sec-certs.org

	Oracle Linux 7.3 OSPP CSEC2017014	IDentity Applet v3.4-p1/PACE-EAC1 on NXP JCOP 4 P71 OCSI/CERT/CCL/06/2021/RC
name	Oracle Linux 7.3 OSPP	IDentity Applet v3.4-p1/PACE-EAC1 on NXP JCOP 4 P71
category	Operating Systems	ICs, Smart Cards and Smart Card-Related Devices and Systems
scheme	SE	IT
status	archived	active
not_valid_after	14.02.2024	11.10.2026
not_valid_before	14.02.2019	11.10.2021
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Certificate%20Oracle%20Linux%20OSPP%20CCRA.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Certification%20Report%20v2.0%20-%20Oracle%20Linux%20OSPP.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cr_idapplet34p1_pace_v1.0_en.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/pracle%20ospp%20st.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_idapplet34p1_pace_v1.04.pdf
manufacturer	Oracle Corporation	ID&Trust Ltd.
manufacturer_web	https://www.oracle.com	https://www.idandtrust.com/
security_level	{}	AVA_VAN.5, ALC_DVS.2, ATE_DPT.2, EAL4+
dgst	4cb308955bf45aed	3504e25ede0c3dea
heuristics/cert_id	CSEC2017014	OCSI/CERT/CCL/06/2021/RC
heuristics/cert_lab	[]	[]
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ATE_IND.1, AVA_VAN.1, ASE_ECD.1, ASE_OBJ.1, AGD_PRE.1, ASE_INT.1, AGD_OPE.1, ALC_CMS.1, ADV_FSP.1, ALC_CMC.1, ASE_REQ.1, ALC_FLR.3, ASE_CCL.1, ASE_TSS.1	ASE_INT.1, ALC_TAT.1, ADV_FSP.4, ASE_SPD.1, ASE_TSS.2, ATE_COMP.1, ASE_CCL.1, ADV_COMP.1, ADV_TDS.3, ALC_CMC.4, ALC_LCD.1, ATE_COV.2, ASE_REQ.2, ASE_OBJ.2, AVA_VAN.5, ASE_ECD.1, ALC_DEL.1, ATE_FUN.1, ADV_IMP.1, AGD_PRE.1, AGD_OPE.1, ASE_COMP.1, ADV_SPM.1, ALC_COMP.1, ALC_DVS.2, ALC_FLR.1, ADV_ARC.1, AVA_COMP.1, ALC_CMS.4, ATE_DPT.2, ATE_IND.2
heuristics/extracted_versions	7.3	3.4
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	OCSI/CERT/CCL/09/2022/RC
heuristics/report_references/directly_referencing	{}	OCSI/CERT/SYS/06/2016/RC, BSI-DSZ-CC-1136-2021
heuristics/report_references/indirectly_referenced_by	{}	OCSI/CERT/CCL/09/2022/RC
heuristics/report_references/indirectly_referencing	{}	BSI-DSZ-CC-0858-2013, BSI-DSZ-CC-1136-2021, BSI-DSZ-CC-0645-2010, BSI-DSZ-CC-0707-2012, NSCIB-CC-13-37762-CR, OCSI/CERT/SYS/06/2016/RC, NSCIB-CC-13-37760-CR2, OCSI/CERT/SYS/02/2016/RC, OCSI/CERT/SYS/04/2015/RC, BSI-DSZ-CC-0750-V2-2014
heuristics/scheme_data		certification_date: 11.10.2021 level: EAL4+ report_link_en: https://www.ocsi.gov.it/documenti/certificazioni/idtrust/cr_idapplet34p1_pace_v1.0_en.pdf report_link_it: https://www.ocsi.gov.it/documenti/certificazioni/idtrust/rc_idapplet34p1_pace_v1.0_it.pdf supplier: ID&Trust Ltd. target_link: https://www.ocsi.gov.it/documenti/certificazioni/idtrust/st_idapplet34p1_pace_v1.04.pdf title: IDentity Applet v3.4-p1/PACE-EAC1 on NXP JCOP 4 P71
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	BSI-DSZ-CC-1136-2021
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	BSI-DSZ-CC-1136-2021
heuristics/protection_profiles	1edd61e3f1f2ce0d	a33327d40f253f46, b380aabf93b29692
maintenance_updates
protection_profiles
protection_profile_links	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp_os_v4.1.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0056_V2b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0068_V2b_pdf.pdf
pdf_data/cert_filename	Certificate Oracle Linux OSPP CCRA.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id	SE: CSEC2017014: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level	EAL: EAL 2: 1
pdf_data/cert_keywords/cc_sar	ALC: ALC_FLR: 1
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility	atsec: atsec: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol	SSH: SSH: 1
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/CreationDate: D:20190321134048+01'00' /Creator: RICOH MP C4504ex /ModDate: D:20190321134809+01'00' /Producer: RICOH MP C4504ex pdf_file_size_bytes: 915753 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	Certification Report v2.0 - Oracle Linux OSPP.pdf	cr_idapplet34p1_pace_v1.0_en.pdf
pdf_data/report_frontpage
pdf_data/report_keywords/cc_cert_id	SE: CSEC2017014: 18	DE: BSI-DSZ-CC-1136-2021: 1 IT: OCSI/CERT/CCL/06/2021/RC: 33 OCSI/CERT/SYS/06/2016/RC: 1 NL: NSCIB-CC-180212-CR3: 1
pdf_data/report_keywords/cc_protection_profile_id		BSI: BSI-CC-PP-0056-V2-2012: 4 BSI-CC-PP-0068-V2-2011-MA-01: 4
pdf_data/report_keywords/cc_security_level	EAL: EAL1: 1	EAL: EAL2: 4 EAL4: 11 EAL4 augmented: 1 EAL4+: 1 EAL6: 2 EAL6 augmented: 2 EAL6+: 1
pdf_data/report_keywords/cc_sar	ADV: ADV_FSP.1: 1 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.1: 1 ALC_CMS.1: 1 ALC_FLR.3: 1 ASE: ASE_CCL.1: 1 ASE_ECD.1: 1 ASE_INT.1: 1 ASE_OBJ.1: 1 ASE_REQ.1: 1 ASE_TSS.1: 1 ATE: ATE_IND.1: 1 AVA: AVA_VAN.1: 1	ADV: ADV_ARC.1: 1 ADV_COMP.1: 1 ADV_FSP.4: 1 ADV_IMP.1: 1 ADV_TDS.3: 1 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.4: 1 ALC_CMS.4: 1 ALC_COMP.1: 1 ALC_DEL.1: 1 ALC_DVS.2: 7 ALC_FLR: 1 ALC_FLR.1: 2 ALC_LCD.1: 1 ALC_TAT.1: 1 ASE: ASE_CCL.1: 1 ASE_COMP.1: 1 ASE_ECD.1: 1 ASE_INT.1: 1 ASE_OBJ.2: 1 ASE_REQ.2: 1 ASE_SPD.1: 1 ASE_TSS.1: 1 ASE_TSS.2: 2 ATE: ATE_COMP: 1 ATE_COMP.1: 1 ATE_COV.2: 1 ATE_DPT.2: 7 ATE_FUN.1: 1 ATE_IND.2: 1 AVA: AVA_COMP: 1 AVA_COMP.1: 1 AVA_VAN.5: 8
pdf_data/report_keywords/cc_sfr		FAU: FAU_SAS.1: 1 FCS: FCS_RND.1: 1 FIA: FIA_API.1: 1 FMT: FMT_LIM.1: 1 FMT_LIM.2: 1 FPT: FPT_EMS.1: 1
pdf_data/report_keywords/cc_claims	A: A.PLATFORM: 1 A.PROPER_ADMIN: 1 A.PROPER_USER: 1 T: T.LIMITED_PHYSICAL_ACCESS: 1 T.LOCAL_ATTACK: 1 T.NETWORK_ATTACK: 1 T.NETWORK_EAVESDROP: 1	O: O.J: 1
pdf_data/report_keywords/vendor		NXP: NXP: 20 NXP Semiconductors: 4
pdf_data/report_keywords/eval_facility	atsec: atsec: 5	CCLab: CCLab Software Laboratory: 5
pdf_data/report_keywords/symmetric_crypto		AES_competition: AES: AES: 2 DES: 3DES: 3DES: 2
pdf_data/report_keywords/asymmetric_crypto	ECC: ECDSA: ECDSA: 1	ECC: ECC: ECC: 1 FF: DH: Diffie-Hellman: 4
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function	PBKDF: PBKDF2: 2 SHA: SHA2: SHA-256: 1
pdf_data/report_keywords/crypto_scheme	KEX: Key Exchange: 1 MAC: MAC: 1
pdf_data/report_keywords/crypto_protocol	IKE: IKE: 1 SSH: SSH: 7 SSHv2: 2 TLS: TLS: TLS: 6 TLS v1.2: 1	PACE: PACE: 31
pdf_data/report_keywords/randomness	RNG: RNG: 1
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine		SmartMX: SmartMX3: 2
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability	CVE: CVE-2017-9150: 1 CVE-2018-14634: 1
pdf_data/report_keywords/side_channel_analysis		FI: fault injection: 1 SCA: side channel: 1 other: JIL-COMP: 7
pdf_data/report_keywords/technical_report_id		BSI: BSI TR-03110-1: 1
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name		JCOP: JCOP 4: 15
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id	CC: CCMB-2017-04-001: 1 CCMB-2017-04-004: 1 ISO: ISO/IEC 17025: 2 RFC: RFC 2460: 1 RFC 3484: 1 RFC 3542: 1 RFC 4213: 1 X509: X.509: 1	CC: CCMB-2017-04-001: 1 CCMB-2017-04-002: 1 CCMB-2017-04-003: 1 CCMB-2017-04-004: 1 ICAO: ICAO: 12 ISO: ISO/IEC 15408: 6
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process	OutOfScope: OS relies upon a trustworthy computing platform for its execu- tion. This underlying platform is out of scope of this PP. 4.3 Clarification of Scope The Security Target [ST] contains four threats, which have: 1 out of scope: 1
pdf_data/report_metadata	/Author: MIXRO /CreationDate: D:20190321091650+01'00' /ModDate: D:20190321140531+01'00' /Producer: Microsoft: Print To PDF /Title: Microsoft Word - Certification Report - Oracle Linux 7 OSPP pdf_file_size_bytes: 765983 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 17	/Author: OCSI /CreationDate: D:20211011115813+00'00' /Creator: Microsoft Word /ModDate: D:20211011115813+00'00' /Title: Certification Report "IDentity Applet v3.4-p1/PACE-EAC1 on NXP JCOP 4 P71" pdf_file_size_bytes: 565699 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 33
pdf_data/st_filename	pracle ospp st.pdf	st_idapplet34p1_pace_v1.04.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id	SE: CSEC2017014: 2	DE: BSI-DSZ-CC-1136-2021: 1 NL: NSCIB-CC-180212-CR3: 2
pdf_data/st_keywords/cc_protection_profile_id		BSI: BSI-CC-PP- 0055: 1 BSI-CC-PP- 0056-V2-2012: 1 BSI-CC-PP- 0068-V2-2011: 1 BSI-CC-PP- 0087: 1 BSI-CC-PP-0055: 1 BSI-CC-PP-0056-V2-2012: 4 BSI-CC-PP-0068-V2-2011-: 1 BSI-CC-PP-0068-V2-2011-MA-01: 3 BSI-CC-PP-0087: 1 BSI-CC-PP-0099-2017: 1 BSI-PP-0035-2007: 1
pdf_data/st_keywords/cc_security_level		EAL: EAL 4: 3 EAL 4 augmented: 1 EAL 6: 2 EAL 6+: 2 EAL4: 4 EAL4 augmented: 3 EAL4+: 1 EAL6: 1 EAL6 augmented: 1 EAL6+: 1
pdf_data/st_keywords/cc_sar		ADV: ADV_ARC.1: 1 ADV_SPM.1: 1 AGD: AGD_PRE.1: 1 ALC: ALC_DEL.1: 1 ALC_DVS.2: 6 ALC_FLR.1: 4 ASE: ASE_TSS.2: 4 ATE: ATE_DPT.2: 6 AVA: AVA_VAN.3: 2 AVA_VAN.5: 6
pdf_data/st_keywords/cc_sfr	FAU: FAU_GEN.1: 2 FAU_GEN.1.1: 1 FAU_GEN.1.2: 1 FCS: FCS_CKM: 1 FCS_CKM.1: 2 FCS_CKM.1.1: 1 FCS_CKM.2: 2 FCS_CKM.2.1: 1 FCS_CKM.4: 2 FCS_CKM.4.1: 1 FCS_COP.1: 11 FCS_COP.1.1: 4 FCS_RBG_EXT.1: 2 FCS_RBG_EXT.1.1: 1 FCS_RBG_EXT.1.2: 1 FCS_SSHC_EXT.1: 2 FCS_SSHC_EXT.1.1: 1 FCS_SSHC_EXT.1.2: 1 FCS_SSHC_EXT.1.3: 1 FCS_SSHC_EXT.1.4: 1 FCS_SSHC_EXT.1.5: 1 FCS_SSHC_EXT.1.6: 1 FCS_SSHC_EXT.1.7: 1 FCS_SSHC_EXT.1.8: 1 FCS_SSHS_EXT.1: 2 FCS_SSHS_EXT.1.1: 1 FCS_SSHS_EXT.1.2: 1 FCS_SSHS_EXT.1.3: 1 FCS_SSHS_EXT.1.4: 1 FCS_SSHS_EXT.1.5: 1 FCS_SSHS_EXT.1.6: 1 FCS_SSHS_EXT.1.7: 1 FCS_SSH_EXT.1: 2 FCS_SSH_EXT.1.1: 1 FCS_STO_EXT.1: 2 FCS_STO_EXT.1.1: 1 FCS_TLSC_EXT: 1 FCS_TLSC_EXT.1: 4 FCS_TLSC_EXT.1.1: 2 FCS_TLSC_EXT.1.2: 2 FCS_TLSC_EXT.1.3: 1 FCS_TLSC_EXT.2: 2 FCS_TLSC_EXT.2.1: 1 FCS_TLSS_EXT.1.1: 1 FDP: FDP_ACF_EXT.1: 2 FDP_ACF_EXT.1.1: 1 FDP_IFC_EXT.1: 2 FDP_IFC_EXT.1.1: 1 FIA: FIA_AFL.1: 2 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_ATD.1: 1 FIA_UAU.5: 2 FIA_UAU.5.1: 1 FIA_UAU.5.2: 2 FMT: FMT_MOF: 1 FMT_MOF_EXT.1: 2 FMT_MOF_EXT.1.1: 1 FMT_SMF: 1 FMT_SMF_EXT.1: 4 FMT_SMF_EXT.1.1: 2 FPT: FPT_ACF_EXT.1: 2 FPT_ACF_EXT.1.1: 1 FPT_ACF_EXT.1.2: 1 FPT_ASLR_EXT.1: 2 FPT_ASLR_EXT.1.1: 1 FPT_SBOP_EXT.1: 2 FPT_SBOP_EXT.1.1: 1 FPT_TST_EXT.1: 3 FPT_TST_EXT.1.1: 1 FPT_TUD_EXT.1: 2 FPT_TUD_EXT.1.1: 1 FPT_TUD_EXT.1.2: 1 FPT_TUD_EXT.2: 2 FPT_TUD_EXT.2.1: 1 FPT_TUD_EXT.2.2: 1 FTP: FTP_ITC_EXT.1: 2 FTP_ITC_EXT.1.1: 1 FTP_TRP.1: 2 FTP_TRP.1.1: 1 FTP_TRP.1.2: 1 FTP_TRP.1.3: 1	FAU: FAU_ARP.1: 2 FAU_SAS: 3 FAU_SAS.1: 8 FAU_SAS.1.1: 1 FCO: FCO_NRO.2: 1 FCS: FCS_CKM: 64 FCS_CKM.1: 12 FCS_CKM.1.1: 2 FCS_CKM.2: 6 FCS_CKM.4: 29 FCS_CKM.4.1: 1 FCS_COP: 61 FCS_COP.1: 18 FCS_COP.1.1: 32 FCS_RND: 3 FCS_RND.1: 5 FCS_RND.1.1: 1 FCS_RNG.1: 4 FCS_UAU.1: 1 FDP: FDP_ACC: 8 FDP_ACC.1: 6 FDP_ACC.2: 4 FDP_ACF: 11 FDP_ACF.1: 14 FDP_IFC.1: 4 FDP_IFC.2: 3 FDP_IFF.1: 5 FDP_ITC.1: 8 FDP_ITC.2: 9 FDP_RIP: 4 FDP_RIP.1: 15 FDP_RIP.1.1: 1 FDP_ROL.1: 2 FDP_SDI.2: 3 FDP_UCT: 9 FDP_UCT.1: 1 FDP_UIT: 7 FDP_UIT.1: 3 FIA: FIA_AFL: 8 FIA_AFL.1: 3 FIA_API: 28 FIA_API.1: 9 FIA_API.1.1: 1 FIA_ATD.1: 2 FIA_UAU: 50 FIA_UAU.1: 4 FIA_UAU.2: 1 FIA_UAU.4: 2 FIA_UAU.5: 2 FIA_UAU.6: 2 FIA_UID: 12 FIA_UID.1: 9 FIA_UID.2: 1 FIA_USB.1: 2 FMT: FMT_LIM: 2 FMT_LIM.1: 12 FMT_LIM.1.1: 1 FMT_LIM.2: 12 FMT_LIM.2.1: 2 FMT_MSA.1: 11 FMT_MSA.2: 1 FMT_MSA.3: 12 FMT_MTD: 74 FMT_MTD.1: 11 FMT_MTD.3: 8 FMT_MTD.3.1: 1 FMT_SMF: 1 FMT_SMF.1: 35 FMT_SMF.1.1: 1 FMT_SMR: 20 FMT_SMR.1: 8 FPR: FPR_UNO.1: 1 FPT: FPT_EMS: 5 FPT_EMS.1: 8 FPT_EMS.1.1: 1 FPT_EMS.1.2: 1 FPT_FLS: 2 FPT_FLS.1: 11 FPT_FLS.1.1: 1 FPT_PHP: 2 FPT_PHP.3: 10 FPT_PHP.3.1: 1 FPT_RCV.3: 1 FPT_TDC.1: 1 FPT_TST: 3 FPT_TST.1: 6 FPT_TST.1.1: 1 FPT_TST.1.2: 1 FPT_TST.1.3: 1 FTP: FTP_ITC: 12 FTP_ITC.1: 7 FTP_TRP.1: 2
pdf_data/st_keywords/cc_claims	A: A.CONNECT: 1 A.PLATFORM: 4 A.PROPER_ADMIN: 4 A.PROPER_USER: 4 O: O.ACCOUNTABILITY: 2 O.INTEGRITY: 4 O.MANAGEMENT: 4 O.PROTECTED_COMMS: 4 O.PROTECTED_STORAGE: 3 OE: OE.PLATFORM: 3 OE.PROPER_ADMIN: 3 OE.PROPER_USER: 3 T: T.LIMITED_PHYSICAL_A: 1 T.LIMITED_PHYSICAL_ACCESS: 2 T.LOCAL_ATTACK: 3 T.NETWORK_ATTACK: 8 T.NETWORK_EAVESDRO: 1 T.NETWORK_EAVESDROP: 5	OE: OE.APPLET: 1 OE.APPS-PROVIDER: 1 OE.CODE-EVIDENCE: 1 OE.KEY-CHANGE: 1 OE.PROCESS_SEC_IC: 1 OE.SECURITY-DOMAINS: 1 OE.USE_DIAG: 1 OE.USE_KEYS: 1 OE.VERIFICATION: 1 OE.VERIFICATION-AUTHORITY: 1 OSP: OSP.KEY-CHANGE: 1 OSP.PROCESS-TOE: 1 OSP.SECURE-BOX: 2 OSP.SECURITY-DOMAINS: 2 OSP.VERIFICATION: 1 OT: OT.ALARM: 1 OT.APPLI-AUTH: 1 OT.ATTACK-COUNTER: 1 OT.CARD-CONFIGURATION: 1 OT.CARD-MANAGEMENT: 1 OT.CIPHER: 1 OT.COMM-AUTH: 1 OT.COMM_AUTH: 1 OT.COMM_CONFIDENTIALITY: 1 OT.COMM_INTEGRITY: 1 OT.DOMAIN-RIGHTS: 1 OT.EXT-MEM: 1 OT.FIREWALL: 1 OT.GLOBAL_ARRAYS_CONFID: 1 OT.IDENTIFICATION: 1 OT.KEY-MNGT: 1 OT.NATIVE: 1 OT.OBJ-DELETION: 1 OT.OPERATE: 1 OT.PIN-MNGT: 1 OT.REALLOCATION: 1 OT.RESOURCES: 1 OT.RESTRICTED-MODE: 1 OT.RND: 1 OT.RNG: 1 OT.SCP: 3 OT.SEC_BOX_FW: 1 OT.SENSITIVE_RESULT_INTEG: 1 OT.SID: 1 OT.SID_MODULE: 1 OT.TRANSACTION: 1
pdf_data/st_keywords/vendor		NXP: NXP: 8 NXP Semiconductors: 1
pdf_data/st_keywords/eval_facility	atsec: atsec: 165	BrightSight: Brightsight: 1
pdf_data/st_keywords/symmetric_crypto	AES_competition: AES: AES: 8 AES-128: 3 AES-256: 3 DES: 3DES: 3DES: 1 DES: DES: 1 constructions: MAC: HMAC: 24	AES_competition: AES: AES: 27 AES-: 1 DES: 3DES: 3DES: 3 TDES: 2 TripleDES: 6 DES: DES: 10 constructions: MAC: CMAC: 6 KMAC: 1
pdf_data/st_keywords/asymmetric_crypto	ECC: ECC: ECC: 2 ECDH: ECDH: 1 ECDSA: ECDSA: 15 FF: DH: DH: 2 Diffie-Hellman: 30 DSA: DSA: 1 RSA: RSA 2048: 1	ECC: ECC: ECC: 12 ECDH: ECDH: 10 ECDSA: ECDSA: 4 FF: DH: DH: 4 Diffie-Hellman: 13 RSA: RSA 1024: 3 RSA 2048: 1
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function	MD: MD5: MD5: 1 PBKDF: PBKDF2: 5 SHA: SHA1: SHA-1: 19 SHA2: SHA-2: 4 SHA-256: 12 SHA-384: 9 SHA-512: 9 SHA2: 1	SHA: SHA1: SHA-1: 4 SHA2: SHA-224: 3 SHA-256: 2 SHA-384: 1
pdf_data/st_keywords/crypto_scheme	KEX: Key Exchange: 1 Key exchange: 1 MAC: MAC: 16	KA: Key Agreement: 2 MAC: MAC: 9
pdf_data/st_keywords/crypto_protocol	IKE: IKE: 1 IPsec: IPsec: 1 SSH: SSH: 101 SSHv2: 15 TLS: TLS: TLS: 37 TLS 1.1: 1 TLS 1.2: 2 TLS v1.1: 1 TLS v1.2: 1 TLSv1.1: 1 TLSv1.2: 1 VPN: VPN: 5	PACE: PACE: 131
pdf_data/st_keywords/randomness	PRNG: DRBG: 7 RNG: RBG: 1	RNG: RND: 1 RNG: 3
pdf_data/st_keywords/cipher_mode	CBC: CBC: 5 CTR: CTR: 4 GCM: GCM: 4 XTS: XTS: 5	CBC: CBC: 2 CCM: CCM: 4
pdf_data/st_keywords/ecc_curve	NIST: NIST P-256: 4 NIST P-384: 4 NIST P-521: 3 P-256: 13 P-384: 13 P-521: 12 curve P-256: 1 curve P-384: 1 curve P-521: 1 secp256r1: 1 secp384r1: 1 secp521r1: 1
pdf_data/st_keywords/crypto_engine		SmartMX: SmartMX3: 2
pdf_data/st_keywords/tls_cipher_suite	TLS: TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 1 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1 TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 1 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 1 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 1 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 1 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 1 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 1 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 1 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 1 TLS_RSA_WITH_AES_128_CBC_SHA: 1
pdf_data/st_keywords/crypto_library	NSS: NSS: 21 OpenSSL: OpenSSL: 19 libgcrypt: libgcrypt: 6
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis		FI: Malfunction: 2 malfunction: 2 physical tampering: 1 SCA: physical probing: 2
pdf_data/st_keywords/technical_report_id		BSI: BSI TR-03110: 3 BSI TR-03110-1: 1 BSI TR-03110-2: 1 BSI TR-03110-3: 1 BSI TR-03110-4: 1
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name		JCOP: JCOP 4: 13 JCOP4: 3
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group		EF: EF.COM: 3 EF.DG1: 6 EF.DG14: 3 EF.DG15: 5 EF.DG16: 5 EF.DG2: 4 EF.DG3: 14 EF.DG4: 14 EF.DG5: 3 EF.SOD: 5
pdf_data/st_keywords/standard_id	FIPS: FIPS 140-2: 2 FIPS 186-4: 9 FIPS PUB 186-4: 5 NIST: NIST SP 800-38A: 2 NIST SP 800-38D: 1 NIST SP 800-38E: 1 NIST SP 800-57: 1 RFC: RFC 2460: 1 RFC 2560: 1 RFC 3484: 1 RFC 3542: 1 RFC 4213: 1 RFC 4251: 1 RFC 4252: 2 RFC 4253: 2 RFC 4346: 1 RFC 4492: 4 RFC 5246: 6 RFC 5280: 6 RFC 5289: 4 RFC 5759: 1 RFC 6066: 1 RFC 6125: 1 RFC3526: 1 RFC4252: 2 RFC4253: 3 RFC4419: 1 RFC5246: 1 RFC5656: 3 X509: X.509: 17	BSI: AIS20: 2 CC: CCMB-2017-04-001: 2 CCMB-2017-04-002: 2 CCMB-2017-04-003: 2 CCMB-2017-04-004: 2 ICAO: ICAO: 22 ISO: ISO/IEC 18013: 2 ISO/IEC 7816-2: 1 ISO/IEC 9796-2: 2 PKCS: PKCS#1: 4 PKCS#3: 6
pdf_data/st_keywords/javacard_version		JavaCard: Java Card 3.0.5: 1
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process	OutOfScope: DAC mechanism but may be supplemented by further restrictions. These additional restrictions are out of scope for this evaluation. Examples of objects which are accessible to users that cannot be used to store: 1 The OS relies upon a trustworthy computing platform for its execution. This underlying platform is out of scope of this PP. 3.3.2 Personnel aspects A.PROPER_USER The user of the OS is not willfully negligent or: 1 out of scope: 2	OutOfScope: Target Page 27 of 91 • OT.SEC_BOX_FW • OT.SENSITIVE_RESULT_INTEG cannot be mapped because these are out of scope. 98 The objectives for the operational environment can be mapped as follows: Objective from the: 1 out of scope: 1
pdf_data/st_metadata	/Author: Stephan Müller /CreationDate: D:20190227053123+01'00' /Creator: Writer /ModDate: D:20190322072712+01'00' /Producer: LibreOffice 6.1 /Title: Security Target for Oracle Linux 7.3 pdf_file_size_bytes: 481840 pdf_hyperlinks: http://www.oracle.com/us/products/servers/x7-2-datasheet-3690005.pdf, https://www.oracle.com/technetwork/topics/security/alerts-086861.html, http://www.kernel.org/pub/linux/libs/pam, https://www.oracle.com/linux/index.html pdf_is_encrypted: False pdf_number_of_pages: 82	/Author: David Lovasz /CreationDate: D:20210707094818+02'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20210707094818+02'00' /Producer: Microsoft® Word for Microsoft 365 /Title: IDENTITY APPLET V3.4/PACE-EAC1/AA - Security Target pdf_file_size_bytes: 2867385 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 91
state/cert/convert_garbage	True	False
state/cert/convert_ok	True	False
state/cert/download_ok	True	False
state/cert/extract_ok	True	False
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	True
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	True
state/st/download_ok	True	True
state/st/extract_ok	True	True
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different

name

Oracle Linux 7.3 OSPP

IDentity Applet v3.4-p1/PACE-EAC1 on NXP JCOP 4 P71

category

Operating Systems

ICs, Smart Cards and Smart Card-Related Devices and Systems

scheme

SE

IT

status

archived

active

not_valid_after

14.02.2024

11.10.2026

not_valid_before

14.02.2019

11.10.2021

cert_link

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Certificate%20Oracle%20Linux%20OSPP%20CCRA.pdf

report_link

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Certification%20Report%20v2.0%20-%20Oracle%20Linux%20OSPP.pdf

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cr_idapplet34p1_pace_v1.0_en.pdf

st_link

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/pracle%20ospp%20st.pdf

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_idapplet34p1_pace_v1.04.pdf

manufacturer

Oracle Corporation

ID&Trust Ltd.

manufacturer_web

https://www.oracle.com

https://www.idandtrust.com/

security_level

{}

AVA_VAN.5, ALC_DVS.2, ATE_DPT.2, EAL4+

dgst

4cb308955bf45aed

3504e25ede0c3dea

heuristics/cert_id

CSEC2017014

OCSI/CERT/CCL/06/2021/RC

heuristics/extracted_sars

ATE_IND.1, AVA_VAN.1, ASE_ECD.1, ASE_OBJ.1, AGD_PRE.1, ASE_INT.1, AGD_OPE.1, ALC_CMS.1, ADV_FSP.1, ALC_CMC.1, ASE_REQ.1, ALC_FLR.3, ASE_CCL.1, ASE_TSS.1

ASE_INT.1, ALC_TAT.1, ADV_FSP.4, ASE_SPD.1, ASE_TSS.2, ATE_COMP.1, ASE_CCL.1, ADV_COMP.1, ADV_TDS.3, ALC_CMC.4, ALC_LCD.1, ATE_COV.2, ASE_REQ.2, ASE_OBJ.2, AVA_VAN.5, ASE_ECD.1, ALC_DEL.1, ATE_FUN.1, ADV_IMP.1, AGD_PRE.1, AGD_OPE.1, ASE_COMP.1, ADV_SPM.1, ALC_COMP.1, ALC_DVS.2, ALC_FLR.1, ADV_ARC.1, AVA_COMP.1, ALC_CMS.4, ATE_DPT.2, ATE_IND.2

heuristics/extracted_versions

7.3

3.4

heuristics/report_references/directly_referenced_by

{}

OCSI/CERT/CCL/09/2022/RC

heuristics/report_references/directly_referencing

{}

OCSI/CERT/SYS/06/2016/RC, BSI-DSZ-CC-1136-2021

heuristics/report_references/indirectly_referenced_by

{}

OCSI/CERT/CCL/09/2022/RC

heuristics/report_references/indirectly_referencing

{}

BSI-DSZ-CC-0858-2013, BSI-DSZ-CC-1136-2021, BSI-DSZ-CC-0645-2010, BSI-DSZ-CC-0707-2012, NSCIB-CC-13-37762-CR, OCSI/CERT/SYS/06/2016/RC, NSCIB-CC-13-37760-CR2, OCSI/CERT/SYS/02/2016/RC, OCSI/CERT/SYS/04/2015/RC, BSI-DSZ-CC-0750-V2-2014

heuristics/scheme_data

certification_date: 11.10.2021
level: EAL4+
report_link_en: https://www.ocsi.gov.it/documenti/certificazioni/idtrust/cr_idapplet34p1_pace_v1.0_en.pdf
report_link_it: https://www.ocsi.gov.it/documenti/certificazioni/idtrust/rc_idapplet34p1_pace_v1.0_it.pdf
supplier: ID&Trust Ltd.
target_link: https://www.ocsi.gov.it/documenti/certificazioni/idtrust/st_idapplet34p1_pace_v1.04.pdf
title: IDentity Applet v3.4-p1/PACE-EAC1 on NXP JCOP 4 P71

heuristics/st_references/directly_referencing

{}

BSI-DSZ-CC-1136-2021

heuristics/st_references/indirectly_referencing

{}

BSI-DSZ-CC-1136-2021

heuristics/protection_profiles

1edd61e3f1f2ce0d

a33327d40f253f46, b380aabf93b29692

protection_profile_links

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp_os_v4.1.pdf

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0056_V2b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0068_V2b_pdf.pdf

pdf_data/cert_filename

Certificate Oracle Linux OSPP CCRA.pdf

pdf_data/cert_keywords/cc_cert_id

SE:
- CSEC2017014: 1

pdf_data/cert_keywords/cc_protection_profile_id

pdf_data/cert_keywords/cc_security_level

EAL:
- EAL 2: 1

pdf_data/cert_keywords/cc_sar

ALC:
- ALC_FLR: 1

pdf_data/cert_keywords/cc_sfr

pdf_data/cert_keywords/cc_claims

pdf_data/cert_keywords/vendor

pdf_data/cert_keywords/eval_facility

atsec:
- atsec: 1

pdf_data/cert_keywords/symmetric_crypto

pdf_data/cert_keywords/asymmetric_crypto

pdf_data/cert_keywords/pq_crypto

pdf_data/cert_keywords/hash_function

pdf_data/cert_keywords/crypto_scheme

pdf_data/cert_keywords/crypto_protocol

SSH:
- SSH: 1

pdf_data/cert_keywords/randomness

pdf_data/cert_keywords/cipher_mode

pdf_data/cert_keywords/ecc_curve

pdf_data/cert_keywords/crypto_engine

pdf_data/cert_keywords/tls_cipher_suite

pdf_data/cert_keywords/crypto_library

pdf_data/cert_keywords/vulnerability

pdf_data/cert_keywords/side_channel_analysis

pdf_data/cert_keywords/technical_report_id

pdf_data/cert_keywords/device_model

pdf_data/cert_keywords/tee_name

pdf_data/cert_keywords/os_name

pdf_data/cert_keywords/cplc_data

pdf_data/cert_keywords/ic_data_group

pdf_data/cert_keywords/standard_id

pdf_data/cert_keywords/javacard_version

pdf_data/cert_keywords/javacard_api_const

pdf_data/cert_keywords/javacard_packages

pdf_data/cert_keywords/certification_process

pdf_data/cert_metadata

/CreationDate: D:20190321134048+01'00'
/Creator: RICOH MP C4504ex
/ModDate: D:20190321134809+01'00'
/Producer: RICOH MP C4504ex
pdf_file_size_bytes: 915753
pdf_hyperlinks: {}
pdf_is_encrypted: False
pdf_number_of_pages: 1

pdf_data/report_filename

Certification Report v2.0 - Oracle Linux OSPP.pdf

cr_idapplet34p1_pace_v1.0_en.pdf

pdf_data/report_keywords/cc_cert_id

SE:
- CSEC2017014: 18

DE:
- BSI-DSZ-CC-1136-2021: 1
IT:
- OCSI/CERT/CCL/06/2021/RC: 33
- OCSI/CERT/SYS/06/2016/RC: 1
NL:
- NSCIB-CC-180212-CR3: 1

pdf_data/report_keywords/cc_protection_profile_id

BSI:
- BSI-CC-PP-0056-V2-2012: 4
- BSI-CC-PP-0068-V2-2011-MA-01: 4

pdf_data/report_keywords/cc_security_level

EAL:
- EAL1: 1

EAL:
- EAL2: 4
- EAL4: 11
- EAL4 augmented: 1
- EAL4+: 1
- EAL6: 2
- EAL6 augmented: 2
- EAL6+: 1

pdf_data/report_keywords/cc_sar

ADV:
- ADV_FSP.1: 1
AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ALC_FLR.3: 1
ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_REQ.1: 1
- ASE_TSS.1: 1
ATE:
- ATE_IND.1: 1
AVA:
- AVA_VAN.1: 1

ADV:
- ADV_ARC.1: 1
- ADV_COMP.1: 1
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_COMP.1: 1
- ALC_DEL.1: 1
- ALC_DVS.2: 7
- ALC_FLR: 1
- ALC_FLR.1: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
ASE:
- ASE_CCL.1: 1
- ASE_COMP.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ASE_TSS.2: 2
ATE:
- ATE_COMP: 1
- ATE_COMP.1: 1
- ATE_COV.2: 1
- ATE_DPT.2: 7
- ATE_FUN.1: 1
- ATE_IND.2: 1
AVA:
- AVA_COMP: 1
- AVA_COMP.1: 1
- AVA_VAN.5: 8

pdf_data/report_keywords/cc_sfr

FAU:
- FAU_SAS.1: 1
FCS:
- FCS_RND.1: 1
FIA:
- FIA_API.1: 1
FMT:
- FMT_LIM.1: 1
- FMT_LIM.2: 1
FPT:
- FPT_EMS.1: 1

pdf_data/report_keywords/cc_claims

A:
- A.PLATFORM: 1
- A.PROPER_ADMIN: 1
- A.PROPER_USER: 1
T:
- T.LIMITED_PHYSICAL_ACCESS: 1
- T.LOCAL_ATTACK: 1
- T.NETWORK_ATTACK: 1
- T.NETWORK_EAVESDROP: 1

O:
- O.J: 1

pdf_data/report_keywords/vendor

NXP:
- NXP: 20
- NXP Semiconductors: 4

pdf_data/report_keywords/eval_facility

atsec:
- atsec: 5

CCLab:
- CCLab Software Laboratory: 5

pdf_data/report_keywords/symmetric_crypto

AES_competition:
- AES:
  - AES: 2
DES:
- 3DES:
  - 3DES: 2

pdf_data/report_keywords/asymmetric_crypto

ECC:
- ECDSA:
  - ECDSA: 1

ECC:
- ECC:
  - ECC: 1
FF:
- DH:
  - Diffie-Hellman: 4

pdf_data/report_keywords/hash_function

PBKDF:
- PBKDF2: 2
SHA:
- SHA2:
  - SHA-256: 1

pdf_data/report_keywords/crypto_scheme

KEX:
- Key Exchange: 1
MAC:
- MAC: 1

pdf_data/report_keywords/crypto_protocol

IKE:
- IKE: 1
SSH:
- SSH: 7
- SSHv2: 2
TLS:
- TLS:
  - TLS: 6
  - TLS v1.2: 1

PACE:
- PACE: 31

pdf_data/report_keywords/randomness

RNG:
- RNG: 1

pdf_data/report_keywords/crypto_engine

SmartMX:
- SmartMX3: 2

pdf_data/report_keywords/vulnerability

CVE:
- CVE-2017-9150: 1
- CVE-2018-14634: 1

pdf_data/report_keywords/side_channel_analysis

FI:
- fault injection: 1
SCA:
- side channel: 1
other:
- JIL-COMP: 7

pdf_data/report_keywords/technical_report_id

BSI:
- BSI TR-03110-1: 1

pdf_data/report_keywords/os_name

JCOP:
- JCOP 4: 15

pdf_data/report_keywords/standard_id

CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-004: 1
ISO:
- ISO/IEC 17025: 2
RFC:
- RFC 2460: 1
- RFC 3484: 1
- RFC 3542: 1
- RFC 4213: 1
X509:
- X.509: 1

CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
ICAO:
- ICAO: 12
ISO:
- ISO/IEC 15408: 6

pdf_data/report_keywords/certification_process

OutOfScope:
- OS relies upon a trustworthy computing platform for its execu- tion. This underlying platform is out of scope of this PP. 4.3 Clarification of Scope The Security Target [ST] contains four threats, which have: 1
- out of scope: 1

pdf_data/report_metadata

/Author: MIXRO
/CreationDate: D:20190321091650+01'00'
/ModDate: D:20190321140531+01'00'
/Producer: Microsoft: Print To PDF
/Title: Microsoft Word - Certification Report - Oracle Linux 7 OSPP
pdf_file_size_bytes: 765983
pdf_hyperlinks: {}
pdf_is_encrypted: False
pdf_number_of_pages: 17

/Author: OCSI
/CreationDate: D:20211011115813+00'00'
/Creator: Microsoft Word
/ModDate: D:20211011115813+00'00'
/Title: Certification Report "IDentity Applet v3.4-p1/PACE-EAC1 on NXP JCOP 4 P71"
pdf_file_size_bytes: 565699
pdf_hyperlinks: {}
pdf_is_encrypted: False
pdf_number_of_pages: 33

pdf_data/st_filename

pracle ospp st.pdf

st_idapplet34p1_pace_v1.04.pdf

pdf_data/st_keywords/cc_cert_id

SE:
- CSEC2017014: 2

DE:
- BSI-DSZ-CC-1136-2021: 1
NL:
- NSCIB-CC-180212-CR3: 2

pdf_data/st_keywords/cc_protection_profile_id

BSI:
- BSI-CC-PP- 0055: 1
- BSI-CC-PP- 0056-V2-2012: 1
- BSI-CC-PP- 0068-V2-2011: 1
- BSI-CC-PP- 0087: 1
- BSI-CC-PP-0055: 1
- BSI-CC-PP-0056-V2-2012: 4
- BSI-CC-PP-0068-V2-2011-: 1
- BSI-CC-PP-0068-V2-2011-MA-01: 3
- BSI-CC-PP-0087: 1
- BSI-CC-PP-0099-2017: 1
- BSI-PP-0035-2007: 1

pdf_data/st_keywords/cc_security_level

EAL:
- EAL 4: 3
- EAL 4 augmented: 1
- EAL 6: 2
- EAL 6+: 2
- EAL4: 4
- EAL4 augmented: 3
- EAL4+: 1
- EAL6: 1
- EAL6 augmented: 1
- EAL6+: 1

pdf_data/st_keywords/cc_sar

ADV:
- ADV_ARC.1: 1
- ADV_SPM.1: 1
AGD:
- AGD_PRE.1: 1
ALC:
- ALC_DEL.1: 1
- ALC_DVS.2: 6
- ALC_FLR.1: 4
ASE:
- ASE_TSS.2: 4
ATE:
- ATE_DPT.2: 6
AVA:
- AVA_VAN.3: 2
- AVA_VAN.5: 6

pdf_data/st_keywords/cc_sfr

FAU:
- FAU_GEN.1: 2
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
FCS:
- FCS_CKM: 1
- FCS_CKM.1: 2
- FCS_CKM.1.1: 1
- FCS_CKM.2: 2
- FCS_CKM.2.1: 1
- FCS_CKM.4: 2
- FCS_CKM.4.1: 1
- FCS_COP.1: 11
- FCS_COP.1.1: 4
- FCS_RBG_EXT.1: 2
- FCS_RBG_EXT.1.1: 1
- FCS_RBG_EXT.1.2: 1
- FCS_SSHC_EXT.1: 2
- FCS_SSHC_EXT.1.1: 1
- FCS_SSHC_EXT.1.2: 1
- FCS_SSHC_EXT.1.3: 1
- FCS_SSHC_EXT.1.4: 1
- FCS_SSHC_EXT.1.5: 1
- FCS_SSHC_EXT.1.6: 1
- FCS_SSHC_EXT.1.7: 1
- FCS_SSHC_EXT.1.8: 1
- FCS_SSHS_EXT.1: 2
- FCS_SSHS_EXT.1.1: 1
- FCS_SSHS_EXT.1.2: 1
- FCS_SSHS_EXT.1.3: 1
- FCS_SSHS_EXT.1.4: 1
- FCS_SSHS_EXT.1.5: 1
- FCS_SSHS_EXT.1.6: 1
- FCS_SSHS_EXT.1.7: 1
- FCS_SSH_EXT.1: 2
- FCS_SSH_EXT.1.1: 1
- FCS_STO_EXT.1: 2
- FCS_STO_EXT.1.1: 1
- FCS_TLSC_EXT: 1
- FCS_TLSC_EXT.1: 4
- FCS_TLSC_EXT.1.1: 2
- FCS_TLSC_EXT.1.2: 2
- FCS_TLSC_EXT.1.3: 1
- FCS_TLSC_EXT.2: 2
- FCS_TLSC_EXT.2.1: 1
- FCS_TLSS_EXT.1.1: 1
FDP:
- FDP_ACF_EXT.1: 2
- FDP_ACF_EXT.1.1: 1
- FDP_IFC_EXT.1: 2
- FDP_IFC_EXT.1.1: 1
FIA:
- FIA_AFL.1: 2
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_ATD.1: 1
- FIA_UAU.5: 2
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 2
FMT:
- FMT_MOF: 1
- FMT_MOF_EXT.1: 2
- FMT_MOF_EXT.1.1: 1
- FMT_SMF: 1
- FMT_SMF_EXT.1: 4
- FMT_SMF_EXT.1.1: 2
FPT:
- FPT_ACF_EXT.1: 2
- FPT_ACF_EXT.1.1: 1
- FPT_ACF_EXT.1.2: 1
- FPT_ASLR_EXT.1: 2
- FPT_ASLR_EXT.1.1: 1
- FPT_SBOP_EXT.1: 2
- FPT_SBOP_EXT.1.1: 1
- FPT_TST_EXT.1: 3
- FPT_TST_EXT.1.1: 1
- FPT_TUD_EXT.1: 2
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.2: 2
- FPT_TUD_EXT.2.1: 1
- FPT_TUD_EXT.2.2: 1
FTP:
- FTP_ITC_EXT.1: 2
- FTP_ITC_EXT.1.1: 1
- FTP_TRP.1: 2
- FTP_TRP.1.1: 1
- FTP_TRP.1.2: 1
- FTP_TRP.1.3: 1

FAU:
- FAU_ARP.1: 2
- FAU_SAS: 3
- FAU_SAS.1: 8
- FAU_SAS.1.1: 1
FCO:
- FCO_NRO.2: 1
FCS:
- FCS_CKM: 64
- FCS_CKM.1: 12
- FCS_CKM.1.1: 2
- FCS_CKM.2: 6
- FCS_CKM.4: 29
- FCS_CKM.4.1: 1
- FCS_COP: 61
- FCS_COP.1: 18
- FCS_COP.1.1: 32
- FCS_RND: 3
- FCS_RND.1: 5
- FCS_RND.1.1: 1
- FCS_RNG.1: 4
- FCS_UAU.1: 1
FDP:
- FDP_ACC: 8
- FDP_ACC.1: 6
- FDP_ACC.2: 4
- FDP_ACF: 11
- FDP_ACF.1: 14
- FDP_IFC.1: 4
- FDP_IFC.2: 3
- FDP_IFF.1: 5
- FDP_ITC.1: 8
- FDP_ITC.2: 9
- FDP_RIP: 4
- FDP_RIP.1: 15
- FDP_RIP.1.1: 1
- FDP_ROL.1: 2
- FDP_SDI.2: 3
- FDP_UCT: 9
- FDP_UCT.1: 1
- FDP_UIT: 7
- FDP_UIT.1: 3
FIA:
- FIA_AFL: 8
- FIA_AFL.1: 3
- FIA_API: 28
- FIA_API.1: 9
- FIA_API.1.1: 1
- FIA_ATD.1: 2
- FIA_UAU: 50
- FIA_UAU.1: 4
- FIA_UAU.2: 1
- FIA_UAU.4: 2
- FIA_UAU.5: 2
- FIA_UAU.6: 2
- FIA_UID: 12
- FIA_UID.1: 9
- FIA_UID.2: 1
- FIA_USB.1: 2
FMT:
- FMT_LIM: 2
- FMT_LIM.1: 12
- FMT_LIM.1.1: 1
- FMT_LIM.2: 12
- FMT_LIM.2.1: 2
- FMT_MSA.1: 11
- FMT_MSA.2: 1
- FMT_MSA.3: 12
- FMT_MTD: 74
- FMT_MTD.1: 11
- FMT_MTD.3: 8
- FMT_MTD.3.1: 1
- FMT_SMF: 1
- FMT_SMF.1: 35
- FMT_SMF.1.1: 1
- FMT_SMR: 20
- FMT_SMR.1: 8
FPR:
- FPR_UNO.1: 1
FPT:
- FPT_EMS: 5
- FPT_EMS.1: 8
- FPT_EMS.1.1: 1
- FPT_EMS.1.2: 1
- FPT_FLS: 2
- FPT_FLS.1: 11
- FPT_FLS.1.1: 1
- FPT_PHP: 2
- FPT_PHP.3: 10
- FPT_PHP.3.1: 1
- FPT_RCV.3: 1
- FPT_TDC.1: 1
- FPT_TST: 3
- FPT_TST.1: 6
- FPT_TST.1.1: 1
- FPT_TST.1.2: 1
- FPT_TST.1.3: 1
FTP:
- FTP_ITC: 12
- FTP_ITC.1: 7
- FTP_TRP.1: 2

pdf_data/st_keywords/cc_claims

A:
- A.CONNECT: 1
- A.PLATFORM: 4
- A.PROPER_ADMIN: 4
- A.PROPER_USER: 4
O:
- O.ACCOUNTABILITY: 2
- O.INTEGRITY: 4
- O.MANAGEMENT: 4
- O.PROTECTED_COMMS: 4
- O.PROTECTED_STORAGE: 3
OE:
- OE.PLATFORM: 3
- OE.PROPER_ADMIN: 3
- OE.PROPER_USER: 3
T:
- T.LIMITED_PHYSICAL_A: 1
- T.LIMITED_PHYSICAL_ACCESS: 2
- T.LOCAL_ATTACK: 3
- T.NETWORK_ATTACK: 8
- T.NETWORK_EAVESDRO: 1
- T.NETWORK_EAVESDROP: 5

OE:
- OE.APPLET: 1
- OE.APPS-PROVIDER: 1
- OE.CODE-EVIDENCE: 1
- OE.KEY-CHANGE: 1
- OE.PROCESS_SEC_IC: 1
- OE.SECURITY-DOMAINS: 1
- OE.USE_DIAG: 1
- OE.USE_KEYS: 1
- OE.VERIFICATION: 1
- OE.VERIFICATION-AUTHORITY: 1
OSP:
- OSP.KEY-CHANGE: 1
- OSP.PROCESS-TOE: 1
- OSP.SECURE-BOX: 2
- OSP.SECURITY-DOMAINS: 2
- OSP.VERIFICATION: 1
OT:
- OT.ALARM: 1
- OT.APPLI-AUTH: 1
- OT.ATTACK-COUNTER: 1
- OT.CARD-CONFIGURATION: 1
- OT.CARD-MANAGEMENT: 1
- OT.CIPHER: 1
- OT.COMM-AUTH: 1
- OT.COMM_AUTH: 1
- OT.COMM_CONFIDENTIALITY: 1
- OT.COMM_INTEGRITY: 1
- OT.DOMAIN-RIGHTS: 1
- OT.EXT-MEM: 1
- OT.FIREWALL: 1
- OT.GLOBAL_ARRAYS_CONFID: 1
- OT.IDENTIFICATION: 1
- OT.KEY-MNGT: 1
- OT.NATIVE: 1
- OT.OBJ-DELETION: 1
- OT.OPERATE: 1
- OT.PIN-MNGT: 1
- OT.REALLOCATION: 1
- OT.RESOURCES: 1
- OT.RESTRICTED-MODE: 1
- OT.RND: 1
- OT.RNG: 1
- OT.SCP: 3
- OT.SEC_BOX_FW: 1
- OT.SENSITIVE_RESULT_INTEG: 1
- OT.SID: 1
- OT.SID_MODULE: 1
- OT.TRANSACTION: 1

pdf_data/st_keywords/vendor

NXP:
- NXP: 8
- NXP Semiconductors: 1

pdf_data/st_keywords/eval_facility

atsec:
- atsec: 165

BrightSight:
- Brightsight: 1

pdf_data/st_keywords/symmetric_crypto

AES_competition:
- AES:
  - AES: 8
  - AES-128: 3
  - AES-256: 3
DES:
- 3DES:
  - 3DES: 1
- DES:
  - DES: 1
constructions:
- MAC:
  - HMAC: 24

AES_competition:
- AES:
  - AES: 27
  - AES-: 1
DES:
- 3DES:
  - 3DES: 3
  - TDES: 2
  - TripleDES: 6
- DES:
  - DES: 10
constructions:
- MAC:
  - CMAC: 6
  - KMAC: 1

pdf_data/st_keywords/asymmetric_crypto

ECC:
- ECC:
  - ECC: 2
- ECDH:
  - ECDH: 1
- ECDSA:
  - ECDSA: 15
FF:
- DH:
  - DH: 2
  - Diffie-Hellman: 30
- DSA:
  - DSA: 1
RSA:
- RSA 2048: 1

ECC:
- ECC:
  - ECC: 12
- ECDH:
  - ECDH: 10
- ECDSA:
  - ECDSA: 4
FF:
- DH:
  - DH: 4
  - Diffie-Hellman: 13
RSA:
- RSA 1024: 3
- RSA 2048: 1

pdf_data/st_keywords/hash_function

MD:
- MD5:
  - MD5: 1
PBKDF:
- PBKDF2: 5
SHA:
- SHA1:
  - SHA-1: 19
- SHA2:
  - SHA-2: 4
  - SHA-256: 12
  - SHA-384: 9
  - SHA-512: 9
  - SHA2: 1

SHA:
- SHA1:
  - SHA-1: 4
- SHA2:
  - SHA-224: 3
  - SHA-256: 2
  - SHA-384: 1

pdf_data/st_keywords/crypto_scheme

KEX:
- Key Exchange: 1
- Key exchange: 1
MAC:
- MAC: 16

KA:
- Key Agreement: 2
MAC:
- MAC: 9

pdf_data/st_keywords/crypto_protocol

IKE:
- IKE: 1
IPsec:
- IPsec: 1
SSH:
- SSH: 101
- SSHv2: 15
TLS:
- TLS:
  - TLS: 37
  - TLS 1.1: 1
  - TLS 1.2: 2
  - TLS v1.1: 1
  - TLS v1.2: 1
  - TLSv1.1: 1
  - TLSv1.2: 1
VPN:
- VPN: 5

PACE:
- PACE: 131

pdf_data/st_keywords/randomness

PRNG:
- DRBG: 7
RNG:
- RBG: 1

RNG:
- RND: 1
- RNG: 3

pdf_data/st_keywords/cipher_mode

CBC:
- CBC: 5
CTR:
- CTR: 4
GCM:
- GCM: 4
XTS:
- XTS: 5

CBC:
- CBC: 2
CCM:
- CCM: 4

pdf_data/st_keywords/ecc_curve

NIST:
- NIST P-256: 4
- NIST P-384: 4
- NIST P-521: 3
- P-256: 13
- P-384: 13
- P-521: 12
- curve P-256: 1
- curve P-384: 1
- curve P-521: 1
- secp256r1: 1
- secp384r1: 1
- secp521r1: 1

pdf_data/st_keywords/crypto_engine

SmartMX:
- SmartMX3: 2

pdf_data/st_keywords/tls_cipher_suite

TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 1
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 1
- TLS_RSA_WITH_AES_128_CBC_SHA: 1

pdf_data/st_keywords/crypto_library

NSS:
- NSS: 21
OpenSSL:
- OpenSSL: 19
libgcrypt:
- libgcrypt: 6

pdf_data/st_keywords/side_channel_analysis

FI:
- Malfunction: 2
- malfunction: 2
- physical tampering: 1
SCA:
- physical probing: 2

pdf_data/st_keywords/technical_report_id

BSI:
- BSI TR-03110: 3
- BSI TR-03110-1: 1
- BSI TR-03110-2: 1
- BSI TR-03110-3: 1
- BSI TR-03110-4: 1

pdf_data/st_keywords/os_name

JCOP:
- JCOP 4: 13
- JCOP4: 3

pdf_data/st_keywords/ic_data_group

EF:
- EF.COM: 3
- EF.DG1: 6
- EF.DG14: 3
- EF.DG15: 5
- EF.DG16: 5
- EF.DG2: 4
- EF.DG3: 14
- EF.DG4: 14
- EF.DG5: 3
- EF.SOD: 5

pdf_data/st_keywords/standard_id

FIPS:
- FIPS 140-2: 2
- FIPS 186-4: 9
- FIPS PUB 186-4: 5
NIST:
- NIST SP 800-38A: 2
- NIST SP 800-38D: 1
- NIST SP 800-38E: 1
- NIST SP 800-57: 1
RFC:
- RFC 2460: 1
- RFC 2560: 1
- RFC 3484: 1
- RFC 3542: 1
- RFC 4213: 1
- RFC 4251: 1
- RFC 4252: 2
- RFC 4253: 2
- RFC 4346: 1
- RFC 4492: 4
- RFC 5246: 6
- RFC 5280: 6
- RFC 5289: 4
- RFC 5759: 1
- RFC 6066: 1
- RFC 6125: 1
- RFC3526: 1
- RFC4252: 2
- RFC4253: 3
- RFC4419: 1
- RFC5246: 1
- RFC5656: 3
X509:
- X.509: 17

BSI:
- AIS20: 2
CC:
- CCMB-2017-04-001: 2
- CCMB-2017-04-002: 2
- CCMB-2017-04-003: 2
- CCMB-2017-04-004: 2
ICAO:
- ICAO: 22
ISO:
- ISO/IEC 18013: 2
- ISO/IEC 7816-2: 1
- ISO/IEC 9796-2: 2
PKCS:
- PKCS#1: 4
- PKCS#3: 6

pdf_data/st_keywords/javacard_version

JavaCard:
- Java Card 3.0.5: 1

pdf_data/st_keywords/certification_process

OutOfScope:
- DAC mechanism but may be supplemented by further restrictions. These additional restrictions are out of scope for this evaluation. Examples of objects which are accessible to users that cannot be used to store: 1
- The OS relies upon a trustworthy computing platform for its execution. This underlying platform is out of scope of this PP. 3.3.2 Personnel aspects A.PROPER_USER The user of the OS is not willfully negligent or: 1
- out of scope: 2

OutOfScope:
- Target Page 27 of 91 • OT.SEC_BOX_FW • OT.SENSITIVE_RESULT_INTEG cannot be mapped because these are out of scope. 98 The objectives for the operational environment can be mapped as follows: Objective from the: 1
- out of scope: 1

pdf_data/st_metadata

/Author: Stephan Müller
/CreationDate: D:20190227053123+01'00'
/Creator: Writer
/ModDate: D:20190322072712+01'00'
/Producer: LibreOffice 6.1
/Title: Security Target for Oracle Linux 7.3
pdf_file_size_bytes: 481840
pdf_hyperlinks: http://www.oracle.com/us/products/servers/x7-2-datasheet-3690005.pdf, https://www.oracle.com/technetwork/topics/security/alerts-086861.html, http://www.kernel.org/pub/linux/libs/pam, https://www.oracle.com/linux/index.html
pdf_is_encrypted: False
pdf_number_of_pages: 82

/Author: David Lovasz
/CreationDate: D:20210707094818+02'00'
/Creator: Microsoft® Word for Microsoft 365
/ModDate: D:20210707094818+02'00'
/Producer: Microsoft® Word for Microsoft 365
/Title: IDENTITY APPLET V3.4/PACE-EAC1/AA - Security Target
pdf_file_size_bytes: 2867385
pdf_hyperlinks: {}
pdf_is_encrypted: False
pdf_number_of_pages: 91

state/cert/convert_garbage

True

False

state/cert/convert_ok

True

False

state/cert/download_ok

True

False

state/cert/extract_ok

True

False

state/cert/pdf_hash

Different

state/cert/txt_hash

Different

state/report/pdf_hash

Different

state/report/txt_hash

Different

state/st/pdf_hash

Different

state/st/txt_hash

Different

Comparing certificates Experimental feature