Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.
SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2)
ISCB-5-RPT-C050-CR-v1
secunet konnektor 2.0.0 und 2.1.0, Version 6.0.8:2.0.0 und 6.0.8:2.1.0
BSI-DSZ-CC-1209-V3-2026
name SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2) secunet konnektor 2.0.0 und 2.1.0, Version 6.0.8:2.0.0 und 6.0.8:2.1.0
category Access Control Devices and Systems Other Devices and Systems
scheme MY DE
status archived active
not_valid_after 09.07.2019 23.02.2031
not_valid_before 09.07.2014 24.02.2026
cert_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1209V3c_pdf.pdf
report_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C050-CR-v1.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1209V3a_pdf.pdf
st_link https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/2014-04-14-ST-SCANS_S3-v2.7.pdf https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1209V3b_pdf.pdf
manufacturer Scan Associates Berhad Secunet Security Networks AG
manufacturer_web https://www.scan-associates.net/ https://www.secunet.com/en/
security_level EAL2 ADV_FSP.4, AVA_VAN.3, ALC_FLR.2, ADV_IMP.1, EAL3+, ADV_TDS.3, ALC_TAT.1
heuristics/cert_id ISCB-5-RPT-C050-CR-v1 BSI-DSZ-CC-1209-V3-2026
heuristics/cert_lab [] BSI
heuristics/extracted_sars ASE_INT.1, ATE_COV.1, ASE_REQ.2, AGD_OPE.1, ALC_CMC.2, ALC_CMS.2, AVA_VAN.2, ADV_FSP.2, ADV_ARC.1, ALC_DEL.1, ATE_IND.2, ASE_TSS.1, ASE_OBJ.2, ASE_ECD.1, ASE_CCL.1, ADV_TDS.1, ASE_SPD.1, ATE_FUN.1, AGD_PRE.1 ALC_CMS.4, ADV_IMP.1, AVA_VAN.3, ADV_ARC.1, ADV_TDS.3, AGD_OPE.1, ALC_FLR.2, ADV_FSP.4, ALC_DEL.1, ALC_TAT.1, ASE_TSS.1, AGD_PRE.1
heuristics/extracted_versions 2.0.1.6.2, 2.0 2.1.0, 6.0.8, 2.0.0
heuristics/report_references/directly_referencing {} BSI-DSZ-CC-1209-V2-2025
heuristics/report_references/indirectly_referencing {} BSI-DSZ-CC-1209-V2-2025
heuristics/scheme_data
  • cert_no: 2014-003-C050
  • certification_date: 09.07.2014
  • developer: Scan Associates Berhad
  • enhanced:
    • assurance_level: EAL2
    • category: Access Control Devices and System
    • cert_id: C050
    • certification_date: 09.07.2014
    • developer: Mohd Rizal Othman Scan Associates Berhad,Level 8, Menara Naluri,161-B, Jalan Ampang,50450 Kuala LumpurMalaysia URL: http://www.scan-associates.net/Email: [email protected]: +603 2166 0020Fax: +603 2166 1020
    • expiration_date: 09.07.2019
    • mutual_recognition: CCRA
    • product: SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2)
    • report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C050/ISCB-5-RPT-C050-CR-v1.pdf
    • scope: SCAN S3 SMC-AGENT is a Web-Based Application Access Control Management, which enable users to access their internal network resources securely through PKI implementation via soft-certificates, roaming certificates and smart cards. SCAN S3 SMC-AGENT is the combination of SCAN S3 SMC(Security Management Console), in which, the SCAN S3 SMC is define as the administration console for the operations SCAN S3 SMC-AGENT in the aspects of managing users and the access controls, thus, as for the SCAN S3 AGENT is the front-end interface for all users registered in the SCAN S3 SMC system, uses the interface as a secure platform in communicating with the protected resources govern by the security protection of SCAN S3 SMC-AGENT.With the new integration of software desktop that enable users to access the internal network resources, by inputting soft-certificate, roaming certificates orsmart cards through that application. The SCAN S3 SMCAGENTenables the organization to manage the overall security through a single framework that enables the defining and assignment or implementation of the following security functions in one system: Security Audit; The TOE will generate audit records for selected security events in several log files and categories. Authentication and Identification; TOE Administrator/smust login to SCAN S3 to identify themselves to the application together with the prompted (one of up to three) authentication means in order for them to gain access to the protected websites, using SCAN S3 AGENT software desktop. Cryptography; TOE has built-in feature of cryptography that bound to the operations of SCAN S3 AGENT at Users and Administrators workstation. Security Management; TOE Administrator/s has access to all TOE features, that applicable to be managed through web application portal hosted byTOE. User Data Protection; User/s data and credentials including TOE Administrator/s information is protected by ensuring that specific TOE Administrator/s that is assigned with roles and privileges can only access a specific web pages/portals and hence the data associated with the web pages/portal. Protection of the TSF; The security audit functions will generate audit records of events along with date and time of event. To ensure a reliable date and time, TOE enforce the time stamps to be taken from a reliable source from the environment.
    • status: Archive
    • target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C050/2014-04-14-ST-SCANS_S3-v2.7.pdf
    • type: Web-Based Application Access Control Management, which enable users to access their internal network resources securely through PKI implementation via soft-certificates, roaming certificates and smart cards.
  • expiration_date: 09.07.2019
  • level: EAL2
  • product: SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with Scan S3 Agent (v2.0.1.6.2)
  • recognition: CCRA
  • url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/66
  • category: eHealth
  • cert_id: BSI-DSZ-CC-1209-V3-2026
  • certification_date: 24.02.2026
  • enhanced:
    • applicant: secunet Security Networks AG Kurfürstenstraße 58 45138 Essen Deutschland
    • assurance_level: EAL3,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_FLR.2,ALC_TAT.1,AVA_VAN.3
    • cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209V3c_pdf.pdf?__blob=publicationFile&v=2
    • certification_date: 24.02.2026
    • description: The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098-V3-2021-MA-02. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten.
    • entries: [frozendict({'id': 'BSI', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098-V3-2021-MA-02. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten.'}), frozendict({'id': 'BSI', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor and the Anwendungskonnektor as specified in the Protection Profile BSI-CC-PP-0098-V3-2021-MA-02. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration. The security functionality of the Anwendungskonnektor comprises the signature service, encryption and decryption of documents, a card terminal service and a smart card service. Together with the network connector, the Anwendungskonnektor also enables secure communication between the connector and the client system and between Fachmodulen and Fachdiensten.'}), frozendict({'id': 'BSI-DSZ-CC-1209-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report', 'description': 'Security Target'}), frozendict({'id': 'BSI-DSZ-CC-1209-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)', 'description': 'Security Target'}), frozendict({'id': 'BSI-DSZ-CC-1209-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültlig bis / valid until 18.10.2028)', 'description': 'Certificate'})]
    • evaluation_facility: SRC Security Research & Consulting GmbH
    • expiration_date: 23.02.2031
    • product: secunet konnektor 2.0.0 und 2.1.0, Version 6.0.8:2.0.0 und 6.0.8:2.1.0
    • protection_profile: Common Criteria Schutzprofil (Protection Profile), Schutzprofil 2: Anforderungen an den Konnektor, BSI-CC-PP-0098-V3-2021-MA-02, Version 1.6.1, 15.03.2023, Bundesamt für Sicherheit in der Informationstechnik (BSI)
    • report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209V3a_pdf.pdf?__blob=publicationFile&v=2
    • target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1209V3b_pdf.pdf?__blob=publicationFile&v=2
  • product: secunet konnektor 2.0.0 und 2.1.0, Version 6.0.8:2.0.0 und 6.0.8:2.1.0
  • subcategory: Software
  • url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1209.html
  • vendor: secunet Security Networks AG
heuristics/st_references/directly_referencing {} BSI-DSZ-CC-1174-2021, BSI-DSZ-CC-1163-2021, BSI-DSZ-CC-1157-2020, BSI-DSZ-CC-1209-V2-2025, BSI-DSZ-CC-1184-2022, BSI-DSZ-CC-1135-2020, BSI-DSZ-CC-1218-2023, BSI-DSZ-CC-1190-2022
heuristics/st_references/indirectly_referencing {} BSI-DSZ-CC-1174-2021, BSI-DSZ-CC-1163-2021, BSI-DSZ-CC-1157-2020, BSI-DSZ-CC-1209-V2-2025, BSI-DSZ-CC-1184-2022, BSI-DSZ-CC-1135-2020, BSI-DSZ-CC-1218-2023, BSI-DSZ-CC-1190-2022
heuristics/protection_profiles {} 359e684867077664
protection_profile_links {} https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0098V3b_pdf.pdf
pdf_data/cert_filename 1209V3c_pdf.pdf
pdf_data/cert_keywords/cc_cert_id
  • DE:
    • BSI-DSZ-CC-0098-V3-2021-MA-02: 1
    • BSI-DSZ-CC-1209-V3-2026: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
  • EAL:
    • EAL 2: 1
    • EAL 3: 1
pdf_data/cert_keywords/cc_sar
  • ADV:
    • ADV_FSP.4: 1
    • ADV_IMP.1: 1
    • ADV_TDS.3: 1
  • ALC:
    • ALC_FLR: 1
    • ALC_FLR.2: 1
    • ALC_TAT.1: 1
  • AVA:
    • AVA_VAN.3: 1
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
  • ISO:
    • ISO/IEC 15408: 2
    • ISO/IEC 18045: 2
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata
  • /Author: Bundesamt für Sicherheit in der Informationstechnik
  • /Keywords: "Common Criteria, Certification, Zertifizierung, Konnektor, eHealth, Gesundheitswesen, BSI-DSZ-CC-1209-V3-2026"
  • /Subject: Common Criteria, Certification, Zertifizierung, Konnektor, eHealth, Gesundheitswesen, BSI-DSZ-CC-1209-V3-2026
  • /Title: Report BSI-DSZ-CC-1209-V3-2026
  • pdf_file_size_bytes: 251736
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 1
pdf_data/report_filename ISCB-5-RPT-C050-CR-v1.pdf 1209V3a_pdf.pdf
pdf_data/report_frontpage
  • DE:
  • DE:
    • cert_id: BSI-DSZ-CC-1209-V3-2026
    • cert_item: secunet konnektor 2.0.0 und 2.1.0, Version 6.0.8:2.0.0 und 6.0.8:2.1.0
    • cert_lab: BSI
    • developer: secunet Security Networks AG
    • match_rules: ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)']
pdf_data/report_keywords/cc_cert_id
  • MY:
    • ISCB-5-RPT-C050-CR-v1: 30
  • DE:
    • BSI-DSZ-CC-0098-V3-2021-MA-02: 2
    • BSI-DSZ-CC-1209-V2-: 1
    • BSI-DSZ-CC-1209-V2-2025: 1
    • BSI-DSZ-CC-1209-V3-2026: 20
pdf_data/report_keywords/cc_protection_profile_id
  • BSI:
    • BSI-CC-PP-0098: 1
    • BSI-CC-PP-0098-V3-2021-MA-02: 1
pdf_data/report_keywords/cc_security_level
  • EAL:
    • EAL 2: 2
    • EAL2: 8
  • EAL:
    • EAL 1: 1
    • EAL 2: 3
    • EAL 3: 4
    • EAL 4: 1
    • EAL 5+: 1
    • EAL 6: 1
pdf_data/report_keywords/cc_sar
  • ADV:
    • ADV_FSP.4: 4
    • ADV_IMP.1: 4
    • ADV_TDS.3: 4
  • ALC:
    • ALC_CMS: 1
    • ALC_CMS.4: 1
    • ALC_FLR: 3
    • ALC_FLR.2: 4
    • ALC_TAT.1: 4
  • AVA:
    • AVA_VAN.3: 5
pdf_data/report_keywords/cc_sfr
  • FAU:
    • FAU_GEN.3: 1
    • FAU_SAR.1: 1
    • FAU_STG.1: 1
  • FCS:
    • FCS_COP.1: 1
  • FDP:
    • FDP_ACC.1: 1
    • FDP_IFC.1: 1
  • FIA:
    • FIA_ATD.1: 1
    • FIA_UID.2: 1
  • FMT:
    • FMT_MOF.1: 1
    • FMT_MSA.1: 1
    • FMT_SMF.1: 1
  • FPT:
    • FPT_STM.2: 1
  • FTA:
    • FTA_SSL.1: 1
  • FDP:
    • FDP_ITC: 2
    • FDP_UIT: 2
  • FMT:
    • FMT_MTD: 2
pdf_data/report_keywords/eval_facility
  • SRC:
    • SRC Security Research & Consulting: 4
pdf_data/report_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 17
      • AES-: 4
      • AES-128: 2
      • AES-256: 2
  • constructions:
    • MAC:
      • HMAC: 10
      • HMAC-SHA-256: 1
      • HMAC-SHA-384: 1
      • HMAC-SHA-512: 1
pdf_data/report_keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 4
    • ECDH:
      • ECDH: 5
    • ECDSA:
      • ECDSA: 24
    • ECIES:
      • ECIES: 2
  • FF:
    • DH:
      • DH: 7
      • Diffie-Hellman: 4
  • RSA:
    • RSAOAEP: 4
pdf_data/report_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 1
    • SHA2:
      • SHA-2: 1
      • SHA-256: 15
      • SHA-384: 3
pdf_data/report_keywords/crypto_scheme
  • AEAD:
    • AEAD: 1
  • KEX:
    • Key Exchange: 5
pdf_data/report_keywords/crypto_protocol
  • VPN:
    • VPN: 1
  • IKE:
    • IKE: 4
    • IKEv2: 12
  • IPsec:
    • IPsec: 10
  • TLS:
    • TLS:
      • TLS: 26
      • TLS 1.2: 2
      • TLS v1.2: 6
  • VPN:
    • VPN: 14
pdf_data/report_keywords/cipher_mode
  • CBC:
    • CBC: 1
  • ECB:
    • ECB: 1
  • GCM:
    • GCM: 12
pdf_data/report_keywords/ecc_curve
  • ANSSI:
    • FRP256v1: 1
  • Brainpool:
    • brainpoolP256r1: 5
  • NIST:
    • NIST P-256: 4
    • P-256: 4
pdf_data/report_keywords/technical_report_id
  • BSI:
    • BSI 7148: 1
    • BSI TR-03111: 2
    • BSI TR-03116-1: 1
    • BSI TR-03154: 1
    • BSI TR-03155: 1
pdf_data/report_keywords/os_name
  • STARCOS:
    • STARCOS 3: 2
pdf_data/report_keywords/standard_id
  • ISO:
    • ISO/IEC 18045: 2
    • ISO/IEC15408: 2
  • BSI:
    • AIS 20: 2
    • AIS 32: 1
    • AIS 34: 1
  • FIPS:
    • FIPS 180-4: 19
    • FIPS 197: 7
    • FIPS PUB 180-4: 1
    • FIPS180-4: 1
    • FIPS186-4: 8
    • FIPS197: 1
  • ISO:
    • ISO/IEC 15408: 4
    • ISO/IEC 17065: 2
    • ISO/IEC 18045: 4
  • NIST:
    • SP 800-38D: 3
  • PKCS:
    • PKCS#1: 8
    • PKCS#12: 2
    • PKCS5: 1
  • RFC:
    • RFC 2104: 1
    • RFC 3268: 1
    • RFC 8017: 1
    • RFC-2104: 3
    • RFC-2404: 1
    • RFC-3268: 3
    • RFC-3526: 2
    • RFC-3602: 2
    • RFC-4106: 1
    • RFC-4301: 3
    • RFC-4303: 3
    • RFC-4492: 2
    • RFC-4868: 1
    • RFC-4880: 1
    • RFC-5116: 1
    • RFC-5246: 4
    • RFC-5289: 1
    • RFC-5639: 10
    • RFC-5652: 3
    • RFC-6931: 1
    • RFC-6954: 2
    • RFC-7296: 5
    • RFC-8017: 10
    • RFC-8247: 1
    • RFC2104: 1
    • RFC2404: 1
    • RFC3268: 1
    • RFC3526: 1
    • RFC3602: 1
    • RFC4055: 1
    • RFC4106: 1
    • RFC4301: 1
    • RFC4303: 1
    • RFC4346: 1
    • RFC4868: 1
    • RFC4880: 1
    • RFC5246: 1
    • RFC5280: 1
    • RFC5289: 1
    • RFC5639: 10
    • RFC5652: 1
    • RFC5996: 1
    • RFC7027: 3
    • RFC7292: 1
    • RFC7296: 1
    • RFC8017: 1
  • X509:
    • X.509: 2
pdf_data/report_metadata
  • /Author: ISCB Department
  • /CreationDate: D:20140710161510+08'00'
  • /Creator: Microsoft® Word 2013
  • /Keywords: MyCB_TMP_002
  • /ModDate: D:20140710161510+08'00'
  • /Producer: Microsoft® Word 2013
  • /Subject: SCAN S3 Security Manager Console Release 14556 (v2.0) integrated with SCAN S3 Agent (v2.0.1.6.2)
  • /Title: C050 Certification Report
  • pdf_file_size_bytes: 704539
  • pdf_hyperlinks: mailto:[email protected], http://www.cybersecurity.my/mycc
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 31
  • /Author: Bundesamt für Sicherheit in der Informationstechnik
  • /Keywords: "Common Criteria, Certification, Zertifizierung, Konnektor, eHealth, Gesundheitswesen, BSI-DSZ-CC-1209-V3-2026"
  • /Subject: Common Criteria, Certification, Zertifizierung, Konnektor, eHealth, Gesundheitswesen, BSI-DSZ-CC-1209-V3-2026
  • /Title: Report BSI-DSZ-CC-1209-V3-2026
  • pdf_file_size_bytes: 443151
  • pdf_hyperlinks: {}
  • pdf_is_encrypted: False
  • pdf_number_of_pages: 39
pdf_data/st_filename 2014-04-14-ST-SCANS_S3-v2.7.pdf 1209V3b_pdf.pdf
pdf_data/st_keywords/cc_cert_id
  • DE:
    • BSI-DSZ-CC-1135-2020: 1
    • BSI-DSZ-CC-1157-2020: 1
    • BSI-DSZ-CC-1163-2021: 1
    • BSI-DSZ-CC-1174-2021: 1
    • BSI-DSZ-CC-1184-2022: 1
    • BSI-DSZ-CC-1190-2022: 1
    • BSI-DSZ-CC-1209-2023: 1
    • BSI-DSZ-CC-1209-V2-2025: 1
    • BSI-DSZ-CC-1209-V3-2025: 1
    • BSI-DSZ-CC-1218-2023: 1
pdf_data/st_keywords/cc_protection_profile_id
  • BSI:
    • BSI-CC-PP-0097: 6
    • BSI-CC-PP-0098: 21
    • BSI-CC-PP-0098“: 1
    • BSI-PP-0032: 1
pdf_data/st_keywords/cc_security_level
  • EAL:
    • EAL2: 5
  • EAL:
    • EAL3: 8
pdf_data/st_keywords/cc_sar
  • ADV:
    • ADV_ARC.1: 1
    • ADV_FSP.2: 1
    • ADV_TDS.1: 1
  • AGD:
    • AGD_OPE.1: 1
    • AGD_PRE.1: 1
  • ALC:
    • ALC_CMC.2: 1
    • ALC_CMS.2: 1
    • ALC_DEL.1: 1
  • ASE:
    • ASE_CCL.1: 1
    • ASE_ECD.1: 1
    • ASE_INT.1: 1
    • ASE_OBJ.2: 1
    • ASE_REQ.2: 1
    • ASE_SPD.1: 1
    • ASE_TSS.1: 1
  • ATE:
    • ATE_COV.1: 1
    • ATE_FUN.1: 1
    • ATE_IND.2: 1
  • AVA:
    • AVA_VAN.2: 1
  • ADV:
    • ADV_ARC.1: 3
    • ADV_FSP: 1
    • ADV_FSP.4: 6
    • ADV_IMP: 1
    • ADV_IMP.1: 6
    • ADV_TDS: 1
    • ADV_TDS.3: 6
  • AGD:
    • AGD_OPE: 1
    • AGD_OPE.1: 13
    • AGD_PRE.1: 4
  • ALC:
    • ALC_DEL.1: 6
    • ALC_FLR.2: 6
    • ALC_TAT.1: 6
  • ASE:
    • ASE_TSS.1: 1
  • AVA:
    • AVA_VAN: 1
    • AVA_VAN.3: 7
    • AVA_VAN.5: 2
pdf_data/st_keywords/cc_sfr
  • FAU:
    • FAU_GEN: 1
    • FAU_GEN.1: 3
    • FAU_GEN.2: 2
    • FAU_GEN.2.1: 1
    • FAU_GEN.3: 11
    • FAU_GEN.3.1: 2
    • FAU_GEN.3.2: 2
    • FAU_SAR.1: 5
    • FAU_SAR.1.1: 1
    • FAU_SAR.1.2: 1
    • FAU_SAR.2: 2
    • FAU_SAR.2.1: 1
    • FAU_STG: 1
    • FAU_STG.1: 6
    • FAU_STG.1.1: 1
    • FAU_STG.1.2: 1
    • FAU_STG.3: 1
    • FAU_STG.4: 3
    • FAU_STG.4.1: 1
  • FCS:
    • FCS_CKM.1: 2
    • FCS_CKM.4: 1
    • FCS_COP: 1
    • FCS_COP.1: 4
    • FCS_COP.1.1: 1
  • FDP:
    • FDP_ACC.1: 7
    • FDP_ACC.1.1: 1
    • FDP_ACF.1: 4
    • FDP_ACF.1.1: 1
    • FDP_ACF.1.2: 1
    • FDP_ACF.1.3: 1
    • FDP_ACF.1.4: 1
    • FDP_IFC.1: 8
    • FDP_IFC.1.1: 1
    • FDP_IFF.1: 6
    • FDP_IFF.1.1: 2
    • FDP_IFF.1.2: 1
    • FDP_IFF.1.3: 1
    • FDP_IFF.1.4: 1
    • FDP_IFF.1.5: 1
    • FDP_ITC.1: 1
    • FDP_ITC.2: 1
  • FIA:
    • FIA_ATD.1: 5
    • FIA_ATD.1.1: 2
    • FIA_UAU.1: 2
    • FIA_UAU.2: 4
    • FIA_UAU.2.1: 1
    • FIA_UID.1: 3
    • FIA_UID.2: 5
    • FIA_UID.2.1: 1
    • FIA_USB.1: 4
    • FIA_USB.1.1: 1
    • FIA_USB.1.2: 1
  • FMT:
    • FMT_MOF.1: 4
    • FMT_MOF.1.1: 2
    • FMT_MSA.1: 5
    • FMT_MSA.1.1: 1
    • FMT_MSA.3: 5
    • FMT_MSA.3.1: 1
    • FMT_MSA.3.2: 1
    • FMT_MTD.1: 4
    • FMT_MTD.1.1: 1
    • FMT_SMF.1: 7
    • FMT_SMF.1.1: 1
    • FMT_SMR.1: 9
    • FMT_SMR.1.1: 1
    • FMT_SMR.1.2: 1
  • FPT:
    • FPT_STM: 1
    • FPT_STM.1: 1
    • FPT_STM.2: 9
    • FPT_STM.2.1: 2
  • FTA:
    • FTA_SSL.1: 3
    • FTA_SSL.1.1: 1
    • FTA_SSL.1.2: 1
  • FAU:
    • FAU_GEN: 26
    • FAU_GEN.1: 12
    • FAU_GEN.2: 1
    • FAU_SAR: 6
    • FAU_SAR.1: 2
    • FAU_STG: 14
    • FAU_STG.1: 2
    • FAU_STG.3: 1
    • FAU_STG.4: 1
  • FCS:
    • FCS_CKM: 116
    • FCS_CKM.1: 31
    • FCS_CKM.2: 7
    • FCS_CKM.4: 29
    • FCS_CMK.4: 1
    • FCS_COP: 254
    • FCS_COP.1: 29
  • FDP:
    • FDP_ACC: 90
    • FDP_ACC.1: 48
    • FDP_ACF: 112
    • FDP_ACF.1: 75
    • FDP_ACF.1.2: 1
    • FDP_DAU: 33
    • FDP_DAU.1: 3
    • FDP_DAU.2: 9
    • FDP_DAU.2.1: 1
    • FDP_ETC: 17
    • FDP_ETC.2: 8
    • FDP_IFC: 19
    • FDP_IFC.1: 18
    • FDP_IFF: 21
    • FDP_IFF.1: 20
    • FDP_ITC: 31
    • FDP_ITC.1: 31
    • FDP_ITC.2: 43
    • FDP_RIP: 21
    • FDP_RIP.1: 2
    • FDP_SDI: 7
    • FDP_SDI.1: 1
    • FDP_SDI.2: 2
    • FDP_SOS.2: 1
    • FDP_UCT: 5
    • FDP_UCT.1: 1
    • FDP_UIT: 16
    • FDP_UIT.1: 6
  • FIA:
    • FIA_API: 13
    • FIA_API.1: 3
    • FIA_API.1.1: 2
    • FIA_SOS: 17
    • FIA_SOS.1: 1
    • FIA_SOS.2: 3
    • FIA_UAU: 41
    • FIA_UAU.1: 4
    • FIA_UAU.5: 4
    • FIA_UID: 14
    • FIA_UID.1: 12
  • FMT:
    • FMT_MOF: 18
    • FMT_MOF.1: 2
    • FMT_MSA: 110
    • FMT_MSA.1: 10
    • FMT_MSA.3: 26
    • FMT_MSA.4: 2
    • FMT_MTD: 44
    • FMT_MTD.1: 7
    • FMT_SMF: 29
    • FMT_SMF.1: 14
    • FMT_SMR: 10
    • FMT_SMR.1: 43
    • FMT_SMR.1.1: 1
  • FPT:
    • FPT_EMS: 16
    • FPT_EMS.1: 9
    • FPT_EMS.1.1: 2
    • FPT_EMS.1.2: 2
    • FPT_FLS: 10
    • FPT_FLS.1: 2
    • FPT_STM: 17
    • FPT_STM.1: 4
    • FPT_TDC: 38
    • FPT_TDC.1: 14
    • FPT_TDC.1.2: 1
    • FPT_TEE: 9
    • FPT_TEE.1: 2
    • FPT_TST: 24
    • FPT_TST.1: 10
  • FTA:
    • FTA_TAB: 14
    • FTA_TAB.1: 2
  • FTP:
    • FTP_ITC: 96
    • FTP_ITC.1: 49
    • FTP_TRP: 15
    • FTP_TRP.1: 10
pdf_data/st_keywords/cc_claims
  • A:
    • A.ADMIN: 2
    • A.CONN: 2
    • A.FLOW: 2
    • A.MGMT: 2
    • A.PHY: 2
    • A.TIMEBACK: 2
    • A.USER: 2
  • O:
    • O.ACCESSLOG: 3
    • O.AUDIT: 3
    • O.CONFIG: 4
    • O.EXPLOIT: 4
    • O.NOAUTH: 3
  • OE:
    • OE.ADMIN: 3
    • OE.CONN: 3
    • OE.FLOW: 2
    • OE.MGMT: 3
    • OE.PHY: 2
    • OE.SOFTCERT: 2
    • OE.TIMEBACK: 2
    • OE.USER: 3
  • T:
    • T.ACCESSLOG: 2
    • T.AUDIT: 2
    • T.CONFIG: 2
    • T.EXPLOIT: 2
    • T.NOAUTH: 2
    • T.REMOTE: 2
    • T.SPOOF: 2
  • A:
    • A.AK: 88
    • A.NK: 67
  • O:
    • O.AK: 372
    • O.NK: 209
  • OE:
    • OE.AK: 198
    • OE.NK: 207
  • OSP:
    • OSP.AK: 79
    • OSP.NK: 23
  • T:
    • T.AK: 113
    • T.NK: 131
pdf_data/st_keywords/symmetric_crypto
  • AES_competition:
    • AES:
      • AES: 71
      • AES-128: 4
      • AES-192: 1
      • AES-256: 7
      • AES128: 4
      • AES256: 4
    • E2:
      • E2: 2
    • HPC:
      • HPC: 5
  • DES:
    • DES:
      • DES: 4
  • constructions:
    • MAC:
      • HMAC: 41
      • HMAC-SHA-256: 1
      • HMAC-SHA-384: 1
      • HMAC-SHA-512: 1
pdf_data/st_keywords/asymmetric_crypto
  • ECC:
    • ECC:
      • ECC: 25
    • ECDSA:
      • ECDSA: 32
    • ECIES:
      • ECIES: 19
  • FF:
    • DH:
      • Diffie-Hellman: 1
  • RSA:
    • RSA 2048: 5
    • RSA 4096: 1
    • RSA-2048: 1
    • RSAOAEP: 8
pdf_data/st_keywords/hash_function
  • SHA:
    • SHA1:
      • SHA-1: 6
    • SHA2:
      • SHA-2: 8
      • SHA-256: 34
      • SHA-384: 7
      • SHA-512: 5
      • SHA256: 1
pdf_data/st_keywords/crypto_scheme
  • KEX:
    • Key Exchange: 3
  • MAC:
    • MAC: 1
pdf_data/st_keywords/crypto_protocol
  • SSH:
    • SSH: 1
  • TLS:
    • TLS:
      • TLS: 1
  • VPN:
    • VPN: 6
  • IKE:
    • IKE: 21
    • IKEv2: 7
  • IPsec:
    • IPsec: 34
  • TLS:
    • SSL:
      • SSL: 1
    • TLS:
      • TLS: 292
      • TLS 1.2: 3
      • TLS 1.3: 2
  • VPN:
    • VPN: 61
pdf_data/st_keywords/randomness
  • RNG:
    • RNG: 15
pdf_data/st_keywords/cipher_mode
  • CBC:
    • CBC: 4
  • GCM:
    • GCM: 7
pdf_data/st_keywords/ecc_curve
  • Brainpool:
    • brainpoolP256r1: 3
    • brainpoolP384r1: 1
  • NIST:
    • NIST P-256: 3
    • P-256: 5
    • P-384: 2
pdf_data/st_keywords/tls_cipher_suite
  • TLS:
    • TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 3
    • TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 3
    • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
    • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 2
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 3
    • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 3
    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 3
    • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 2
    • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384146: 1
pdf_data/st_keywords/side_channel_analysis
  • SCA:
    • side channel: 1
pdf_data/st_keywords/technical_report_id
  • BSI:
    • BSI TR-03111: 2
    • BSI TR-03114: 2
    • BSI TR-03116-1: 4
    • BSI TR-03144: 8
    • BSI TR-03154: 1
    • BSI TR-03155: 1
pdf_data/st_keywords/tee_name
  • IBM:
    • SE: 1
pdf_data/st_keywords/os_name
  • STARCOS:
    • STARCOS 3: 2
pdf_data/st_keywords/standard_id
  • CC:
    • CCMB-2012-09-004: 1
  • X509:
    • X.509: 1
  • CC:
    • CCMB-2017-04-002: 1
    • CCMB-2017-04-003: 1
    • CCMB-2017-04-004: 1
  • FIPS:
    • FIPS 180-4: 1
    • FIPS 197: 7
    • FIPS PUB 180-4: 12
    • FIPS PUB 186-5: 2
  • PKCS:
    • PKCS #12: 1
    • PKCS#1: 22
    • PKCS#12: 2
    • PKCS#7: 1
  • RFC:
    • RFC 2104: 2
    • RFC 2131: 3
    • RFC 2132: 3
    • RFC 2404: 2
    • RFC 2406: 1
    • RFC 2560: 1
    • RFC 3268: 1
    • RFC 3526: 1
    • RFC 3602: 3
    • RFC 4055: 2
    • RFC 4106: 2
    • RFC 4122: 2
    • RFC 4301: 4
    • RFC 4302: 1
    • RFC 4303: 5
    • RFC 4492: 1
    • RFC 4868: 2
    • RFC 5083: 1
    • RFC 5084: 1
    • RFC 5116: 1
    • RFC 5126: 1
    • RFC 5246: 7
    • RFC 5280: 1
    • RFC 5289: 2
    • RFC 5639: 3
    • RFC 5652: 2
    • RFC 5869: 1
    • RFC 5905: 1
    • RFC 7027: 1
    • RFC 7296: 6
    • RFC 8017: 4
    • RFC 8422: 2
    • RFC 8446: 1
    • RFC-5246: 2
    • RFC-5639: 1
    • RFC2617: 1
    • RFC2818: 1
    • RFC4122: 2
    • RFC5652: 3
    • RFC7296: 1
  • X509:
    • X.509: 30
pdf_data/st_metadata
state/cert/convert_ok False True
state/cert/download_ok False True
state/cert/extract_ok False True
state/cert/source_hash Different Different
state/cert/txt_hash Different Different
state/report/source_hash Different Different
state/report/txt_hash Different Different
state/st/source_hash Different Different
state/st/txt_hash Different Different
dgst a7b3c98ebbb51b0c 3e757d2a69494fe3