This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Cisco Web Security Appliance with AsyncOS 11.8 567-LSS	MTCOS Pro 2.6 EAC with PACE / SLC37 (V11) None
name	Cisco Web Security Appliance with AsyncOS 11.8	MTCOS Pro 2.6 EAC with PACE / SLC37 (V11)
category	Network and Network-Related Devices and Systems	ICs, Smart Cards and Smart Card-Related Devices and Systems
scheme	CA	DE
status	active	active
not_valid_after	21.05.2027	13.11.2029
not_valid_before	21.05.2022	13.11.2024
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/567-LSS%20CT%20v1.3%20Eng.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1219c_pdf.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/567-LSS%20CR%20v1.3.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1219a_pdf.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Cisco_WSA11.8_Security_Target_v0.13.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1219b_pdf.pdf
manufacturer	Cisco Systems, Inc.	MaskTech International GmbH
manufacturer_web	https://www.cisco.com	https://www.masktech.de/
security_level	{}	ALC_DVS.2, EAL5+, AVA_VAN.5, ALC_FLR.3
dgst	68a4bb5619d6b24a	0eb5b19974b24cf7
heuristics/cert_id	567-LSS
heuristics/cert_lab	[]	[]
heuristics/cpe_matches	cpe:2.3:o:cisco:asyncos:11.8:::::::, cpe:2.3:a:cisco:web_security_appliance:11.8.0:::::::, cpe:2.3:o:cisco:asyncos:11.8.0:::::::*	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	CVE-2021-1359, CVE-2021-1566, CVE-2021-1490, CVE-2020-3568, CVE-2022-20653, CVE-2020-3164, CVE-2018-0093, CVE-2021-1129, CVE-2020-3367, CVE-2023-20032	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	{}	ALC_DVS.2, ALC_FLR.3, AVA_VAN.5
heuristics/extracted_versions	11.8	2.6
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	{}
heuristics/report_references/directly_referencing	{}	{}
heuristics/report_references/indirectly_referenced_by	{}	{}
heuristics/report_references/indirectly_referencing	{}	{}
heuristics/scheme_data	certification_date: 28.02.2022 level: CPP_ND_v2.2E product: Cisco Web Security Appliance with AsyncOS 11.8 vendor: Cisco Systems, Inc.	category: Electronic ID documents cert_id: BSI-DSZ-CC-1219-2024 certification_date: 13.11.2024 enhanced: applicant: MaskTech International GmbH Nordostpark 45 90411 Nürnberg assurance_level: EAL5+,ALC_DVS.2,ALC_FLR.3,AVA_VAN.5 cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1219c_pdf.pdf?__blob=publicationFile&v=2 certification_date: 13.11.2024 description: Target of evaluation (TOE) is the product MTCOS Pro 2.6 EAC with PACE / SLC37 (V11) provided by MaskTech International GmbH.The TOE is a fully interoperable multi-application smart card operating system compliant to 'ISO_7816' with a contact and contactless interface. It contains an MRTD application which is programmed according to ICAO Technical Report “Supplemental Access Control” and additionally providing the Extended Access Control according to the ’ICAO 9303’ and 'BSI_TR-03110-1', respectively. The communication between terminal and chip shall be protected by Password Authenticated Connection Establishment (PACE) according to “Electronic Passport using Standard Inspection Procedure with PACE”, BSI-CC-PP-0068-V2. Additionally, Active Authentication according to 'ICAO_9303' is provided.The current evaluation process is a re-evaluation of the product MTCOS Pro 2.5 EAC with PACE / SLE78CLFX400VPHM/BPHM/7PHM (M7892), which has been certified under the certification ID BSI-DSZ-CC-1033-V2-2021. Subject to the re-evaluation are changes to the certified product with respect to actual development and findings which are: The embedded software has been implemented to the hardware platform SLC37GDA512 (V11) secure dual-interface controller of Infineon Technologies AG, BSI-DSZ-CC-1107-V5-2024. This implies an adaption of the low-level interfaces to the functionality provided by the IC and the usage of the cryptographic library.While the base certification was provided as an ePassport application only, the TOE now includes a multi-application product, containing an SSCD application to be certified in a separate procedure. However, the basecertification itself is based on an SSCD-including multi-application product.The MTCOS operating system has been revised including the internal keyhandling. In this context, new commands for the generation and configuration of key files are provided. Furthermore, MTCOS now allows more configuration options: File sizes of specified transparent files can be set during personalization. In order to oblige customers with an established personalization system, a “compatibility mode” can be configured.The feature “in-field hardening of the cryptographic implementation” has been omitted.Due to expiration of the audit validity of MaskTech International GmbH a new site visit was performed in which course the assurance component ALC_FLR.3 was added. entries: [frozendict({'id': 'neue'}), frozendict({'id': 'der'}), frozendict({'id': 'Das'}), frozendict({'id': 'Das'}), frozendict({'id': 'Aufgrund'})] evaluation_facility: SRC Security Research & Consulting GmbH expiration_date: 12.11.2029 product: MTCOS Pro 2.6 EAC with PACE / SLC37 (V11) protection_profile: Machine Readable Travel Document with "ICAO Application", Extended Access Control with PACE (EAC PP), Version 1.3.2, 5 December 2012, BSI-CC-PP-0056-V2-2012-MA-02 report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1219a_pdf.pdf?__blob=publicationFile&v=2 target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1219b_pdf.pdf?__blob=publicationFile&v=2 product: MTCOS Pro 2.6 EAC with PACE / SLC37 (V11) subcategory: IC with applications url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1219.html vendor: MaskTech International GmbH
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	{}
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	{}
heuristics/protection_profiles	89f2a255423f4a20	a33327d40f253f46
maintenance_updates
protection_profiles
protection_profile_links	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0056_V2b_pdf.pdf
pdf_data/cert_filename	567-LSS CT v1.3 Eng.pdf	1219c_pdf.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata
pdf_data/report_filename	567-LSS CR v1.3.pdf	1219a_pdf.pdf
pdf_data/report_frontpage
pdf_data/report_keywords/cc_cert_id
pdf_data/report_keywords/cc_protection_profile_id
pdf_data/report_keywords/cc_security_level
pdf_data/report_keywords/cc_sar
pdf_data/report_keywords/cc_sfr
pdf_data/report_keywords/cc_claims
pdf_data/report_keywords/vendor
pdf_data/report_keywords/eval_facility
pdf_data/report_keywords/symmetric_crypto
pdf_data/report_keywords/asymmetric_crypto
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function
pdf_data/report_keywords/crypto_scheme
pdf_data/report_keywords/crypto_protocol
pdf_data/report_keywords/randomness
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process
pdf_data/report_metadata
pdf_data/st_filename	Cisco_WSA11.8_Security_Target_v0.13.pdf	1219b_pdf.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id
pdf_data/st_keywords/cc_protection_profile_id
pdf_data/st_keywords/cc_security_level
pdf_data/st_keywords/cc_sar
pdf_data/st_keywords/cc_sfr
pdf_data/st_keywords/cc_claims
pdf_data/st_keywords/vendor
pdf_data/st_keywords/eval_facility
pdf_data/st_keywords/symmetric_crypto
pdf_data/st_keywords/asymmetric_crypto
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function
pdf_data/st_keywords/crypto_scheme
pdf_data/st_keywords/crypto_protocol
pdf_data/st_keywords/randomness
pdf_data/st_keywords/cipher_mode
pdf_data/st_keywords/ecc_curve
pdf_data/st_keywords/crypto_engine
pdf_data/st_keywords/tls_cipher_suite
pdf_data/st_keywords/crypto_library
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process
pdf_data/st_metadata
state/cert/convert_garbage	True	True
state/cert/convert_ok	False	False
state/cert/download_ok	True	True
state/cert/extract_ok	False	False
state/cert/pdf_hash	Equal	Equal
state/cert/txt_hash	Equal	Equal
state/report/convert_garbage	True	True
state/report/convert_ok	False	False
state/report/download_ok	True	True
state/report/extract_ok	False	False
state/report/pdf_hash	Equal	Equal
state/report/txt_hash	Equal	Equal
state/st/convert_garbage	True	True
state/st/convert_ok	False	False
state/st/download_ok	True	True
state/st/extract_ok	False	False
state/st/pdf_hash	Equal	Equal
state/st/txt_hash	Equal	Equal