This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Gemalto Advanced Whitebox PKI SDK for Android v1.0.1.300 NSCIB-CC-230855-CR	Bundesdruckerei Document Application withtamper-evident casing Version 2.6.1; FirmwareVersion 1.6.24-604, TOE Casing Version 0 None
name	Gemalto Advanced Whitebox PKI SDK for Android v1.0.1.300	Bundesdruckerei Document Application withtamper-evident casing Version 2.6.1; FirmwareVersion 1.6.24-604, TOE Casing Version 0
category	Mobility	Other Devices and Systems
scheme	NL	DE
status	archived	active
not_valid_after	24.12.2024	30.01.2030
not_valid_before	24.12.2019	30.01.2025
cert_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/cert%2019-230855.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1247c_pdf.pdf
report_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Certification%20Report%20NSCIB-CC-230855-CR.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1247a_pdf.pdf
st_link	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/R0R28657_AWPKI_SDK_ST_V17p.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1247b_pdf.pdf
manufacturer	Thales	Bundesdruckerei GmbH
manufacturer_web		https://www.bundesdruckerei.de
security_level	ADV_FSP.4, AVA_VAN.3, ALC_TAT.1, ADV_IMP.1, EAL3+, ADV_TDS.3	EAL3
dgst	e9d6e407cf4641c8	df606f5845937bda
heuristics/cert_id	NSCIB-CC-230855-CR
heuristics/cert_lab		[]
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	ASE_INT.1, ALC_CMC.3, ALC_CMS.3, ASE_ECD.1, ADV_IMP.1, ATE_COV.2, ASE_TSS.1, ALC_TAT.1, ASE_SPD.1, ALC_DEL.1, ALC_LCD.1, AGD_OPE.1, AVA_VAN.3, AGD_PRE.1, ATE_FUN.1, ADV_ARC.1, ASE_OBJ.2, ADV_TDS.3, ATE_DPT.1, ASE_REQ.2, ALC_DVS.1, APE_SPD.1, ADV_FSP.4, ATE_IND.2, ASE_CCL.1	{}
heuristics/extracted_versions	1.0.1.300	2.6.1, 1.6.24
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	{}
heuristics/report_references/directly_referencing	{}	{}
heuristics/report_references/indirectly_referenced_by	{}	{}
heuristics/report_references/indirectly_referencing	{}	{}
heuristics/scheme_data		category: Electronic ID documents cert_id: BSI-DSZ-CC-1247-2025 certification_date: 30.01.2025 enhanced: applicant: Bundesdruckerei GmbH Kommandantenstraße 18 10969 Berlin assurance_level: EAL3 cert_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1247c_pdf.pdf?__blob=publicationFile&v=2 certification_date: 30.01.2025 description: The Target of Evaluation (TOE) is the Bundesdruckerei Document Application with tamper-evident casing 2.6.1. The Document Application is running on a Document Management Terminal (DMT). It is used to read the German Passport (ePass), to read and update the electronic data of the German Identity Card (“Personalausweis (PA)”) and electronic Resident Permit Card (“elektronischer Aufenthaltstitel (eAT)”) as well as to verify the document’s authenticity and the integrity of its data. The TOE is operated by governmental organisations, e.g. municipal office, police, government or other state approved agencies. The TOE is specifically applied in registration offices to allow card holders to verify that their ePass, PA or eAT is working correctly. In case of PA and eAT it is further possible to update the address information of the card holder, the card holder’s PIN for eID applications, and the community ID (“Gemeindeschlüssel”). In addition, the eID application functionality of the PA or eAT can be activated or deactivated. Additionally, the TOE ensures secure communication to external control software and provides a tamper-evident enclosure. Necessary protocols for the communication of the TOE with the electronic identity documents like the ePass, PA or eAT are described in [ICAO_9303], [TR-03110-1], [TR-03110-2], and [TR-03110-3]. entries: [frozendict({'id': 'BSI', 'description': 'Maintenance Report'}), frozendict({'id': 'BSI-DSZ-CC-1247-2025', 'description': 'Certificate'})] evaluation_facility: TÜV Informationstechnik GmbH expiration_date: 29.01.2030 product: Bundesdruckerei Document Application with tamper-evident casing Version 2.6.1, Firmware Version 1.6.24-604, TOE Casing Version 0 protection_profile: Common Criteria Protection Profile for Document Management Terminal DMT-PP, BSI-CC-PP-0064-V2-2018, Version: 2.0, 2018-06-06, Federal Office for Information Security (BSI) report_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1247a_pdf.pdf?__blob=publicationFile&v=2 target_link: https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1247b_pdf.pdf?__blob=publicationFile&v=2 product: Bundesdruckerei Document Application with tamper-evident casing Version 2.6.1, Firmware Version 1.6.24-604, TOE Casing … subcategory: Software url: https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-Software/1247.html vendor: Bundesdruckerei GmbH
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	{}
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	{}
heuristics/protection_profiles	{}	{}
maintenance_updates
protection_profiles
protection_profile_links	{}	{}
pdf_data/cert_filename	cert 19-230855.pdf
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id	NL: CC-19-230855: 1
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level	EAL: EAL 3: 1 EAL 3 augmented: 1 EAL2: 1
pdf_data/cert_keywords/cc_sar	ADV: ADV_FSP.4: 1 ADV_IMP.1: 1 ADV_TDS.3: 1 ALC: ALC_TAT.1: 1 AVA: AVA_VAN.3: 1
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor	Gemalto: Gemalto: 1 Thales: Thales: 1
pdf_data/cert_keywords/eval_facility	BrightSight: Brightsight: 1
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id	ISO: ISO/IEC 15408: 2 ISO/IEC 18045: 2
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata	/CreationDate: D:20191224095650+01'00' /Creator: NL-ARN-SAL-C /ModDate: D:20191224103746+01'00' /Producer: KONICA MINOLTA bizhub C300i pdf_file_size_bytes: 74925 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1
pdf_data/report_filename	Certification Report NSCIB-CC-230855-CR.pdf
pdf_data/report_frontpage	NL: cert_id: NSCIB-CC-230855-CR cert_item: Gemalto Advanced Whitebox PKI SDK for Android v1.0.1.300 cert_lab: Brightsight developer: Thales	NL:
pdf_data/report_keywords/cc_cert_id	NL: NSCIB-CC-230855-CR: 11
pdf_data/report_keywords/cc_protection_profile_id
pdf_data/report_keywords/cc_security_level	EAL: EAL 3: 1 EAL 3 augmented: 1 EAL3: 2 EAL3 augmented: 1 EAL4: 1
pdf_data/report_keywords/cc_sar	ADV: ADV_FSP.4: 2 ADV_IMP: 1 ADV_IMP.1: 2 ADV_TDS.3: 2 ALC: ALC_TAT.1: 2 AVA: AVA_VAN.3: 2
pdf_data/report_keywords/cc_sfr
pdf_data/report_keywords/cc_claims
pdf_data/report_keywords/vendor	Gemalto: Gemalto: 19 Huawei: Huawei: 2 Samsung: Samsung: 4 Thales: Thales: 4
pdf_data/report_keywords/eval_facility	BrightSight: Brightsight: 2
pdf_data/report_keywords/symmetric_crypto	AES_competition: AES: AES: 2
pdf_data/report_keywords/asymmetric_crypto	ECC: ECDSA: ECDSA: 3
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function
pdf_data/report_keywords/crypto_scheme
pdf_data/report_keywords/crypto_protocol
pdf_data/report_keywords/randomness
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis	other: JIL: 1 Reverse engineering: 1
pdf_data/report_keywords/technical_report_id
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process
pdf_data/report_metadata	/Author: p647 /CreationDate: D:20191224081010+01'00' /Creator: pdfFactory Pro www.pdffactory.com /Producer: pdfFactory Pro 5.32 (Windows 7 Ultimate x64 Dutch) /Title: Certification Report NSCIB-CC-230855-CR.docx pdf_file_size_bytes: 108242 pdf_hyperlinks: http://www.commoncriteriaportal.org, mailto:[email protected], http://www.sogisportal.eu, http://www.tuv.com/nl pdf_is_encrypted: True pdf_number_of_pages: 11
pdf_data/st_filename	R0R28657_AWPKI_SDK_ST_V17p.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id	NL: CC-1: 6 CC-2: 2 CC-3: 4 NSCIB-CC-230855: 1
pdf_data/st_keywords/cc_protection_profile_id
pdf_data/st_keywords/cc_security_level	EAL: EAL 3: 1 EAL3: 2 EAL3 augmented: 1
pdf_data/st_keywords/cc_sar	ADV: ADV_ARC.1: 1 ADV_FSP.4: 4 ADV_IMP.1: 4 ADV_TDS.3: 4 AGD: AGD_OPE.1: 1 AGD_PRE.1: 1 ALC: ALC_CMC.3: 1 ALC_CMS.3: 1 ALC_DEL.1: 1 ALC_DVS.1: 1 ALC_LCD.1: 1 ALC_TAT.1: 4 APE: APE_SPD.1: 1 ASE: ASE_CCL.1: 1 ASE_ECD.1: 1 ASE_INT.1: 1 ASE_OBJ.2: 1 ASE_REQ.2: 1 ASE_SPD.1: 1 ASE_TSS.1: 1 ATE: ATE_COV.2: 1 ATE_DPT.1: 1 ATE_FUN.1: 1 ATE_IND.2: 1 AVA: AVA_VAN.3: 5
pdf_data/st_keywords/cc_sfr	FCS: FCS_CKM.1: 3 FCS_CKM.4: 3 FCS_COP: 9 FCS_COP.1: 4 FDP: FDP_ACC: 4 FDP_ACC.1: 8 FDP_ACC.2: 3 FDP_ACF: 3 FDP_ACF.1: 12 FDP_IFC.1: 3 FDP_ITC: 9 FDP_ITC.1: 12 FDP_ITC.2: 3 FDP_RIP: 2 FDP_RIP.1: 1 FMT: FMT_MSA.3: 8 FPT: FPT_FLS.1: 3 FPT_FLS.1.1: 1 FPT_MUL: 5 FPT_MUL.1: 6 FPT_MUL.1.1: 2 FPT_MUL.1.2: 2
pdf_data/st_keywords/cc_claims	A: A.PKI: 1 D: D.ACO: 3 D.ACOR: 14 D.APP_ID: 2 D.AR: 13 D.AWPKI_SDK_: 2 D.AWPKI_SDK_I: 1 D.MOB_ID: 2 D.USER_ID: 2 D.XX: 1 O: O.ACO: 1 O.ACO_SM: 1 OE: OE.PKI: 1 T: T.ACOR_ATT_: 3 T.ACOR_STOL: 1
pdf_data/st_keywords/vendor	Gemalto: Gemalto: 79 Thales: Thales: 221
pdf_data/st_keywords/eval_facility
pdf_data/st_keywords/symmetric_crypto	AES_competition: AES: AES: 5 Rijndael: Rijndael: 1 constructions: MAC: CMAC: 1
pdf_data/st_keywords/asymmetric_crypto	ECC: ECC: ECC: 2 ECDSA: ECDSA: 27
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function	PBKDF: PBKDF2: 2
pdf_data/st_keywords/crypto_scheme
pdf_data/st_keywords/crypto_protocol
pdf_data/st_keywords/randomness
pdf_data/st_keywords/cipher_mode
pdf_data/st_keywords/ecc_curve	NIST: NIST P-256: 1 P-256: 1 secp256r1: 1
pdf_data/st_keywords/crypto_engine
pdf_data/st_keywords/tls_cipher_suite
pdf_data/st_keywords/crypto_library
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis	FI: malfunction: 1 other: reverse engineering: 3
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id	CC: CCMB-2017-04-001: 1 CCMB-2017-04-002: 1 CCMB-2017-04-003: 1 CCMB-2017-04-004: 1 FIPS: FIPS PUB 186-4: 1 FIPS186: 4 FIPS197: 1 RFC: RFC2898: 2
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process	OutOfScope: Out of scope: 2 Out of scope User of Authentication service User of Authentication service using Mobile where Customer: 1 The agent who performs Customer Application and AWPKI SDK initialisation and administration. Out of scope Customer Application Server Administrator The agent who performs Customer server initialisation and: 1
pdf_data/st_metadata	/Author: F.GUERIN /CreationDate: D:20191113150209+01'00' /Creator: Microsoft® Word 2016 /ModDate: D:20191113150209+01'00' /Producer: Microsoft® Word 2016 /Subject: AWPKI SDK /Title: Security Target for pdf_file_size_bytes: 1940693 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 45
state/cert/convert_garbage	True	False
state/cert/convert_ok	True	False
state/cert/download_ok	True	False
state/cert/extract_ok	True	False
state/cert/pdf_hash	Different	Different
state/cert/txt_hash	Different	Different
state/report/convert_garbage	False	False
state/report/convert_ok	True	False
state/report/download_ok	True	False
state/report/extract_ok	True	False
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	True	False
state/st/download_ok	True	False
state/st/extract_ok	True	False
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different