| name |
Automated Privilege Password Management v4.0.01 |
STMicroelectronics SA23YL18B Secure Microcontroller, including the cryptographic library Neslib v1.0 SA |
| category |
Other Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
MY |
FR |
| status |
archived |
archived |
| not_valid_after |
24.11.2022 |
01.09.2019 |
| not_valid_before |
24.11.2017 |
22.10.2009 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C082-CR-v1.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC_2009-40fr.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/SecureKi%20APPM_ST_0.5.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-cible_2009-40en.pdf |
| manufacturer |
SecureKi Sdn. Bhd. |
STMicroelectronics |
| manufacturer_web |
https://www.secureki.com/ |
https://www.st.com/ |
| security_level |
EAL2 |
EAL5+, AVA_VAN.5, ALC_DVS.2 |
| dgst |
e9dc44ab77bbeeda |
fc266379df04551d |
| heuristics/cert_id |
ISCB-5-RPT-C082-CR-v1 |
ANSSI-CC-2009/40 |
| heuristics/cert_lab |
[] |
SERMA |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ASE_CCL.1, ATE_FUN.1, ASE_OBJ.2, ALC_CMS.2, ASE_INT.1, ASE_REQ.2, AGD_PRE.1, ATE_IND.2, ASE_ECD.1, AVA_VAN.2, ADV_TDS.1, ASE_SPD.1, ALC_CMC.2, ADV_FSP.2, ATE_COV.1, AGD_OPE.1, ALC_DEL.1, ASE_TSS.1, ADV_ARC.1 |
ADV_TDS.4, ALC_LCD.1, ALC_DVS.2, AGD_PRE.1, ALC_CMS.5, ATE_IND.2, ATE_DPT.3, AVA_VAN.5, ATE_FUN.1, AGD_OPE.1, ATE_COV.2, ALC_CMC.4, ADV_FSP.5, ALC_DEL.1, ADV_ARC.1, ADV_INT.2, ALC_TAT.2, ADV_IMP.1 |
| heuristics/extracted_versions |
4.0.01 |
1.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
ANSSI-CC-2009/63 |
| heuristics/report_references/directly_referencing |
{} |
ANSSI-CC-2009/39 |
| heuristics/report_references/indirectly_referenced_by |
{} |
ANSSI-CC-2013/06, ANSSI-CC-2009/63 |
| heuristics/report_references/indirectly_referencing |
{} |
ANSSI-CC-2009/37, ANSSI-CC-2009/39 |
| heuristics/scheme_data |
- cert_no: 2017-008-C082
- certification_date: 24.11.2017
- developer: SecureKi Sdn. Bhd.
- enhanced:
- assurance_level: EAL2
- category: Other Devices and Systems
- cert_id: C082
- certification_date: 24.11.2017
- developer: The TOE is a solution to manage the issuance of One Time Password access credentials and permissions on Unix servers, Linux servers, Windows servers, network devices and other relevant applications for the assigned/registered privileged accounts in these stated components. The TOE primary features include: Security Audit: The TOE will generate audit records for selected security events in several log files and categories. Each audited event will be recorded along with date and time of event, user accounts that performed the event, event name and other event details. Authentication and Identification: All TOE Administrator (Super User) must have a valid username/user ID inclusive of password to access and OTP. TOE Administrator (Super User) must login to APPM to manage all the connected devices (IT entities) as well as credentials of accessing these IT entities. Thus, configurations of these IT entities required to be registered in the APPM system, plus configuration policy of managing the access credentials of the IT entities shall be defined. User Data Protection: User data and credentials including TOE Administrator (Super User) information is protected by ensuring that specific TOE Administrator (Super User) that is assigned with roles and privilege scan only access specific web pages/portals and hence the data associated with the web pages/portal. The accessibility of the pages/portals is protected based upon the access control policy. Security Management: TOE Administrator (Super User) has access to all TOE features, that applicable to be managed through web application portal hosted by TOE. TOE is able to provide accessibility of account that has access privilege, similar or limited, to “Super User” account. In which, Super User account has the full access rights, role and privileges to the TOE.
- expiration_date: 24.11.2022
- mutual_recognition: CCRA
- product: Automated Privilege Password Management v4.0.01
- report_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C082/ISCB-5-RPT-C082-CR-v1.pdf
- scope: SecureKi Sdn. Bhd.DF2-09-03A (Unit No.2),Level 9, Persoft Tower,Persiaran Tropicana, URL: www.secureki.comEmail: [email protected]: +603 7652 1188
- status: Archive
- target_link: https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C082/SecureKi%20APPM_ST_0.5.pdf
- type: A management of the issuance of One Time Password
- expiration_date: 24.11.2022
- level: EAL2
- product: Automated Privilege Password Management v4.0.01
- recognition: CCRA
- url: https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/138
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
f6d23054061d72ba |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0035b.pdf |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
ISCB-5-RPT-C082-CR-v1.pdf |
ANSSI-CC_2009-40fr.pdf |
| pdf_data/report_frontpage |
|
- FR:
- cc_security_level: EAL 5 augmenté ALC_DVS.2, AVA_VAN.5
- cc_version: Critères Communs version 3.1
- cert_id: ANSSI-CC-2009/40
- cert_item: Microcontrôleur sécurisé SA23YL18B incluant la bibliothèque cryptographique NesLib SA révision 1.0
- cert_item_version: SA23YL18 révision A (logiciel dédié AKB, référence HW K2L0A, mask set K2L0BEA, bibliothèque cryptographique NesLib SA révision 1.0
- cert_lab: Serma Technologies 30 avenue Gustave Eiffel, 33608 Pessac, France Tél : +33 (0)5 57 26 08 75, mél : [email protected]
- developer: STMicroelectronics Smartcard IC division, 190 Avenue Célestin Coq, 13106 Rousset Cedex, France Commanditaire STMicroelectronics Smartcard IC division, 190 Avenue Célestin Coq, 13106 Rousset Cedex, France
- match_rules: ['Référence du rapport de certification(.+)Nom du produit(.+)Référence/version du produit(.+)Conformité à un profil de protection(.+)Critères d’évaluation et version(.+)Niveau d’évaluation(.+)Développeur (.+)Centre d’évaluation(.+)Accords de reconnaissance applicables']
- ref_protection_profiles: BSI-PP-0035-2007 version 1.0
|
| pdf_data/report_keywords/cc_cert_id |
- MY:
- ISCB-5-RPT-C082-CR-v1: 29
|
- FR:
- ANSSI-CC-2009/39: 1
- ANSSI-CC-2009/40: 17
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 3: 1
- EAL 5: 3
- EAL 7: 1
- EAL4: 3
- EAL7: 1
- ITSEC:
|
| pdf_data/report_keywords/cc_sar |
|
- ADO:
- ADV:
- ADV_ARC: 1
- ADV_FSP: 1
- ADV_IMP: 1
- ADV_INT: 1
- ADV_SPM: 1
- ADV_TDS: 1
- AGD:
- ALC:
- ALC_CMC: 1
- ALC_CMS: 1
- ALC_DVS: 1
- ALC_DVS.2: 1
- ALC_FLR: 2
- ALC_TAT: 1
- ASE:
- ASE_CCL: 1
- ASE_ECD: 1
- ASE_INT: 1
- ASE_OBJ: 1
- ASE_REQ: 1
- ASE_SPD: 1
- ASE_TSS: 1
- ATE:
- ATE_COV: 1
- ATE_DPT: 1
- ATE_FUN: 1
- ATE_IND: 1
- AVA:
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
- STMicroelectronics:
- STM: 6
- STMicroelectronics: 19
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
- ISO:
- ISO/IEC 18045: 2
- ISO/IEC15408: 2
|
- BSI:
- CC:
- CCMB-2006-09-001: 1
- CCMB-2007-09-002: 1
- CCMB-2007-09-003: 1
- CCMB-2007-09-004: 1
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
- /Author: ISCB Department
- /CreationDate: D:20171204081535+00'00'
- /Creator: Microsoft Word
- /Keywords: Automated Privilege Password Management v4.0.01
- /ModDate: D:20171204081535+00'00'
- /Subject: Automated Privilege Password Management v4.0.01
- /Title: C082 Certification Report
- pdf_file_size_bytes: 548788
- pdf_hyperlinks: mailto:[email protected], http://www.commoncriteriaportal.org/, http://www.cybersecurity.my/mycc
- pdf_is_encrypted: False
- pdf_number_of_pages: 30
|
- /Author:
- /CreationDate: D:20100827153058+02'00'
- /Creator: PScript5.dll Version 5.2.2
- /ModDate: D:20100827153058+02'00'
- /Producer: Acrobat Distiller 8.1.0 (Windows)
- /Title:
- pdf_file_size_bytes: 163399
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 16
|
| pdf_data/st_filename |
SecureKi APPM_ST_0.5.pdf |
ANSSI-CC-cible_2009-40en.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL 5: 2
- EAL 5 augmented: 2
- EAL4: 1
- EAL5: 18
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.2: 1
- ADV_TDS.1: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.2: 1
- ALC_CMS.2: 1
- ALC_DEL.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
- ADO:
- ADV:
- ADV_ARC: 2
- ADV_ARC.1: 1
- ADV_FSP: 3
- ADV_FSP.5: 3
- ADV_IMP: 1
- ADV_IMP.1: 1
- ADV_INT.2: 1
- ADV_TDS.4: 1
- AGD:
- AGD_OPE: 1
- AGD_OPE.1: 1
- AGD_PRE: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC: 1
- ALC_CMC.4: 1
- ALC_CMS: 1
- ALC_CMS.5: 1
- ALC_DEL.1: 1
- ALC_DVS: 1
- ALC_DVS.2: 3
- ALC_LCD.1: 1
- ALC_TAT.2: 1
- ATE:
- ATE_COV: 3
- ATE_COV.2: 1
- ATE_DPT.3: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN.1: 9
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_GEN.2: 5
- FAU_GEN.2.1: 1
- FAU_SAR.1: 6
- FAU_SAR.1.1: 1
- FAU_SAR.1.2: 1
- FAU_SAR.2: 5
- FAU_SAR.2.1: 1
- FAU_STG.1: 6
- FAU_STG.1.1: 1
- FAU_STG.1.2: 1
- FCS:
- FDP:
- FDP_ACC.1: 10
- FDP_ACC.1.1: 1
- FDP_ACF.1: 6
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FDP_IFC.1: 10
- FDP_IFC.1.1: 1
- FDP_IFF.1: 6
- FDP_IFF.1.1: 1
- FDP_IFF.1.2: 1
- FDP_IFF.1.3: 1
- FDP_IFF.1.4: 1
- FDP_IFF.1.5: 1
- FIA:
- FIA_ATD.1: 6
- FIA_ATD.1.1: 1
- FIA_UAU.1: 1
- FIA_UAU.2: 6
- FIA_UAU.2.1: 1
- FIA_UID.1: 10
- FIA_UID.2: 14
- FIA_UID.2.1: 1
- FIA_USB.1: 5
- FIA_USB.1.1: 1
- FIA_USB.1.2: 1
- FMT:
- FMT_MOF.1: 6
- FMT_MOF.1.1: 1
- FMT_MSA.1: 6
- FMT_MSA.1.1: 1
- FMT_MSA.3: 9
- FMT_MSA.3.1: 1
- FMT_MSA.3.2: 1
- FMT_MTD.1: 6
- FMT_MTD.1.1: 1
- FMT_SMF.1: 10
- FMT_SMF.1.1: 1
- FMT_SMR.1: 11
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
|
- FAU:
- FCS:
- FCS_CKM.1: 12
- FCS_CKM.4: 2
- FCS_COP.1: 13
- FCS_RNG: 1
- FCS_RNG.1: 5
- FDP:
- FDP_ACC.1: 1
- FDP_ACC.2: 9
- FDP_ACF.1: 10
- FDP_CKM.2: 1
- FDP_IFC.1: 9
- FDP_ITC.1: 1
- FDP_ITC.2: 1
- FDP_ITT.1: 7
- FMT:
- FMT_LIM: 1
- FMT_LIM.1: 7
- FMT_LIM.2: 8
- FMT_MSA.1: 12
- FMT_MSA.2: 2
- FMT_MSA.3: 9
- FMT_SMF.1: 4
- FMT_SMR.1: 2
- FPT:
- FPT_FLS.1: 7
- FPT_ITT.1: 6
- FPT_PHP.3: 6
- FRU:
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ADMIN: 2
- A.CONN: 2
- A.PHY: 2
- A.TIMEBACK: 2
- O:
- O.ACCESSLOG: 3
- O.AUDIT: 3
- O.CONFIG: 4
- O.DEVICEAPP: 2
- O.NOAUTH: 3
- O.SESSION: 3
- OE:
- OE.ADMIN: 3
- OE.CONN: 3
- OE.PHY: 2
- OE.TIMEBACK: 2
- T:
- T.ACCESSLOG: 2
- T.AUDIT: 2
- T.CONFIG: 2
- T.DEVICEAPP: 2
- T.NOAUTH: 2
- T.REMOTE: 2
- T.SESSION: 2
|
|
| pdf_data/st_keywords/vendor |
|
- Infineon:
- Philips:
- STMicroelectronics:
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 9
- Physical tampering: 2
- fault injection: 2
- malfunction: 1
- physical tampering: 1
- SCA:
- DPA: 3
- Leak-Inherent: 10
- Physical Probing: 4
- SPA: 2
- physical probing: 2
- side channel: 2
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- BSI:
- CC:
- CCMB-2006-09-001: 2
- CCMB-2007-09-002: 10
- CCMB-2007-09-003: 2
- FIPS:
- ISO:
- ISO/IEC 10116:1997: 1
- ISO/IEC 9797:1994: 2
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
|
| pdf_data/st_metadata |
- /Author: wlim
- /CreationDate: D:20171020131113+08'00'
- /Creator: Microsoft® Word 2010
- /ModDate: D:20171020131113+08'00'
- /Producer: Microsoft® Word 2010
- /Subject: SECUREKi APPM Security Target
- /Title: SECUREKi APPM Security Target
- pdf_file_size_bytes: 849588
- pdf_hyperlinks: mailto:[email protected], http://www.secureki.com/
- pdf_is_encrypted: False
- pdf_number_of_pages: 47
|
- /CreationDate: D:20100827163359+02'00'
- /Keywords:
- /ModDate: D:20100827163359+02'00'
- /Producer: Acrobat Distiller 6.0 (Windows)
- pdf_file_size_bytes: 597860
- pdf_hyperlinks: http://www.st.com
- pdf_is_encrypted: False
- pdf_number_of_pages: 50
|
| state/cert/convert_garbage |
None |
None |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
None |
None |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
None |
None |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |