| name |
Fortinet FortiProxy v1.0 |
STARCOS 3.7 ID eAT BAC C1, STARCOS 3.7 ID ePass BAC C1 |
| category |
Network and Network-Related Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
CA |
DE |
| status |
archived |
active |
| not_valid_after |
08.08.2024 |
18.08.2025 |
| not_valid_before |
08.08.2019 |
18.08.2020 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-475%20CT%20v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1076c_pdf.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-475%20CR%20v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1076a_pdf.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-475%20ST%20v1.0.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1076b_pdf.pdf |
| manufacturer |
Fortinet, Inc. |
G+D Mobile Security GmbH |
| manufacturer_web |
https://www.fortinet.com/ |
https://www.gi-de.com/de/de/mobile-security/ |
| security_level |
{} |
EAL4+, ALC_DVS.2 |
| dgst |
bb31977fded40970 |
bf65789ff15eff6f |
| heuristics/cert_id |
383-4-475 |
BSI-DSZ-CC-1076-2020 |
| heuristics/cert_lab |
[] |
BSI |
| heuristics/cpe_matches |
cpe:2.3:a:fortinet:fortiproxy:1.0.1:*:*:*:*:*:*:*, cpe:2.3:a:fortinet:fortiproxy:1.0.5:*:*:*:*:*:*:*, cpe:2.3:a:fortinet:fortiproxy:1.0.4:*:*:*:*:*:*:*, cpe:2.3:a:fortinet:fortiproxy:1.0.6:*:*:*:*:*:*:*, cpe:2.3:a:fortinet:fortiproxy:1.0.0:*:*:*:*:*:*:*, cpe:2.3:a:fortinet:fortiproxy:1.0.2:*:*:*:*:*:*:*, cpe:2.3:a:fortinet:fortiproxy:1.0.7:*:*:*:*:*:*:*, cpe:2.3:a:fortinet:fortiproxy:1.0.3:*:*:*:*:*:*:* |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
CVE-2023-45583, CVE-2023-36641, CVE-2021-42755, CVE-2018-13383, CVE-2024-26010, CVE-2021-43074, CVE-2023-36640, CVE-2023-22640, CVE-2021-42757, CVE-2022-22299, CVE-2023-22639, CVE-2018-13381, CVE-2024-26011, CVE-2023-22641, CVE-2021-22128, CVE-2019-17656, CVE-2018-13380, CVE-2021-26110, CVE-2021-22130, CVE-2022-42475, CVE-2022-42474, CVE-2018-13382, CVE-2022-41331, CVE-2023-41677, CVE-2021-44170, CVE-2024-21762, CVE-2022-43947, CVE-2021-43072, CVE-2024-48885, CVE-2023-33305, CVE-2024-48884, CVE-2020-6648, CVE-2023-29181, CVE-2018-13379, CVE-2023-29180 |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_TSS.1, ADV_FSP.1, ALC_CMC.1, ASE_INT.1, ASE_SPD.1, ASE_OBJ.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ASE_REQ.1, ASE_CCL.1, ASE_ECD.1, AGD_PRE.1 |
ALC_FLR.1, ALC_TAT.1, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_DVS.2, ADV_ARC.1, ALC_CMC.4 |
| heuristics/extracted_versions |
1.0 |
3.7 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
BSI-DSZ-CC-1110-V3-2020 |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
BSI-DSZ-CC-0891-2015, BSI-DSZ-CC-0782-2012, BSI-DSZ-CC-0945-V3-2018, BSI-DSZ-CC-1110-2019, BSI-DSZ-CC-1110-V3-2020, BSI-DSZ-CC-0945-2017, BSI-DSZ-CC-1110-V2-2019, BSI-DSZ-CC-0945-V2-2018, BSI-DSZ-CC-0891-V2-2016 |
| heuristics/scheme_data |
|
- category: eHealth
- cert_id: BSI-DSZ-CC-0916-2015
- certification_date: 07.08.2015
- enhanced:
- applicant: Giesecke & Devrient GmbH seit 1. Juli 2017 Giesecke+Devrient Mobile Security GmbH Prinzregentenstr. 159 81677 München
- assurance_level: EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5
- certification_date: 07.08.2015
- description: The Target of Evaluation (TOE) is the product STARCOS 3.6 COS C1 developed by Giesecke & Devrient GmbH. The TOE is a smart card product according to the G2 Card Operating System specification from gematik. The TOE is intended to be used as a card operating system platform for different card types and applications of the card generation G2 in the framework of the German health care system. The TOE implements from the PP-0082-V2 the base part and the packages Crypto Box, Logical Channel and Contactless.
- entries: [frozendict({'id': 'BSI-DSZ-CC-0916-2015-MA-02', 'description': 'The changes are related to an update and reevaluation of the product life-cycle caused by changes in the development and porduction sites. The certified product itself did not change.'}), frozendict({'id': 'BSI-DSZ-CC-0916-2015-MA-01', 'description': 'Maintenance Report'}), frozendict({'id': 'BSI-DSZ-CC-0916-2015', 'description': 'Security Target'})]
- evaluation_facility: SRC Security Research & Consulting GmbH
- expiration_date: 06.08.2020
- product: STARCOS 3.6 COS C1
- protection_profile: Card Operating System Generation 2 (PP COS G2), Version 1.9, 18 November 2014, BSI-CC-PP-0082-V2-2014
- report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0916a_pdf.pdf?__blob=publicationFile&v=1
- target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0916b_pdf.pdf?__blob=publicationFile&v=1
- product: STARCOS 3.6 COS C1
- subcategory: Smartcards
- url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0916.html
- vendor: Giesecke & Devrient GmbH seit 1. Juli 2017 Giesecke+Devrient Mobile Security GmbH
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
BSI-DSZ-CC-1110-V3-2020 |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
BSI-DSZ-CC-1110-V3-2020 |
| heuristics/protection_profiles |
48ac4778e4272298 |
60455fc9564e2545 |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.0E.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0055b.pdf |
| pdf_data/cert_filename |
383-4-475 CT v1.0.pdf |
1076c_pdf.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
- EAL:
- EAL 2: 1
- EAL 4: 1
- EAL 4 augmented: 1
- EAL 5: 1
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
- ICAO:
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20190122115136-04'00'
- /Creator: Adobe Illustrator CC 22.0 (Windows)
- /ModDate: D:20190809134920-04'00'
- /Producer: Adobe PDF library 15.00
- /Title: cyber-centre-product-evaluation-certificate-e-bg
- pdf_file_size_bytes: 1848669
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /CreationDate: D:20200821064941+02'00'
- /Creator: Writer
- /Keywords: Common Criteria, Certification, Zertifizierung, STARCOS 3.7, BAC, MRTD
- /ModDate: D:20200821065058+02'00'
- /Producer: LibreOffice 6.2
- /Subject: STARCOS 3.7 ID eAT BAC C1, STARCOS 3.7 ID ePass BAC C1
- /Title: Certificate BSI-DSZ-CC-1076-2020
- pdf_file_size_bytes: 298425
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
383-4-475 CR v1.0.pdf |
1076a_pdf.pdf |
| pdf_data/report_frontpage |
|
- DE:
- cc_security_level: Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2
- cc_version: PP conformant Common Criteria Part 2 extended
- cert_id: BSI-DSZ-CC-1076-2020
- cert_item: STARCOS 3.7 ID eAT BAC C1, STARCOS 3.7 ID ePass BAC C1
- cert_lab: BSI
- developer: Giesecke+Devrient Mobile Security GmbH
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
- ref_protection_profiles: Common Criteria Protection Profile Machine Readable Travel Document with "ICAO Application" Basic Access Control, Version 1.10, 25 March 2009, BSI-CC-PP- 0055-2009
- CA:
|
| pdf_data/report_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1076-2020: 22
- BSI-DSZ-CC-1077: 5
- BSI-DSZ-CC-1110-V3-: 3
- BSI-DSZ-CC-1110-V3-2020: 5
- BSI-DSZ-CC-S-0132-2019: 1
- BSI-DSZ-CC-S-0143-2019: 2
- BSI-DSZ-CC-S-0150-2020: 2
- BSI-DSZ-CC-S-0152-2020: 1
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP- 0055-2009: 1
- BSI-PP-0055-: 1
- BSI-PP-0055-2009: 1
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 2: 2
- EAL 2+: 1
- EAL 4: 5
- EAL 4 augmented: 3
- EAL 5: 4
- EAL 5+: 1
- EAL 6: 1
- EAL5+: 1
- EAL6: 1
|
| pdf_data/report_keywords/cc_sar |
|
- ADV:
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.2: 5
- ALC_FLR: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
|
| pdf_data/report_keywords/cc_sfr |
|
- FCS:
- FCS_CKM.1: 1
- FCS_COP: 8
- FCS_RND.1: 1
- FDP:
- FIA:
- FIA_AFL.1: 1
- FIA_UAU.4: 1
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
- GD:
- Infineon:
- Infineon: 9
- Infineon Technologies AG: 7
|
| pdf_data/report_keywords/eval_facility |
|
- SRC:
- SRC Security Research & Consulting: 3
- TUV:
- TÜV Informationstechnik: 1
|
| pdf_data/report_keywords/symmetric_crypto |
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
- FI:
- fault injection: 1
- malfunction: 1
- physical tampering: 1
- SCA:
- other:
|
| pdf_data/report_keywords/technical_report_id |
|
- BSI:
- BSI 7148: 1
- BSI TR-02102-1: 1
- BSI TR-03110: 1
- BSI TR-03116: 4
- BSI TR-03116-2: 2
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- FIPS:
- FIPS 140-2: 1
- FIPS140-2: 1
- ISO:
|
- BSI:
- AIS 1: 1
- AIS 14: 1
- AIS 19: 1
- AIS 20: 3
- AIS 23: 1
- AIS 25: 4
- AIS 26: 4
- AIS 31: 3
- AIS 32: 1
- AIS 34: 4
- AIS 35: 2
- AIS 36: 3
- AIS 37: 2
- AIS 38: 1
- AIS 46: 2
- AIS20: 2
- AIS31: 2
- FIPS:
- FIPS PUB 180-4: 1
- FIPS PUB 197: 1
- FIPS PUB 46-3: 1
- FIPS180: 3
- FIPS197: 2
- FIPS46-3: 4
- ICAO:
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18031:2005: 1
- ISO/IEC 18045: 4
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- ConfidentialDocument:
- 3.7 ID ePass BAC C1, Version 0.2, 12 August 2020, Giesecke+Devrient Mobile Security GmbH (confidential document) [11] Guidance Documentation STARCOS 3.7 ID C1 – Main Document, Version 1.01, 21 July 2020: 1
- H13, Revision 3.3, 22 April 2020, Infineon Technologies AG, BSI-DSZ-CC-1110-V3- 2020 (confidential document) Security Target Lite of the underlying hardware platform, Common Criteria Public Security Target: 1
- STARCOS 3.7 ID ePass BAC C1, Version 1.2, 13 August 2020, SRC Security Research & Consulting GmbH (confidential document) [10] Configuration List BSI-DSZ-CC-1076-2020, Configuration List STARCOS 3.7 ID eAT BAC C1: 1
- STARCOS 3.7 ID ePass BAC C1, Version 1.5, 12 August 2020, Giesecke+Devrient Mobile Security GmbH (confidential document) [7] Security Target Lite BSI-DSZ-CC-1076-2020, Security Target Lite STARCOS 3.7 ID eAT BAC C1: 1
- being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
- procedure BSI-DSZ-CC-1110-V3-2020, Version 1, 23 April 2020, TÜV Informationstechnik GmbH (confidential document) [19] Technical Guideline BSI TR-03110: Advanced Security Mechanisms for Machine Readable Travel: 1
|
| pdf_data/report_metadata |
- /Author: Clark, Cory P.
- /Comments: 1.0
- /Company: CSEC-CSTC
- /CreationDate: D:20190815095759-04'00'
- /Creator: Acrobat PDFMaker 17 for Word
- /ModDate: D:20190815095805-04'00'
- /Producer: Adobe PDF Library 15.0
- /SourceModified: D:20190815135711
- pdf_file_size_bytes: 724230
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 16
|
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /CreationDate: D:20200821063851+02'00'
- /Creator: Writer
- /Keywords: "Common Criteria, Certification, Zertifizierung, STARCOS 3.7, BAC, MRTD"
- /ModDate: D:20200821131000+02'00'
- /Producer: LibreOffice 6.2
- /Subject: STARCOS 3.7 ID eAT BAC C1, STARCOS 3.7 ID ePass BAC C1
- /Title: Certification Report BSI-DSZ-CC-1076-2020
- pdf_file_size_bytes: 476034
- pdf_hyperlinks: http://www.commoncriteriaportal.org/cc/, https://www.sogis.eu/, https://www.bsi.bund.de/AIS, http://www.commoncriteriaportal.org/, https://www.bsi.bund.de/zertifizierung, https://www.bsi.bund.de/zertifizierungsreporte, https://www.bsi.bund.de/
- pdf_is_encrypted: False
- pdf_number_of_pages: 33
|
| pdf_data/st_filename |
383-4-475 ST v1.0.pdf |
1076b_pdf.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1110-V3-2020: 1
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP-0056-2009: 1
- BSI-PP- 0035-2007: 1
- BSI-PP-0002-2001: 1
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 4: 2
- EAL 6: 2
- EAL4: 8
- EAL4 augmented: 2
- EAL6: 1
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE: 4
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.1: 1
- ALC_CMS.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.1: 1
- ASE_REQ.1: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 2
- ATE:
- AVA:
|
- ADV:
- ALC:
- ALC_DVS: 1
- ALC_DVS.2: 6
- ALC_FLR.1: 1
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN: 19
- FAU_GEN.1: 9
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 5
- FAU_GEN.2.1: 1
- FAU_STG: 1
- FAU_STG_EXT: 2
- FAU_STG_EXT.1: 10
- FAU_STG_EXT.1.1: 2
- FAU_STG_EXT.1.2: 2
- FAU_STG_EXT.1.3: 2
- FAU_STG_EXT.2: 5
- FAU_STG_EXT.2.1: 1
- FCO:
- FCO_CPC_EXT: 2
- FCO_CPC_EXT.1: 9
- FCO_CPC_EXT.1.1: 3
- FCO_CPC_EXT.1.2: 3
- FCO_CPC_EXT.1.3: 2
- FCS:
- FCS_CKM: 7
- FCS_CKM.1: 16
- FCS_CKM.1.1: 1
- FCS_CKM.2: 23
- FCS_CKM.2.1: 1
- FCS_CKM.4: 5
- FCS_CKM.4.1: 1
- FCS_COP: 73
- FCS_COP.1: 9
- FCS_DTLS: 2
- FCS_DTLS_EXT.1.1: 1
- FCS_DTLS_EXT.2.1: 1
- FCS_RBG_EXT: 3
- FCS_RBG_EXT.1: 21
- FCS_RBG_EXT.1.1: 2
- FCS_RBG_EXT.1.2: 3
- FCS_SSHC: 2
- FCS_SSHC_EXT: 1
- FCS_SSHC_EXT.1: 6
- FCS_SSHC_EXT.1.1: 1
- FCS_SSHC_EXT.1.2: 1
- FCS_SSHC_EXT.1.3: 1
- FCS_SSHC_EXT.1.4: 1
- FCS_SSHC_EXT.1.5: 3
- FCS_SSHC_EXT.1.6: 1
- FCS_SSHC_EXT.1.7: 1
- FCS_SSHC_EXT.1.8: 1
- FCS_SSHC_EXT.1.9: 1
- FCS_SSHS: 1
- FCS_SSHS_EXT: 2
- FCS_SSHS_EXT.1: 10
- FCS_SSHS_EXT.1.1: 2
- FCS_SSHS_EXT.1.2: 3
- FCS_SSHS_EXT.1.3: 2
- FCS_SSHS_EXT.1.4: 2
- FCS_SSHS_EXT.1.5: 3
- FCS_SSHS_EXT.1.6: 2
- FCS_SSHS_EXT.1.7: 2
- FCS_SSHS_EXT.1.8: 2
- FCS_TLSC_EXT: 5
- FCS_TLSC_EXT.1: 8
- FCS_TLSC_EXT.1.1: 4
- FCS_TLSC_EXT.1.2: 1
- FCS_TLSC_EXT.1.3: 1
- FCS_TLSC_EXT.1.4: 1
- FCS_TLSC_EXT.2: 9
- FCS_TLSC_EXT.2.1: 2
- FCS_TLSC_EXT.2.2: 2
- FCS_TLSC_EXT.2.3: 2
- FCS_TLSC_EXT.2.4: 2
- FCS_TLSC_EXT.2.5: 2
- FCS_TLSS_EXT: 5
- FCS_TLSS_EXT.1: 11
- FCS_TLSS_EXT.1.1: 5
- FCS_TLSS_EXT.1.2: 2
- FCS_TLSS_EXT.1.3: 2
- FCS_TLSS_EXT.2: 6
- FCS_TLSS_EXT.2.1: 2
- FCS_TLSS_EXT.2.2: 1
- FCS_TLSS_EXT.2.3: 1
- FCS_TLSS_EXT.2.4: 2
- FCS_TLSS_EXT.2.5: 1
- FCS_TLSS_EXT.2.6: 1
- FCS_TLS_EXT.1.1: 2
- FIA:
- FIA_AFL.1: 7
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_PMG_EXT: 3
- FIA_PMG_EXT.1: 9
- FIA_PMG_EXT.1.1: 2
- FIA_UAU.1: 1
- FIA_UAU.7: 5
- FIA_UAU.7.1: 1
- FIA_UAU_EXT: 3
- FIA_UAU_EXT.2: 11
- FIA_UAU_EXT.2.1: 2
- FIA_UIA_EXT: 4
- FIA_UIA_EXT.1: 10
- FIA_UIA_EXT.1.1: 2
- FIA_UIA_EXT.1.2: 2
- FMT:
- FMT_MOF: 11
- FMT_MOF.1: 4
- FMT_MTD: 8
- FMT_MTD.1: 4
- FMT_SMF.1: 12
- FMT_SMF.1.1: 1
- FMT_SMR.2: 7
- FMT_SMR.2.1: 1
- FMT_SMR.2.2: 1
- FMT_SMR.2.3: 1
- FPT:
- FPT_APW_EXT: 3
- FPT_APW_EXT.1: 9
- FPT_APW_EXT.1.1: 2
- FPT_APW_EXT.1.2: 2
- FPT_ITT: 4
- FPT_ITT.1: 4
- FPT_PTD: 1
- FPT_SKP_EXT: 3
- FPT_SKP_EXT.1: 9
- FPT_SKP_EXT.1.1: 2
- FPT_STM: 2
- FPT_STM_EXT: 1
- FPT_STM_EXT.1: 8
- FPT_STM_EXT.1.1: 2
- FPT_STM_EXT.1.2: 3
- FPT_TST_EXT: 2
- FPT_TST_EXT.1: 9
- FPT_TST_EXT.1.1: 3
- FPT_TST_EXT.2: 7
- FPT_TST_EXT.2.1: 1
- FPT_TUD_EXT: 1
- FPT_TUD_EXT.1: 8
- FPT_TUD_EXT.1.1: 2
- FPT_TUD_EXT.1.2: 3
- FPT_TUD_EXT.1.3: 8
- FPT_TUD_EXT.2: 7
- FPT_TUD_EXT.2.1: 1
- FPT_TUD_EXT.2.2: 1
- FTA:
- FTA_SSL: 1
- FTA_SSL.3: 5
- FTA_SSL.3.1: 1
- FTA_SSL.4: 4
- FTA_SSL.4.1: 1
- FTA_SSL_EXT: 2
- FTA_SSL_EXT.1: 10
- FTA_SSL_EXT.1.1: 2
- FTA_TAB.1: 8
- FTA_TAB.1.1: 1
- FTP:
- FTP_ITC: 4
- FTP_ITC.1: 13
- FTP_ITC.1.1: 1
- FTP_ITC.1.2: 1
- FTP_ITC.1.3: 1
- FTP_ITC_EXT.1.1: 1
- FTP_TRP: 8
- FTP_TRP.1: 2
- FTP_TRP.1.2: 1
- FTP_TRP.1.3: 1
|
- FAU:
- FAU_GEN: 1
- FAU_SAS: 5
- FAU_SAS.1: 16
- FAU_SAS.1.1: 2
- FAU_UAU.4: 1
- FCS:
- FCS_CKM.1: 25
- FCS_CKM.1.1: 1
- FCS_CKM.2: 1
- FCS_CKM.4: 21
- FCS_CKM.4.1: 1
- FCS_COP: 36
- FCS_COP.1: 18
- FCS_FLS.1: 1
- FCS_RND: 5
- FCS_RND.1: 16
- FCS_RND.1.1: 2
- FCS_RNG.1: 3
- FDP:
- FDP_ACC: 1
- FDP_ACC.1: 19
- FDP_ACC.1.1: 1
- FDP_ACF: 2
- FDP_ACF.1: 12
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 2
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 2
- FDP_IFC.1: 5
- FDP_ITC: 2
- FDP_ITC.1: 10
- FDP_ITC.2: 10
- FDP_ITT.1: 1
- FDP_SDI.1: 1
- FDP_SDI.2: 1
- FDP_UCT.1: 10
- FDP_UCT.1.1: 1
- FDP_UIT.1: 8
- FDP_UIT.1.1: 1
- FDP_UIT.1.2: 1
- FIA:
- FIA_AFL.1: 7
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_API.1: 1
- FIA_SOS.2: 1
- FIA_UAU.1: 9
- FIA_UAU.1.1: 1
- FIA_UAU.1.2: 1
- FIA_UAU.4: 14
- FIA_UAU.4.1: 1
- FIA_UAU.5: 10
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 4
- FIA_UAU.6: 10
- FIA_UAU.6.1: 1
- FIA_UID.1: 11
- FIA_UID.1.1: 1
- FIA_UID.1.2: 1
- FMT:
- FMT_LIM: 12
- FMT_LIM.1: 26
- FMT_LIM.1.1: 3
- FMT_LIM.2: 22
- FMT_LIM.2.1: 4
- FMT_MSA.1: 2
- FMT_MSA.3: 4
- FMT_MTD: 22
- FMT_MTD.1: 7
- FMT_SMF.1: 22
- FMT_SMF.1.1: 1
- FMT_SMR.1: 21
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_FLS.1: 17
- FPT_FLS.1.1: 1
- FPT_ITT.1: 1
- FPT_PHP.3: 15
- FPT_PHP.3.1: 1
- FPT_RVM.1: 1
- FPT_SEP.1: 1
- FPT_TST: 1
- FPT_TST.1: 12
- FPT_TST.1.1: 1
- FPT_TST.1.2: 1
- FPT_TST.1.3: 2
- FPT_TST.2: 4
- FRU:
- FTP:
- FTP_ITC.1: 6
- FTP_TRP.1: 5
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMIN_: 1
- A.LIMITED_: 1
- A.NO_THRU_: 1
- A.PHYSICAL_: 1
- A.REGULAR_: 1
- A.RESIDUAL_: 1
- A.TRUSTED_: 1
- OE:
- OE.ADMIN_CREDEN: 1
- OE.NO_GENERAL_: 1
- OE.NO_THRU_: 1
- OE.PHYSICAL: 1
- OE.RESIDUAL_INFO: 1
- OE.TRUSTED_ADMIN: 1
- OE.UPDATES: 1
- T:
- T.PASSWORD_: 1
- T.PASSWORD_CRACKING: 3
- T.SECURITY_: 2
- T.SECURITY_FUNCTIONAL: 2
- T.UNAUTHORIZED_: 1
- T.UNAUTHORIZED_ADMINIS: 1
- T.UNDETECTED_: 1
- T.UNDETECTED_ACTIVITY: 2
- T.UNTRUSTED_: 1
- T.UNTRUSTED_COMMUNI: 1
- T.UNTRUSTED_COMMUNICATION_CHANNELS: 2
- T.UPDATE_: 1
- T.UPDATE_COMPROMISE: 1
- T.WEAK_: 2
- T.WEAK_AUTHENTICATIO: 1
- T.WEAK_CRYPTOGRAPHY: 1
|
|
| pdf_data/st_keywords/vendor |
|
- GD:
- Infineon:
- Infineon: 2
- Infineon Technologies AG: 1
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 23
- AES-: 3
- AES-128: 2
- constructions:
- MAC:
- HMAC: 12
- HMAC-SHA-256: 3
- HMAC-SHA-384: 4
- HMAC-SHA-512: 4
|
- AES_competition:
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
- ECC:
- FF:
- DH:
- DH: 11
- DHE: 4
- Diffie-Hellman: 17
- RSA:
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-256: 8
- SHA-384: 2
- SHA-512: 6
- SHA256: 12
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
- IKE:
- IKE: 4
- IKEv1: 12
- IKEv2: 12
- IPsec:
- SSH:
- TLS:
- DTLS:
- DTLS: 75
- DTLS 1.0: 9
- DTLS 1.2: 9
- DTLS v1.0: 4
- DTLS v1.2: 4
- SSL:
- SSL: 9
- SSL 2.0: 4
- SSL 3.0: 4
- TLS:
- TLS: 106
- TLS 1.0: 4
- TLS 1.1: 9
- TLS 1.2: 7
- TLS v1.0: 2
- TLS1.1: 1
- TLS1.2: 1
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- NIST:
- P-256: 10
- P-384: 6
- P-521: 4
- curve P-384: 2
- secp256r1: 6
- secp384r1: 4
- secp521r1: 4
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
- TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 4
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 4
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 4
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 4
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 4
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 4
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 4
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 4
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 4
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 4
- TLS_RSA_WITH_AES_128_CBC_SHA: 12
- TLS_RSA_WITH_AES_128_CBC_SHA256: 4
- TLS_RSA_WITH_AES_256_CBC_SHA: 4
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 13
- Physical Tampering: 5
- Physical tampering: 1
- fault injection: 1
- malfunction: 6
- physical tampering: 6
- SCA:
- DPA: 2
- Leak-Inherent: 6
- SPA: 1
- physical probing: 3
- timing attacks: 1
- other:
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
- EF:
- EF.COM: 12
- EF.DG1: 33
- EF.DG13: 3
- EF.DG14: 3
- EF.DG15: 1
- EF.DG16: 32
- EF.DG2: 11
- EF.DG3: 11
- EF.DG4: 10
- EF.DG5: 9
- EF.SOD: 12
|
| pdf_data/st_keywords/standard_id |
- FIPS:
- FIPS PUB 186-4: 4
- FIPS140-2: 1
- ISO:
- ISO/IEC 14888-3: 1
- ISO/IEC 18031:2011: 5
- ISO/IEC 9796-2: 1
- NIST:
- PKCS:
- RFC:
- RFC 2818: 8
- RFC 2986: 2
- RFC 3268: 8
- RFC 3526: 3
- RFC 3602: 2
- RFC 4106: 1
- RFC 4109: 1
- RFC 4251: 1
- RFC 4253: 7
- RFC 4301: 2
- RFC 4304: 1
- RFC 4346: 6
- RFC 4347: 9
- RFC 4492: 8
- RFC 4868: 2
- RFC 4945: 1
- RFC 5246: 18
- RFC 5280: 13
- RFC 5282: 1
- RFC 5289: 8
- RFC 5759: 1
- RFC 5996: 2
- RFC 6125: 9
- RFC 6187: 1
- RFC 6347: 13
- RFC 6960: 1
- RFC 8017: 1
- X509:
|
- BSI:
- AIS 20: 1
- AIS 31: 1
- AIS 32: 1
- AIS20: 1
- CC:
- CCMB-2017-04-001: 2
- CCMB-2017-04-002: 2
- CCMB-2017-04-003: 2
- CCMB-2017-04-004: 2
- FIPS:
- FIPS 180-2: 1
- FIPS 180-415: 1
- FIPS 197: 2
- FIPS 46-3: 2
- FIPS PUB 186-2: 1
- FIPS PUB 46-3: 1
- ICAO:
- ISO:
- ISO/IEC 14443: 2
- ISO/IEC 7816-2: 1
- ISO/IEC 7816-4: 1
- RFC:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- indicated as “REQUIRED” but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHC_EXT.1.2 The TSF shall ensure that the SSH: 1
- indicated as “REQUIRED” but not listed in the later elements of this component are implemented is out of scope of the evaluation activity for this requirement. FCS_SSHS_EXT.1.2 The TSF shall ensure that the SSH: 1
- out of scope: 2
|
|
| pdf_data/st_metadata |
- /Author: Lachlan Turner
- /CreationDate: D:20190625213148+00'00'
- /Creator: Microsoft Word
- /ModDate: D:20190625213148+00'00'
- /Subject: FortiProxy 1.0
- /Title: Fortinet
- pdf_file_size_bytes: 1248984
- pdf_hyperlinks: http://docs.fortinet.com/fortiproxy, http://www.arkinfosec.net/
- pdf_is_encrypted: False
- pdf_number_of_pages: 103
|
- /Author: Ulrich Stutenbäumer, Giesecke + Devrient Mobile Security GmbH
- /CreationDate: D:20200813110600+02'00'
- /Creator: Microsoft® Word für Office 365
- /Keywords: smartcard programmed on a contactless chip for machine readable travel documents (MRTD) based on the requirements and recommendations of the International Civil Aviation Organization (ICAO). It addresses the advanced security methods Basic Access Control in the ‘ICAO Doc 9303’. Version 1.5/Status 12.08.2020
- /ModDate: D:20200813111747+02'00'
- /Producer: Microsoft® Word für Office 365
- /Subject: Target of Evaluation = STARCOS 3.7 ID eAT BAC C1, STARCOS 3.7 ID ePass BAC C1
- /Title: Security Target Lite
- pdf_file_size_bytes: 976160
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 88
|
| state/cert/convert_garbage |
False |
False |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |