| name |
uCosminexus Application Server 07-00 |
Spreadtrum Unisoc TEE OS version 2.1.2 |
| category |
Access Control Devices and Systems |
Trusted Computing |
| scheme |
JP |
NL |
| status |
archived |
active |
| not_valid_after |
07.10.2013 |
12.12.2028 |
| not_valid_before |
22.03.2007 |
12.12.2023 |
| cert_link |
|
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0492117-CERT.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0086_ecvr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0492117-CR.pdf |
| st_link |
|
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/NSCIB-CC-0492117-ST%20Lite-v0.30.pdf |
| manufacturer |
Hitachi, Ltd. |
Spreadtrum Communications(Shanghai) Co., Ltd |
| manufacturer_web |
https://www.hitachi.com/ |
http:%20//www.unisoc.com/ |
| security_level |
ALC_FLR.1, EAL2+ |
EAL2+ |
| dgst |
3a2713aa094e7f64 |
3f3135d0517d27f9 |
| heuristics/cert_id |
JISEC-CC-CRP-C0086 |
NSCIB-CC-0492117-CR |
| heuristics/cert_lab |
[] |
|
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ALC_FLR.1 |
ASE_INT.1, ASE_SPD.1, ASE_CCL.1, ADV_TDS.1, AVA_VAN.2, ASE_REQ.2, ASE_OBJ.2, ASE_TSS.1, AGD_PRE.1, ASE_ECD.1, ALC_DEL.1, ADV_FSP.2, ATE_FUN.1, AGD_OPE.1, ATE_COV.1, ALC_CMS.2, ADV_ARC.1, ALC_CMC.2, ATE_IND.2 |
| heuristics/extracted_versions |
00, 07 |
2.1.2 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
- cert_id: JISEC-CC-CRP-C0234
- certification_date: 01.08.2009
- claim: EAL2+ ALC_FLR.1
- enhanced:
- assurance_level: EAL2 Augmented with ALC_FLR.1
- cc_version: 3.1
- description: PRODUCT DESCRIPTION Description of TOE TOE is a Web application server software product that is a J2EE(TM) (Java(TM) 2 Platform, Enterprise Edition)-compliant. TOE provides runtime and management environments. The product, that includes TOE, is mainly consist of Web container and EJB(TM) container that is Java 2 Platform, Enterprise Edition 1.4 compatible platform. And it also includes various software to execute and manage J2EE-compliant Java applications. It improves availability and reliability of the business application system, and provides several functions in order to manage business application system efficiently. TOE security functionality Security functions provided by TOE are as follows: - User identification and authentication This function uses user ID and password for user identification and authentication. - Access control This function provides access control for both Web and EJB container objects by using authenticated user information. - Security management This function manages information of user identification and authentication, access control information, and access control permitted to an application.
- evaluation_facility: Mizuho Information & Research Institute, Inc. Center for Evaluation of Information Security
- product: uCosminexus Application Server
- product_type: Application Server
- toe_version: 08-00
- vendor: Hitachi, Ltd.
- expiration_date: 01.08.2014
- supplier: Hitachi, Ltd.
- toe_japan_link: https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0234_it9250.html
- toe_japan_name: uCosminexus Application Server 08-00
- toe_overseas_link: None
- toe_overseas_name: -----
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
|
NSCIB-CC-0492117-CERT.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
- EAL:
- EAL2: 2
- EAL2 augmented: 1
- EAL4: 1
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
- ISO:
- ISO/IEC 15408-1: 1
- ISO/IEC 15408-2: 1
- ISO/IEC 15408-3: 1
- ISO/IEC 18045: 2
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
- /Author: kruitr
- /CreationDate: D:20231220093800+01'00'
- /Creator: Bullzip PDF Printer (11.10.0.2761)
- /ModDate: D:20231220094050+01'00'
- /Producer: PDF Printer / www.bullzip.com / FPG / TUV Rheinland Service GmbH
- /Title: Microsoft Word - NSCIB-CC-0492117-CERT.doc
- pdf_file_size_bytes: 267546
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
c0086_ecvr.pdf |
NSCIB-CC-0492117-CR.pdf |
| pdf_data/report_frontpage |
|
- NL:
- cert_id: NSCIB-CC-0492117-CR
- cert_item: Unisoc TEE OS version 2.1.2
- cert_lab: Riscure B.V.
- developer: Spreadtrum Communications(Shanghai)Co., Ltd
|
| pdf_data/report_keywords/cc_cert_id |
- JP:
- Certification No. C0086: 1
|
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 2: 1
- EAL 2 augmented: 1
- EAL2: 1
- EAL2 augmented: 1
- EAL2+: 1
- EAL4: 1
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
- A:
- A.SECURE_HARDWARE_PLATFORM: 1
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
- FI:
- fault Injection: 1
- malfunction: 1
- SCA:
- other:
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
- /CreationDate: D:20070323205213+09'00'
- /ModDate: D:20070323205213+09'00'
- /Producer: Acrobat Distiller 6.0 (Windows)
- /Title: untitled
- pdf_file_size_bytes: 13111
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
|
| pdf_data/st_filename |
|
NSCIB-CC-0492117-ST Lite-v0.30.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 2: 4
- EAL 2 augmented: 1
- EAL 2+: 1
- EAL2: 2
|
| pdf_data/st_keywords/cc_sar |
|
- ADV:
- ADV_ARC: 1
- ADV_ARC.1: 6
- ADV_FSP: 1
- ADV_FSP.1: 5
- ADV_FSP.2: 11
- ADV_TDS: 1
- ADV_TDS.1: 9
- AGD:
- AGD_OPE: 2
- AGD_OPE.1: 9
- AGD_PRE: 2
- AGD_PRE.1: 7
- ALC:
- ALC_CMC: 1
- ALC_CMC.2: 1
- ALC_CMS: 1
- ALC_CMS.1: 1
- ALC_CMS.2: 2
- ALC_DEL: 1
- ALC_DEL.1: 1
- ASE:
- ASE_CCL: 1
- ASE_CCL.1: 1
- ASE_ECD: 1
- ASE_ECD.1: 5
- ASE_INT: 1
- ASE_INT.1: 2
- ASE_OBJ: 1
- ASE_OBJ.2: 1
- ASE_REQ: 1
- ASE_REQ.1: 4
- ASE_REQ.2: 3
- ASE_SPD: 1
- ASE_SPD.1: 2
- ASE_TSS: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV: 1
- ATE_COV.1: 4
- ATE_FUN: 1
- ATE_FUN.1: 5
- ATE_IND: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
|
- FAU:
- FAU_ARP: 2
- FAU_ARP.1: 7
- FAU_ARP.1.1: 1
- FAU_SAA.1: 2
- FAU_SAR.1: 1
- FAU_STG.1: 1
- FCS:
- FCS_CKM: 2
- FCS_CKM.1: 8
- FCS_CKM.4: 13
- FCS_CKM.4.1: 1
- FCS_COP: 4
- FCS_COP.1: 14
- FCS_COP.1.1: 1
- FCS_RNG.1: 1
- FDP:
- FDP_ACC: 24
- FDP_ACC.1: 9
- FDP_ACF: 18
- FDP_ACF.1: 10
- FDP_IFC: 12
- FDP_IFC.1: 7
- FDP_IFC.2: 3
- FDP_IFF: 13
- FDP_IFF.1: 7
- FDP_ITC: 3
- FDP_ITC.1: 8
- FDP_ITC.1.1: 1
- FDP_ITC.1.2: 1
- FDP_ITC.1.3: 1
- FDP_ITC.2: 4
- FDP_ITT: 8
- FDP_ITT.1: 1
- FDP_RIP: 7
- FDP_RIP.1: 1
- FDP_ROL: 7
- FDP_ROL.1: 2
- FDP_SDI: 2
- FDP_SDI.2: 9
- FDP_SDI.2.1: 1
- FDP_SDI.2.2: 1
- FIA:
- FIA_ATD: 2
- FIA_ATD.1: 7
- FIA_ATD.1.1: 1
- FIA_UID: 2
- FIA_UID.1: 2
- FIA_UID.2: 6
- FIA_UID.2.1: 1
- FIA_USB: 2
- FIA_USB.1: 6
- FIA_USB.1.1: 1
- FIA_USB.1.2: 1
- FIA_USB.1.3: 1
- FMT:
- FMT_MSA: 37
- FMT_MSA.1: 4
- FMT_MSA.3: 11
- FMT_SMF: 2
- FMT_SMF.1: 13
- FMT_SMF.1.1: 1
- FMT_SMR: 2
- FMT_SMR.1: 14
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_FLS: 2
- FPT_FLS.1: 8
- FPT_FLS.1.1: 1
- FPT_INI.1: 1
- FPT_ITT: 1
- FPT_STM: 1
- FPT_TEE: 2
- FPT_TEE.1: 5
- FPT_TEE.1.1: 1
- FPT_TEE.1.2: 1
|
| pdf_data/st_keywords/cc_claims |
|
- A:
- A.INTEGRATION: 3
- A.PROTECTION_: 1
- A.PROTECTION_AFTER_DELIVERY: 2
- A.ROLLBACK: 3
- A.ROOT_KEY: 3
- A.SECUREBOOT: 3
- A.SECURE_: 1
- A.SECURE_HARDWARE_PLATFORM: 2
- A.TA_DEVELOPMENT: 3
- A.TA_MANAGEMENT: 3
- O:
- O.CA_TA_IDENTIFICATION: 10
- O.INITIALIZATION: 1
- O.INSTANCE_TIME: 1
- O.KEYS_USAGE: 9
- O.OPERATION: 10
- O.RNG: 1
- O.RUNTIME_CONFIDENTIALITY: 19
- O.RUNTIME_INTEGRITY: 10
- O.TA_AUTHENTICITY: 15
- O.TA_ISOLATION: 6
- O.TEE_DATA_PROTECTION: 18
- O.TEE_ID: 1
- O.TEE_ISOLATION: 1
- O.TRUSTED_STORAGE: 8
- OE:
- OE.DISABLED_DEBUG: 6
- OE.INITIALIZATION: 17
- OE.INSTANCE_TIME: 6
- OE.INTEGRATION_CONFIGURATION: 10
- OE.PROTECTION_AFTER_DELIVERY: 7
- OE.RNG: 6
- OE.ROLLBACK: 5
- OE.ROOT_KEY: 3
- OE.SECRETS: 3
- OE.TA_DEVELOPMENT: 8
- OE.TA_MANAGEMENT: 3
- OE.TEE_ISOLATION: 27
- OE.TRUSTED_HARDWARE: 31
- OP:
- OP.EXTRACT_KEY: 3
- OP.LOAD: 2
- OP.STORE: 3
- OP.USE_KEY: 3
- OSP:
- OSP.INTEGRATION_: 1
- OSP.INTEGRATION_CONFIGURATION: 2
- OSP.SECRETS: 3
- T:
- T.ABUSE_DEBUG: 3
- T.ABUSE_FUNC: 2
- T.ABUSE_FUNCT: 1
- T.CLONE: 3
- T.FLASH_DUMP: 3
- T.IMPERSONATION: 3
- T.PERTURBATION: 3
- T.RAM: 3
- T.RNG: 3
- T.ROGUE_CODE_: 1
- T.ROGUE_CODE_EXECUTION: 2
- T.SPY: 3
- T.STORAGE_: 1
- T.STORAGE_CORRUPTION: 2
- T.TEE_FIRMWARE_DOWNGRADE: 1
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
- AES_competition:
- DES:
- constructions:
- MAC:
- CBC-MAC: 1
- CMAC: 1
- HMAC: 2
- HMAC-SHA-256: 1
- HMAC-SHA-512: 1
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
- SHA:
- SHA2:
- SHA-256: 3
- SHA224: 1
- SHA256: 1
- SHA384: 1
- SHA512: 1
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
- CBC:
- CCM:
- CFB:
- CTR:
- ECB:
- OFB:
|
| pdf_data/st_keywords/ecc_curve |
|
- NIST:
- P-192: 4
- P-224: 4
- P-256: 4
- P-384: 4
- P-521: 4
- ansip160k1: 2
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- SCA:
- Side-channel: 1
- side-channels: 1
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
- ARM:
- ARM TrustZone: 4
- TrustZone: 2
- IBM:
- other:
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- FIPS:
- FIPS 180-4: 1
- FIPS 186-4: 3
- FIPS 197: 3
- FIPS 46-3: 2
- FIPS 81: 2
- FIPS PUB 180-4: 1
- FIPS PUB 186-4: 1
- NIST:
- RFC:
- RFC 5480: 2
- RFC 8017: 3
- RFC-3610: 1
- RFC-4231: 1
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- TA/TEE isolation functionality. It is not considered for isolation between REE and TEE, as that is out of scope. Information: Unisoc TEE OS Security Target Lite v0.30 - 66 - No changes needed. 6.1 SECURITY: 1
- are managed between the delivery and the end-usage phase. Note that the operational environment is out of scope of the evaluation. A.TA_MANAGEMENT: If the TEE allows managing the set of TAs, e.g. updating: 1
- as the TOE does not contain the hardware elements of the TEE, some of the lifecycle phases are out of scope. Nevertheless, a description of all phases is included in order to fully understand the life cycle: 1
- or hardware component which may be used alternatively by the TEE, and this separation is now out of scope. - S.RAM_UNIT is modified to consider only the “TA Identifier” security attribute, removing the REE: 1
- out of scope: 4
|
| pdf_data/st_metadata |
|
|
| state/cert/convert_garbage |
False |
False |
| state/cert/convert_ok |
False |
True |
| state/cert/download_ok |
False |
True |
| state/cert/extract_ok |
False |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
False |
True |
| state/st/download_ok |
False |
True |
| state/st/extract_ok |
False |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |