Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
Insurance Security Token Server (ISTS), Version 2.0.9
BSI-DSZ-CC-1150-2021
Insurance Security Token Server (ISTS), Version 2.0.5
BSI-DSZ-CC-1038-2017
name Insurance Security Token Server (ISTS), Version 2.0.9 Insurance Security Token Server (ISTS), Version 2.0.5
status active archived
not_valid_after 01.02.2026 20.11.2022
not_valid_before 02.02.2021 20.11.2017
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150c_pdf.pdf None
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150a_pdf.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1038a_pdf.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1150b_pdf.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1038b_pdf.pdf
dgst 3a0c756666671c71 d5473ae4db111992
heuristics/cert_id BSI-DSZ-CC-1150-2021 BSI-DSZ-CC-1038-2017
heuristics/extracted_versions 2.0.9 2.0.5
heuristics/report_references/directly_referenced_by {} BSI-DSZ-CC-1150-2021
heuristics/report_references/directly_referencing BSI-DSZ-CC-1038-2017 BSI-DSZ-CC-0943-2015
heuristics/report_references/indirectly_referenced_by {} BSI-DSZ-CC-1150-2021
heuristics/report_references/indirectly_referencing BSI-DSZ-CC-0943-2015, BSI-DSZ-CC-1038-2017 BSI-DSZ-CC-0943-2015
heuristics/scheme_data
  • category: Server applications
  • cert_id: BSI-DSZ-CC-1150-2021
  • certification_date: 02.02.2021
  • enhanced:
    • applicant: GDV Dienstleistungs-GmbH Glockengießerwall 1 20095 Hamburg
    • assurance_level: EAL2
    • cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150c_pdf.pdf?__blob=publicationFile&v=1
    • certification_date: 02.02.2021
    • description: The Target of Evaluation (TOE) is a Security Token Service (STS). It has been implemented as a pure software application and due to the field of operation in the context of insurance it is further referenced as Insurance Security Token Service (ISTS). The software application provides software based security tokens used for authentication purposes of the Trusted German Insurance Cloud (TGIC) web services. In addition, the TOE provides the possibility to validate and to cancel the issued tokens. Further the security features of the TOE comprise the functionality Security Audit, Identification and Authentication whereas some authentication mechanisms are provided by the operational environment and finally Security Management.
    • evaluation_facility: TÜV Informationstechnik GmbH
    • expiration_date: 01.02.2026
    • product: Insurance Security Token Server (ISTS), Version 2.0.9
    • report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150a_pdf.pdf?__blob=publicationFile&v=1
    • target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1150b_pdf.pdf?__blob=publicationFile&v=1
  • product: Insurance Security Token Server (ISTS), Version 2.0.9
  • subcategory: Other server applications
  • url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Serveranwendungen_Sonstiges/1150.html
  • vendor: GDV Dienstleistungs-GmbH
pdf_data/cert_filename 1150c_pdf.pdf None
pdf_data/cert_keywords/cc_cert_id
  • DE:
    • BSI-DSZ-CC-1150-2021: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
  • EAL:
    • EAL 2: 1
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
  • ISO:
    • ISO/IEC 15408: 2
    • ISO/IEC 18045: 2
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata
  • /Author: Bundesamt für Sicherheit in der Informationstechnik
  • /CreationDate: D:20210205065853+01'00'
  • /Creator: Writer
  • /Keywords: "Common Criteria, Certification, Zertifizierung, Serveranwendung, ISTS"
  • /ModDate: D:20210302091356+01'00'
  • /Producer: LibreOffice 6.3
  • /Subject: Insurance Security Token Server (ISTS), Version 2.0.9
  • /Title: Zertifizierungsreport BSI-DSZ-CC-1150-2021
  • pdf_file_size_bytes: 255156
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename 1150a_pdf.pdf 1038a_pdf.pdf
pdf_data/report_frontpage
  • DE:
    • cert_id: BSI-DSZ-CC-1150-2021
    • cert_item: Insurance Security Token Server (ISTS), Version 2.0.9
    • cert_lab: BSI
    • developer: GDV Dienstleistungs-GmbH
    • match_rules: ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)']
  • DE:
    • cert_id: BSI-DSZ-CC-1038-2017
    • cert_item: Insurance Security Token Service (ISTS), Version 2.0.5
    • cert_lab: BSI
    • developer: GDV Dienstleistungs-GmbH
    • match_rules: ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)']
pdf_data/report_keywords/cc_cert_id
  • DE:
    • BSI-DSZ-CC-1038-2017: 2
    • BSI-DSZ-CC-1150-2021: 15
  • DE:
    • BSI-DSZ-CC-0943-2015: 3
    • BSI-DSZ-CC-1038-2017: 19
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 1: 1
    • EAL 2: 5
    • EAL 4: 1
  • EAL:
    • EAL 2: 5
    • EAL1: 1
    • EAL4: 1
pdf_data/report_keywords/cc_sar
  • ADV:
    • ADV_FSP: 1
  • AGD:
    • AGD_OPE: 1
    • AGD_PRE: 1
  • ALC:
    • ALC_FLR: 1
  • AGD:
    • AGD_OPE: 1
    • AGD_PRE: 1
  • ALC:
    • ALC_FLR: 1
  • AVA:
    • AVA_VAN: 1
pdf_data/report_keywords/eval_facility
  • TUV:
    • TÜV Informationstechnik: 3
    • TÜViT: 2
  • TUV:
    • TÜV Informationstechnik: 2
    • TÜViT: 1
pdf_data/report_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES256: 1
  • AES_competition:
    • AES:
      • AES: 1
      • AES256: 1
  • DES:
    • 3DES:
      • Triple-DES: 1
    • DES:
      • DES: 2
pdf_data/report_keywords/hash_function
  • SHA:
    • SHA2:
      • SHA-256: 2
      • SHA256: 1
  • SHA:
    • SHA2:
      • SHA-256: 3
      • SHA256: 1
pdf_data/report_keywords/cipher_mode
  • CBC:
    • CBC: 1
pdf_data/report_keywords/side_channel_analysis
  • other:
    • JIL: 2
pdf_data/report_keywords/standard_id
  • BSI:
    • AIS 14: 1
    • AIS 19: 1
    • AIS 32: 1
    • AIS 41: 1
    • AIS 45: 1
  • ISO:
    • ISO/IEC 15408: 4
    • ISO/IEC 17065: 2
    • ISO/IEC 18045: 4
  • X509:
    • X.509: 4
  • BSI:
    • AIS 19: 1
    • AIS 32: 1
    • AIS 35: 1
    • AIS 36: 1
    • AIS 38: 1
    • AIS 41: 2
    • AIS 45: 1
    • AIS14: 1
    • AIS19: 1
    • AIS32: 1
    • AIS41: 1
    • AIS45: 1
  • ISO:
    • ISO/IEC 15408: 4
    • ISO/IEC 17065: 2
    • ISO/IEC 18045: 4
  • X509:
    • X.509: 4
pdf_data/report_metadata
pdf_data/st_filename 1150b_pdf.pdf 1038b_pdf.pdf
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 3
  • DES:
    • DES:
      • DES: 1
  • constructions:
    • MAC:
      • HMAC: 2
  • AES_competition:
    • AES:
      • AES: 3
  • DES:
    • DES:
      • DES: 1
pdf_data/st_keywords/hash_function
  • SHA:
    • SHA2:
      • SHA-256: 4
      • SHA-512: 1
      • SHA256: 1
      • SHA512: 1
  • SHA:
    • SHA2:
      • SHA-256: 4
      • SHA256: 1
pdf_data/st_keywords/standard_id
  • CC:
    • CCMB-2017-04-001: 1
    • CCMB-2017-04-002: 1
    • CCMB-2017-04-003: 1
  • FIPS:
    • FIPS PUB 180-4: 1
    • FIPS PUB 197: 1
  • PKCS:
    • PKCS#1: 4
  • RFC:
    • RFC 3268: 1
    • RFC 6234: 1
    • RFC 6238: 2
    • RFC 6931: 1
    • RFC3268: 2
    • RFC6234: 1
    • RFC6238: 1
    • RFC6931: 3
  • X509:
    • X.509: 12
  • CC:
    • CCMB-2017-04-001: 1
    • CCMB-2017-04-002: 1
    • CCMB-2017-04-003: 1
  • FIPS:
    • FIPS PUB 180-4: 1
    • FIPS PUB 197: 1
  • PKCS:
    • PKCS#1: 4
  • RFC:
    • RFC 3268: 1
    • RFC 6931: 1
    • RFC3268: 2
    • RFC6931: 3
  • X509:
    • X.509: 12
pdf_data/st_metadata
state/cert/convert_ok True False
state/cert/download_ok True False
state/cert/extract_ok True False
state/cert/pdf_hash Different Different
state/cert/txt_hash Different Different
state/report/pdf_hash Different Different
state/report/txt_hash Different Different
state/st/pdf_hash Different Different
state/st/txt_hash Different Different