| name |
Applicazione Firma Elettronica Avanzata di CheBanca! v2.0 |
SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2) |
| category |
Products for Digital Signatures |
Access Control Devices and Systems |
| scheme |
IT |
MY |
| status |
archived |
archived |
| not_valid_after |
14.07.2025 |
09.07.2019 |
| not_valid_before |
14.07.2020 |
09.07.2014 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/rc_fea_chebanca20_v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C050-CR-v1.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/tds_fea_chebanca20_v4.4.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/2014-04-14-ST-SCANS_S3-v2.7.pdf |
| manufacturer |
CheBanca! S.p.A. |
Scan Associates Berhad |
| manufacturer_web |
https://www.chebanca.it/ |
https://www.scan-associates.net/ |
| security_level |
ASE_OBJ.2, EAL1+, ASE_REQ.2, ASE_SPD.1 |
EAL2 |
| dgst |
572b500d64d7dc3b |
a7b3c98ebbb51b0c |
| heuristics/cert_id |
OCSI/CERT/TEC/09/2017/RC |
ISCB-5-RPT-C050-CR-v1 |
| heuristics/cert_lab |
[] |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_CCL.1, AGD_PRE.1, ALC_CMC.1, ASE_OBJ.2, ASE_SPD.1, AGD_OPE.1, ATE_IND.1, ASE_INT.1, ASE_ECD.1, ALC_CMS.1, ASE_TSS.1, AVA_VAN.1, ASE_REQ.2, ADV_FSP.1 |
ASE_CCL.1, ATE_FUN.1, ASE_OBJ.2, ALC_CMS.2, ASE_INT.1, ASE_REQ.2, AGD_PRE.1, ATE_IND.2, ASE_ECD.1, AVA_VAN.2, ADV_TDS.1, ASE_SPD.1, ALC_CMC.2, ADV_FSP.2, ATE_COV.1, AGD_OPE.1, ALC_DEL.1, ASE_TSS.1, ADV_ARC.1 |
| heuristics/extracted_versions |
2.0 |
2.0.1.6.2, 2.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
OCSI/CERT/TEC/04/2014/RC |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
OCSI/CERT/TEC/04/2014/RC |
{} |
| heuristics/scheme_data |
|
- cert_no: 2014-003-C050
- certification_date: 09.07.2014
- developer: Scan Associates Berhad
- enhanced:
- assurance_level: EAL2
- category: Access Control Devices and System
- cert_id: C050
- certification_date: 09.07.2014
- developer: Mohd Rizal Othman Scan Associates Berhad,Level 8, Menara Naluri,161-B, Jalan Ampang,50450 Kuala LumpurMalaysia URL: http://www.scan-associates.net/Email: [email protected]: +603 2166 0020Fax: +603 2166 1020
- expiration_date: 09.07.2019
- mutual_recognition: CCRA
- product: SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2)
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C050/ISCB-5-RPT-C050-CR-v1.pdf
- scope: SCAN S3 SMC-AGENT is a Web-Based Application Access Control Management, which enable users to access their internal network resources securely through PKI implementation via soft-certificates, roaming certificates and smart cards. SCAN S3 SMC-AGENT is the combination of SCAN S3 SMC(Security Management Console), in which, the SCAN S3 SMC is define as the administration console for the operations SCAN S3 SMC-AGENT in the aspects of managing users and the access controls, thus, as for the SCAN S3 AGENT is the front-end interface for all users registered in the SCAN S3 SMC system, uses the interface as a secure platform in communicating with the protected resources govern by the security protection of SCAN S3 SMC-AGENT.With the new integration of software desktop that enable users to access the internal network resources, by inputting soft-certificate, roaming certificates orsmart cards through that application. The SCAN S3 SMCAGENTenables the organization to manage the overall security through a single framework that enables the defining and assignment or implementation of the following security functions in one system: Security Audit; The TOE will generate audit records for selected security events in several log files and categories. Authentication and Identification; TOE Administrator/smust login to SCAN S3 to identify themselves to the application together with the prompted (one of up to three) authentication means in order for them to gain access to the protected websites, using SCAN S3 AGENT software desktop. Cryptography; TOE has built-in feature of cryptography that bound to the operations of SCAN S3 AGENT at Users and Administrators workstation. Security Management; TOE Administrator/s has access to all TOE features, that applicable to be managed through web application portal hosted byTOE. User Data Protection; User/s data and credentials including TOE Administrator/s information is protected by ensuring that specific TOE Administrator/s that is assigned with roles and privileges can only access a specific web pages/portals and hence the data associated with the web pages/portal. Protection of the TSF; The security audit functions will generate audit records of events along with date and time of event. To ensure a reliable date and time, TOE enforce the time stamps to be taken from a reliable source from the environment.
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C050/2014-04-14-ST-SCANS_S3-v2.7.pdf
- type: Web-Based Application Access Control Management, which enable users to access their internal network resources securely through PKI implementation via soft-certificates, roaming certificates and smart cards.
- expiration_date: 09.07.2019
- level: EAL2
- product: SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2)
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/66
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
rc_fea_chebanca20_v1.0.pdf |
ISCB-5-RPT-C050-CR-v1.pdf |
| pdf_data/report_frontpage |
|
|
| pdf_data/report_keywords/cc_cert_id |
- IT:
- OCSI/CERT/TEC/04/2014/RC: 1
- OCSI/CERT/TEC/09/2017/RC: 27
|
- MY:
- ISCB-5-RPT-C050-CR-v1: 30
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL1: 4
- EAL1+: 2
- EAL2: 1
- EAL4: 3
|
|
| pdf_data/report_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ALC_FLR: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 6
- ASE_REQ.2: 6
- ASE_SPD.1: 6
- ASE_TSS.1: 1
- ATE:
- AVA:
|
|
| pdf_data/report_keywords/cc_sfr |
|
- FAU:
- FAU_GEN.3: 1
- FAU_SAR.1: 1
- FAU_STG.1: 1
- FCS:
- FDP:
- FDP_ACC.1: 1
- FDP_IFC.1: 1
- FIA:
- FIA_ATD.1: 1
- FIA_UID.2: 1
- FMT:
- FMT_MOF.1: 1
- FMT_MSA.1: 1
- FMT_SMF.1: 1
- FPT:
- FTA:
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- CC:
- CCMB-2012-09-001: 1
- CCMB-2012-09-002: 1
- CCMB-2012-09-003: 1
- CCMB-2012-09-004: 1
- ISO:
|
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
- /Author: OCSI
- /CreationDate: D:20200714085407+00'00'
- /Creator: Microsoft Word
- /ModDate: D:20200714110109+00'00'
- /Producer: Modified using InfoCert Dike
- /Subject: ---
- /Title: Rapporto di Certificazione del prodotto "Applicazione Firma Elettronica Avanzata di CheBanca! v2.0"
- pdf_file_size_bytes: 604919
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 27
|
- /Author: ISCB Department
- /CreationDate: D:20140710161510+08'00'
- /Creator: Microsoft® Word 2013
- /Keywords: MyCB_TMP_002
- /ModDate: D:20140710161510+08'00'
- /Producer: Microsoft® Word 2013
- /Subject: SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with SCAN S3 Agent (v2.0.1.6.2)
- /Title: C050 Certification Report
- pdf_file_size_bytes: 704539
- pdf_hyperlinks: mailto:[email protected], http://www.cybersecurity.my/mycc
- pdf_is_encrypted: False
- pdf_number_of_pages: 31
|
| pdf_data/st_filename |
tds_fea_chebanca20_v4.4.pdf |
2014-04-14-ST-SCANS_S3-v2.7.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 10
- AGD_PRE.1: 8
- ALC:
- ALC_CMC.1: 4
- ALC_CMS.1: 5
- ASE:
- ASE_CCL: 2
- ASE_CCL.1: 5
- ASE_ECD: 2
- ASE_ECD.1: 8
- ASE_INT: 2
- ASE_INT.1: 8
- ASE_OBJ: 2
- ASE_OBJ.2: 9
- ASE_REQ: 2
- ASE_REQ.1: 4
- ASE_REQ.2: 7
- ASE_SPD: 2
- ASE_SPD.1: 8
- ASE_TSS: 2
- ASE_TSS.1: 4
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.2: 1
- ADV_TDS.1: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.2: 1
- ALC_CMS.2: 1
- ALC_DEL.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FCS:
- FCS_CKM.1: 7
- FCS_CKM.4: 7
- FCS_COP: 25
- FCS_COP.1: 1
- FCS_COP.1.1: 3
- FDP:
- FDP_ACC: 17
- FDP_ACC.1: 10
- FDP_ACC.1.1: 2
- FDP_ACF: 17
- FDP_ACF.1: 4
- FDP_ACF.1.1: 2
- FDP_ACF.1.2: 2
- FDP_ACF.1.3: 2
- FDP_ACF.1.4: 2
- FDP_ETC: 1
- FDP_ETC.2: 6
- FDP_ETC.2.1: 1
- FDP_ETC.2.2: 1
- FDP_ETC.2.3: 1
- FDP_ETC.2.4: 1
- FDP_IFC.1: 3
- FDP_ITC: 13
- FDP_ITC.1: 8
- FDP_ITC.1.1: 2
- FDP_ITC.1.2: 2
- FDP_ITC.1.3: 2
- FDP_ITC.2: 7
- FIA:
- FIA_AFL: 11
- FIA_AFL.1: 2
- FIA_AFL.1.1: 2
- FIA_AFL.1.2: 2
- FIA_UAU: 10
- FIA_UAU.2: 2
- FIA_UAU.2.1: 2
- FIA_UID.1: 11
- FMT:
- FMT_MSA.3: 9
- FMT_SMR.1: 7
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
|
- FAU:
- FAU_GEN: 1
- FAU_GEN.1: 3
- FAU_GEN.2: 2
- FAU_GEN.2.1: 1
- FAU_GEN.3: 11
- FAU_GEN.3.1: 2
- FAU_GEN.3.2: 2
- FAU_SAR.1: 5
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 2
- FAU_SAR.2.1: 1
- FAU_STG: 1
- FAU_STG.1: 6
- FAU_STG.1.1: 1
- FAU_STG.1.2: 1
- FAU_STG.3: 1
- FAU_STG.4: 3
- FAU_STG.4.1: 1
- FCS:
- FCS_CKM.1: 2
- FCS_CKM.4: 1
- FCS_COP: 1
- FCS_COP.1: 4
- FCS_COP.1.1: 1
- FDP:
- FDP_ACC.1: 7
- FDP_ACC.1.1: 1
- FDP_ACF.1: 4
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FDP_IFC.1: 8
- FDP_IFC.1.1: 1
- FDP_IFF.1: 6
- FDP_IFF.1.1: 2
- FDP_IFF.1.2: 1
- FDP_IFF.1.3: 1
- FDP_IFF.1.4: 1
- FDP_IFF.1.5: 1
- FDP_ITC.1: 1
- FDP_ITC.2: 1
- FIA:
- FIA_ATD.1: 5
- FIA_ATD.1.1: 2
- FIA_UAU.1: 2
- FIA_UAU.2: 4
- FIA_UAU.2.1: 1
- FIA_UID.1: 3
- FIA_UID.2: 5
- FIA_UID.2.1: 1
- FIA_USB.1: 4
- FIA_USB.1.1: 1
- FIA_USB.1.2: 1
- FMT:
- FMT_MOF.1: 4
- FMT_MOF.1.1: 2
- FMT_MSA.1: 5
- FMT_MSA.1.1: 1
- FMT_MSA.3: 5
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_MTD.1: 4
- FMT_MTD.1.1: 1
- FMT_SMF.1: 7
- FMT_SMF.1.1: 1
- FMT_SMR.1: 9
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_STM: 1
- FPT_STM.1: 1
- FPT_STM.2: 9
- FPT_STM.2.1: 2
- FTA:
- FTA_SSL.1: 3
- FTA_SSL.1.1: 1
- FTA_SSL.1.2: 1
|
| pdf_data/st_keywords/cc_claims |
|
- A:
- A.ADMIN: 2
- A.CONN: 2
- A.FLOW: 2
- A.MGMT: 2
- A.PHY: 2
- A.TIMEBACK: 2
- A.USER: 2
- O:
- O.ACCESSLOG: 3
- O.AUDIT: 3
- O.CONFIG: 4
- O.EXPLOIT: 4
- O.NOAUTH: 3
- OE:
- OE.ADMIN: 3
- OE.CONN: 3
- OE.FLOW: 2
- OE.MGMT: 3
- OE.PHY: 2
- OE.SOFTCERT: 2
- OE.TIMEBACK: 2
- OE.USER: 3
- T:
- T.ACCESSLOG: 2
- T.AUDIT: 2
- T.CONFIG: 2
- T.EXPLOIT: 2
- T.NOAUTH: 2
- T.REMOTE: 2
- T.SPOOF: 2
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- FIPS PUB 180-4: 1
- FIPS PUB 197: 1
|
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /Author: Nicolò Colombo;[email protected]
- /CreationDate: D:20200416111448+02'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20200416111448+02'00'
- /Producer: Microsoft® Word 2010
- /Subject: Applicazione Firma Elettronica Avanzata di CheBanca! Versione 1.0
- /Title: Security Target
- pdf_file_size_bytes: 1342394
- pdf_hyperlinks: http://www.chebanca.it/
- pdf_is_encrypted: False
- pdf_number_of_pages: 54
|
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |