| name |
PalmSecure SDK Version 24 Premium |
Fuji Xerox ApeosPort-III 4000/3010 DocuCentre-III 4000/3010 Series Controller Software |
| category |
Biometric Systems and Devices |
Multi-Function Devices |
| scheme |
DE |
JP |
| status |
archived |
archived |
| not_valid_after |
01.09.2019 |
17.01.2013 |
| not_valid_before |
30.12.2008 |
13.03.2009 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0511a.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0207_erpt.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0511b.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/c0207_erpt.pdf |
| manufacturer |
Fujitsu Limited |
Fuji Xerox Co., Ltd. |
| manufacturer_web |
https://www.fujitsu.com/ |
https://www.fujixerox.co.jp/eng/ |
| security_level |
EAL2 |
EAL3 |
| dgst |
ca5a5c3b72c34bc3 |
492f2de70914d94b |
| heuristics/cert_id |
BSI-DSZ-CC-0511-2008 |
JISEC-CC-CRP-C0207 |
| heuristics/cert_lab |
BSI |
[] |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
AGD_OPE.1, AGD_PRE.1, APE_OBJ.2, ATE_COV.1, ATE_DPT.4, ADV_FSP.2, ASE_ECD.1, ASE_INT.1, ADV_ARC.1, ASE_SPD.1, ALC_DEL.1, ASE_TSS.1, APE_CCL.1, ATE_FUN.1, ADV_TDS.6, ASE_REQ.2, ASE_OBJ.2, ALC_FLR.3, ADV_INT.3, APE_SPD.1, ALC_TAT.3, ADV_IMP.2, ADV_SPM.1, ALC_DVS.2, ATE_IND.2, ALC_LCD.2, ALC_CMS.2, AVA_VAN.2, ALC_CMC.2, APE_REQ.2, ASE_CCL.1, APE_INT.1, APE_ECD.1 |
{} |
| heuristics/extracted_versions |
24 |
3010, 4000 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
|
- cert_id: JISEC-CC-CRP-C0207
- certification_date: 01.03.2009
- claim: EAL3
- enhanced:
- assurance_level: EAL3
- cert_link: https://www.ipa.go.jp/en/security/c0207_eimg.pdf
- description: PRODUCT DESCRIPTION Description of TOE The TOE is the software to control Multi Function Peripheral (MFP) that provides copy, print, scan, fax ,etc functions as basic functions. The MFP is assumed to be used, at general office, from the control panel, public telephone line, clients (for general user and system administrator) and servers which are linked to the MFP via internal network, and general user client which is directly linked to the MFP. TOE security functions TOE provides the following security functions. - Hard Disk Data Overwrite - Hard Disk Data Encryption - User Authentication - System Administrator's Security Management - Customer Engineer Operation Restriction - Security Audit Log - Internal Network Data Protection - FAX Flow Security
- evaluation_facility: Information Technology Security Center Evaluation Department
- product: Fuji Xerox ApeosPort-III 4000/3010 DocuCentre-III 4000/3010 Series Controller Software
- product_type: Control Software for Multi Function Peripheral
- report_link: https://www.ipa.go.jp/en/security/c0207_erpt.pdf
- target_link: https://www.ipa.go.jp/en/security/c0207_est.pdf
- toe_version: Controller ROM Ver. 1.0.16
- vendor: Fuji Xerox Co., Ltd.
- expiration_date: 01.03.2013
- supplier: Fuji Xerox Co., Ltd.
- toe_japan_link: https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0207_it8233.html
- toe_japan_name: Fuji Xerox ApeosPort-III 4000/3010 DocuCentre-III 4000/3010 Series Controller Software Controller ROM Ver. 1.0.16
- toe_overseas_link: None
- toe_overseas_name: -----
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
0511a.pdf |
c0207_erpt.pdf |
| pdf_data/report_frontpage |
- DE:
- cert_id: BSI-DSZ-CC-0511-2008
- cert_item: PalmSecure SDK Version 24 Premium
- cert_lab: BSI
- developer: Fujitsu Limited
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
|
|
| pdf_data/report_keywords/cc_cert_id |
|
- JP:
- Certification No. C0207: 1
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 1: 1
- EAL 2: 3
- EAL 4: 1
- EAL 7: 1
- EAL1: 6
- EAL2: 4
- EAL3: 4
- EAL4: 4
- EAL5: 6
- EAL6: 3
- EAL7: 4
|
|
| pdf_data/report_keywords/cc_sar |
- ADV:
- ADV_ARC: 1
- ADV_ARC.1: 1
- ADV_FSP: 1
- ADV_FSP.1: 1
- ADV_FSP.2: 1
- ADV_FSP.3: 1
- ADV_FSP.4: 1
- ADV_FSP.5: 1
- ADV_FSP.6: 1
- ADV_IMP: 1
- ADV_IMP.1: 1
- ADV_IMP.2: 1
- ADV_INT: 1
- ADV_INT.1: 1
- ADV_INT.2: 1
- ADV_INT.3: 1
- ADV_SPM: 1
- ADV_SPM.1: 1
- ADV_TDS: 1
- ADV_TDS.1: 1
- ADV_TDS.2: 1
- ADV_TDS.3: 1
- ADV_TDS.4: 1
- ADV_TDS.5: 1
- ADV_TDS.6: 1
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 1
- AGD_PRE: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC: 1
- ALC_CMC.1: 1
- ALC_CMC.2: 1
- ALC_CMC.3: 1
- ALC_CMC.4: 1
- ALC_CMC.5: 1
- ALC_CMS: 1
- ALC_CMS.1: 1
- ALC_CMS.2: 1
- ALC_CMS.3: 1
- ALC_CMS.4: 1
- ALC_CMS.5: 1
- ALC_DEL: 1
- ALC_DEL.1: 1
- ALC_DVS: 1
- ALC_DVS.1: 1
- ALC_DVS.2: 1
- ALC_FLR: 1
- ALC_FLR.1: 1
- ALC_FLR.2: 1
- ALC_FLR.3: 1
- ALC_LCD.1: 1
- ALC_LCD.2: 1
- ALC_TAT: 1
- ALC_TAT.1: 1
- ALC_TAT.2: 1
- ALC_TAT.3: 1
- APE:
- APE_CCL.1: 1
- APE_ECD.1: 1
- APE_INT.1: 1
- APE_OBJ.1: 1
- APE_OBJ.2: 1
- APE_REQ.1: 1
- APE_REQ.2: 1
- APE_SPD.1: 1
- ASE:
- ASE_CCL: 1
- ASE_CCL.1: 1
- ASE_ECD: 1
- ASE_ECD.1: 1
- ASE_INT: 1
- ASE_INT.1: 1
- ASE_OBJ: 1
- ASE_OBJ.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.1: 1
- ASE_REQ.2: 1
- ASE_SPD: 1
- ASE_SPD.1: 1
- ASE_TSS: 1
- ASE_TSS.1: 1
- ASE_TSS.2: 1
- ATE:
- ATE_COV: 1
- ATE_COV.1: 1
- ATE_COV.2: 1
- ATE_COV.3: 1
- ATE_DPT: 1
- ATE_DPT.1: 1
- ATE_DPT.2: 1
- ATE_DPT.3: 1
- ATE_DPT.4: 1
- ATE_FUN: 1
- ATE_FUN.1: 1
- ATE_FUN.2: 1
- ATE_IND: 1
- ATE_IND.1: 1
- ATE_IND.2: 1
- ATE_IND.3: 1
- AVA:
- AVA_VAN: 2
- AVA_VAN.1: 1
- AVA_VAN.2: 1
- AVA_VAN.3: 1
- AVA_VAN.4: 1
- AVA_VAN.5: 1
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
- OE:
- OE.ADMINISTRATION: 1
- OE.AUDIT_REACTION: 1
- OE.AUTHADMIN: 1
- OE.ENROLMENT: 1
- OE.ENVIRONMENT: 1
- OE.FALLBACK: 1
- OE.PHYSICAL: 1
- OE.ROLES_AND_ACCESS: 1
|
- A:
- T:
- T.COMM_TAP: 1
- T.CONFDATA: 1
- T.CONSUME: 1
- T.DATA_SEC: 1
- T.RECOVER: 1
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
- SRC:
- SRC Security Research & Consulting: 3
|
- ITSC:
- Information Technology Security Center: 3
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
- BSI:
- BSI 7125: 2
- BSI 7148: 1
- BSI 7149: 1
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- CC:
- CCMB-2006-09-001: 2
- CCMB-2007-09-002: 2
- CCMB-2007-09-003: 2
- CCMB-2007-09-004: 2
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
- ConfidentialDocument:
- 8] Evaluation Technical Report, Version 1.1, 24.11.2008, SRC Security Research & Consulting GmbH, (confidential document) [9] Security guide (PalmSecureTM Version 24 Premium), Fujitsu, First edition, September 2008 [10: 1
- OutOfScope:
- out of scope: 1
- tests at the ITSEF excepting such tests which are related to functions or parameters which are out of scope of the evaluation (functions regarding enrolment and identification, parameters regarding threshold: 1
|
|
| pdf_data/report_metadata |
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /CreationDate: D:20090202084856+01'00'
- /Creator: Writer
- /Keywords: "Common Criteria, Certification, Zertifizierung, PalmSecure SDK Version 24 Premium, Fujitsu Limited"
- /ModDate: D:20090202150925+01'00'
- /Producer: StarOffice 8
- /Subject: Common Criteria Certification
- /Title: Certification Report BSI-DSZ-CC-0511-2008
- pdf_file_size_bytes: 922937
- pdf_hyperlinks: http://www.bsi.bund.de/
- pdf_is_encrypted: False
- pdf_number_of_pages: 34
|
- /CreationDate: D:20090414172627+09'00'
- /ModDate: D:20090414172627+09'00'
- /Producer: Acrobat Distiller 6.0 (Windows)
- /Title: untitled
- pdf_file_size_bytes: 137637
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 23
|
| pdf_data/st_filename |
0511b.pdf |
c0207_erpt.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- JP:
- Certification No. C0207: 1
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.2: 1
- ADV_SPM.1: 1
- ADV_TDS: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.2: 1
- ALC_CMS.2: 1
- ALC_DEL.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.1: 1
- ATE_FUN: 1
- ATE_FUN.1: 1
- ATE_IND: 1
- ATE_IND.2: 1
- AVA:
|
|
| pdf_data/st_keywords/cc_sfr |
- FDP:
- FDP_ACC.1: 1
- FDP_ACF.1: 1
- FDP_RIP: 2
- FDP_RIP.1: 1
- FDP_RIP.2: 7
- FIA:
- FIA_ATD.1: 1
- FIA_UAU: 4
- FIA_UAU.1: 1
- FIA_UAU.2: 4
- FIA_UAU.3: 8
- FIA_UID: 2
- FIA_UID.1: 2
- FIA_UID.2: 5
- FPT:
|
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMINISTRATION: 4
- A.AUDIT_REACTION: 4
- A.AUTHADMIN: 4
- A.ENROLMENT: 4
- A.ENVIRONMENT: 4
- A.FALLBACK: 4
- A.PHYSICAL: 5
- A.ROLES_AND_ACCESS: 4
- O:
- O.BIO_VERIFCATION: 1
- O.BIO_VERIFICATION: 9
- O.NO_REPRODUCE: 8
- O.RESIDUAL: 5
- O.RESIDUAL_CAPTURE: 6
- OE:
- OE.ADMINISTRATION: 5
- OE.AUDIT_REACKTION: 1
- OE.AUDIT_REACTION: 17
- OE.AUTHADMIN: 9
- OE.ENROLMENT: 5
- OE.ENVIRONMENT: 5
- OE.FALLBACK: 3
- OE.PHYSICAL: 5
- OE.ROLES_AND_ACCESS: 9
- OSP:
- OSP.FAR: 7
- OSP.USERLIMIT: 4
- T:
- T.BRUTEFORCE: 5
- T.MODIFY_ASSETS: 7
- T.REPRODUCE: 5
- T.RESIDUAL: 9
- T.ROLES: 8
|
- A:
- T:
- T.COMM_TAP: 1
- T.CONFDATA: 1
- T.CONSUME: 1
- T.DATA_SEC: 1
- T.RECOVER: 1
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
- ITSC:
- Information Technology Security Center: 3
|
| pdf_data/st_keywords/symmetric_crypto |
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- CC:
- CCMB-2006-09-001: 2
- CCMB-2007-09-002: 2
- CCMB-2007-09-003: 2
- CCMB-2007-09-004: 2
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
- OutOfScope:
- Biometric Identification is not addressed within this ST. Furthermore the enrolment process is out of scope of this ST and it is assumed that all authorized users have been enrolled. Last but not least a: 1
- a mechanism for audit review of the TOE audit logs. As mentioned before all auditing aspects are out of scope of the TOE. • Transmission / Storage: The environment cares for a secure communication and storing: 1
- higher error rates of those systems are only two of them. The biometric identification process is out of scope of this ST. Please see [BEM] or [BPT] for further explanations. 1.5.2 Wording in context of Common: 1
- out of scope: 5
- the BIR to a name or some other "real-life" identification of a user is up to the application and out of scope of the TOE. VERSION 1.0 Security Target for PalmSecure 14.September 2008 All Rights Reserved: 1
- user identity from the TOE. As mentioned before the specific connection to the Portal Service is out of scope of the TOE and depends on the overall application using the PalmSecure Library. • Auditing: The: 1
|
|
| pdf_data/st_metadata |
- /Author: Fujitsu
- /Company: Fujitsu
- /CreationDate: D:20090105144849+09'00'
- /Creator: Word 用 Acrobat PDFMaker 8.1
- /Keywords: authentication,biometric,identification,verification
- /ModDate: D:20090105145458+09'00'
- /Producer: Acrobat Distiller 8.1.0 (Windows)
- /SourceModified: D:20090105054723
- /Subject: PalmSecure SDK
- /Title: Security Target for PalmSecure
- pdf_file_size_bytes: 707424
- pdf_hyperlinks: http://www.bsi.bund.de/
- pdf_is_encrypted: True
- pdf_number_of_pages: 59
|
- /CreationDate: D:20090414172627+09'00'
- /ModDate: D:20090414172627+09'00'
- /Producer: Acrobat Distiller 6.0 (Windows)
- /Title: untitled
- pdf_file_size_bytes: 137637
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 23
|
| state/cert/convert_garbage |
False |
False |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |