3.1: 1
- FCS_CKM.4: 41
- FCS_CKM.4.1: 2
- FCS_CMK.4: 1
- FCS_COP: 97
- FCS_COP.1: 35
- FCS_COP.1.1: 5
- FCS_RNG: 29
- FCS_RNG.1: 17
- FCS_RNG.1.1: 3
- FCS_RNG.1.2: 3
- FDP:
- FDP_ACC: 57
- FDP_ACC.1: 25
- FDP_ACC.2: 6
- FDP_ACF: 53
- FDP_ACF.1: 25
- FDP_IFC: 71
- FDP_IFC.1: 22
- FDP_IFC.2: 4
- FDP_IFF: 50
- FDP_IFF.1: 23
- FDP_ITC: 45
- FDP_ITC.1: 19
- FDP_ITC.2: 29
- FDP_ITT.1: 2
- FDP_RIP: 124
- FDP_RIP.1: 11
- FDP_RIP.1.1: 1
- FDP_ROL: 24
- FDP_ROL.1: 7
- FDP_SDC.1: 2
- FDP_SDI: 11
- FDP_SDI.2: 4
- FDP_UCT: 9
- FDP_UCT.1: 3
- FDP_UIT: 19
- FDP_UIT.1: 4
- FIA:
- FIA_AFL: 42
- FIA_AFL.1: 7
- FIA_AFL.1.1: 2
- FIA_AFL.1.2: 2
- FIA_API.1: 2
- FIA_ATD: 15
- FIA_ATD.1: 3
- FIA_UAU: 92
- FIA_UAU.1: 7
- FIA_UAU.1.1: 2
- FIA_UAU.1.2: 2
- FIA_UAU.4: 2
- FIA_UAU.4.1: 1
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
- FIA_UAU.6.1: 1
- FIA_UID: 67
- FIA_UID.1: 24
- FIA_UID.1.1: 2
- FIA_UID.1.2: 2
- FIA_UID.2: 1
- FIA_USB: 9
- FIA_USB.1: 3
- FMT:
- FMT_LIM: 42
- FMT_LIM.1: 17
- FMT_LIM.1.1: 3
- FMT_LIM.2: 16
- FMT_LIM.2.1: 3
- FMT_MSA: 174
- FMT_MSA.1: 16
- FMT_MSA.2: 2
- FMT_MSA.3: 24
- FMT_MTD: 100
- FMT_MTD.1: 16
- FMT_MTD.3: 2
- FMT_SMF: 111
- FMT_SMF.1: 33
- FMT_SMF.1.1: 2
- FMT_SMR: 128
- FMT_SMR.1: 38
- FMT_SMR.1.1: 2
- FMT_SMR.1.2: 2
- FPR:
- FPR_UNO: 23
- FPR_UNO.1: 13
- FPR_UNO.1.1: 1
- FPT:
- FPT_EMS: 4
- FPT_EMS.1: 16
- FPT_EMS.1.1: 3
- FPT_EMS.1.2: 3
- FPT_FLS: 72
- FPT_FLS.1: 19
- FPT_FLS.1.1: 1
- FPT_ITT: 8
- FPT_ITT.1: 2
- FPT_PHP: 9
- FPT_PHP.3: 19
- FPT_PHP.3.1: 1
- FPT_RCV: 31
- FPT_RCV.3: 5
- FPT_RCV.4: 1
- FPT_TDC: 10
- FPT_TDC.1: 14
- FPT_TDC.1.1: 1
- FPT_TDC.1.2: 1
- FPT_TST: 10
- FPT_TST.1: 16
- FPT_TST.1.1: 1
- FPT_TST.1.2: 1
- FPT_TST.1.3: 1
- FRU:
- FTP:
- FTP_ITC: 41
- FTP_ITC.1: 11
- FTP_ITC.1.1: 1
- FTP_ITC.1.2: 1
- FTP_ITC.1.3: 1
- FTP_TRP: 21
- FTP_TRP.1: 14
|
| pdf_data/st_keywords/cc_claims |
|
- A:
- A.ADMIN: 3
- A.APPLET: 1
- A.APPS-PROVIDER: 4
- A.CAP_FILE: 3
- A.CONTROLLING-AUTHORITY: 4
- A.DELETION: 2
- A.ISSUER: 4
- A.KEY-ESCROW: 4
- A.KEYS-PROT: 4
- A.OS-UPDATE-EVIDENCE: 3
- A.OTA-ADMIN: 1
- A.PERSONALISER: 3
- A.PERSONALIZER: 1
- A.PRODUCTION: 4
- A.SCP-SUPP: 4
- A.SECURE_ACODE_MANAGEMENT: 3
- A.VERIFICATION: 4
- A.VERIFICATION-AUTHORITY: 4
- D:
- D.API_DATA: 4
- D.APP_CODE: 8
- D.APP_C_DATA: 6
- D.APP_I_DATA: 8
- D.APP_KEYS: 9
- D.APSD_DAP_KEYS: 1
- D.APSD_KEYS: 6
- D.CASD_DAP_KEYS: 1
- D.CASD_KEYS: 4
- D.CONFIRMATION-DATA: 2
- D.CRYPTO: 6
- D.CVM_MGMT_STATE: 3
- D.CVM_PIN: 3
- D.DAP_BLOCK: 1
- D.GP_CODE: 2
- D.GP_REGISTRY: 4
- D.ISD_KEYS: 6
- D.JCS_CODE: 7
- D.JCS_DATA: 9
- D.OS-: 1
- D.OS-UPDATE-CODE-ID: 3
- D.OS-UPDATE_ADDITIONALCODE: 4
- D.OS-UPDATE_DEC-KEY: 2
- D.OS-UPDATE_SGNVER-KEY: 3
- D.PIN: 6
- D.RECEIPT-GENERATION-KEY: 2
- D.SEC_DATA: 9
- D.TOE_IDENTIFIER: 2
- D.TOKEN-VERIFICATION-KEY: 2
- O:
- O.ALARM: 15
- O.APPLET: 28
- O.APPLI-AUTH: 7
- O.ARRAY_VIEWS_CONFID: 5
- O.ARRAY_VIEWS_INTEG: 3
- O.CARD-: 3
- O.CARD-MANAGEMENT: 23
- O.CIPHER: 13
- O.CODE_CAP_FILE: 23
- O.COMM-: 1
- O.COMM-AUTH: 5
- O.COMM-CONFIDENTIALITY: 4
- O.COMM-INTEGRITY: 5
- O.COMM_AUTH: 1
- O.COMM_CONFIDENTIALITY: 1
- O.COMM_INTEGRITY: 1
- O.CONFID-OS-UPDATE: 5
- O.CVM-BLOCK: 5
- O.CVM-MGMT: 6
- O.CVM-MGNT: 1
- O.CVM-MNGT: 1
- O.DELETION: 7
- O.DOMAIN-RIGHTS: 4
- O.DOMAIN_RIGHTS: 1
- O.FIREWALL: 14
- O.GLOBAL-CVM: 5
- O.GLOBAL_ARRAYS_CONFID: 8
- O.GLOBAL_ARRAYS_INTEG: 6
- O.INSTALL: 10
- O.JAVAOBJECT: 68
- O.KEY-MNGT: 7
- O.KEY_DELETION: 1
- O.LC-MANAGEMENT: 4
- O.LOAD: 11
- O.NATIVE: 11
- O.NO-KEY-REUSE: 4
- O.OBJ-DELETION: 5
- O.OBJ_DELETION: 1
- O.OPERATE: 17
- O.PIN-MNGT: 7
- O.PIN_MNGT: 2
- O.PRIVILEGES-: 1
- O.PRIVILEGES-MANAGEMENT: 5
- O.REALLOCATION: 6
- O.RECEIPT: 4
- O.RESOURCES: 9
- O.RND: 1
- O.RNG: 13
- O.SCP: 32
- O.SECURE_AC_ACTIVATION: 6
- O.SECURE_LOAD_ACODE: 8
- O.SECURITY-: 1
- O.SECURITY-DOMAINS: 3
- O.SECURITY_DOMAINS: 1
- O.SID: 13
- O.TOE_IDENTIFICATION: 7
- O.TOKEN: 5
- O.TRANSACTION: 7
- OE:
- OE.ADMIN: 2
- OE.AID-MANAGEMENT: 4
- OE.AP-KEYS: 3
- OE.APPLET: 1
- OE.APPLICATIONS: 3
- OE.APPS-PROVIDER: 4
- OE.CA-KEYS: 4
- OE.CAP_FILE: 5
- OE.CARD-MANAGEMENT: 2
- OE.CARD_MANAGEMENT: 1
- OE.CODE-EVIDENCE: 12
- OE.CONTROLLING-: 1
- OE.CONTROLLING-AUTHORITY: 3
- OE.DAP_BLOCK_GEN: 3
- OE.ISD-KEYS: 3
- OE.ISSUER: 4
- OE.ISSUER-KEYS: 1
- OE.KEY-: 2
- OE.KEY-CHANGE: 2
- OE.KEY-ESCROW: 4
- OE.KEY-GENERATION: 2
- OE.KEYS-PROT: 2
- OE.LOADING: 2
- OE.NATIVE: 1
- OE.OS-: 3
- OE.OS-UPDATE-ENCRYPTION: 4
- OE.OS-UPDATE-EVIDENCE: 2
- OE.OTA-ADMIN: 1
- OE.OTA-LOADING: 1
- OE.OTA-SERVERS: 1
- OE.PERSONALISER: 2
- OE.PERSONALIZER: 1
- OE.PRODUCTION: 4
- OE.RECEIPT-VER: 1
- OE.RECEIPTVER: 1
- OE.SCP: 9
- OE.SCP-SUPP: 2
- OE.SECURE_ACODE_MANAGEMENT: 4
- OE.SECURITY-DOMAINS: 1
- OE.SERVERS: 3
- OE.TOKEN-GEN: 3
- OE.VA-KEYS: 1
- OE.VERIFICATION: 26
- OE.VERIFICATION-: 1
- OE.VERIFICATION-AUTHORITY: 2
- OP:
- OP.ARRAY_AASTORE: 3
- OP.ARRAY_ACCESS: 7
- OP.ARRAY_LENGTH: 3
- OP.ARRAY_T_ALOAD: 3
- OP.ARRAY_T_ASTORE: 3
- OP.CREATE: 11
- OP.DELETE_APPLET: 6
- OP.DELETE_CAP_FILE: 4
- OP.DELETE_CAP_FILE_APPLET: 4
- OP.INSTANCE_FIELD: 6
- OP.INVK_INTERFACE: 10
- OP.INVK_VIRTUAL: 8
- OP.JAVA: 8
- OP.PUT: 8
- OP.PUTFIELD: 1
- OP.PUTSTATIC: 1
- OP.THROW: 7
- OP.TYPE_ACCESS: 7
- OSP:
- OSP: 3
- OSP.ADDITIONAL_CODE_ENCRYPTION: 3
- OSP.ADDITIONAL_CODE_SIGNING: 3
- OSP.AID-MANAGEMENT: 4
- OSP.APPLICATIONS: 4
- OSP.APSD-KEYS: 4
- OSP.ATOMIC_ACTIVATION: 3
- OSP.CASD-KEYS: 4
- OSP.DAP_BLOCK_GEN: 3
- OSP.ISD-KEYS: 3
- OSP.ISSUER-KEYS: 1
- OSP.KEY-CHANGE: 4
- OSP.KEY-GENERATION: 4
- OSP.LOADING: 3
- OSP.OTA-LOADING: 1
- OSP.OTA-SERVERS: 1
- OSP.RECEIPT-VER: 3
- OSP.RNG: 3
- OSP.SECURITY-DOMAINS: 4
- OSP.SERVERS: 3
- OSP.TOE_IDENTIFICATION: 3
- OSP.TOKEN-GEN: 3
- OSP.VERIFICATION: 4
- OT:
- R:
- T:
- T.BRUTE-FORCE-CVM: 3
- T.BRUTE-FORCE-SCP: 5
- T.COM-EXPLOIT: 4
- T.COM_EXPLOIT: 2
- T.CONFID-APPLI-DATA: 4
- T.CONFID-JCS-CODE: 4
- T.CONFID-JCS-DATA: 4
- T.CONFID-OS-UPDATE-LOAD: 1
- T.CONFID-OS-UPDATE_LOAD: 2
- T.CVM-IMPERSONATE: 3
- T.CVM-UPDATE: 3
- T.DELETION: 6
- T.EXE-CODE: 8
- T.FAKE-SGNVER-KEY: 3
- T.INSTALL: 6
- T.INTEG: 1
- T.INTEG-APPLI-: 2
- T.INTEG-APPLI-CODE: 9
- T.INTEG-APPLI-DATA: 8
- T.INTEG-JCS-CODE: 4
- T.INTEG-JCS-DATA: 4
- T.INTEG-OS-UPDATE_LOAD: 2
- T.INTEGAPPLI-DATA: 1
- T.LIFE-CYCLE: 3
- T.LIFE_CYCLE: 2
- T.NATIVE: 4
- T.OBJ-DELETION: 4
- T.PHYSICAL: 4
- T.RECEIPT: 3
- T.RESOURCES: 4
- T.SID: 8
- T.TOKEN: 3
- T.UNAUTHORISED-CARD-MGMT: 4
- T.UNAUTHORISED-TOE-CODE-UPDATE: 3
- T.UNAUTHORIZED_CARD_MNGT: 2
- T.WRONG-UPDATE-STATE: 3
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- DES:
- constructions:
|
- AES_competition:
- AES:
- AES: 35
- AES-256: 1
- AES256: 1
- DES:
- 3DES:
- 3DES: 2
- TDEA: 1
- TDES: 18
- Triple-DES: 3
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-224: 2
- SHA-256: 5
- SHA-384: 2
- SHA-512: 2
- SHA256: 2
|
- SHA:
- SHA1:
- SHA2:
- SHA-224: 1
- SHA-256: 5
- SHA-384: 5
- SHA-512: 4
- SHA2: 1
- SHA224: 1
- SHA3:
- SHA3: 2
- SHA3-256: 1
- SHA3-384: 1
- SHA3-512: 1
|
| pdf_data/st_keywords/crypto_scheme |
|
- KA:
- Key Agreement: 6
- Key agreement: 2
- MAC:
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- Brainpool:
- brainpoolP224r1: 1
- brainpoolP256r1: 1
- brainpoolP384r1: 1
- brainpoolP512r1: 1
- NIST:
- NIST P-384: 1
- P-256: 2
- P-384: 1
- prime256v1: 2
- secp256r1: 2
- secp384r1: 3
- secp521r1: 1
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 6
- Physical Tampering: 3
- fault induction: 2
- malfunction: 9
- physical tampering: 1
- SCA:
- DPA: 2
- Leak-Inherent: 3
- SPA: 1
- physical probing: 7
- timing attacks: 1
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
- EF:
- EF.COM: 2
- EF.DG1: 2
- EF.DG13: 1
- EF.DG16: 2
- EF.DG2: 1
- EF.DG3: 2
- EF.DG4: 2
- EF.DG5: 1
- EF.SOD: 2
|
- EF:
- EF.DG1: 4
- EF.DG16: 4
- EF.DG3: 1
- EF.DG4: 1
|
| pdf_data/st_keywords/standard_id |
- BSI:
- FIPS:
- FIPS 180-4: 2
- FIPS 186-2: 1
- FIPS 186-4: 1
- FIPS PUB 197: 1
- FIPS180-4: 3
- FIPS186-2: 2
- FIPS186-4: 3
- FIPS197: 2
- ICAO:
- ISO:
- ISO/IEC 14443: 2
- ISO/IEC 7816-4: 1
- RFC:
|
- BSI:
- AIS20: 2
- AIS31: 7
- BSI-AIS31: 1
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- FIPS:
- FIPS 180-4: 1
- FIPS 197: 2
- FIPS 198: 2
- FIPS180-4: 2
- FIPS197: 5
- FIPS202: 2
- ICAO:
- NIST:
- PKCS:
- SCP:
- SCP01: 4
- SCP02: 18
- SCP03: 16
- SCP10: 1
- SCP11: 1
- SCP21: 8
- SCP22: 1
- SCP80: 1
- SCP81: 1
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
- com:
- com.gemalto.belpic: 1
- com.gemalto.javacard.eid: 1
- com.gemalto.javacard.fido.ctap: 1
- com.gemalto.javacard.iasclassic: 1
- com.gemalto.javacard.mspnp: 1
- com.gemalto.javacardx.gdp: 1
- com.gemalto.moc.client: 1
- com.gemalto.moc.server: 1
- com.gemalto.mpcos: 1
- com.gemalto.puredi: 1
- com.gemalto.tacho: 1
- java:
- javacard:
- javacard.eid: 1
- javacard.fido.ctap: 1
- javacard.framework: 3
- javacard.iasclassic: 1
- javacard.mspnp: 1
- javacardx:
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- • The DELETE and INSTALL APDU commands are out of scope of this SPM: 1
- 1 : MultiApp v5.1 Rev. B with biometry features but forbidden to use without patch (biometry is out of scope of the TOE) 2. Config 2 : MultiApp v5.1 Rev. C with biometry features but forbidden to use without: 1
- 1, are out of the scope of the SPM as they are linked to the applet loading or deletion that is out of scope of the SPM boundaries limited to VM opcodes The SFR FMT_MTD.3/JCRE is out of scope of the SPM: 1
- Context, the Selected Applet Context, and the Active Applets Note: the Selected Applet context is out of scope of the VM functionalities. It is a process that occurs prior to VM start The initial setting of: 1
- a timeout policy that prevent them from being blocked should a card fails to answer. That point is out of scope of this Security Target, though. Finally, the objectives O.SCP.RECOVERY and O.SCP.SUPPORT are: 1
- and deletion; see #.DELETION and #.INSTALL). • The DELETE and INSTALL APDU commands are out of scope of this SPM. The list of registred applets’ AIDs is proven to be not modified during the execution: 1
- as a null reference. Such a mechanism is implementation-dependent. The deletion of applets is out of scope of this SPM scope. In the case of an array type, fields are components of the array ([JVM], §2.14: 1
- because AID registry is created during loading phase, which is also out of scope of the SPM (Hypothesis 2 of the SPM document [MAV51_SPM]). MultiApp V5.1: GP-SE Security Target: 1
- biometry is out of scope of the TOE: 2
- biometry is out of scope of the TOE) 3. Config 3 : MultiApp v5.1 Rev. B with biometry features included in the TOE (Upgraded: 1
- filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE: 1
- for 2 others configurations (filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE. If another patch is required in the future, it would require at least a maintenance of: 1
- in §1.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE: 1
- in §1.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE. 2.4 TOE DESCRIPTION 2.4.1 Architecture The MultiApp V5.1 platform is an operating: 1
- is also out of scope (Hypothesis 4 of the SPM document [MAV51_SPM]).. 3) S.CAP_FILE performing OP.ARRAY_AASTORE of the: 1
- out of scope: 13
- the active context is not the same as the Selected Applet Context. Application note: This rule is out of scope of the SPM modelisation because CLEAR_ON_DESELECT objects can be created exclusively in the API: 1
|
| pdf_data/st_metadata |
- /Author: Alexander Haferland
- /Keywords: CC, ST, Common Criteria, Security Target, Inspection System, PA, eAT, ePass
- /Subject: Security Target
- /Title: Bundesdruckerei Document Application Common Criteria Evaluation
- pdf_file_size_bytes: 1530980
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 91
|
- /CreationDate: D:20251211164533+01'00'
- /Creator: Microsoft® Word for Microsoft 365
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_ActionId: ad2ebb1e-ca3f-4ce0-b0a2-d8e4c7eec706
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_ContentBits: 3
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Enabled: true
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Method: Privileged
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Name: DIS Limited Distribution Scope
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_SetDate: 2025-09-18T16:05:00Z
- /MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_SiteId: 6e603289-5e46-4e26-ac7c-03a85420a9a5
- /ModDate: D:20251211164533+01'00'
- /Producer: Microsoft® Word for Microsoft 365
- pdf_file_size_bytes: 6700116
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 199
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |