| name |
Symfoware Server Enterprise extended Edtion 4.0 |
STARCOS 3.2 eGK Version 1.0 |
| category |
Databases |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
JP |
DE |
| status |
archived |
archived |
| not_valid_after |
10.12.2010 |
01.09.2019 |
| not_valid_before |
26.11.2003 |
18.12.2007 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0003.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/20080514_0406a.pdf |
| st_link |
|
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/20080514_0406b.pdf |
| manufacturer |
Fujitsu Limited |
G+D Mobile Security GmbH |
| manufacturer_web |
https://www.fujitsu.com/ |
https://www.gi-de.com/de/de/mobile-security/ |
| security_level |
EAL4 |
ADV_IMP.2, AVA_MSU.3, EAL4+, AVA_VLA.4 |
| dgst |
505e2adba5d4a6cf |
1d84f97a0f8761d5 |
| heuristics/cert_id |
JISEC-CC-CRP-C0003 |
BSI-DSZ-CC-0406-2007 |
| heuristics/cert_lab |
[] |
BSI |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
{} |
ADV_RCR.1, ALC_TAT.1, ADV_FSP.1, AVA_VLA.4, ADV_HLD.2, AGD_USR.1, AGD_ADM.1, ADV_LLD.1, ADV_IMP.2, ADV_SPM.1, AVA_MSU.3 |
| heuristics/extracted_versions |
4.0 |
3.2, 1.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
BSI-DSZ-CC-0407-2008, BSI-DSZ-CC-0533-2009 |
| heuristics/report_references/directly_referencing |
{} |
BSI-DSZ-CC-0322-2005 |
| heuristics/report_references/indirectly_referenced_by |
{} |
BSI-DSZ-CC-0407-2008, BSI-DSZ-CC-0533-2009 |
| heuristics/report_references/indirectly_referencing |
{} |
BSI-DSZ-CC-0266-2005, BSI-DSZ-CC-0169-2002, BSI-DSZ-CC-0322-2005, BSI-DSZ-CC-0223-2003 |
| heuristics/scheme_data |
- cert_id: JISEC-CC-CRP-C0133
- certification_date: 01.11.2007
- claim: EAL1
- enhanced:
- assurance_level: EAL1
- cc_version: 2.3
- description: PRODUCT DESCRIPTION The TOE enables users to manage operations to execute jobs based on predefined daily schedule on distributed servers on enterprise internal networks. The TOE also enables users to manage those operations in a secure manner although systems are becoming diverse and getting complex. The TOE defines “Job execution based on predefined daily schedule” process and its related resources as protected resources. The TOE provides following security functions to prohibit unauthorized access to the protected resources. - "Extended user authentication function" to identify and authenticate users. - "Access control function" to restrict user operations to authorized users - "Audit log output function" to verify user operations - "Password protection function" to protect passwords from being sniffed sent over enterprise internal networks
- evaluation_facility: Japan Electronics and Information Technology Industries Association, Information Technology Security Center (JEITA ITSC)
- product: Systemwalker Operation Manager Enterprise Edition
- product_type: IT Product (Operation and maintenance supporting software)
- toe_version: V13.2.0 (Linux for Itanium)
- vendor: Fujitsu Limited
- expiration_date: 01.10.2013
- supplier: Fujitsu Limited
- toe_japan_link: https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0133_it7150.html
- toe_japan_name: Systemwalker Operation Manager Enterprise Edition V13.2.0 (Linux for Itanium)
- toe_overseas_link: None
- toe_overseas_name: -----
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
c0003.pdf |
20080514_0406a.pdf |
| pdf_data/report_frontpage |
|
- DE:
- cert_id: BSI-DSZ-CC-0406-2007
- cert_item: STARCOS 3.2 eGK Version 1.0
- cert_lab: BSI
- developer: Giesecke & Devrient GmbH Certification Report V1.1 ZS-01-01-F-326 V4.04 BSI -
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
|
| pdf_data/report_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-0322-2005: 1
- BSI-DSZ-CC-0406-2007: 19
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-PP-0020-: 1
- BSI-PP-0020-V2-: 1
- BSI-PP-0020-V2-2007: 2
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 4: 8
- EAL 4 augmented: 3
- EAL 7: 1
- EAL1: 5
- EAL2: 3
- EAL3: 4
- EAL4: 6
- EAL5: 6
- EAL5+: 1
- EAL6: 3
- EAL7: 4
|
| pdf_data/report_keywords/cc_sar |
|
- ACM:
- ACM_AUT: 2
- ACM_CAP: 2
- ACM_SCP: 2
- ADO:
- ADV:
- ADV_FSP: 2
- ADV_HLD: 2
- ADV_IMP: 2
- ADV_IMP.2: 5
- ADV_INT: 2
- ADV_LLD: 2
- ADV_RCR: 2
- ADV_SPM: 2
- AGD:
- ALC:
- ALC_DVS: 2
- ALC_FLR: 2
- ALC_LCD: 1
- ALC_TAT: 2
- APE:
- APE_DES: 1
- APE_ENV: 1
- APE_INT: 1
- APE_OBJ: 1
- APE_REQ: 1
- APE_SRE: 1
- ASE:
- ASE_DES: 1
- ASE_ENV: 1
- ASE_INT: 1
- ASE_OBJ: 1
- ASE_PPC: 1
- ASE_REQ: 1
- ASE_SRE: 1
- ASE_TSS: 1
- ATE:
- ATE_COV: 2
- ATE_DPT: 2
- ATE_FUN: 3
- ATE_IND: 4
- AVA:
- AVA_CCA: 2
- AVA_MSU: 2
- AVA_MSU.3: 5
- AVA_SOF: 3
- AVA_VLA: 5
- AVA_VLA.2: 1
- AVA_VLA.3: 1
- AVA_VLA.4: 6
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
- GD:
- G&D: 5
- Giesecke & Devrient: 9
- Infineon:
|
| pdf_data/report_keywords/eval_facility |
|
- TUV:
- TÜV Informationstechnik: 4
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
- RSA:
- RSA 1024: 1
- RSA 1280: 1
- RSA 1536: 1
- RSA 2048: 2
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
- RIPEMD:
- SHA:
- SHA1:
- SHA2:
- SHA-224: 3
- SHA-256: 3
- SHA-384: 3
- SHA-512: 2
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
- FI:
- malfunction: 1
- physical tampering: 1
|
| pdf_data/report_keywords/technical_report_id |
|
- BSI:
- BSI 7125: 2
- BSI 7148: 1
- BSI 7149: 1
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- BSI:
- AIS 20: 1
- AIS 25: 2
- AIS 26: 2
- AIS 31: 1
- AIS 32: 1
- AIS 34: 3
- AIS 35: 2
- AIS 36: 3
- AIS 38: 1
- ISO:
- ISO/IEC 15408:2005: 2
- ISO/IEC 9796-1: 1
- ISO/IEC 9796-2: 1
- PKCS:
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- ConfidentialDocument:
- 2007, Version 7, 13.12.2007, Evaluation Body for IT-Security of TÜV Informationstechnik GmbH (confidential document) [9] Common Criteria Protection Profile electronic Health Card (eHC) – elektronische: 1
- Security Target of STARCOS 3.2 eGK, BSI-DSZ-0406-2007, Version 1.4, 20.11.2007, Giesecke&Devrient (confidential document) [7] Security Target Lite of STARCOS 3.2 eGK, BSI-DSZ-0406-2007, Version 1.1, 20.11.2007: 1
- list for the TOE, Version 1.7, 13.12.2007, Configuration List STARCOS 3.2 eGK, Giesecke&Devrient (confidential document) [11] Administrator Guidance STARCOS 3.2 eGK; STARCOS 3.2 QES V1.0, Version 1.0/Status 13.12.07: 1
|
| pdf_data/report_metadata |
- /CreationDate: D:20040526154221+09'00'
- /ModDate: D:20040526154221+09'00'
- /Producer: Acrobat Distiller 6.0 (Windows)
- /Title: untitled
- pdf_file_size_bytes: 12495
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /Company: BSI, Postfach 200363, 53133 Bonn
- /CreationDate: D:20080303080757+01'00'
- /Creator: Acrobat PDFMaker 8.1 für Word
- /Keywords: "Common Criteria, Certification, Zertifizierung, elektronische Gesundheitskarte, eGK, Common Criteria, CC"
- /ModDate: D:20080303164731+01'00'
- /Producer: Acrobat Distiller 8.1.0 (Windows)
- /SourceModified: D:20080303070750
- /Title: Certification Report BSI-DSZ-CC-0406-2007
- pdf_file_size_bytes: 254398
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 36
|
| pdf_data/st_filename |
|
20080514_0406b.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-0322-2005-MA-04: 2
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-PP-****: 1
- BSI-PP-0002: 2
- BSI-PP-0002-2001: 1
- BSI-PP-0005-: 1
- BSI-PP-0006-2002T: 1
- BSI-PP-0020-V2-2007: 1
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL4: 11
- EAL4 augmented: 2
- EAL5+: 1
|
| pdf_data/st_keywords/cc_sar |
|
- ADO:
- ADV:
- ADV_FSP.1: 2
- ADV_HLD.2: 1
- ADV_IMP.1: 1
- ADV_IMP.2: 6
- ADV_LLD.1: 2
- ADV_RCR.1: 1
- ADV_SPM.1: 2
- AGD:
- AGD_ADM.1: 2
- AGD_USR.1: 2
- ALC:
- AVA:
- AVA_MSU.3: 5
- AVA_VLA.4: 6
|
| pdf_data/st_keywords/cc_sfr |
|
- FCS:
- FCS_CKM: 7
- FCS_CKM.1: 24
- FCS_CKM.2: 2
- FCS_CKM.4: 26
- FCS_CKM.4.1: 3
- FCS_COP: 45
- FCS_COP.1: 27
- FCS_RND: 9
- FCS_RND.1: 13
- FCS_RND.1.1: 4
- FDP:
- FDP_ACC.1: 7
- FDP_ACC.2: 14
- FDP_ACC.2.1: 4
- FDP_ACC.2.2: 5
- FDP_ACF: 1
- FDP_ACF.1: 13
- FDP_ACF.1.1: 3
- FDP_ACF.1.2: 3
- FDP_ACF.1.3: 3
- FDP_ACF.1.4: 3
- FDP_IFC.1: 4
- FDP_ITC.1: 16
- FDP_ITC.2: 15
- FDP_RIP: 14
- FDP_RIP.1: 11
- FDP_RIP.1.1: 2
- FDP_SDI.1: 2
- FDP_SDI.2: 5
- FDP_SDI.2.1: 3
- FDP_SDI.2.2: 3
- FDP_UCT.1: 11
- FDP_UCT.1.1: 3
- FDP_UIT.1: 6
- FDP_UIT.1.1: 3
- FDP_UIT.1.2: 3
- FIA:
- FIA_AFL: 42
- FIA_AFL.1: 25
- FIA_ATD.1: 7
- FIA_ATD.1.1: 3
- FIA_UAU.1: 14
- FIA_UAU.1.1: 3
- FIA_UAU.1.2: 3
- FIA_UAU.4: 8
- FIA_UAU.4.1: 3
- FIA_UID.1: 8
- FIA_UID.1.1: 3
- FIA_UID.1.2: 3
- FMT:
- FMT_LIM: 5
- FMT_LIM.1: 20
- FMT_LIM.1.1: 4
- FMT_LIM.2: 19
- FMT_LIM.2.1: 3
- FMT_MSA.1: 1
- FMT_MSA.2: 19
- FMT_MSA.3: 2
- FMT_MTD: 27
- FMT_MTD.1: 19
- FMT_SMF.1: 19
- FMT_SMF.1.1: 3
- FMT_SMR.1: 19
- FMT_SMR.1.1: 3
- FMT_SMR.1.2: 3
- FPT:
- FPT_AMT.1: 2
- FPT_FLS.1: 9
- FPT_FLS.1.1: 3
- FPT_PHP.3: 9
- FPT_PHP.3.1: 3
- FPT_RVM.1: 10
- FPT_RVM.1.1: 3
- FPT_SEP.1: 10
- FPT_SEP.1.1: 3
- FPT_SEP.1.2: 3
- FPT_TST.1: 11
- FPT_TST.1.1: 3
- FPT_TST.1.2: 3
- FPT_TST.1.3: 3
- FTP:
- FTP_ITC.1: 14
- FTP_ITC.1.1: 3
- FTP_ITC.1.2: 3
- FTP_ITC.1.3: 3
- FTP_TRP.1: 4
|
| pdf_data/st_keywords/cc_claims |
|
|
| pdf_data/st_keywords/vendor |
|
- GD:
- Infineon:
- Infineon: 9
- Infineon Technologies AG: 1
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
- AES_competition:
- DES:
- 3DES:
- 3-DES: 2
- TDES: 5
- Triple-DES: 11
- DES:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 3
- Physical Tampering: 2
- Physical tampering: 1
- fault injection: 1
- malfunction: 4
- physical tampering: 7
- SCA:
- DPA: 1
- physical probing: 5
- side channel: 1
- side channels: 2
- other:
- Bleichenbacher attack: 1
- reverse engineering: 1
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- BSI:
- AIS 20: 1
- AIS20: 2
- AIS31: 2
- CC:
- CCIMB-2005-08-001: 1
- CCIMB-2005-08-002: 1
- CCIMB-2005-08-003: 1
- CCIMB-2005-08-004: 1
- CCMB-2005-08-001: 1
- CCMB-2005-08-002: 1
- FIPS:
- FIPS 180-2: 3
- FIPS 46-3: 2
- FIPS PUB 46-3: 2
- ISO:
- ISO/IEC 7816-4: 1
- ISO/IEC 9796-1: 1
- ISO/IEC9796-2: 5
- PKCS:
- X509:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- FDP_ACF.1 Note by the ST-author 31: Keys and other data for creation of qualified signatures are out of scope of this Security Target. The TOE shall meet the requirement “Security attribute based access: 1
- out of scope: 1
|
| pdf_data/st_metadata |
|
- /CreationDate: D:20071120144357+01'00'
- /Creator: PScript5.dll Version 5.2.2
- /ModDate: D:20080303164809+01'00'
- /Producer: Acrobat Distiller 7.0 (Windows)
- /Title: Security Target Lite STARCOS 3.2 eGK V1.0
- pdf_file_size_bytes: 374430
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 114
|
| state/cert/convert_garbage |
False |
False |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
True |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
False |
True |
| state/st/download_ok |
False |
True |
| state/st/extract_ok |
False |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |