| name |
RISE Konnektor V5.1 |
STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2 |
| category |
Other Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
DE |
DE |
| status |
active |
active |
| not_valid_after |
23.01.2029 |
12.06.2029 |
| not_valid_before |
24.01.2024 |
12.06.2024 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1052V6c_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1077V2c_pdf.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1052V6a_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1077V2a_pdf.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1052V6b_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1077V2b_pdf.pdf |
| manufacturer |
Research Industrial Systems Engineering (RISE) Forschungs-, Entwicklungs- und Großprojekteberatung GmbH |
Giesecke+Devrient ePayments GmbH |
| manufacturer_web |
https://www.rise-world.com/ |
https://www.gi-de.com/de/ |
| security_level |
ADV_FSP.4, EAL3, AVA_VAN.5, ALC_FLR.2, ADV_IMP.1, ALC_TAT.1, ADV_TDS.3 |
ALC_DVS.2, EAL4+, ATE_DPT.2, AVA_VAN.5 |
| dgst |
65d148b67bc5288a |
3f746e3371e342f6 |
| heuristics/cert_id |
BSI-DSZ-CC-1052-V6-2024 |
BSI-DSZ-CC-1077-V2-2024 |
| heuristics/cert_lab |
BSI |
BSI |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
AGD_PRE.1, ALC_TAT.1, AVA_VAN.5, ALC_DEL.1, ADV_FSP.4, AGD_OPE.1, ADV_ARC.1, ADV_TDS.3, ATE_DPT.1, ALC_FLR.2, ADV_IMP.1 |
AGD_PRE.1, ALC_FLR.1, ALC_TAT.1, ALC_CMS.4, ATE_DPT.2, ATE_FUN.1, AVA_VAN.5, ALC_DEL.1, ADV_FSP.4, ALC_LCD.1, ALC_DVS.2, ADV_ARC.1, ADV_TDS.3, AGD_OPE.1, ALC_CMC.4, ADV_IMP.1 |
| heuristics/extracted_versions |
5.1 |
3.7 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
BSI-DSZ-CC-1052-V5-2022 |
BSI-DSZ-CC-1110-V6-2023, BSI-DSZ-CC-1077-2020 |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
BSI-DSZ-CC-1052-V3-2021, BSI-DSZ-CC-1052-2018, BSI-DSZ-CC-1052-V4-2021, BSI-DSZ-CC-1052-V2-2020, BSI-DSZ-CC-1052-V5-2022 |
BSI-DSZ-CC-1110-V6-2023, BSI-DSZ-CC-1110-V4-2021, BSI-DSZ-CC-1077-2020, BSI-DSZ-CC-0891-2015, BSI-DSZ-CC-1110-V5-2022, BSI-DSZ-CC-0945-V3-2018, BSI-DSZ-CC-0782-2012, BSI-DSZ-CC-1110-2019, BSI-DSZ-CC-1110-V3-2020, BSI-DSZ-CC-0945-2017, BSI-DSZ-CC-1110-V2-2019, BSI-DSZ-CC-0945-V2-2018, BSI-DSZ-CC-0891-V2-2016 |
| heuristics/scheme_data |
- category: eHealth
- cert_id: BSI-DSZ-CC-1052-V6-2024
- certification_date: 24.01.2024
- enhanced:
- applicant: Research Industrial Systems Engineering (RISE) Forschungs-, Entwicklungs- und Großprojektberatung GmbH Concorde Business Park F 2320 Schwechat Austria
- assurance_level: EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4
- cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1052V6c_pdf.pdf?__blob=publicationFile&v=1
- certification_date: 24.01.2024
- description: The target of evaluation (TOE) is the network connector (German “Netzkonnektor”) RISE-Konnektor V1.0. The TOE is part of the application connector (German “Anwendungskonnektor”) as an “e-Health Konnektor” in the context of the German health care telematics infrastructure.
- entries: [frozendict({'id': 'BSI-DSZ-CC-1052-V6-2024-MA-01 (Ausstellungsdatum / Certification Date 14.03.2024) Maintenance Report', 'description': '-Client'}), frozendict({'id': 'BSI-DSZ-CC-1052-V6-2024 (Ausstellungsdatum / Certification Date 24.01.2024, gültig bis / valid until 23.01.2029) Zertifizierungsreport / Certification Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1052-V5-2022 (Ausstellungsdatum / Certification Date 14.04.2022, gültig bis / valid until 13.04.2027) Zertifizierungsreport / Certification Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. This version implements the changes from PTV4 to PTV5.'}), frozendict({'id': 'BSI-DSZ-CC-1052-V4-2021 (Ausstellungsdatum / Certification Date 27.08.2021, gültig bis / valid until 26.08.2026) Zertifizierungsreport / Certification Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1052-V3-2021 (Ausstellungsdatum / Certification Date 22.02.2021, gültig bis / valid until 21.02.2026) Zertifizierungsreport / Certification Report', 'description': 'The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten.'}), frozendict({'id': 'BSI-DSZ-CC-1052-V2-2020 (Ausstellungsdatum / Certification Date 24.06.2020, gültig bis / valid until 23.06.2025) Zertifizierungsreport / Certification Report', 'description': ') of the German health care.'}), frozendict({'id': 'BSI-DSZ-CC-1052-2018 (Ausstellungsdatum / Certification Date 08.01.2019, gültig bis / valid until 07.01.2024) Zertifizierungsreport / Certification Report', 'description': 'Certificat'})]
- evaluation_facility: SRC Security Research & Consulting GmbH
- expiration_date: 23.01.2029
- product: RISE Konnektor V5.1
- protection_profile: Common Criteria Schutzprofil (Protection Profile), Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021;
- report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1052V6a_pdf.pdf?__blob=publicationFile&v=1
- target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1052V6b_pdf.pdf?__blob=publicationFile&v=1
- product: RISE Konnektor V5.1
- subcategory: Software
- url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1052_1052V2_1052V3_1052V4_1052V5_1052V6.html
- vendor: Research Industrial Systems Engineering (RISE) Forschungs-, Entwicklungs- und Großprojektberatung GmbH
|
- category: Electronic ID documents
- cert_id: BSI-DSZ-CC-1077-V2-2024
- certification_date: 12.06.2024
- enhanced:
- applicant: Giesecke+Devrient ePayments GmbH Prinzregentenstr. 161 81677 München
- assurance_level: EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5
- cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1077V2c_pdf.pdf?__blob=publicationFile&v=2
- certification_date: 12.06.2024
- description: The Target of Evaluation (TOE) is the product STARCOS 3.7 ID ePA C1, STARCOS 3.7 ID eAT C1, STARCOS 3.7 ID ePass C1 provided by Giesecke+Devrient Mobile Security GmbH, based on the hardware platform Infineon Security Controller IFX_CCI_000005h from Infineon Technologies AG. It is an electronic Identity Card representing a smart card with contactless interface programmed according to the Technical Guideline BSI TR-03110 and the ICAO specifications. The smart card provides the following authentication mechanisms: Passive Authentication, Password Authenticated Connection Establishment (PACE), Chip Authentication version 1, 2 and 3, Terminal Authentication version 1 and 2. Additionally, the TOE meets the requirements of the Technical Guideline BSI TR-03116-2 as part of the qualification for the use within electronic ID card projects of the Federal Republic of Germany. Please note that in consistency to the claimed protection profile BSI-CC-PP-0087-V2-2016-MA-01 the security mechanisms Password Authenticated Connection Establishment (PACE) and Extended Access Control (EAC) are in focus of this evaluation process. The further security mechanism Basic Access Control (BAC) contained in the corresponding product is subject of a separate evaluation process (refer to BSI-DSZ-CC-1076-2020). The smart card contains at least one of the following applications that are all subject of the TOE’s evaluation: ePass ApplicationeID ApplicationeSign Application Three different major configurations of the TOE exist that only differ in the installed file system or applications respectively: Electronic DocumentResidence PermitPassport Furthermore, the TOE provides the so-called Update-in-Field mechanism. This secure update mechanism allows to install code-signed updates of the TOE Embedded Software (operating system part) by authorized staff during operational use. The TOE’s evaluation only covers the Update-in-Field mechanism itself, but does not cover any update packages. As stated in the certification report in chapter 12, the certificate comprises the usage as QSigCD according to article 30 of the Regulation (EU) No 910/2014.
- entries: [frozendict({'id': 'BSI-DSZ-CC-1077-V2-2024 (Ausstellungsdatum / Certification Date 12.06.2024, gültig bis / valid until 11.06.2029) Certificate of Conformity to Regulation (EU) No. 910/2014 (eIDAS) based on BSI-DSZ-CC-1077-V2-2024 Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate', 'description': 'certificate and integrated site certificates for development and production sites as well as on the update of the vulnerability analysis including penetration testing for the (crypto-) implementation.'}), frozendict({'id': 'BSI', 'description': 'Second Re-Assessment for update of the vulnerability analysis and valuation related to the certification procedure 1077.'}), frozendict({'id': 'BSI', 'description': 'Re-Assessment for update of the vulnerability analysis and valuation related to the certification procedure 1077.'}), frozendict({'id': 'BSI', 'description': 'Certificate'})]
- evaluation_facility: SRC Security Research & Consulting GmbH
- expiration_date: 11.06.2029
- product: STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2
- protection_profile: Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP), Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01, Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016
- report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1077V2a_pdf.pdf?__blob=publicationFile&v=2
- target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1077V2b_pdf.pdf?__blob=publicationFile&v=2
- product: STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2
- subcategory: IC with applications
- url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1077.html
- vendor: Giesecke+Devrient ePayments GmbH
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
BSI-DSZ-CC-1110-V6-2023 |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
BSI-DSZ-CC-1110-V6-2023 |
| heuristics/protection_profiles |
19e2d2b1593c97a5 |
d90a82ee45f94fe0, 3eb6aa5ff339f509 |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0097V2b_pdf.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0087V2b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0090b_pdf.pdf |
| pdf_data/cert_filename |
1052V6c_pdf.pdf |
1077V2c_pdf.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- DE:
- BSI-DSZ-CC-1052-V6-2024: 1
|
- DE:
- BSI-DSZ-CC-1077-V2-2024: 1
|
| pdf_data/cert_keywords/cc_protection_profile_id |
- BSI:
- BSI-CC-PP-0097-V2-2020-MA-01: 1
|
- BSI:
- BSI-CC-PP-0087-V2-2016-MA-01: 1
- BSI-CC-PP-0090-2016: 1
|
| pdf_data/cert_keywords/cc_security_level |
- EAL:
- EAL 2: 1
- EAL 3: 1
- EAL 4: 1
- EAL 5: 1
|
- EAL:
- EAL 2: 1
- EAL 4: 1
- EAL 4 augmented: 1
- EAL 5: 1
|
| pdf_data/cert_keywords/cc_sar |
- ADV:
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
- ALC:
- ALC_FLR: 1
- ALC_FLR.2: 1
- ALC_TAT.1: 1
- AVA:
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /Keywords: "Common Criteria, Certification, Zertifizierung, Konnektor"
- /Subject: Common Criteria, Certification, Zertifizierung, Konnektor
- /Title: Zertifikat BSI-DSZ-CC-1052-V6-2023
- pdf_file_size_bytes: 393917
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: Federal Office for Information Security
- /Keywords: Common Criteria, Certification, Zertifizierung, STARCOS 3.7
- /Subject: Common Criteria, Certification, Zertifizierung, STARCOS 3.7
- /Title: Certificate BSI-DSZ-CC-1077-V2-2024
- pdf_file_size_bytes: 232936
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
1052V6a_pdf.pdf |
1077V2a_pdf.pdf |
| pdf_data/report_frontpage |
- DE:
- cert_id: BSI-DSZ-CC-1052-V6-2024
- cert_item: RISE Konnektor, V5.1
- cert_lab: BSI
- developer: Research Industrial Systems Engineering (RISE
- match_rules: ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)']
|
- DE:
- cc_security_level: Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2 and AVA_VAN.5 valid until: 11 June 2029 SOGIS Recognition Agreement
- cc_version: PP conformant Common Criteria Part 2 extended
- cert_id: BSI-DSZ-CC-1077-V2-2024
- cert_item: STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2
- cert_lab: BSI
- developer: Giesecke+Devrient ePayments GmbH
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
- ref_protection_profiles: Common Criteria Protection Profile Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use [MR.ED-PP], Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01 Common Criteria PP Configuration Machine Readable Electronic Documents – Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016
|
| pdf_data/report_keywords/cc_cert_id |
- DE:
- BSI-DSZ-CC-1052-V5-2022: 2
- BSI-DSZ-CC-1052-V6-2024: 19
|
- DE:
- BSI-DSZ-CC-1077-: 1
- BSI-DSZ-CC-1077-2020: 2
- BSI-DSZ-CC-1077-2020-RA-01: 2
- BSI-DSZ-CC-1077-2020-RA-02: 1
- BSI-DSZ-CC-1077-V2-2024: 25
- BSI-DSZ-CC-1110-V6-2023: 6
- BSI-DSZ-CC-S-0208-2022: 2
- BSI-DSZ-CC-S-0253-2023: 2
- BSI-DSZ-CC-S-0260-2023: 1
|
| pdf_data/report_keywords/cc_protection_profile_id |
- BSI:
- BSI-CC-PP-0097-V2-2020-: 1
- BSI-CC-PP-0097-V2-2020-MA-01: 1
- BSI-CC-PP-0097-V2-2021-MA-01: 1
|
- BSI:
- BSI-CC-PP-0056-V2-2012: 2
- BSI-CC-PP-0059-2009-MA-02: 3
- BSI-CC-PP-0068-V2-: 1
- BSI-CC-PP-0068-V2-2011-MA-01: 2
- BSI-CC-PP-0086: 3
- BSI-CC-PP-0087-V2-2016-MA-01: 3
- BSI-CC-PP-0090-2016: 4
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 1: 1
- EAL 2: 3
- EAL 3: 4
- EAL 4: 2
- EAL 5: 1
- EAL5+: 1
- EAL6: 1
|
- EAL:
- EAL 1: 1
- EAL 2: 3
- EAL 4: 5
- EAL 4 augmented: 3
- EAL 5: 4
- EAL 5+: 2
- EAL 6: 2
|
| pdf_data/report_keywords/cc_sar |
- ADV:
- ADV_FSP.4: 4
- ADV_IMP.1: 4
- ADV_TDS.3: 4
- ALC:
- ALC_FLR: 3
- ALC_FLR.2: 4
- ALC_TAT.1: 4
- AVA:
|
- ADV:
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.2: 5
- ALC_FLR: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ATE:
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
- FCS:
- FCS_CKM: 23
- FCS_COP: 24
- FCS_RND: 1
- FIA:
- FTP:
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
- GD:
- Infineon:
- Infineon: 9
- Infineon Technologies AG: 7
|
| pdf_data/report_keywords/eval_facility |
- SRC:
- SRC Security Research & Consulting: 6
|
- SRC:
- SRC Security Research & Consulting: 3
- TUV:
- TÜV Informationstechnik: 1
|
| pdf_data/report_keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 6
- AES-: 8
- AES-128: 2
- constructions:
- MAC:
- HMAC: 8
- HMAC-SHA-256: 2
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
- SHA:
- SHA2:
- SHA-256: 2
- SHA-384: 1
- SHA-512: 1
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
- IKE:
- IPsec:
- TLS:
- TLS:
- TLS: 20
- TLS 1.2: 2
- TLS v1.2: 7
- VPN:
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
- FI:
- fault injection: 1
- malfunction: 1
- physical tampering: 1
- SCA:
- other:
|
| pdf_data/report_keywords/technical_report_id |
- BSI:
- BSI 7148: 1
- BSI TR-02102: 1
- BSI TR-03111: 1
- BSI TR-03116-1: 1
|
- BSI:
- BSI 7148: 1
- BSI TR-02102-1: 1
- BSI TR-03110: 8
- BSI TR-03116: 3
- BSI TR-03116-2: 2
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- BSI:
- AIS 1: 1
- AIS 14: 1
- AIS 19: 1
- AIS 20: 2
- AIS 23: 1
- AIS 31: 1
- AIS 32: 1
- AIS 34: 1
- AIS 38: 1
- AIS 46: 1
- FIPS:
- FIPS 180-4: 11
- FIPS 186-4: 4
- FIPS 197: 4
- FIPS 202: 1
- FIPS PUB 180-4: 1
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18045: 4
- NIST:
- SP 800-38D: 2
- SP 800-56A: 1
- SP 800-90A: 1
- PKCS:
- RFC:
- RFC 1321: 1
- RFC 2104: 5
- RFC 2404: 4
- RFC 2898: 2
- RFC 3268: 5
- RFC 3279: 1
- RFC 3526: 4
- RFC 3602: 4
- RFC 4055: 2
- RFC 4301: 4
- RFC 4303: 4
- RFC 4346: 2
- RFC 4492: 4
- RFC 4868: 4
- RFC 5083: 1
- RFC 5084: 1
- RFC 5116: 2
- RFC 5246: 7
- RFC 5280: 2
- RFC 5289: 3
- RFC 5639: 2
- RFC 5652: 1
- RFC 5751: 1
- RFC 5869: 2
- RFC 7027: 4
- RFC 7292: 2
- RFC 7296: 6
- RFC 8017: 8
- X509:
|
- BSI:
- AIS 1: 1
- AIS 14: 1
- AIS 19: 1
- AIS 20: 3
- AIS 25: 4
- AIS 26: 4
- AIS 31: 3
- AIS 32: 1
- AIS 34: 4
- AIS 35: 2
- AIS 36: 5
- AIS 37: 3
- AIS 38: 1
- AIS 46: 3
- AIS20: 2
- AIS31: 2
- FIPS:
- FIPS PUB 180-4: 1
- FIPS PUB 197: 1
- FIPS PUB 46-3: 1
- FIPS180: 6
- FIPS180-4: 1
- FIPS197: 4
- FIPS46-3: 3
- ICAO:
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18031:2005: 1
- ISO/IEC 18045: 4
- RFC:
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- ConfidentialDocument:
- 7 ID eAT C2, STARCOS 3.7 ID ePass C2, Version 0.9, 29 April 2024, Giesecke+Devrient ePayments GmbH (confidential document) [16] Guidance Documentation STARCOS 3.7 ID C2 – Main Document, Version 1.1, 05 December 2023: 1
- 7 ID eAT C2, STARCOS 3.7 ID ePass C2, Version 1.7, 26 April 2024, Giesecke+Devrient ePayments GmbH (confidential document) [7] Security Target Lite BSI-DSZ-CC-1077-V2-2024, Security Target Lite STARCOS 3.7 ID ePA C2: 1
- H13, Revision 4.4, 30 November 2023, Infineon Technologies AG, BSI-DSZ-CC- 1110-V6-2023 (confidential document) Security Target Lite of the underlying hardware platform, Common Criteria Public Security Target: 1
- being maintained is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
- eAT C2, STARCOS 3.7 ID ePass C2, Version 1.0, 3 May 2024, SRC Security Research & Consulting GmbH (confidential document) [15] Configuration List BSI-DSZ-CC-1077-V2-2024, Configuration List STARCOS 3.7 ID ePA C2, STARCOS: 1
- procedure BSI-DSZ-CC-1110-V6-2023, Version 3, 01 December 2023, TÜV Informationstechnik GmbH (confidential document) [24] Technical Guideline BSI TR-03110: Advanced Security Mechanisms for Machine Readable Travel: 1
|
| pdf_data/report_metadata |
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /Keywords: "Common Criteria, Certification, Zertifizierung, Konnektor"
- /Subject: Common Criteria, Certification, Zertifizierung, Konnektor
- /Title: Zertifizierungsreport BSI-DSZ-CC-1052-V6-2023
- pdf_file_size_bytes: 600723
- pdf_hyperlinks: https://www.sogis.eu/, https://www.bsi.bund.de/AIS, https://www.commoncriteriaportal.org/, https://www.commoncriteriaportal.org/cc/, https://www.bsi.bund.de/zertifizierung, https://www.bsi.bund.de/zertifizierungsreporte
- pdf_is_encrypted: False
- pdf_number_of_pages: 35
|
- /Author: Federal Office for Information Security
- /Keywords: "Common Criteria, Certification, Zertifizierung, STARCOS 3.7, MR.ED-PP, MR.ED-ON-PP"
- /Subject: Common Criteria, Certification, Zertifizierung, STARCOS 3.7, MR.ED-PP, MR.ED-ON-PP
- /Title: Certification Report BSI-DSZ-CC-1077-V2-2024
- pdf_file_size_bytes: 739434
- pdf_hyperlinks: http://www.commoncriteriaportal.org/cc/, https://www.sogis.eu/, https://www.bsi.bund.de/AIS, http://www.commoncriteriaportal.org/, https://www.commoncriteriaportal.org/, https://www.bsi.bund.de/zertifizierung, https://www.bsi.bund.de/zertifizierungsreporte, https://www.bsi.bund.de/
- pdf_is_encrypted: False
- pdf_number_of_pages: 39
|
| pdf_data/st_filename |
1052V6b_pdf.pdf |
1077V2b_pdf.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1110-V6-2023: 2
|
| pdf_data/st_keywords/cc_protection_profile_id |
- BSI:
- BSI-CC-PP- 0082-: 1
- BSI-CC-PP- 0098-V2: 1
- BSI-CC-PP-0097-V2-2020-MA-: 2
- BSI-CC-PP-0097-V2-2020-MA-01: 9
- BSI-CC-PP-0098-: 1
- BSI-CC-PP-0098-V2: 7
|
- BSI:
- BSI-CC-PP-0056-V2-2012: 1
- BSI-CC-PP-0059-: 1
- BSI-CC-PP-0084-2014: 1
- BSI-CC-PP-0086-2015: 1
- BSI-CC-PP-0087-V2-2016-MA-01: 1
- BSI-CC-PP-0087-V2-MA-01: 1
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 4: 2
- EAL 6: 2
- EAL4: 14
- EAL4 augmented: 4
- EAL6: 1
- EAL6 augmented: 1
- EAL6+: 2
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC: 2
- ADV_ARC.1: 1
- ADV_FSP.4: 7
- ADV_IMP.1: 9
- ADV_TDS.1: 1
- ADV_TDS.2: 2
- ADV_TDS.3: 7
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 12
- AGD_PRE.1: 1
- ALC:
- ALC_DEL.1: 6
- ALC_FLR.2: 6
- ALC_TAT.1: 8
- ATE:
- AVA:
|
- ADV:
- ADV_ARC.1: 3
- ADV_FSP.4: 2
- ADV_IMP.1: 2
- ADV_TDS.3: 4
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 2
- AGD_PRE: 4
- AGD_PRE.1: 3
- ALC:
- ALC_DEL.1: 1
- ALC_DVS.2: 8
- ALC_FLR.1: 1
- ATE:
- ATE_DPT: 1
- ATE_DPT.2: 9
- ATE_FUN: 1
- ATE_FUN.1: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN: 16
- FAU_GEN.1: 5
- FAU_GEN.2: 1
- FAU_STG: 2
- FCS:
- FCS_CKM: 90
- FCS_CKM.1: 14
- FCS_CKM.2: 6
- FCS_CKM.4: 13
- FCS_COP: 77
- FCS_COP.1: 12
- FDP:
- FDP_ACC: 11
- FDP_ACC.1: 7
- FDP_ACF: 8
- FDP_ACF.1: 5
- FDP_ETC: 9
- FDP_ETC.2: 4
- FDP_IFC: 20
- FDP_IFC.1: 7
- FDP_IFF: 21
- FDP_IFF.1: 16
- FDP_ITC: 9
- FDP_ITC.1: 12
- FDP_ITC.2: 17
- FDP_RIP: 6
- FDP_RIP.1: 1
- FDP_UIT: 9
- FDP_UIT.1: 2
- FIA:
- FMT:
- FMT_MOF: 13
- FMT_MOF.1: 1
- FMT_MSA: 48
- FMT_MSA.1: 2
- FMT_MSA.3: 6
- FMT_MSA.4: 1
- FMT_MTD: 8
- FMT_MTD.1: 1
- FMT_SMF: 18
- FMT_SMF.1: 4
- FMT_SMR: 23
- FMT_SMR.1: 6
- FMT_SMR.1.1: 1
- FPT:
- FPT_EMS: 17
- FPT_EMS.1: 7
- FPT_EMS.1.1: 2
- FPT_EMS.1.2: 2
- FPT_STM: 11
- FPT_STM.1: 2
- FPT_TDC: 22
- FPT_TDC.1: 6
- FPT_TST: 7
- FPT_TST.1: 3
- FTP:
- FTP_ITC: 50
- FTP_ITC.1: 26
- FTP_TRP: 14
- FTP_TRP.1: 5
|
- FAU:
- FAU_SAS: 14
- FAU_SAS.1: 9
- FAU_SAS.1.1: 1
- FCS:
- FCS_CKM: 106
- FCS_CKM.1: 30
- FCS_CKM.2: 11
- FCS_CKM.4: 30
- FCS_COP: 96
- FCS_COP.1: 27
- FCS_RND: 8
- FCS_RND.1: 4
- FCS_RNG: 9
- FDP:
- FDP_ACC: 35
- FDP_ACC.1: 17
- FDP_ACF: 47
- FDP_ACF.1: 50
- FDP_IFC: 5
- FDP_IFC.1: 9
- FDP_IFF: 6
- FDP_IFF.1: 6
- FDP_ITC.1: 19
- FDP_ITC.2: 20
- FDP_ITT.1: 1
- FDP_MTD: 2
- FDP_RIP: 11
- FDP_RIP.1: 10
- FDP_SDC.1: 1
- FDP_SDI: 10
- FDP_SDI.1: 3
- FDP_SDI.2: 10
- FDP_UCT: 5
- FDP_UCT.1: 2
- FDP_UIT: 5
- FDP_UIT.1: 3
- FIA:
- FIA_AFL: 21
- FIA_AFL.1: 11
- FIA_API: 21
- FIA_API.1: 7
- FIA_UAU: 70
- FIA_UAU.1: 15
- FIA_UAU.4: 3
- FIA_UAU.4.1: 1
- FIA_UAU.5: 4
- FIA_UAU.6: 4
- FIA_UID: 27
- FIA_UID.1: 18
- FMT:
- FMT_FLS.1: 1
- FMT_LIM: 41
- FMT_LIM.1: 7
- FMT_LIM.2: 7
- FMT_MOF: 2
- FMT_MOF.1: 1
- FMT_MSA: 17
- FMT_MSA.1: 8
- FMT_MSA.2: 1
- FMT_MSA.3: 12
- FMT_MSA.4: 1
- FMT_MTD: 87
- FMT_MTD.1: 23
- FMT_MTD.3: 3
- FMT_SMF: 37
- FMT_SMF.1: 30
- FMT_SMR: 39
- FMT_SMR.1: 43
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FMT_TST.1: 1
- FPT:
- FPT_EMS: 31
- FPT_EMS.1: 15
- FPT_EMS.1.1: 3
- FPT_EMS.1.2: 3
- FPT_FLS: 15
- FPT_FLS.1: 7
- FPT_ITT.1: 1
- FPT_PHP: 14
- FPT_PHP.1: 3
- FPT_PHP.3: 4
- FPT_TST: 17
- FPT_TST.1: 7
- FPT_TST.2: 5
- FRU:
- FTP:
- FTP_ITC: 23
- FTP_ITC.1: 18
- FTP_TRP.1: 1
|
| pdf_data/st_keywords/cc_claims |
|
- A:
- O:
- O.AES: 2
- O.MEM_ACCESS: 1
- O.RND: 3
- O.TDES: 1
- OE:
- T:
|
| pdf_data/st_keywords/vendor |
|
- GD:
- G+D: 2
- Giesecke+Devrient: 6
- Infineon:
- Infineon: 3
- Infineon Technologies: 1
- Infineon Technologies AG: 1
- NXP:
|
| pdf_data/st_keywords/eval_facility |
|
- TSystems:
- T-Systems International: 1
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 22
- AES-128: 3
- AES-256: 2
- HPC:
- constructions:
- MAC:
- HMAC: 31
- HMAC-SHA-256: 1
- HMAC-SHA-384: 1
- HMAC-SHA-512: 1
|
- AES_competition:
- DES:
- 3DES:
- 3DES: 6
- TDES: 2
- Triple-DES: 4
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-2: 2
- SHA-256: 6
- SHA256: 2
|
- SHA:
- SHA1:
- SHA2:
- SHA-224: 1
- SHA-256: 7
- SHA-384: 4
- SHA-512: 4
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- IKE:
- IPsec:
- TLS:
- SSL:
- TLS:
- TLS: 143
- TLS 1.2: 2
- TLS 1.3: 1
- VPN:
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- Brainpool:
- brainpoolP256r1: 2
- brainpoolP384r1: 1
- NIST:
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
- TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 2
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 2
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 3
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 2
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 2
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 2
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 2
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 2
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 2
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 11
- malfunction: 1
- physical tampering: 7
- SCA:
|
| pdf_data/st_keywords/technical_report_id |
- BSI:
- BSI 4: 1
- BSI TR-03116-1: 3
- BSI TR-03144: 1
|
- BSI:
- BSI TR-03110: 2
- BSI TR-03116: 1
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
- EF:
- EF.COM: 1
- EF.ChipSecurity: 1
- EF.DG1: 1
- EF.DG14: 1
- EF.DG16: 1
- EF.DG3: 2
- EF.DG4: 2
- EF.SOD: 2
|
| pdf_data/st_keywords/standard_id |
- CC:
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
- FIPS:
- FIPS 180-4: 1
- FIPS 197: 2
- FIPS PUB 180-4: 4
- PKCS:
- RFC:
- RFC 1323: 1
- RFC 2104: 3
- RFC 2131: 2
- RFC 2132: 2
- RFC 2401: 1
- RFC 2402: 1
- RFC 2404: 2
- RFC 2406: 2
- RFC 2460: 1
- RFC 2560: 1
- RFC 2663: 1
- RFC 3268: 1
- RFC 3279: 1
- RFC 3526: 1
- RFC 3602: 3
- RFC 3947: 1
- RFC 4035: 1
- RFC 4055: 2
- RFC 4301: 5
- RFC 4302: 2
- RFC 4303: 6
- RFC 4330: 1
- RFC 4346: 1
- RFC 4868: 2
- RFC 5246: 4
- RFC 5280: 1
- RFC 5289: 2
- RFC 5639: 1
- RFC 5905: 1
- RFC 7296: 8
- RFC 791: 1
- RFC 793: 1
- RFC 8017: 3
- RFC 8422: 2
- RFC 8446: 1
- RFC 958: 1
- RFC-5639: 1
- RFC-7027: 1
- X509:
|
- BSI:
- AIS 20: 1
- AIS 31: 1
- AIS20: 2
- AIS31: 3
- CC:
- CCMB-2017-04-001: 2
- CCMB-2017-04-002: 2
- CCMB-2017-04-003: 2
- CCMB-2017-04-004: 2
- FIPS:
- FIPS 197: 1
- FIPS 19795: 1
- FIPS180-4: 9
- ICAO:
- ISO:
- ISO/IEC 14443: 4
- ISO/IEC 7816: 2
- PKCS:
- RFC:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- and supports this process by cryptographic means. In particular, the updated TOE software is out of scope of this ST. No assumption is made on the quality and security of the update. To make the point: 1
- of the user data accessible using the different terminal types Other terminals than the above are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are functionally supported by: 1
- out of scope: 2
|
| pdf_data/st_metadata |
- /Author: RISE
- /Subject: RISE-Konnektor
- /Title: RISE-Konnektor
- pdf_file_size_bytes: 1443373
- pdf_hyperlinks: https://www.dimdi.de/, https://www.rfc-editor.org/rfc/rfc8017.txt, https://www.rfc-editor.org/rfc/rfc4868.txt, http://tools.ietf.org/html/rfc4302, https://www.ietf.org/rfc/rfc5996.txt, http://tools.ietf.org/html/rfc4301, http://www.ietf.org/rfc/rfc5280.txt, http://tools.ietf.org/html/rfc2663, http://tools.ietf.org/html/rfc4330, https://www.rfc-editor.org/rfc/rfc2404.txt, http://tools.ietf.org/html/rfc2402, https://www.rfc-editor.org/rfc/rfc3526.txt, https://www.rfc-editor.org/rfc/rfc3602.txt, https://www.ietf.org/rfc/rfc2131.txt, http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf, http://tools.ietf.org/html/rfc791, http://www.eecis.udel.edu/~mills/ntp/html/release.html, http://www.dimdi.de/, https://www.ietf.org/rfc/rfc4303.txt, https://www.gematik.de/, http://tools.ietf.org/html/rfc4303, http://tools.ietf.org/html/rfc958, https://www.ietf.org/rfc/rfc5905.txt, https://www.ietf.org/rfc/rfc2406.txt, http://www.ietf.org/rfc/rfc5639.txt, http://tools.ietf.org/html/rfc2460, https://www.ietf.org/rfc/rfc2132.txt, http://tools.ietf.org/html/rfc2406, http://tools.ietf.org/html/, http://tools.ietf.org/html/rfc1323, http://www.bundesnetzagentur.de/, https://www.ietf.org/rfc/rfc4035.txt, http://www.gematik.de/, http://tools.ietf.org/html/rfc2401, https://www.bmg.bund.de/, https://www.rfc-editor.org/rfc/rfc4055.txt, https://www.ietf.org/rfc/rfc7296.txt, http://tools.ietf.org/html/rfc793
- pdf_is_encrypted: False
- pdf_number_of_pages: 156
|
- /Author: uta
- /Keywords: Version, 1.7/Status, 26.04.2024
- /Subject: STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2
- /Title: Security Target Lite
- pdf_file_size_bytes: 1673991
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 182
|
| state/cert/convert_garbage |
False |
False |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |