sec-certs.org

	Oracle Linux 9.3 653-EWA	IDentity Card v3.1/PACE-EAC1 OCSI/CERT/SYS/04/2015/RC
name	Oracle Linux 9.3	IDentity Card v3.1/PACE-EAC1
category	Operating Systems	ICs, Smart Cards and Smart Card-Related Devices and Systems
scheme	CA	IT
status	active	archived
not_valid_after	14.02.2030	30.09.2020
not_valid_before	14.02.2025	30.09.2015
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/653-EWA%20CT%20v1.0.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/653-EWA%20CR%20v1.0.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cr_idcard_pace_v1.0_en.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/653-EWA%20ST%20v1.5.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_idcard_pace_v0.38.pdf
manufacturer	Oracle Corporation	ID&Trust Ltd.
manufacturer_web	https://www.oracle.com	https://www.idandtrust.com/
security_level	{}	EAL4+, ATE_DPT.2, ALC_DVS.2, AVA_VAN.5
dgst	be8e046b00e33ce3	8aaa231547219757
heuristics/cert_id	653-EWA	OCSI/CERT/SYS/04/2015/RC
heuristics/cert_lab	[]	[]
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ALC_TSU_EXT.1, AGD_PRE.1	ASE_INT.1, ALC_DVS.2, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ALC_TAT.1, ASE_SPD.1, ATE_DPT.2, AVA_VAN.5, ALC_DEL.1, ALC_LCD.1, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ASE_TSS.2, ASE_REQ.2, ADV_FSP.4, ATE_IND.2, ASE_CCL.1
heuristics/extracted_versions	9.3	3.1
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	OCSI/CERT/SYS/02/2016/RC
heuristics/report_references/directly_referencing	{}	NSCIB-CC-13-37760-CR2
heuristics/report_references/indirectly_referenced_by	{}	OCSI/CERT/SYS/02/2016/RC, OCSI/CERT/CCL/06/2021/RC, OCSI/CERT/SYS/06/2016/RC, OCSI/CERT/CCL/09/2022/RC
heuristics/report_references/indirectly_referencing	{}	BSI-DSZ-CC-0858-2013, BSI-DSZ-CC-0750-V2-2014, BSI-DSZ-CC-0645-2010, BSI-DSZ-CC-0707-2012, NSCIB-CC-13-37760-CR2, NSCIB-CC-13-37762-CR
heuristics/scheme_data	certification_date: 14.02.2025 level: PP_OS_V4.3, PKG_TLS_V1.1, PKG_SSH_V1.0 product: Oracle Linux 9.3 vendor: Oracle Corporation
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	BSI-DSZ-CC-0750-V2-2014
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	BSI-DSZ-CC-0750-V2-2014
heuristics/protection_profiles	c40ae795865a0dba, ed9c9d74c3710878, 3d6ad6fde534f6c6	a33327d40f253f46, b380aabf93b29692
maintenance_updates
protection_profiles
protection_profile_links	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PP_OS_4.3.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pkg_ssh_v1.0.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PKG_TLS_V1.1.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0068_V2b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0056_V2b_pdf.pdf
pdf_data/cert_filename	653-EWA CT v1.0.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id	CA: 653-EWA: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility	EWA: EWA-Canada: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol	SSH: SSH: 1 TLS: TLS: TLS: 1
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/Author: Clark, Cory P. /CreationDate: D:20250218135452-05'00' /Creator: Microsoft® Word for Microsoft 365 /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ActionId: 03c3dcc6-6bfd-4194-a625-fb83b8d0389e /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ContentBits: 1 /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Enabled: true /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Method: Privileged /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Name: UNCLASSIFIED /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SetDate: 2023-05-16T11:46:20Z /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SiteId: da9cbe40-ec1e-4997-afb3-17d87574571a /ModDate: D:20250218135452-05'00' /Producer: Microsoft® Word for Microsoft 365 pdf_file_size_bytes: 185393 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	653-EWA CR v1.0.pdf	cr_idcard_pace_v1.0_en.pdf
pdf_data/report_frontpage	CA:	CA:
pdf_data/report_keywords/cc_cert_id		IT: OCSI/CERT/SYS/04/2015/RC: 24 NL: NSCIB-CC-13-37760-CR2: 1
pdf_data/report_keywords/cc_protection_profile_id		BSI: BSI-CC-PP-0056-V2-2012: 3 BSI-CC-PP-0068-: 1 BSI-CC-PP-0068-V2-2011: 2
pdf_data/report_keywords/cc_security_level		EAL: EAL 2: 1 EAL 4: 2 EAL4: 9 EAL4 augmented: 1 EAL5: 3 EAL5 augmented: 3 EAL5+: 2
pdf_data/report_keywords/cc_sar		ADV: ADV_ARC.1: 1 ADV_FSP.4: 1 ADV_IMP.1: 1 ADV_TDS.3: 1 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.4: 1 ALC_CMS.4: 1 ALC_DEL.1: 1 ALC_DVS.2: 9 ALC_FLR: 2 ALC_LCD.1: 1 ALC_TAT.1: 1 ASE: ASE_CCL.1: 1 ASE_ECD.1: 1 ASE_INT.1: 1 ASE_OBJ.2: 1 ASE_REQ.2: 1 ASE_SPD.1: 1 ASE_TSS.1: 1 ASE_TSS.2: 3 ATE: ATE_COMP: 1 ATE_COV.2: 1 ATE_DPT.2: 6 ATE_FUN.1: 1 ATE_IND.2: 1 AVA: AVA_COMP: 1 AVA_VAN.5: 10
pdf_data/report_keywords/cc_sfr		FAU: FAU_SAS: 1 FCS: FCS_RND: 1 FIA: FIA_API: 1 FMT: FMT_LIM: 1 FPT: FPT_EMS: 1
pdf_data/report_keywords/cc_claims		O: O.J: 1
pdf_data/report_keywords/vendor		NXP: NXP: 4
pdf_data/report_keywords/eval_facility	EWA: EWA-Canada: 1	BrightSight: Brightsight: 1
pdf_data/report_keywords/symmetric_crypto
pdf_data/report_keywords/asymmetric_crypto
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function
pdf_data/report_keywords/crypto_scheme
pdf_data/report_keywords/crypto_protocol	SSH: SSH: 2 TLS: TLS: TLS: 1	PACE: PACE: 4
pdf_data/report_keywords/randomness
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine		SmartMX: SmartMX: 1
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library	OpenSSL: OpenSSL: 2
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis		other: JIL: 1
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name		JCOP: JCOP 2: 3
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id	ISO: ISO/IEC 17025: 2	CC: CCMB-2012-09-001: 1 CCMB-2012-09-002: 1 CCMB-2012-09-003: 1 CCMB-2012-09-004: 1 ICAO: ICAO: 6 ISO: ISO/IEC 15408: 2
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process	OutOfScope: The OS relies upon a trustworthy computing platform for its execution. This underlying platform is out of scope of this PP. The user of the OS is not willfully negligent or hostile, and uses the software in: 1 out of scope: 1
pdf_data/report_metadata	/Author: Clark, Cory P. /CreationDate: D:20250218133709-05'00' /Creator: Microsoft® Word for Microsoft 365 /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ActionId: f4235719-a1a3-4fb4-8b18-a47ac84bac11 /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ContentBits: 1 /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Enabled: true /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Method: Privileged /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Name: UNCLASSIFIED /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SetDate: 2022-07-20T10:41:47Z /MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SiteId: da9cbe40-ec1e-4997-afb3-17d87574571a /ModDate: D:20250218133709-05'00' /Producer: Microsoft® Word for Microsoft 365 pdf_file_size_bytes: 336111 pdf_hyperlinks: https://www.cisa.gov/known-exploited-vulnerabilities-catalog, mailto:[email protected], https://linux.oracle.com/security/, https://nvd.nist.gov/vuln/search pdf_is_encrypted: False pdf_number_of_pages: 17	/Author: OCSI /CreationDate: D:20151006181055+02'00' /Creator: Microsoft® Word 2013 /ModDate: D:20151006181055+02'00' /Producer: Microsoft® Word 2013 /Title: Certification Report “IDentity Card v3.1/PACE-EAC1” pdf_file_size_bytes: 811448 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 24
pdf_data/st_filename	653-EWA ST v1.5.pdf	st_idcard_pace_v0.38.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id		DE: BSI-DSZ-CC-0750-V2-2014: 2 BSI-DSZ-CC-0858: 2 NL: NSCIB-CC-13-13-37760-CR: 1 NSCIB-CC-13-37760: 2
pdf_data/st_keywords/cc_protection_profile_id		BSI: BSI-CC-PP- 0035-2007: 1 BSI-CC-PP-0056-: 1 BSI-CC-PP-0056-V2-: 2 BSI-CC-PP-0056-V2-2012: 2 BSI-CC-PP-0068-V2-: 1 BSI-CC-PP-0068-V2-2011: 4 BSI-PP-0035: 1 BSI-PP-0055: 1
pdf_data/st_keywords/cc_security_level		EAL: EAL 4: 2 EAL 5: 4 EAL 5 augmented: 2 EAL 5+: 2 EAL4: 3 EAL4 augmented: 2 EAL5: 1 EAL5 augmented: 1 EAL5+: 2
pdf_data/st_keywords/cc_sar	ADV: ADV_FSP.1: 2 AGD: AGD_OPE.1: 2 AGD_PRE.1: 2 ALC: ALC_CMC.1: 2 ALC_CMS.1: 2 ALC_TSU_EXT.1: 8 ATE: ATE_IND.1: 2 AVA: AVA_VAN.1: 2	ADV: ADV_ARC.1: 1 AGD: AGD_PRE.1: 1 ALC: ALC_DEL.1: 1 ALC_DVS.2: 9 ASE: ASE_TSS.2: 4 ATE: ATE_DPT.2: 4 AVA: AVA_VAN.3: 2 AVA_VAN.5: 9
pdf_data/st_keywords/cc_sfr	FAU: FAU_GEN.1: 3 FAU_GEN.1.1: 1 FAU_GEN.1.2: 1 FAU_GEN.2: 1 FCS: FCS_CKM.1: 4 FCS_CKM.1.1: 1 FCS_CKM.2: 4 FCS_CKM.2.1: 1 FCS_CKM_EXT.4: 9 FCS_CKM_EXT.4.1: 3 FCS_CKM_EXT.4.2: 2 FCS_COP: 27 FCS_COP.1: 4 FCS_DTLS_EXT.1: 1 FCS_RBG_EXT.1: 8 FCS_RBG_EXT.1.1: 2 FCS_RBG_EXT.1.2: 2 FCS_SSHC_EXT.1: 10 FCS_SSHC_EXT.1.1: 2 FCS_SSHS_EXT.1: 8 FCS_SSHS_EXT.1.1: 2 FCS_SSHS_EXT.1.3: 1 FCS_SSH_EXT.1: 10 FCS_SSH_EXT.1.1: 2 FCS_SSH_EXT.1.2: 4 FCS_SSH_EXT.1.3: 3 FCS_SSH_EXT.1.4: 3 FCS_SSH_EXT.1.5: 3 FCS_SSH_EXT.1.6: 3 FCS_SSH_EXT.1.7: 3 FCS_SSH_EXT.1.8: 3 FCS_STO_EXT.1: 10 FCS_STO_EXT.1.1: 1 FCS_TLSC_EXT.1: 11 FCS_TLSC_EXT.1.1: 3 FCS_TLSC_EXT.1.2: 3 FCS_TLSC_EXT.1.3: 3 FCS_TLSC_EXT.5: 7 FCS_TLSC_EXT.5.1: 3 FCS_TLSS_EXT: 5 FCS_TLSS_EXT.1.1: 1 FCS_TLS_EXT.1: 3 FDP: FDP_ACF_EXT.1: 8 FDP_ACF_EXT.1.1: 1 FDP_IFC_EXT.1: 7 FDP_IFC_EXT.1.1: 2 FIA: FIA_AFL.1: 3 FIA_AFL.1.1: 1 FIA_AFL.1.2: 1 FIA_UAU.5: 3 FIA_UAU.5.1: 1 FIA_UAU.5.2: 1 FMT: FMT_MOF_EXT.1: 7 FMT_MOF_EXT.1.1: 2 FMT_SMF_EXT.1: 7 FMT_SMF_EXT.1.1: 4 FPT: FPT_ACF_EXT.1: 7 FPT_ACF_EXT.1.1: 2 FPT_ACF_EXT.1.2: 2 FPT_ASLR_EXT.1: 7 FPT_ASLR_EXT.1.1: 2 FPT_SBOP_EXT.1: 7 FPT_SBOP_EXT.1.1: 2 FPT_TST_EXT.1: 8 FPT_TST_EXT.1.1: 2 FPT_TUD_EXT.1: 8 FPT_TUD_EXT.1.1: 2 FPT_TUD_EXT.1.2: 2 FPT_TUD_EXT.2: 7 FPT_TUD_EXT.2.1: 2 FPT_TUD_EXT.2.2: 2 FTP: FTP_ITC_EXT.1: 7 FTP_ITC_EXT.1.1: 2 FTP_TRP: 1 FTP_TRP.1: 3 FTP_TRP.1.1: 1 FTP_TRP.1.2: 1 FTP_TRP.1.3: 1	FAU: FAU_ARP.1: 2 FAU_SAS: 4 FAU_SAS.1: 4 FAU_SAS.1.1: 1 FCO: FCO_NRO: 1 FCS: FCS_CKM: 48 FCS_CKM.1: 11 FCS_CKM.2: 6 FCS_CKM.3: 1 FCS_CKM.4: 23 FCS_CKM.4.1: 1 FCS_COP: 36 FCS_COP.1: 8 FCS_RND: 2 FCS_RND.1: 6 FCS_RND.1.1: 1 FCS_RNG: 2 FCS_RNG.1: 2 FCS_UAU: 1 FCS_UAU.1: 1 FDP: FDP_ACC: 15 FDP_ACC.1: 4 FDP_ACC.2: 1 FDP_ACF: 17 FDP_ACF.1: 8 FDP_IFC: 2 FDP_IFC.1: 2 FDP_IFF: 2 FDP_ITC: 1 FDP_ITC.1: 7 FDP_ITC.2: 7 FDP_RIP: 11 FDP_RIP.1: 6 FDP_RIP.1.1: 1 FDP_ROL: 1 FDP_SDI.2: 1 FDP_UCT: 6 FDP_UCT.1: 1 FDP_UIT: 5 FDP_UIT.1: 2 FIA: FIA_AFL: 7 FIA_AFL.1: 2 FIA_API: 17 FIA_API.1: 2 FIA_ATD: 1 FIA_UAU: 33 FIA_UAU.1: 1 FIA_UAU.4: 1 FIA_UAU.5: 2 FIA_UAU.6: 2 FIA_UID: 8 FIA_UID.1: 4 FIA_USB: 1 FMT: FMT_LIM: 6 FMT_LIM.1: 5 FMT_LIM.1.1: 1 FMT_LIM.2: 7 FMT_LIM.2.1: 3 FMT_MSA: 16 FMT_MSA.1: 1 FMT_MSA.3: 2 FMT_MTD: 55 FMT_MTD.1: 10 FMT_MTD.3: 5 FMT_MTD.3.1: 1 FMT_SMF: 5 FMT_SMF.1: 23 FMT_SMF.1.1: 1 FMT_SMR: 19 FMT_SMR.1: 3 FPR: FPR_UNO.1: 1 FPT: FPT_EMS: 4 FPT_EMS.1: 6 FPT_EMS.1.1: 1 FPT_EMS.1.2: 1 FPT_FLS: 7 FPT_FLS.1: 5 FPT_FLS.1.1: 1 FPT_PHP: 4 FPT_PHP.3: 8 FPT_PHP.3.1: 1 FPT_RCV: 1 FPT_TDC.1: 1 FPT_TST: 3 FPT_TST.1: 4 FPT_TST.1.1: 1 FPT_TST.1.2: 1 FPT_TST.1.3: 1 FRU: FRU_FLT: 1 FTP: FTP_ITC: 10 FTP_ITC.1: 6 FTP_TRP.1: 2
pdf_data/st_keywords/cc_claims	A: A.PLATFORM: 3 A.PROPER_ADMIN: 3 A.PROPER_USER: 3 O: O.ACCOUNTABILITY: 3 O.INTEGRITY: 5 O.MANAGEMENT: 5 O.PROTECTED_COMMS: 5 O.PROTECTED_STORAGE: 3 OE: OE.PLATFORM: 3 OE.PROPER_ADMIN: 3 OE.PROPER_USER: 3 T: T.LIMITED_PHYSICAL_ACCESS: 2 T.LOCAL_ATTACK: 2 T.NETWORK_ATTACK: 6 T.NETWORK_EAVESDROP: 4	A: A.APPLET: 1 A.PROCESS-: 1 A.USE_DIAG: 1 A.USE_KEYS: 1 A.VERIFICATION: 1 OE: OE.APPLET: 1 OE.PROCESS_SEC_IC: 1 OE.USE_DIAG: 1 OE.USE_KEYS: 1 OE.VERIFICATION: 1 OSP: OSP.PROCESS-TOE: 1 OSP.VERIFICATION: 1 OT: OT.ALARM: 1 OT.CARD-MANAGEMENT: 1 OT.CIPHER: 1 OT.DELETION: 1 OT.EXT-MEM: 1 OT.FIREWALL: 1 OT.GLOBAL_ARRAYS_CONFID: 1 OT.GLOBAL_ARRAYS_INTEG: 1 OT.IDENTIFICATION: 1 OT.INSTALL: 1 OT.KEY-MNGT: 1 OT.LOAD: 1 OT.MF_FW: 1 OT.NATIVE: 1 OT.OBJ-DELETION: 1 OT.OPERATE: 1 OT.PIN-MGMT: 1 OT.REALLOCATION: 1 OT.REMOTE: 1 OT.RESOURCES: 1 OT.RND: 1 OT.SCP: 3 OT.SEC_BOX_FW: 1 OT.SID: 1 OT.TRANSACTION: 1 T: T.CONFID-APPLI-DATA: 1 T.CONFID-JCS-CODE: 1 T.CONFID-JCS-DATA: 1 T.DELETION: 1 T.EXE-CODE: 2 T.EXE-CODE-REMOTE: 1 T.INSTALL: 2 T.INTEG-APPLI-CODE: 2 T.INTEG-APPLI-DATA: 2 T.INTEG-JCS-CODE: 1 T.INTEG-JCS-DATA: 1 T.NATIVE: 1 T.OBJ-DELETION: 1 T.OS_OPERATE: 1 T.PHYSICAL: 3 T.RESOURCES: 3 T.RND: 3 T.SEC_BOX_BORDER: 1 T.SID: 5
pdf_data/st_keywords/vendor		NXP: NXP: 18
pdf_data/st_keywords/eval_facility		BrightSight: Brightsight: 1
pdf_data/st_keywords/symmetric_crypto	AES_competition: AES: AES: 13 AES-: 1 constructions: MAC: HMAC: 8 HMAC-SHA-256: 2 HMAC-SHA-384: 1 HMAC-SHA-512: 1	AES_competition: AES: AES: 14 DES: DES: DES: 12 constructions: MAC: CMAC: 6 KMAC: 1
pdf_data/st_keywords/asymmetric_crypto	ECC: ECC: ECC: 4 ECDH: ECDH: 1 ECDSA: ECDSA: 8 FF: DH: DH: 1 Diffie-Hellman: 2	ECC: ECDH: ECDH: 11 ECDSA: ECDSA: 11 FF: DH: DH: 4 Diffie-Hellman: 7
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function	SHA: SHA2: SHA-256: 10 SHA-384: 8 SHA-512: 9	SHA: SHA1: SHA-1: 10 SHA2: SHA-224: 4 SHA-256: 8 SHA-384: 3 SHA-512: 3
pdf_data/st_keywords/crypto_scheme	MAC: MAC: 2	MAC: MAC: 9
pdf_data/st_keywords/crypto_protocol	IKE: IKE: 1 IPsec: IPsec: 4 SSH: SSH: 73 SSHv2: 1 TLS: DTLS: DTLS: 2 TLS: TLS: 50 TLS 1.1: 1 TLS 1.2: 3 TLS v1.2: 5 VPN: VPN: 11	PACE: PACE: 81
pdf_data/st_keywords/randomness	PRNG: DRBG: 6 RNG: RBG: 5	RNG: RND: 4
pdf_data/st_keywords/cipher_mode	CBC: CBC: 2 CTR: CTR: 4 GCM: GCM: 4	CBC: CBC: 1
pdf_data/st_keywords/ecc_curve	NIST: P-384: 14 P-521: 10 secp384r1: 4 secp521r1: 4
pdf_data/st_keywords/crypto_engine		SmartMX: SmartMX: 1
pdf_data/st_keywords/tls_cipher_suite	TLS: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: 1 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384: 4 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 1 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 1 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 1 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 4 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 1 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 1 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 4 TLS_RSA_WITH_AES_128_CBC_SHA: 1 TLS_RSA_WITH_AES_128_CBC_SHA256: 1 TLS_RSA_WITH_AES_128_GCM_SHA256: 1 TLS_RSA_WITH_AES_256_CBC_SHA: 1 TLS_RSA_WITH_AES_256_CBC_SHA256: 1 TLS_RSA_WITH_AES_256_GCM_SHA384: 1
pdf_data/st_keywords/crypto_library	OpenSSL: OpenSSL: 16
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis		FI: Malfunction: 4 malfunction: 2 physical tampering: 7 SCA: physical probing: 1
pdf_data/st_keywords/technical_report_id		BSI: BSI TR-03110: 1 BSI TR-3110: 1
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name		JCOP: JCOP 2: 9
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group		EF: EF.COM: 2 EF.DG1: 5 EF.DG14: 1 EF.DG15: 3 EF.DG16: 4 EF.DG2: 3 EF.DG3: 12 EF.DG4: 12 EF.DG5: 2 EF.SOD: 4
pdf_data/st_keywords/standard_id	CC: CCMB-2017-04-001: 1 CCMB-2017-04-002: 1 CCMB-2017-04-003: 1 FIPS: FIPS 186-4: 1 FIPS PUB 186-5: 12 NIST: NIST SP 800-38A: 9 NIST SP 800-38D: 3 NIST SP 800-57: 4 SP 800-186: 1 RFC: RFC 3526: 1 RFC 4251: 4 RFC 4252: 8 RFC 4253: 13 RFC 4256: 1 RFC 4344: 5 RFC 5246: 9 RFC 5280: 5 RFC 5288: 7 RFC 5289: 14 RFC 5647: 6 RFC 5656: 40 RFC 5759: 1 RFC 6066: 1 RFC 6125: 3 RFC 6187: 12 RFC 6668: 8 RFC 6960: 1 RFC 6961: 1 RFC 8268: 5 RFC 8332: 24 RFC 8603: 2 RFC 8709: 6 RFC 8731: 2 X509: X.509: 16	BSI: AIS 20: 1 AIS20: 3 CC: CCMB-2007-09-004: 1 CCMB-2012-09-001: 2 CCMB-2012-09-002: 1 CCMB-2012-09-003: 2 CCMB-2012-09-004: 1 ICAO: ICAO: 16 ISO: ISO/IEC 14443: 2 ISO/IEC 18013: 2 ISO/IEC 7816-2: 1 ISO/IEC 7816-4: 3 ISO/IEC 9796-2: 8 PKCS: PKCS#1: 6 PKCS#3: 2
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process	OutOfScope: The OS relies upon a trustworthy computing platform for its execution. This underlying platform is out of scope of this PP. A.PROPER_USER The user of the OS is not willfully negligent or hostile, and uses the: 1 out of scope: 1	OutOfScope: 1 FPT_EMS.1 matches the FPT_EMSEC.1 of the Platform-ST FDP_ACC.2/SecureBox No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/SecureBox No Correspondence Out of: 1 1 FPT_FLS.1 FPT_FLS.1 matches to the equivalent SFR of the Platform-ST. FPT_TDC.1 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FIA_ATD.1/AID No Correspondence Out of scope: 1 1 of the Platform matches the equivalent SFRs of the Platform. FDP_RIP.1/ABORT No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_RIP.1/APDU No Correspondence Out of scope: 1 86 No contradiction to this ST FMT_MSA.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.3/CM No Correspondence Out of scope: 1 86 No contradiction to this ST FMT_SMR.1/Installer No Correspondence Out of scope (Platform functionality) No contradiction to this ST FPT_FLS.1/Installer No Correspondence Out of: 1 Confidential Page 34 of 86 No contradiction to this ST FTP_ITC.1/LifeCycle No Correspondence Out of scope (Platform functionality) No contradiction to this ST FAU_SAS.1/SCP FAU_SAS.1 FAU_SAS.1 of this ST: 1 FPT_PHP.3 of this ST matches the FPT_PHP.3/SCP of the Platform ST. FDP_ACC.1/SCP No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/SCP No Correspondence Out of scope: 1 Out of scope: 75 Platform functionality) No contradiction to this ST FDP_ACC.1/EXT_MEM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_ACC.1/LifeCycle No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_ACC.2.2/JCRMI No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/JCRMI No Correspondence Out of scope: 1 Platform functionality) No contradiction to this ST FDP_ACC.2/ADEL No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_ACC.2/JCRMI No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_ACF.1/EXT_MEM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/EXT_MEM No Correspondence Out of: 1 Platform functionality) No contradiction to this ST FDP_ACF.1/FIREWALL No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_ACF.1/JCRMI No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_ACF.1/LifeCycle No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/LifeCycle No Correspondence Out of: 1 Platform functionality) No contradiction to this ST FDP_ACF.1/SCP No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_ACF.1/SecureBox No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_IFC.1/JCVM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_IFF.1/JCVM No Correspondence Out of scope: 1 Platform functionality) No contradiction to this ST FDP_IFC.2/CM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_IFF.1/JCVM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_RIP.1/ADEL No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_RIP.1/APDU No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_RIP.1/ODEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FPT_FLS.1/ODEL No Correspondence Out of scope: 1 Platform functionality) No contradiction to this ST FDP_ROL.1/FIREWALL No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FDP_UIT.1/CM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FIA_AFL.1/PIN No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FIA_ATD.1/AID No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FIA_USB.1/AID No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.1/EXT_MEM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.1/JCRE No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.1/LifeCycle No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.1/SecureBox No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.2/FIREWALL_JCVM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.3/ADEL No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.3/CM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.3/EXT_MEM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMF.1/EXT_MEM No Correspondence Out of: 1 Platform functionality) No contradiction to this ST FMT_MSA.3/JCVM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_MSA.3/LifeCycle No Correspondence Out of scope (Platform functionality) No contradiction to this ST FIA_AFL.1/PIN No Correspondence Out of scope: 1 Platform functionality) No contradiction to this ST FMT_MSA.3/SecureBox No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/SecureBox No Correspondence Out of: 1 Platform functionality) No contradiction to this ST FMT_SMF.1/EXT_MEM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_SMF.1/SecureBox No Correspondence Out of scope (Platform functionality) No contradiction to this ST Table 7 Mapping of Security requirements 2.5.6: 1 Platform functionality) No contradiction to this ST FMT_SMR.1 No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_SMR.1/ADEL No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FMT_SMR.1/CM No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FPR_UNO.1 No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FPT_FLS.1/Installer No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FPT_FLS.1/ODEL No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST FPT_FLS.1/SCP No Correspondence Out of scope (Platform functionality) No contradiction to this ST FRU_FLT.2/SCP No Correspondence Out of scope: 1 Platform functionality) No contradiction to this ST FPT_RCV.3/Installer No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.2/ADEL No Correspondence Out of scope: 1 Platform functionality) No contradiction to this ST FRU_FLT.2/SCP No Correspondence Out of scope (Platform functionality: 1 Platform functionality) No contradiction to this ST MT_MTD.3/JCRE No Correspondence Out of scope (Platform functionality: 1 SFR of the Platform-ST. FDP_RIP.1/TRANSIENT No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ROL.1/FIREWALL No Correspondence Out of: 1 Target ID&Trust IDentity Card 3.1/PACE-EAC1 Confidential Page 31 of 86 FCS_CKM.3 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FCS_CKM.4 FCS_CKM.4 The requirements are: 1 corresponds to the FPT_PHP.3 of this ST about physical resistance. FDP_SDI.2 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FPR_UNO.1 No Correspondence Out of scope: 1 functionality) No contradiction to this ST FCO_NRO.2/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_IFC.2/CM No Correspondence Out of scope: 1 functionality) No contradiction to this ST FDP_ACF.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_RIP.1/ADEL No Correspondence Out of scope: 1 functionality) No contradiction to this ST FDP_IFF.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_UIT.1/CM No Correspondence Out of scope: 1 functionality) No contradiction to this ST FDP_ITC.2/Installer No Correspondence Out of scope (Platform functionality) Security Target ID&Trust IDentity Card 3.1/PACE-EAC1 Confidential Page 32: 1 functionality) No contradiction to this ST FDP_RIP.1.1/OBJECTS No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/JCRE No Correspondence Out of scope: 1 functionality) No contradiction to this ST FDP_RIP.1/bArray No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_RIP.1/KEYS FDP_RIP.1 FDP_RIP.1 matches the: 1 functionality) No contradiction to this ST FIA_UID.1/CM No Correspondence Out of scope (Platform functionality) Security Target ID&Trust IDentity Card 3.1/PACE-EAC1 Confidential Page 33: 1 functionality) No contradiction to this ST FIA_UID.2/AID No Correspondence Out of scope (Platform functionality) No contradiction to this ST FIA_USB.1/AID No Correspondence Out of scope: 1 functionality) No contradiction to this ST FMT_MSA.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.3/ADEL No Correspondence Out of scope: 1 functionality) No contradiction to this ST FMT_MSA.1/JCVM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.2/FIREWALL_JCVM No Correspondence Out: 1 functionality) No contradiction to this ST FMT_MSA.3/SCP No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.1/LifeCycle No Correspondence Out of: 1 functionality) No contradiction to this ST FMT_MTD.1/JCRE No Correspondence Out of scope (Platform functionality) No contradiction to this ST MT_MTD.3/JCRE No Correspondence Out of scope: 1 functionality) No contradiction to this ST FMT_SMF.1 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMR.1 No Correspondence Out of scope: 1 functionality) No contradiction to this ST FMT_SMF.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMR.1/ADEL No Correspondence Out of scope: 1 functionality) No contradiction to this ST FMT_SMF.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMR.1/CM No Correspondence Out of scope: 1 functionality) No contradiction to this ST FPT_FLS.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.2/JCRMI No Correspondence Out of scope: 1 functionality) No contradiction to this ST FTP_ITC.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.1/EXT_MEM No Correspondence Out of: 1 mapped as follows: Platform SFR Corresponding TOE SFR Remarks FDP_ACC.2/FIREWALL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/FIREWALL No Correspondence Out of: 1 of the Platform since they contain overlapping requirements. FCS_CKM.2 No Correspondence Out of scope (Platform functionality) No contradiction to this ST OE.APPLET OT.Data_Integrity, OT: 1 out of scope: 1 scope (Platform functionality) No contradiction to this ST FMT_MSA.3/FIREWALL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.3/JCVM No Correspondence Out of scope: 1 • OT.INSTALL • OT.CARD-MANAGEMENT • OT.SCP.RECOVERY • OT.EXT-MEM cannot be mapped because these are out of scope. 134 The objectives for the operational environment can be mapped as follows: OT.OPERATE OT: 1
pdf_data/st_metadata	/Author: Primasec Ltd /CreationDate: D:20250214130919-05'00' /Creator: Microsoft® Word for Microsoft 365 /ModDate: D:20250214130919-05'00' /Producer: Microsoft® Word for Microsoft 365 pdf_file_size_bytes: 972628 pdf_hyperlinks: https://www.niap-ccevs.org/MMO/PP/-442-/#ajq_847, mailto:[email protected], https://www.oracle.com/corporate/security-practices/assurance/vulnerability/reporting.html, https://linux.oracle.com/security/, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=38751, https://linux.oracle.com/security, https://oss.oracle.com/mailman/listinfo/el-errata, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10788, https://www.niap-ccevs.org/Documents_and_Guidance/view_tds.cfm pdf_is_encrypted: False pdf_number_of_pages: 68	/Author: ID&Trust /CreationDate: D:20150908175448+02'00' /Creator: PDF Architect /ModDate: D:20151007084324+02'00' /Producer: PDF Architect /Title: Security Target “IDentity Card v3.1/PACE-EAC1” pdf_file_size_bytes: 450326 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 86
state/cert/convert_garbage	True	False
state/cert/convert_ok	True	False
state/cert/download_ok	True	False
state/cert/extract_ok	True	False
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	True
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	True
state/st/download_ok	True	True
state/st/extract_ok	True	True
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different

name

Oracle Linux 9.3

IDentity Card v3.1/PACE-EAC1

category

Operating Systems

ICs, Smart Cards and Smart Card-Related Devices and Systems

scheme

CA

IT

status

active

archived

not_valid_after

14.02.2030

30.09.2020

not_valid_before

14.02.2025

30.09.2015

cert_link

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/653-EWA%20CT%20v1.0.pdf

report_link

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/653-EWA%20CR%20v1.0.pdf

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cr_idcard_pace_v1.0_en.pdf

st_link

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/653-EWA%20ST%20v1.5.pdf

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_idcard_pace_v0.38.pdf

manufacturer

Oracle Corporation

ID&Trust Ltd.

manufacturer_web

https://www.oracle.com

https://www.idandtrust.com/

security_level

{}

EAL4+, ATE_DPT.2, ALC_DVS.2, AVA_VAN.5

dgst

be8e046b00e33ce3

8aaa231547219757

heuristics/cert_id

653-EWA

OCSI/CERT/SYS/04/2015/RC

heuristics/extracted_sars

ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, ALC_TSU_EXT.1, AGD_PRE.1

ASE_INT.1, ALC_DVS.2, ALC_CMC.4, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ALC_TAT.1, ASE_SPD.1, ATE_DPT.2, AVA_VAN.5, ALC_DEL.1, ALC_LCD.1, AGD_OPE.1, AGD_PRE.1, ALC_CMS.4, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ASE_TSS.2, ASE_REQ.2, ADV_FSP.4, ATE_IND.2, ASE_CCL.1

heuristics/extracted_versions

9.3

3.1

heuristics/report_references/directly_referenced_by

{}

OCSI/CERT/SYS/02/2016/RC

heuristics/report_references/directly_referencing

{}

NSCIB-CC-13-37760-CR2

heuristics/report_references/indirectly_referenced_by

{}

OCSI/CERT/SYS/02/2016/RC, OCSI/CERT/CCL/06/2021/RC, OCSI/CERT/SYS/06/2016/RC, OCSI/CERT/CCL/09/2022/RC

heuristics/report_references/indirectly_referencing

{}

BSI-DSZ-CC-0858-2013, BSI-DSZ-CC-0750-V2-2014, BSI-DSZ-CC-0645-2010, BSI-DSZ-CC-0707-2012, NSCIB-CC-13-37760-CR2, NSCIB-CC-13-37762-CR

heuristics/scheme_data

certification_date: 14.02.2025
level: PP_OS_V4.3, PKG_TLS_V1.1, PKG_SSH_V1.0
product: Oracle Linux 9.3
vendor: Oracle Corporation

heuristics/st_references/directly_referencing

{}

BSI-DSZ-CC-0750-V2-2014

heuristics/st_references/indirectly_referencing

{}

BSI-DSZ-CC-0750-V2-2014

heuristics/protection_profiles

c40ae795865a0dba, ed9c9d74c3710878, 3d6ad6fde534f6c6

a33327d40f253f46, b380aabf93b29692

protection_profile_links

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PP_OS_4.3.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pkg_ssh_v1.0.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/PKG_TLS_V1.1.pdf

https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0068_V2b_pdf.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0056_V2b_pdf.pdf

pdf_data/cert_filename

653-EWA CT v1.0.pdf

pdf_data/cert_keywords/cc_cert_id

CA:
- 653-EWA: 1

pdf_data/cert_keywords/cc_protection_profile_id

pdf_data/cert_keywords/cc_security_level

pdf_data/cert_keywords/cc_sar

pdf_data/cert_keywords/cc_sfr

pdf_data/cert_keywords/cc_claims

pdf_data/cert_keywords/vendor

pdf_data/cert_keywords/eval_facility

EWA:
- EWA-Canada: 1

pdf_data/cert_keywords/symmetric_crypto

pdf_data/cert_keywords/asymmetric_crypto

pdf_data/cert_keywords/pq_crypto

pdf_data/cert_keywords/hash_function

pdf_data/cert_keywords/crypto_scheme

pdf_data/cert_keywords/crypto_protocol

SSH:
- SSH: 1
TLS:
- TLS:
  - TLS: 1

pdf_data/cert_keywords/randomness

pdf_data/cert_keywords/cipher_mode

pdf_data/cert_keywords/ecc_curve

pdf_data/cert_keywords/crypto_engine

pdf_data/cert_keywords/tls_cipher_suite

pdf_data/cert_keywords/crypto_library

pdf_data/cert_keywords/vulnerability

pdf_data/cert_keywords/side_channel_analysis

pdf_data/cert_keywords/technical_report_id

pdf_data/cert_keywords/device_model

pdf_data/cert_keywords/tee_name

pdf_data/cert_keywords/os_name

pdf_data/cert_keywords/cplc_data

pdf_data/cert_keywords/ic_data_group

pdf_data/cert_keywords/standard_id

pdf_data/cert_keywords/javacard_version

pdf_data/cert_keywords/javacard_api_const

pdf_data/cert_keywords/javacard_packages

pdf_data/cert_keywords/certification_process

pdf_data/cert_metadata

/Author: Clark, Cory P.
/CreationDate: D:20250218135452-05'00'
/Creator: Microsoft® Word for Microsoft 365
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ActionId: 03c3dcc6-6bfd-4194-a625-fb83b8d0389e
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ContentBits: 1
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Enabled: true
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Method: Privileged
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Name: UNCLASSIFIED
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SetDate: 2023-05-16T11:46:20Z
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SiteId: da9cbe40-ec1e-4997-afb3-17d87574571a
/ModDate: D:20250218135452-05'00'
/Producer: Microsoft® Word for Microsoft 365
pdf_file_size_bytes: 185393
pdf_hyperlinks: {}
pdf_is_encrypted: False
pdf_number_of_pages: 1

pdf_data/report_filename

653-EWA CR v1.0.pdf

cr_idcard_pace_v1.0_en.pdf

pdf_data/report_frontpage

CA:

CA:

pdf_data/report_keywords/cc_cert_id

IT:
- OCSI/CERT/SYS/04/2015/RC: 24
NL:
- NSCIB-CC-13-37760-CR2: 1

pdf_data/report_keywords/cc_protection_profile_id

BSI:
- BSI-CC-PP-0056-V2-2012: 3
- BSI-CC-PP-0068-: 1
- BSI-CC-PP-0068-V2-2011: 2

pdf_data/report_keywords/cc_security_level

EAL:
- EAL 2: 1
- EAL 4: 2
- EAL4: 9
- EAL4 augmented: 1
- EAL5: 3
- EAL5 augmented: 3
- EAL5+: 2

pdf_data/report_keywords/cc_sar

ADV:
- ADV_ARC.1: 1
- ADV_FSP.4: 1
- ADV_IMP.1: 1
- ADV_TDS.3: 1
AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.2: 9
- ALC_FLR: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ASE_TSS.2: 3
ATE:
- ATE_COMP: 1
- ATE_COV.2: 1
- ATE_DPT.2: 6
- ATE_FUN.1: 1
- ATE_IND.2: 1
AVA:
- AVA_COMP: 1
- AVA_VAN.5: 10

pdf_data/report_keywords/cc_sfr

FAU:
- FAU_SAS: 1
FCS:
- FCS_RND: 1
FIA:
- FIA_API: 1
FMT:
- FMT_LIM: 1
FPT:
- FPT_EMS: 1

pdf_data/report_keywords/cc_claims

O:
- O.J: 1

pdf_data/report_keywords/vendor

NXP:
- NXP: 4

pdf_data/report_keywords/eval_facility

EWA:
- EWA-Canada: 1

BrightSight:
- Brightsight: 1

pdf_data/report_keywords/crypto_protocol

SSH:
- SSH: 2
TLS:
- TLS:
  - TLS: 1

PACE:
- PACE: 4

pdf_data/report_keywords/crypto_engine

SmartMX:
- SmartMX: 1

pdf_data/report_keywords/crypto_library

OpenSSL:
- OpenSSL: 2

pdf_data/report_keywords/side_channel_analysis

other:
- JIL: 1

pdf_data/report_keywords/os_name

JCOP:
- JCOP 2: 3

pdf_data/report_keywords/standard_id

ISO:
- ISO/IEC 17025: 2

CC:
- CCMB-2012-09-001: 1
- CCMB-2012-09-002: 1
- CCMB-2012-09-003: 1
- CCMB-2012-09-004: 1
ICAO:
- ICAO: 6
ISO:
- ISO/IEC 15408: 2

pdf_data/report_keywords/certification_process

OutOfScope:
- The OS relies upon a trustworthy computing platform for its execution. This underlying platform is out of scope of this PP. The user of the OS is not willfully negligent or hostile, and uses the software in: 1
- out of scope: 1

pdf_data/report_metadata

/Author: Clark, Cory P.
/CreationDate: D:20250218133709-05'00'
/Creator: Microsoft® Word for Microsoft 365
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ActionId: f4235719-a1a3-4fb4-8b18-a47ac84bac11
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_ContentBits: 1
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Enabled: true
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Method: Privileged
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_Name: UNCLASSIFIED
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SetDate: 2022-07-20T10:41:47Z
/MSIP_Label_4dd2c6e0-f1e3-4cf2-bd0b-256ab4cff3af_SiteId: da9cbe40-ec1e-4997-afb3-17d87574571a
/ModDate: D:20250218133709-05'00'
/Producer: Microsoft® Word for Microsoft 365
pdf_file_size_bytes: 336111
pdf_hyperlinks: https://www.cisa.gov/known-exploited-vulnerabilities-catalog, mailto:[email protected], https://linux.oracle.com/security/, https://nvd.nist.gov/vuln/search
pdf_is_encrypted: False
pdf_number_of_pages: 17

/Author: OCSI
/CreationDate: D:20151006181055+02'00'
/Creator: Microsoft® Word 2013
/ModDate: D:20151006181055+02'00'
/Producer: Microsoft® Word 2013
/Title: Certification Report “IDentity Card v3.1/PACE-EAC1”
pdf_file_size_bytes: 811448
pdf_hyperlinks: {}
pdf_is_encrypted: False
pdf_number_of_pages: 24

pdf_data/st_filename

653-EWA ST v1.5.pdf

st_idcard_pace_v0.38.pdf

pdf_data/st_keywords/cc_cert_id

DE:
- BSI-DSZ-CC-0750-V2-2014: 2
- BSI-DSZ-CC-0858: 2
NL:
- NSCIB-CC-13-13-37760-CR: 1
- NSCIB-CC-13-37760: 2

pdf_data/st_keywords/cc_protection_profile_id

BSI:
- BSI-CC-PP- 0035-2007: 1
- BSI-CC-PP-0056-: 1
- BSI-CC-PP-0056-V2-: 2
- BSI-CC-PP-0056-V2-2012: 2
- BSI-CC-PP-0068-V2-: 1
- BSI-CC-PP-0068-V2-2011: 4
- BSI-PP-0035: 1
- BSI-PP-0055: 1

pdf_data/st_keywords/cc_security_level

EAL:
- EAL 4: 2
- EAL 5: 4
- EAL 5 augmented: 2
- EAL 5+: 2
- EAL4: 3
- EAL4 augmented: 2
- EAL5: 1
- EAL5 augmented: 1
- EAL5+: 2

pdf_data/st_keywords/cc_sar

ADV:
- ADV_FSP.1: 2
AGD:
- AGD_OPE.1: 2
- AGD_PRE.1: 2
ALC:
- ALC_CMC.1: 2
- ALC_CMS.1: 2
- ALC_TSU_EXT.1: 8
ATE:
- ATE_IND.1: 2
AVA:
- AVA_VAN.1: 2

ADV:
- ADV_ARC.1: 1
AGD:
- AGD_PRE.1: 1
ALC:
- ALC_DEL.1: 1
- ALC_DVS.2: 9
ASE:
- ASE_TSS.2: 4
ATE:
- ATE_DPT.2: 4
AVA:
- AVA_VAN.3: 2
- AVA_VAN.5: 9

pdf_data/st_keywords/cc_sfr

FAU:
- FAU_GEN.1: 3
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 1
FCS:
- FCS_CKM.1: 4
- FCS_CKM.1.1: 1
- FCS_CKM.2: 4
- FCS_CKM.2.1: 1
- FCS_CKM_EXT.4: 9
- FCS_CKM_EXT.4.1: 3
- FCS_CKM_EXT.4.2: 2
- FCS_COP: 27
- FCS_COP.1: 4
- FCS_DTLS_EXT.1: 1
- FCS_RBG_EXT.1: 8
- FCS_RBG_EXT.1.1: 2
- FCS_RBG_EXT.1.2: 2
- FCS_SSHC_EXT.1: 10
- FCS_SSHC_EXT.1.1: 2
- FCS_SSHS_EXT.1: 8
- FCS_SSHS_EXT.1.1: 2
- FCS_SSHS_EXT.1.3: 1
- FCS_SSH_EXT.1: 10
- FCS_SSH_EXT.1.1: 2
- FCS_SSH_EXT.1.2: 4
- FCS_SSH_EXT.1.3: 3
- FCS_SSH_EXT.1.4: 3
- FCS_SSH_EXT.1.5: 3
- FCS_SSH_EXT.1.6: 3
- FCS_SSH_EXT.1.7: 3
- FCS_SSH_EXT.1.8: 3
- FCS_STO_EXT.1: 10
- FCS_STO_EXT.1.1: 1
- FCS_TLSC_EXT.1: 11
- FCS_TLSC_EXT.1.1: 3
- FCS_TLSC_EXT.1.2: 3
- FCS_TLSC_EXT.1.3: 3
- FCS_TLSC_EXT.5: 7
- FCS_TLSC_EXT.5.1: 3
- FCS_TLSS_EXT: 5
- FCS_TLSS_EXT.1.1: 1
- FCS_TLS_EXT.1: 3
FDP:
- FDP_ACF_EXT.1: 8
- FDP_ACF_EXT.1.1: 1
- FDP_IFC_EXT.1: 7
- FDP_IFC_EXT.1.1: 2
FIA:
- FIA_AFL.1: 3
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_UAU.5: 3
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
FMT:
- FMT_MOF_EXT.1: 7
- FMT_MOF_EXT.1.1: 2
- FMT_SMF_EXT.1: 7
- FMT_SMF_EXT.1.1: 4
FPT:
- FPT_ACF_EXT.1: 7
- FPT_ACF_EXT.1.1: 2
- FPT_ACF_EXT.1.2: 2
- FPT_ASLR_EXT.1: 7
- FPT_ASLR_EXT.1.1: 2
- FPT_SBOP_EXT.1: 7
- FPT_SBOP_EXT.1.1: 2
- FPT_TST_EXT.1: 8
- FPT_TST_EXT.1.1: 2
- FPT_TUD_EXT.1: 8
- FPT_TUD_EXT.1.1: 2
- FPT_TUD_EXT.1.2: 2
- FPT_TUD_EXT.2: 7
- FPT_TUD_EXT.2.1: 2
- FPT_TUD_EXT.2.2: 2
FTP:
- FTP_ITC_EXT.1: 7
- FTP_ITC_EXT.1.1: 2
- FTP_TRP: 1
- FTP_TRP.1: 3
- FTP_TRP.1.1: 1
- FTP_TRP.1.2: 1
- FTP_TRP.1.3: 1

FAU:
- FAU_ARP.1: 2
- FAU_SAS: 4
- FAU_SAS.1: 4
- FAU_SAS.1.1: 1
FCO:
- FCO_NRO: 1
FCS:
- FCS_CKM: 48
- FCS_CKM.1: 11
- FCS_CKM.2: 6
- FCS_CKM.3: 1
- FCS_CKM.4: 23
- FCS_CKM.4.1: 1
- FCS_COP: 36
- FCS_COP.1: 8
- FCS_RND: 2
- FCS_RND.1: 6
- FCS_RND.1.1: 1
- FCS_RNG: 2
- FCS_RNG.1: 2
- FCS_UAU: 1
- FCS_UAU.1: 1
FDP:
- FDP_ACC: 15
- FDP_ACC.1: 4
- FDP_ACC.2: 1
- FDP_ACF: 17
- FDP_ACF.1: 8
- FDP_IFC: 2
- FDP_IFC.1: 2
- FDP_IFF: 2
- FDP_ITC: 1
- FDP_ITC.1: 7
- FDP_ITC.2: 7
- FDP_RIP: 11
- FDP_RIP.1: 6
- FDP_RIP.1.1: 1
- FDP_ROL: 1
- FDP_SDI.2: 1
- FDP_UCT: 6
- FDP_UCT.1: 1
- FDP_UIT: 5
- FDP_UIT.1: 2
FIA:
- FIA_AFL: 7
- FIA_AFL.1: 2
- FIA_API: 17
- FIA_API.1: 2
- FIA_ATD: 1
- FIA_UAU: 33
- FIA_UAU.1: 1
- FIA_UAU.4: 1
- FIA_UAU.5: 2
- FIA_UAU.6: 2
- FIA_UID: 8
- FIA_UID.1: 4
- FIA_USB: 1
FMT:
- FMT_LIM: 6
- FMT_LIM.1: 5
- FMT_LIM.1.1: 1
- FMT_LIM.2: 7
- FMT_LIM.2.1: 3
- FMT_MSA: 16
- FMT_MSA.1: 1
- FMT_MSA.3: 2
- FMT_MTD: 55
- FMT_MTD.1: 10
- FMT_MTD.3: 5
- FMT_MTD.3.1: 1
- FMT_SMF: 5
- FMT_SMF.1: 23
- FMT_SMF.1.1: 1
- FMT_SMR: 19
- FMT_SMR.1: 3
FPR:
- FPR_UNO.1: 1
FPT:
- FPT_EMS: 4
- FPT_EMS.1: 6
- FPT_EMS.1.1: 1
- FPT_EMS.1.2: 1
- FPT_FLS: 7
- FPT_FLS.1: 5
- FPT_FLS.1.1: 1
- FPT_PHP: 4
- FPT_PHP.3: 8
- FPT_PHP.3.1: 1
- FPT_RCV: 1
- FPT_TDC.1: 1
- FPT_TST: 3
- FPT_TST.1: 4
- FPT_TST.1.1: 1
- FPT_TST.1.2: 1
- FPT_TST.1.3: 1
FRU:
- FRU_FLT: 1
FTP:
- FTP_ITC: 10
- FTP_ITC.1: 6
- FTP_TRP.1: 2

pdf_data/st_keywords/cc_claims

A:
- A.PLATFORM: 3
- A.PROPER_ADMIN: 3
- A.PROPER_USER: 3
O:
- O.ACCOUNTABILITY: 3
- O.INTEGRITY: 5
- O.MANAGEMENT: 5
- O.PROTECTED_COMMS: 5
- O.PROTECTED_STORAGE: 3
OE:
- OE.PLATFORM: 3
- OE.PROPER_ADMIN: 3
- OE.PROPER_USER: 3
T:
- T.LIMITED_PHYSICAL_ACCESS: 2
- T.LOCAL_ATTACK: 2
- T.NETWORK_ATTACK: 6
- T.NETWORK_EAVESDROP: 4

A:
- A.APPLET: 1
- A.PROCESS-: 1
- A.USE_DIAG: 1
- A.USE_KEYS: 1
- A.VERIFICATION: 1
OE:
- OE.APPLET: 1
- OE.PROCESS_SEC_IC: 1
- OE.USE_DIAG: 1
- OE.USE_KEYS: 1
- OE.VERIFICATION: 1
OSP:
- OSP.PROCESS-TOE: 1
- OSP.VERIFICATION: 1
OT:
- OT.ALARM: 1
- OT.CARD-MANAGEMENT: 1
- OT.CIPHER: 1
- OT.DELETION: 1
- OT.EXT-MEM: 1
- OT.FIREWALL: 1
- OT.GLOBAL_ARRAYS_CONFID: 1
- OT.GLOBAL_ARRAYS_INTEG: 1
- OT.IDENTIFICATION: 1
- OT.INSTALL: 1
- OT.KEY-MNGT: 1
- OT.LOAD: 1
- OT.MF_FW: 1
- OT.NATIVE: 1
- OT.OBJ-DELETION: 1
- OT.OPERATE: 1
- OT.PIN-MGMT: 1
- OT.REALLOCATION: 1
- OT.REMOTE: 1
- OT.RESOURCES: 1
- OT.RND: 1
- OT.SCP: 3
- OT.SEC_BOX_FW: 1
- OT.SID: 1
- OT.TRANSACTION: 1
T:
- T.CONFID-APPLI-DATA: 1
- T.CONFID-JCS-CODE: 1
- T.CONFID-JCS-DATA: 1
- T.DELETION: 1
- T.EXE-CODE: 2
- T.EXE-CODE-REMOTE: 1
- T.INSTALL: 2
- T.INTEG-APPLI-CODE: 2
- T.INTEG-APPLI-DATA: 2
- T.INTEG-JCS-CODE: 1
- T.INTEG-JCS-DATA: 1
- T.NATIVE: 1
- T.OBJ-DELETION: 1
- T.OS_OPERATE: 1
- T.PHYSICAL: 3
- T.RESOURCES: 3
- T.RND: 3
- T.SEC_BOX_BORDER: 1
- T.SID: 5

pdf_data/st_keywords/vendor

NXP:
- NXP: 18

pdf_data/st_keywords/eval_facility

BrightSight:
- Brightsight: 1

pdf_data/st_keywords/symmetric_crypto

AES_competition:
- AES:
  - AES: 13
  - AES-: 1
constructions:
- MAC:
  - HMAC: 8
  - HMAC-SHA-256: 2
  - HMAC-SHA-384: 1
  - HMAC-SHA-512: 1

AES_competition:
- AES:
  - AES: 14
DES:
- DES:
  - DES: 12
constructions:
- MAC:
  - CMAC: 6
  - KMAC: 1

pdf_data/st_keywords/asymmetric_crypto

ECC:
- ECC:
  - ECC: 4
- ECDH:
  - ECDH: 1
- ECDSA:
  - ECDSA: 8
FF:
- DH:
  - DH: 1
  - Diffie-Hellman: 2

ECC:
- ECDH:
  - ECDH: 11
- ECDSA:
  - ECDSA: 11
FF:
- DH:
  - DH: 4
  - Diffie-Hellman: 7

pdf_data/st_keywords/hash_function

SHA:
- SHA2:
  - SHA-256: 10
  - SHA-384: 8
  - SHA-512: 9

SHA:
- SHA1:
  - SHA-1: 10
- SHA2:
  - SHA-224: 4
  - SHA-256: 8
  - SHA-384: 3
  - SHA-512: 3

pdf_data/st_keywords/crypto_scheme

MAC:
- MAC: 2

MAC:
- MAC: 9

pdf_data/st_keywords/crypto_protocol

IKE:
- IKE: 1
IPsec:
- IPsec: 4
SSH:
- SSH: 73
- SSHv2: 1
TLS:
- DTLS:
  - DTLS: 2
- TLS:
  - TLS: 50
  - TLS 1.1: 1
  - TLS 1.2: 3
  - TLS v1.2: 5
VPN:
- VPN: 11

PACE:
- PACE: 81

pdf_data/st_keywords/randomness

PRNG:
- DRBG: 6
RNG:
- RBG: 5

RNG:
- RND: 4

pdf_data/st_keywords/cipher_mode

CBC:
- CBC: 2
CTR:
- CTR: 4
GCM:
- GCM: 4

CBC:
- CBC: 1

pdf_data/st_keywords/ecc_curve

NIST:
- P-384: 14
- P-521: 10
- secp384r1: 4
- secp521r1: 4

pdf_data/st_keywords/crypto_engine

SmartMX:
- SmartMX: 1

pdf_data/st_keywords/tls_cipher_suite

TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_GCM_SHA384: 4
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 4
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 1
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 4
- TLS_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_RSA_WITH_AES_256_GCM_SHA384: 1

pdf_data/st_keywords/crypto_library

OpenSSL:
- OpenSSL: 16

pdf_data/st_keywords/side_channel_analysis

FI:
- Malfunction: 4
- malfunction: 2
- physical tampering: 7
SCA:
- physical probing: 1

pdf_data/st_keywords/technical_report_id

BSI:
- BSI TR-03110: 1
- BSI TR-3110: 1

pdf_data/st_keywords/os_name

JCOP:
- JCOP 2: 9

pdf_data/st_keywords/ic_data_group

EF:
- EF.COM: 2
- EF.DG1: 5
- EF.DG14: 1
- EF.DG15: 3
- EF.DG16: 4
- EF.DG2: 3
- EF.DG3: 12
- EF.DG4: 12
- EF.DG5: 2
- EF.SOD: 4

pdf_data/st_keywords/standard_id

CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
FIPS:
- FIPS 186-4: 1
- FIPS PUB 186-5: 12
NIST:
- NIST SP 800-38A: 9
- NIST SP 800-38D: 3
- NIST SP 800-57: 4
- SP 800-186: 1
RFC:
- RFC 3526: 1
- RFC 4251: 4
- RFC 4252: 8
- RFC 4253: 13
- RFC 4256: 1
- RFC 4344: 5
- RFC 5246: 9
- RFC 5280: 5
- RFC 5288: 7
- RFC 5289: 14
- RFC 5647: 6
- RFC 5656: 40
- RFC 5759: 1
- RFC 6066: 1
- RFC 6125: 3
- RFC 6187: 12
- RFC 6668: 8
- RFC 6960: 1
- RFC 6961: 1
- RFC 8268: 5
- RFC 8332: 24
- RFC 8603: 2
- RFC 8709: 6
- RFC 8731: 2
X509:
- X.509: 16

BSI:
- AIS 20: 1
- AIS20: 3
CC:
- CCMB-2007-09-004: 1
- CCMB-2012-09-001: 2
- CCMB-2012-09-002: 1
- CCMB-2012-09-003: 2
- CCMB-2012-09-004: 1
ICAO:
- ICAO: 16
ISO:
- ISO/IEC 14443: 2
- ISO/IEC 18013: 2
- ISO/IEC 7816-2: 1
- ISO/IEC 7816-4: 3
- ISO/IEC 9796-2: 8
PKCS:
- PKCS#1: 6
- PKCS#3: 2

pdf_data/st_keywords/certification_process

OutOfScope:
- The OS relies upon a trustworthy computing platform for its execution. This underlying platform is out of scope of this PP. A.PROPER_USER The user of the OS is not willfully negligent or hostile, and uses the: 1
- out of scope: 1

OutOfScope:
- 1 FPT_EMS.1 matches the FPT_EMSEC.1 of the Platform-ST FDP_ACC.2/SecureBox No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/SecureBox No Correspondence Out of: 1
- 1 FPT_FLS.1 FPT_FLS.1 matches to the equivalent SFR of the Platform-ST. FPT_TDC.1 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FIA_ATD.1/AID No Correspondence Out of scope: 1
- 1 of the Platform matches the equivalent SFRs of the Platform. FDP_RIP.1/ABORT No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_RIP.1/APDU No Correspondence Out of scope: 1
- 86 No contradiction to this ST FMT_MSA.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.3/CM No Correspondence Out of scope: 1
- 86 No contradiction to this ST FMT_SMR.1/Installer No Correspondence Out of scope (Platform functionality) No contradiction to this ST FPT_FLS.1/Installer No Correspondence Out of: 1
- Confidential Page 34 of 86 No contradiction to this ST FTP_ITC.1/LifeCycle No Correspondence Out of scope (Platform functionality) No contradiction to this ST FAU_SAS.1/SCP FAU_SAS.1 FAU_SAS.1 of this ST: 1
- FPT_PHP.3 of this ST matches the FPT_PHP.3/SCP of the Platform ST. FDP_ACC.1/SCP No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/SCP No Correspondence Out of scope: 1
- Out of scope: 75
- Platform functionality) No contradiction to this ST FDP_ACC.1/EXT_MEM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_ACC.1/LifeCycle No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_ACC.2.2/JCRMI No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/JCRMI No Correspondence Out of scope: 1
- Platform functionality) No contradiction to this ST FDP_ACC.2/ADEL No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_ACC.2/JCRMI No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_ACF.1/EXT_MEM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/EXT_MEM No Correspondence Out of: 1
- Platform functionality) No contradiction to this ST FDP_ACF.1/FIREWALL No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_ACF.1/JCRMI No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_ACF.1/LifeCycle No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/LifeCycle No Correspondence Out of: 1
- Platform functionality) No contradiction to this ST FDP_ACF.1/SCP No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_ACF.1/SecureBox No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_IFC.1/JCVM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_IFF.1/JCVM No Correspondence Out of scope: 1
- Platform functionality) No contradiction to this ST FDP_IFC.2/CM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_IFF.1/JCVM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_RIP.1/ADEL No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_RIP.1/APDU No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_RIP.1/ODEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FPT_FLS.1/ODEL No Correspondence Out of scope: 1
- Platform functionality) No contradiction to this ST FDP_ROL.1/FIREWALL No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FDP_UIT.1/CM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FIA_AFL.1/PIN No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FIA_ATD.1/AID No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FIA_USB.1/AID No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.1/EXT_MEM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.1/JCRE No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.1/LifeCycle No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.1/SecureBox No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.2/FIREWALL_JCVM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.3/ADEL No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.3/CM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.3/EXT_MEM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMF.1/EXT_MEM No Correspondence Out of: 1
- Platform functionality) No contradiction to this ST FMT_MSA.3/JCVM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_MSA.3/LifeCycle No Correspondence Out of scope (Platform functionality) No contradiction to this ST FIA_AFL.1/PIN No Correspondence Out of scope: 1
- Platform functionality) No contradiction to this ST FMT_MSA.3/SecureBox No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/SecureBox No Correspondence Out of: 1
- Platform functionality) No contradiction to this ST FMT_SMF.1/EXT_MEM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_SMF.1/SecureBox No Correspondence Out of scope (Platform functionality) No contradiction to this ST Table 7 Mapping of Security requirements 2.5.6: 1
- Platform functionality) No contradiction to this ST FMT_SMR.1 No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_SMR.1/ADEL No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FMT_SMR.1/CM No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FPR_UNO.1 No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FPT_FLS.1/Installer No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FPT_FLS.1/ODEL No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST FPT_FLS.1/SCP No Correspondence Out of scope (Platform functionality) No contradiction to this ST FRU_FLT.2/SCP No Correspondence Out of scope: 1
- Platform functionality) No contradiction to this ST FPT_RCV.3/Installer No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.2/ADEL No Correspondence Out of scope: 1
- Platform functionality) No contradiction to this ST FRU_FLT.2/SCP No Correspondence Out of scope (Platform functionality: 1
- Platform functionality) No contradiction to this ST MT_MTD.3/JCRE No Correspondence Out of scope (Platform functionality: 1
- SFR of the Platform-ST. FDP_RIP.1/TRANSIENT No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ROL.1/FIREWALL No Correspondence Out of: 1
- Target ID&Trust IDentity Card 3.1/PACE-EAC1 Confidential Page 31 of 86 FCS_CKM.3 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FCS_CKM.4 FCS_CKM.4 The requirements are: 1
- corresponds to the FPT_PHP.3 of this ST about physical resistance. FDP_SDI.2 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FPR_UNO.1 No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FCO_NRO.2/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_IFC.2/CM No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FDP_ACF.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_RIP.1/ADEL No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FDP_IFF.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_UIT.1/CM No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FDP_ITC.2/Installer No Correspondence Out of scope (Platform functionality) Security Target ID&Trust IDentity Card 3.1/PACE-EAC1 Confidential Page 32: 1
- functionality) No contradiction to this ST FDP_RIP.1.1/OBJECTS No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.1/JCRE No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FDP_RIP.1/bArray No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_RIP.1/KEYS FDP_RIP.1 FDP_RIP.1 matches the: 1
- functionality) No contradiction to this ST FIA_UID.1/CM No Correspondence Out of scope (Platform functionality) Security Target ID&Trust IDentity Card 3.1/PACE-EAC1 Confidential Page 33: 1
- functionality) No contradiction to this ST FIA_UID.2/AID No Correspondence Out of scope (Platform functionality) No contradiction to this ST FIA_USB.1/AID No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FMT_MSA.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.3/ADEL No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FMT_MSA.1/JCVM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.2/FIREWALL_JCVM No Correspondence Out: 1
- functionality) No contradiction to this ST FMT_MSA.3/SCP No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.1/LifeCycle No Correspondence Out of: 1
- functionality) No contradiction to this ST FMT_MTD.1/JCRE No Correspondence Out of scope (Platform functionality) No contradiction to this ST MT_MTD.3/JCRE No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FMT_SMF.1 No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMR.1 No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FMT_SMF.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMR.1/ADEL No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FMT_SMF.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_SMR.1/CM No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FPT_FLS.1/ADEL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.2/JCRMI No Correspondence Out of scope: 1
- functionality) No contradiction to this ST FTP_ITC.1/CM No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACC.1/EXT_MEM No Correspondence Out of: 1
- mapped as follows: Platform SFR Corresponding TOE SFR Remarks FDP_ACC.2/FIREWALL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FDP_ACF.1/FIREWALL No Correspondence Out of: 1
- of the Platform since they contain overlapping requirements. FCS_CKM.2 No Correspondence Out of scope (Platform functionality) No contradiction to this ST OE.APPLET OT.Data_Integrity, OT: 1
- out of scope: 1
- scope (Platform functionality) No contradiction to this ST FMT_MSA.3/FIREWALL No Correspondence Out of scope (Platform functionality) No contradiction to this ST FMT_MSA.3/JCVM No Correspondence Out of scope: 1
- • OT.INSTALL • OT.CARD-MANAGEMENT • OT.SCP.RECOVERY • OT.EXT-MEM cannot be mapped because these are out of scope. 134 The objectives for the operational environment can be mapped as follows: OT.OPERATE OT: 1

pdf_data/st_metadata

/Author: Primasec Ltd
/CreationDate: D:20250214130919-05'00'
/Creator: Microsoft® Word for Microsoft 365
/ModDate: D:20250214130919-05'00'
/Producer: Microsoft® Word for Microsoft 365
pdf_file_size_bytes: 972628
pdf_hyperlinks: https://www.niap-ccevs.org/MMO/PP/-442-/#ajq_847, mailto:[email protected], https://www.oracle.com/corporate/security-practices/assurance/vulnerability/reporting.html, https://linux.oracle.com/security/, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=38751, https://linux.oracle.com/security, https://oss.oracle.com/mailman/listinfo/el-errata, https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=10788, https://www.niap-ccevs.org/Documents_and_Guidance/view_tds.cfm
pdf_is_encrypted: False
pdf_number_of_pages: 68

/Author: ID&Trust
/CreationDate: D:20150908175448+02'00'
/Creator: PDF Architect
/ModDate: D:20151007084324+02'00'
/Producer: PDF Architect
/Title: Security Target “IDentity Card v3.1/PACE-EAC1”
pdf_file_size_bytes: 450326
pdf_hyperlinks: {}
pdf_is_encrypted: False
pdf_number_of_pages: 86

state/cert/convert_garbage

True

False

state/cert/convert_ok

True

False

state/cert/download_ok

True

False

state/cert/extract_ok

True

False

state/cert/pdf_hash

Different

state/cert/txt_hash

Different

state/report/pdf_hash

Different

state/report/txt_hash

Different

state/st/pdf_hash

Different

state/st/txt_hash

Different

Comparing certificates Experimental feature