| name |
Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv |
TCOS FlexCert Version 2.0 Release 2/SLC52 |
| category |
Other Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
US |
DE |
| status |
archived |
active |
| not_valid_after |
13.02.2025 |
24.06.2026 |
| not_valid_before |
13.02.2023 |
24.06.2021 |
| cert_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11292-ci.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2c_pdf.pdf |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11292-vr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2a_pdf.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/st_vid11292-st.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2b_pdf.pdf |
| manufacturer |
Cisco Systems, Inc. |
Deutsche Telekom Security GmbH |
| manufacturer_web |
https://www.cisco.com |
https://www.telekom.de/security |
| security_level |
{} |
ALC_DVS.2, EAL4+, ATE_DPT.2, AVA_VAN.5 |
| dgst |
c019dbfd05176482 |
8bed4c0262f0c75c |
| heuristics/cert_id |
CCEVS-VR-VID-11292-2023 |
BSI-DSZ-CC-0904-V2-2021 |
| heuristics/cert_lab |
US |
BSI |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ADV_FSP.1, ALC_CMC.1, AVA_VAN.1, ATE_IND.1, ALC_CMS.1, AGD_OPE.1, AGD_PRE.1 |
AGD_PRE.1, ATE_COV.2, ALC_TAT.1, ALC_CMS.4, ATE_DPT.2, ATE_FUN.1, AVA_VAN.5, ALC_DEL.1, ADV_FSP.4, ALC_LCD.1, ALC_DVS.2, ADV_ARC.1, ADV_TDS.3, AGD_OPE.1, ADV_FUN.1, ALC_CMC.4, ADV_IMP.1 |
| heuristics/extracted_versions |
7.0 |
2.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
BSI-DSZ-CC-1079-V2-2020, BSI-DSZ-CC-0904-2015 |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
BSI-DSZ-CC-0829-2012, BSI-DSZ-CC-1079-V2-2020, BSI-DSZ-CC-0728-2011, BSI-DSZ-CC-0904-2015, BSI-DSZ-CC-0640-2010 |
| heuristics/scheme_data |
- category: Firewall, Network Device, Virtual Private Network, Wireless Monitoring
- certification_date: 13.02.2023
- evaluation_facility: Gossamer Security Solutions
- expiration_date: 13.02.2025
- id: CCEVS-VR-VID11292
- product: Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv
- scheme: US
- url: https://www.niap-ccevs.org/product/11292
- vendor: Cisco Systems, Inc.
|
- category: eHealth
- cert_id: BSI-DSZ-CC-0904-V2-2021
- certification_date: 24.06.2021
- enhanced:
- applicant: Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen
- assurance_level: EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5
- certification_date: 24.06.2021
- description: The Target of Evaluation (TOE) is the product TCOS FlexCert 2.0 Release 1/SLE78CLX1440P developed by T-Systems International GmbH. The TOE is a smart card product according to the G2 Card Operating System specification from gematik. The TOE is intended to be used as a card operating system platform for different card types and applications of the card generation G2 in the framework of the German health care system. The TOE implements from the PP-0082-V2 the base part and the packages Crypto Box, Logical Channel and Contactless.
- entries: [frozendict({'id': 'BSI-DSZ-CC-0904-V2-2021 (Ausstellungsdatum / Certification Date 24.06.2021, gültig bis / valid until 23.06.2026) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate', 'description': 'Software'}), frozendict({'id': 'BSI-DSZ-CC-0904-2015-MA-02 (13.05.2020)', 'description': 'The maintenance procedure addresses the change of the production site.'}), frozendict({'id': 'BSI', 'description': 'Maintenance Report'}), frozendict({'id': 'BSI', 'description': 'Security Target'})]
- evaluation_facility: SRC Security Research & Consulting GmbH
- expiration_date: 23.06.2026
- product: TCOS FlexCert Version 2.0 Release 2/SLC52
- protection_profile: Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019
- report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2c_pdf.pdf?__blob=publicationFile&v=3
- target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2b_pdf.pdf?__blob=publicationFile&v=2
- product: TCOS FlexCert Version 2.0 Release 2/SLC52
- subcategory: Smartcards
- url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0904.html
- vendor: Deutsche Telekom Security GmbH
|
| heuristics/st_references/directly_referenced_by |
{} |
BSI-DSZ-CC-1067-V4-2023, BSI-DSZ-CC-1068-V3-2022, BSI-DSZ-CC-1067-V3-2022, BSI-DSZ-CC-1067-V5-2024, BSI-DSZ-CC-1068-V4-2023, BSI-DSZ-CC-1068-V5-2024 |
| heuristics/st_references/directly_referencing |
{} |
BSI-DSZ-CC-1079-V2-2020 |
| heuristics/st_references/indirectly_referenced_by |
{} |
BSI-DSZ-CC-1067-V4-2023, BSI-DSZ-CC-1068-V3-2022, BSI-DSZ-CC-1067-V3-2022, BSI-DSZ-CC-1067-V5-2024, BSI-DSZ-CC-1068-V4-2023, BSI-DSZ-CC-1068-V5-2024 |
| heuristics/st_references/indirectly_referencing |
{} |
BSI-DSZ-CC-1079-V2-2020 |
| heuristics/protection_profiles |
6448a1802bb874d8, bde3d7587cf42e78, 89f2a255423f4a20 |
af9c3335f79dec6f |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_IPS_v1.0.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CPP_ND_V2.2E.pdf, https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/MOD_CPP_FW_v1.4e.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0082V4b_pdf.pdf |
| pdf_data/cert_filename |
st_vid11292-ci.pdf |
0904V2c_pdf.pdf |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11292-2023: 1
|
- DE:
- BSI-DSZ-CC-0904-V2-2021: 1
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
- EAL:
- EAL 2: 1
- EAL 4: 1
- EAL 4 augmented: 1
- EAL 5: 1
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
- Cisco:
- Cisco: 1
- Cisco Systems, Inc: 1
|
|
| pdf_data/cert_keywords/eval_facility |
|
- DeutscheTelekom:
- Deutsche Telekom Security: 1
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
- ISO:
- ISO/IEC 15408: 2
- ISO/IEC 18045: 2
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
- /CreationDate: D:20230214165013-05'00'
- /ModDate: D:20230214165013-05'00'
- /Producer: iText 2.1.0 (by lowagie.com)
- pdf_file_size_bytes: 181490
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /CreationDate: D:20210701140233+02'00'
- /Creator: Writer
- /ModDate: D:20210701140348+02'00'
- /Producer: LibreOffice 6.3
- /Subject: TCOS FlexCert Version 2.0 Release 2/SLC52 from Deutsche Telekom Security GmbH
- /Title: Certification Report BSI-DSZ-CC-0904-V2-2021
- pdf_file_size_bytes: 241525
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
| pdf_data/report_filename |
st_vid11292-vr.pdf |
0904V2a_pdf.pdf |
| pdf_data/report_frontpage |
- DE:
- US:
- cert_id: CCEVS-VR-VID11292-2023
- cert_item: Cisco FTD (NGFW) 7.0 on Firepower 4100 and 9300 Series with FMC/FMCv
- cert_lab: US NIAP
|
- DE:
- cc_security_level: Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2 and AVA_VAN.5
- cc_version: PP conformant Common Criteria Part 2 extended
- cert_id: BSI-DSZ-CC-0904-V2-2021
- cert_item: TCOS FlexCert Version 2.0 Release 2/SLC52
- cert_lab: BSI
- developer: Deutsche Telekom Security GmbH
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
- ref_protection_profiles: Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4- 2019
- US:
|
| pdf_data/report_keywords/cc_cert_id |
- US:
- CCEVS-VR-VID11292-2023: 1
|
- DE:
- BSI-DSZ-CC-0904-2015: 3
- BSI-DSZ-CC-0904-2015-MA-01: 2
- BSI-DSZ-CC-0904-V2-2021: 26
- BSI-DSZ-CC-1079-: 1
- BSI-DSZ-CC-1079-V2-: 2
- BSI-DSZ-CC-1079-V2-2020: 4
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP-0082-V4-: 1
- BSI-CC-PP-0082-V4-2019: 3
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 2: 2
- EAL 2+: 1
- EAL 4: 5
- EAL 4 augmented: 3
- EAL 5: 4
- EAL 5+: 1
- EAL 6: 1
- EAL5+: 1
- EAL6: 3
- EAL6 augmented: 2
- EAL6+: 2
|
| pdf_data/report_keywords/cc_sar |
|
- ADV:
- ALC:
- ALC_CMC.4: 1
- ALC_CMS.4: 1
- ALC_DEL.1: 1
- ALC_DVS.2: 5
- ALC_FLR: 2
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ATE:
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
- FCS:
- FCS_CKM: 4
- FCS_COP: 28
- FCS_RNG: 6
- FCS_RNG.1: 1
- FIA:
- FPT:
- FTP:
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
- Cisco:
- Cisco: 45
- Cisco Systems, Inc: 3
|
- Infineon:
- Infineon: 9
- Infineon Technologies AG: 6
|
| pdf_data/report_keywords/eval_facility |
|
- DeutscheTelekom:
- Deutsche Telekom Security: 20
- SRC:
- SRC Security Research & Consulting: 3
- TSystems:
- T-Systems International: 2
- TUV:
- TÜV Informationstechnik: 1
|
| pdf_data/report_keywords/symmetric_crypto |
|
- AES_competition:
- constructions:
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
- FI:
- DFA: 1
- fault injection: 1
- malfunction: 3
- SCA:
- DPA: 1
- SPA: 1
- side channel: 1
- other:
|
| pdf_data/report_keywords/technical_report_id |
|
- BSI:
- BSI 7148: 1
- BSI TR-03116-1: 1
- BSI TR-03143: 4
- BSI TR-03144: 9
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- BSI:
- AIS 1: 1
- AIS 14: 1
- AIS 19: 1
- AIS 20: 4
- AIS 23: 1
- AIS 25: 4
- AIS 26: 4
- AIS 31: 6
- AIS 32: 1
- AIS 34: 4
- AIS 35: 1
- AIS 36: 5
- AIS 37: 2
- AIS 38: 1
- AIS 46: 2
- AIS20: 2
- AIS31: 2
- FIPS:
- FIPS 180-4: 7
- FIPS 197: 13
- FIPS PUB 180-4: 1
- FIPS PUB 197: 1
- ISO:
- ISO/IEC 15408: 4
- ISO/IEC 17065: 2
- ISO/IEC 18031:2005: 1
- ISO/IEC 18045: 4
- PKCS:
- RFC:
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
- OutOfScope:
- beyond the scope of this Common Criteria evaluation. Clustering This feature is not tested and is out of scope. The services in the table above are disabled in the evaluated configuration. Cisco FTD (NGFW) 7.0: 1
- out of scope: 1
|
- ConfidentialDocument:
- 2/SLC52, Version 0.92, 26 May 2021, Deutsche Telekom Security GmbH (confidential document) [10] TCOS FlexCert Version 2.0 Release 2, Administrator’s Guidance, Guidance Documentation of TCOS: 1
- Certification Report DSZ-CC-1079-V2-2020, Version 2, 15 May 2020, TÜV Informationstechnik GmbH (confidential document) [18] Einführung der Gesundheitskarte, Spezifikation des Card Operating System (COS), Elektrische: 1
- G12, Revision 1.3, 3 April 2020, Infineon Technologies AG, BSI-DSZ-CC-1079-V2- 2020 (confidential document) Security Target Lite of the underlying hardware platform, Public Security Target Common Criteria: 1
- RNG] Zufallszahlengenerierung in TCOS, Version 0.7, 3 November 2020, T-Systems International GmbH (confidential document) [AIS 20] see chapter 14, [4] of this report [AIS 31] see chapter 14, [4] of this report Note: End: 1
- Version 2.0 Release 2/SLC52, Version 1.1, 2 June 2021, SRC Security Research & Consulting GmbH (confidential document) [9] Configuration List BSI-DSZ-CC-0904-V2-2021, Konfigurationsliste von TCOS FlexCert Version 2.0: 1
- being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification: 1
|
| pdf_data/report_metadata |
- /Author: comptont
- /CreationDate: D:20230214162414-05'00'
- /Creator: Microsoft® Word for Microsoft 365
- /ModDate: D:20230214162414-05'00'
- /Producer: Microsoft® Word for Microsoft 365
- pdf_file_size_bytes: 327303
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 21
|
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /CreationDate: D:20210701134203+02'00'
- /Creator: Writer
- /Keywords: "Common Criteria, Certification, Zertifizierung, G2 COS, eHealth"
- /ModDate: D:20210701140047+02'00'
- /Producer: LibreOffice 6.3
- /Subject: TCOS FlexCert Version 2.0 Release 2/SLC52 from Deutsche Telekom Security GmbH
- /Title: Certification Report BSI-DSZ-CC-0904-V2-2021
- pdf_file_size_bytes: 944995
- pdf_hyperlinks: http://www.commoncriteriaportal.org/cc/, https://www.sogis.eu/, https://www.bsi.bund.de/AIS, http://www.commoncriteriaportal.org/, https://www.bsi.bund.de/zertifizierung, https://www.bsi.bund.de/zertifizierungsreporte, https://www.bsi.bund.de/
- pdf_is_encrypted: False
- pdf_number_of_pages: 42
|
| pdf_data/st_filename |
st_vid11292-st.pdf |
0904V2b_pdf.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-1079-V2-2020: 1
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-CC-PP- 0035-2007: 1
- BSI-CC-PP- 0082-V4: 1
- BSI-CC-PP-0082-V4-2019: 2
- BSI-CC-PP-0084-: 1
- BSI-CC-PP-0084-2014: 21
- BSI-CC-PP0082: 4
- BSI-CC-PP0084: 2
- BSI-PP-0082: 1
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 4: 1
- EAL 4 augmented: 1
- EAL 5: 1
- EAL 5 augmented: 1
- EAL 6: 1
- EAL4: 10
- EAL4 augmented: 2
- EAL6: 1
- EAL6 augmented: 1
- EAL6+: 1
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- AGD:
- AGD_OPE.1: 3
- AGD_PRE.1: 2
- ALC:
- ALC_CMC.1: 2
- ALC_CMS.1: 2
- ATE:
- AVA:
|
- ADV:
- ADV_ARC: 1
- ADV_ARC.1: 4
- ADV_FSP: 1
- ADV_FSP.4: 2
- ADV_FUN.1: 1
- ADV_IMP.1: 2
- ADV_TDS.3: 3
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 2
- AGD_PRE.1: 2
- ALC:
- ALC_CMC.4: 1
- ALC_CMS: 1
- ALC_CMS.4: 1
- ALC_DEL: 1
- ALC_DEL.1: 1
- ALC_DVS: 1
- ALC_DVS.2: 7
- ALC_LCD.1: 1
- ALC_TAT.1: 1
- ATE:
- ATE_COV: 1
- ATE_COV.2: 1
- ATE_DPT.1: 1
- ATE_DPT.2: 5
- ATE_FUN: 1
- ATE_FUN.1: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN: 4
- FAU_GEN.1: 10
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 5
- FAU_GEN.2.1: 1
- FAU_GEN_EXT.1: 5
- FAU_GEN_EXT.1.1: 1
- FAU_SAR.1: 4
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 4
- FAU_SAR.2.1: 1
- FAU_SAR.3: 4
- FAU_SAR.3.1: 1
- FAU_STG: 3
- FAU_STG.1: 4
- FAU_STG_EXT.1: 5
- FAU_STG_EXT.1.1: 1
- FAU_STG_EXT.1.2: 1
- FAU_STG_EXT.1.3: 1
- FAU_STG_EXT.4: 5
- FAU_STG_EXT.4.1: 1
- FAU_STG_EXT.5: 5
- FAU_STG_EXT.5.1: 1
- FCO:
- FCO_CPC_EXT.1: 5
- FCO_CPC_EXT.1.1: 1
- FCO_CPC_EXT.1.2: 1
- FCO_CPC_EXT.1.3: 1
- FCS:
- FCS_CKM: 5
- FCS_CKM.1: 11
- FCS_CKM.1.1: 2
- FCS_CKM.2: 7
- FCS_CKM.2.1: 2
- FCS_CKM.4: 7
- FCS_CKM.4.1: 1
- FCS_COP: 27
- FCS_COP.1: 4
- FCS_NTP_EXT.1: 5
- FCS_NTP_EXT.1.1: 1
- FCS_NTP_EXT.1.2: 2
- FCS_NTP_EXT.1.3: 1
- FCS_NTP_EXT.1.4: 3
- FCS_RBG_EXT.1: 10
- FCS_RBG_EXT.1.1: 1
- FCS_RBG_EXT.1.2: 1
- FCS_SSHC_EXT.1: 1
- FCS_SSHS_EXT.1: 15
- FCS_SSHS_EXT.1.1: 2
- FCS_SSHS_EXT.1.2: 2
- FCS_SSHS_EXT.1.3: 2
- FCS_SSHS_EXT.1.4: 2
- FCS_SSHS_EXT.1.5: 2
- FCS_SSHS_EXT.1.6: 2
- FCS_SSHS_EXT.1.7: 2
- FCS_SSHS_EXT.1.8: 3
- FCS_TLSC_EXT.1: 11
- FCS_TLSC_EXT.1.1: 1
- FCS_TLSC_EXT.1.2: 3
- FCS_TLSC_EXT.1.3: 1
- FCS_TLSC_EXT.1.4: 1
- FCS_TLSC_EXT.2: 9
- FCS_TLSC_EXT.2.1: 2
- FCS_TLSC_EXT.2.3: 2
- FCS_TLSS_EXT.1: 12
- FCS_TLSS_EXT.1.1: 1
- FCS_TLSS_EXT.1.2: 1
- FCS_TLSS_EXT.1.3: 2
- FCS_TLSS_EXT.1.4: 1
- FDP:
- FDP_RIP.2: 5
- FDP_RIP.2.1: 1
- FIA:
- FIA_AFL.1: 10
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_PMG_EXT.1: 5
- FIA_PMG_EXT.1.1: 1
- FIA_PSK_EXT.1: 5
- FIA_PSK_EXT.1.1: 1
- FIA_PSK_EXT.1.2: 1
- FIA_PSK_EXT.1.3: 1
- FIA_PSK_EXT.1.4: 1
- FIA_UAU.7: 5
- FIA_UAU.7.1: 1
- FIA_UAU_EXT.2: 6
- FIA_UAU_EXT.2.1: 1
- FIA_UIA_EXT.1: 6
- FIA_UIA_EXT.1.1: 1
- FIA_UIA_EXT.1.2: 1
- FMT:
- FMT_MOF: 5
- FMT_MOF.1: 1
- FMT_MTD: 10
- FMT_MTD.1: 2
- FMT_SMF: 15
- FMT_SMF.1: 9
- FMT_SMF.1.1: 1
- FMT_SMR.2: 5
- FMT_SMR.2.1: 1
- FMT_SMR.2.2: 1
- FMT_SMR.2.3: 1
- FPT:
- FPT_APW_EXT.1: 5
- FPT_APW_EXT.1.1: 1
- FPT_APW_EXT.1.2: 1
- FPT_FLS: 5
- FPT_FLS.1: 1
- FPT_ITT: 8
- FPT_ITT.1: 11
- FPT_ITT.1.1: 1
- FPT_SKP_EXT.1: 6
- FPT_SKP_EXT.1.1: 1
- FPT_STM_EXT.1: 6
- FPT_STM_EXT.1.1: 1
- FPT_STM_EXT.1.2: 2
- FPT_TST_EXT: 1
- FPT_TST_EXT.1: 5
- FPT_TST_EXT.1.1: 1
- FPT_TST_EXT.3: 5
- FPT_TST_EXT.3.1: 1
- FPT_TST_EXT.3.2: 1
- FPT_TUD_EXT.1: 5
- FPT_TUD_EXT.1.1: 1
- FPT_TUD_EXT.1.2: 1
- FPT_TUD_EXT.1.3: 1
- FTA:
- FTA_SSL: 4
- FTA_SSL.3: 7
- FTA_SSL.3.1: 1
- FTA_SSL.4: 4
- FTA_SSL.4.1: 1
- FTA_SSL_EXT: 1
- FTA_SSL_EXT.1: 5
- FTA_SSL_EXT.1.1: 1
- FTA_TAB.1: 7
- FTA_TAB.1.1: 1
- FTA_TSE.1: 5
- FTA_TSE.1.1: 1
- FTA_VCM_EXT.1: 5
- FTA_VCM_EXT.1.1: 1
- FTP:
- FTP_ITC: 8
- FTP_ITC.1: 12
- FTP_ITC.1.1: 2
- FTP_ITC.1.2: 1
- FTP_ITC.1.3: 1
- FTP_TRP: 8
- FTP_TRP.1: 3
|
- FAU:
- FAU_SAS: 10
- FAU_SAS.1: 7
- FAU_SAS.1.1: 1
- FCS:
- FCS_CKM: 42
- FCS_CKM.1: 23
- FCS_CKM.2: 4
- FCS_CKM.4: 28
- FCS_CKM.4.1: 2
- FCS_COP: 141
- FCS_COP.1: 20
- FCS_RNG: 36
- FCS_RNG.1: 28
- FCS_RNG.1.1: 4
- FCS_RNG.1.2: 2
- FDP:
- FDP_ACC: 64
- FDP_ACC.1: 39
- FDP_ACF: 77
- FDP_ACF.1: 38
- FDP_IFC: 5
- FDP_IFC.1: 10
- FDP_IFF.1: 1
- FDP_ITC.1: 19
- FDP_ITC.2: 17
- FDP_ITT: 5
- FDP_ITT.1: 3
- FDP_RIP: 6
- FDP_RIP.1: 9
- FDP_RIP.1.1: 1
- FDP_SDC: 10
- FDP_SDC.1: 5
- FDP_SDC.1.1: 1
- FDP_SDI: 9
- FDP_SDI.1: 2
- FDP_SDI.2: 6
- FDP_SDI.2.1: 1
- FDP_SDI.2.2: 1
- FDP_UCT: 6
- FDP_UCT.1: 1
- FDP_UIT: 6
- FDP_UIT.1: 2
- FIA:
- FIA_AFL: 19
- FIA_AFL.1: 4
- FIA_API: 11
- FIA_API.1: 17
- FIA_API.1.1: 2
- FIA_ATD: 5
- FIA_ATD.1: 12
- FIA_ATD.1.1: 1
- FIA_SOS: 1
- FIA_SOS.1: 6
- FIA_SOS.1.1: 1
- FIA_UAU: 37
- FIA_UAU.1: 12
- FIA_UAU.1.1: 1
- FIA_UAU.1.2: 1
- FIA_UAU.4: 12
- FIA_UAU.4.1: 1
- FIA_UAU.5: 15
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
- FIA_UAU.6: 9
- FIA_UAU.6.1: 1
- FIA_UID: 7
- FIA_UID.1: 14
- FIA_UID.1.1: 1
- FIA_UID.1.2: 1
- FIA_USB: 28
- FIA_USB.1: 29
- FIA_USB.1.1: 1
- FIA_USB.1.2: 1
- FIA_USB.1.3: 2
- FMT:
- FMT_LIM: 17
- FMT_LIM.1: 17
- FMT_LIM.1.1: 1
- FMT_LIM.2: 16
- FMT_LIM.2.1: 1
- FMT_MSA: 52
- FMT_MSA.1: 7
- FMT_MSA.3: 25
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_MTD: 27
- FMT_MTD.1: 4
- FMT_SMF: 1
- FMT_SMF.1: 34
- FMT_SMF.1.1: 1
- FMT_SMR: 6
- FMT_SMR.1: 22
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_EMS: 10
- FPT_EMS.1: 16
- FPT_EMS.1.1: 3
- FPT_EMS.1.2: 3
- FPT_FLS: 7
- FPT_FLS.1: 16
- FPT_FLS.1.1: 2
- FPT_ITE: 14
- FPT_ITE.1: 12
- FPT_ITE.1.1: 2
- FPT_ITE.1.2: 2
- FPT_ITE.2: 12
- FPT_ITE.2.1: 6
- FPT_ITE.2.2: 2
- FPT_ITT: 5
- FPT_ITT.1: 2
- FPT_PHP: 5
- FPT_PHP.3: 7
- FPT_TDC: 1
- FPT_TDC.1: 5
- FPT_TDC.1.1: 1
- FPT_TDC.1.2: 1
- FPT_TST: 3
- FPT_TST.1: 7
- FPT_TST.1.1: 1
- FPT_TST.1.2: 1
- FPT_TST.1.3: 1
- FPT_TST.2: 1
- FRU:
- FTP:
- FTP_ITC: 12
- FTP_ITC.1: 6
- FTP_TRP.1: 2
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMIN_CREDENTIALS_: 1
- A.COMPONENTS_RUNNING: 1
- A.CONNECTIONS: 2
- A.LIMITED_FUNCTIONALITY: 2
- A.NO_THRU_TRAFFIC_PROTECTION: 1
- A.PHYSICAL_PROTECTION: 1
- A.REGULAR_UPDATES: 1
- A.RESIDUAL_INFORMATION: 1
- A.TRUSTED_ADMINSTRATOR: 1
- A.VS_CORRECT_CONFIGURATION: 1
- A.VS_ISOLATON: 1
- A.VS_REGULAR_UPDATES: 1
- A.VS_TRUSTED_ADMINISTRATOR: 1
- O:
- O.ADDRESS_FILTERING: 1
- O.AUTHENTICATION: 1
- O.CRYPTOGRAPHIC_FUNCTIONS: 1
- O.FAIL_SECURE: 1
- O.IPS_ANALYZE: 1
- O.IPS_REACT: 1
- O.PORT_FILTERING: 1
- O.RESIDUAL_INFORMATION: 1
- O.STATEFUL_TRAFFIC_FILTERING: 1
- O.SYSTEM_MONITORING: 2
- O.TOE_ADMINISTRATION: 2
- OE:
- OE.ADMIN_CREDENTIALS_: 1
- OE.COMPONENTS_RUNNING: 1
- OE.CONNECTIONS: 3
- OE.NO_GENERAL_PURPOSE: 1
- OE.NO_THRU_TRAFFIC_PROTECTION: 1
- OE.PHYSICAL: 1
- OE.RESIDUAL_INFORMATION: 1
- OE.TRUSTED_ADMIN: 1
- OE.UPDATES: 1
- OE.VM_CONFIGURATION: 1
- T:
- T.DATA_INTEGRITY: 1
- T.MALICIOUS_TRAFFIC: 1
- T.NETWORK_ACCESS: 2
- T.NETWORK_DISCLOSURE: 2
- T.NETWORK_DOS: 1
- T.NETWORK_MISUSE: 3
- T.PASSWORD_CRACKING: 1
- T.REPLAY_ATTACK: 1
- T.SECURITY_FUNCTIONALITY_: 2
- T.UNAUTHORIZED_: 1
- T.UNDETECTED_ACTIVITY: 1
- T.UNTRUSTED_COMMUNICATIONS: 1
- T.UPDATE_COMPROMISE: 1
- T.WEAK_AUTHENTICATION_: 1
- T.WEAK_CRYPTOGRAPHY: 1
|
- O:
- O.AES: 1
- O.PACE_CHIP: 9
- O.RND: 3
- T:
|
| pdf_data/st_keywords/vendor |
- Broadcom:
- Cisco:
- Cisco: 29
- Cisco Systems, Inc: 2
|
- Infineon:
- Infineon: 1
- Infineon Technologies AG: 2
- NXP:
- STMicroelectronics:
|
| pdf_data/st_keywords/eval_facility |
|
- DeutscheTelekom:
- Deutsche Telekom Security: 137
|
| pdf_data/st_keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 12
- AES-: 2
- AES-256: 2
- DES:
- constructions:
- MAC:
- HMAC: 4
- HMAC-SHA-256: 8
- HMAC-SHA-384: 7
- HMAC-SHA-512: 8
- miscellaneous:
|
- AES_competition:
- AES:
- AES: 49
- AES-192: 1
- AES-256: 1
- AES128: 2
- DES:
- constructions:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
- SHA:
- SHA1:
- SHA2:
- SHA-256: 5
- SHA-384: 3
- SHA-512: 9
- SHA384: 1
|
- SHA:
- SHA1:
- SHA2:
- SHA-2: 2
- SHA-256: 12
- SHA-384: 7
- SHA-512: 5
- SHA512: 1
|
| pdf_data/st_keywords/crypto_scheme |
|
- KA:
- Key Agreement: 1
- Key agreement: 1
- MAC:
|
| pdf_data/st_keywords/crypto_protocol |
- IKE:
- IPsec:
- SSH:
- SSH: 88
- SSHv1: 1
- SSHv2: 17
- TLS:
- DTLS:
- SSL:
- SSL: 2
- SSL 2.0: 1
- SSL 3.0: 1
- TLS:
- TLS: 114
- TLS 1.0: 1
- TLS 1.1: 2
- TLS 1.2: 2
- TLSv1.1: 10
- TLSv1.2: 88
- VPN:
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
- NIST:
- P-256: 14
- P-384: 14
- P-521: 14
- secp256r1: 6
- secp384r1: 6
- secp521r1: 6
|
- Brainpool:
- brainpoolP256r1: 3
- brainpoolP384r1: 3
- brainpoolP512r1: 2
- NIST:
- NIST P-256: 1
- P-256: 3
- P-384: 2
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
- TLS:
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 2
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 3
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 3
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 2
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 3
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 3
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 4
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 4
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 7
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 3
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 6
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 7
- TLS_RSA_WITH_AES_128_CBC_SHA: 5
- TLS_RSA_WITH_AES_128_CBC_SHA256: 6
- TLS_RSA_WITH_AES_128_GCM_SHA256: 4
- TLS_RSA_WITH_AES_256_CBC_SHA: 3
- TLS_RSA_WITH_AES_256_CBC_SHA256: 6
- TLS_RSA_WITH_AES_256_GCM_SHA384: 4
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- DFA: 1
- Malfunction: 7
- malfunction: 6
- physical tampering: 1
- SCA:
- DPA: 1
- Leak-Inherent: 8
- Physical Probing: 2
- Physical probing: 1
- SPA: 1
- physical probing: 1
- other:
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
- CC:
- CCMB-2017-04-001: 1
- CCMB-2017-04-002: 1
- CCMB-2017-04-003: 1
- CCMB-2017-04-004: 1
- FIPS:
- FIPS 140-2: 2
- FIPS PUB 140-2: 1
- FIPS PUB 180-4: 2
- FIPS PUB 186-3: 1
- FIPS PUB 186-4: 10
- FIPS PUB 198-1: 1
- ISO:
- ISO/IEC 14888-3: 1
- ISO/IEC 18031:2011: 4
- ISO/IEC 9796-2: 1
- NIST:
- PKCS:
- RFC:
- RFC 1305: 1
- RFC 2460: 5
- RFC 2463: 1
- RFC 2818: 2
- RFC 2986: 1
- RFC 3268: 11
- RFC 3447: 3
- RFC 3513: 2
- RFC 3526: 8
- RFC 3602: 7
- RFC 4016: 1
- RFC 4106: 2
- RFC 4253: 2
- RFC 4301: 2
- RFC 4303: 3
- RFC 4346: 2
- RFC 4443: 2
- RFC 4492: 11
- RFC 4868: 2
- RFC 4945: 2
- RFC 5077: 3
- RFC 5114: 2
- RFC 5246: 17
- RFC 5280: 10
- RFC 5282: 2
- RFC 5288: 8
- RFC 5289: 36
- RFC 5735: 2
- RFC 5759: 1
- RFC 5996: 4
- RFC 6125: 2
- RFC 6960: 1
- RFC 768: 5
- RFC 791: 5
- RFC 792: 3
- RFC 793: 5
- X509:
|
- BSI:
- AIS 31: 1
- AIS 36: 1
- AIS31: 5
- AIS36: 4
- CC:
- CCMB-2017-04-001: 2
- CCMB-2017-04-002: 2
- CCMB-2017-04-003: 2
- CCMB-2017-04-004: 2
- FIPS:
- FIPS 180-4: 1
- FIPS 197: 4
- FIPS PUB 180-4: 1
- FIPS PUB 186-4: 1
- FIPS180: 2
- FIPS186: 5
- FIPS197: 8
- ICAO:
- ISO:
- ISO/IEC 18033-3: 3
- ISO/IEC 9797-1: 2
- NIST:
- NIST SP 800-38B: 1
- SP 800-38A: 3
- PKCS:
- RFC:
- RFC 3447: 1
- RFC 5639: 1
- RFC3447: 7
- RFC5639: 8
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- beyond the scope of this Common Criteria evaluation. Clustering This feature is not tested and is out of scope. The services in the table above are disabled in the evaluated configuration. Any functionality of: 1
- out of scope: 1
|
|
| pdf_data/st_metadata |
|
|
| state/cert/convert_garbage |
True |
False |
| state/cert/convert_ok |
True |
True |
| state/cert/download_ok |
True |
True |
| state/cert/extract_ok |
True |
True |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Different |
Different |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |