This page was not yet optimized for use on mobile devices.

Comparing certificates Experimental feature

You are comparing two certificates. By default, only differing attributes are shown. Use the button below to show/hide all attributes.

Showing only differing attributes.

	Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03 JISEC-CC-CRP-C0036	IC chip for the reader / writer RC-S940 (CXD9768GG), version 4 BSI-DSZ-CC-0588-2009
name	Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03	IC chip for the reader / writer RC-S940 (CXD9768GG), version 4
category	Other Devices and Systems	ICs, Smart Cards and Smart Card-Related Devices and Systems
scheme	JP	DE
status	archived	archived
not_valid_after	07.10.2013	01.09.2019
not_valid_before	09.09.2005	30.07.2009
cert_link	None	None
report_link	https://www.commoncriteriaportal.org/files/epfiles/c0036_ecvr.pdf	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0588a_pdf.pdf
st_link	https://www.commoncriteriaportal.org/files/epfiles/	https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0308b_pdf.pdf
manufacturer	Canon Inc.	Sony Corporation
manufacturer_web		https://www.sony.com/
security_level	EAL3	EAL4
dgst	fd7107359fa94ec9	16dd51266c48e083
heuristics/cert_id	JISEC-CC-CRP-C0036	BSI-DSZ-CC-0588-2009
heuristics/cert_lab	[]	BSI
heuristics/cpe_matches	{}	{}
heuristics/verified_cpe_matches	{}	{}
heuristics/related_cves	{}	{}
heuristics/direct_transitive_cves	{}	{}
heuristics/indirect_transitive_cves	{}	{}
heuristics/extracted_sars	{}	ADV_RCR.1, AVA_VLA.2, ASE_INT.1, ADV_HLD.2, AGD_USR.1, ADV_FSP.2, AVA_SOF.1, ASE_ECD.1, APE_ECD.1, ADV_IMP.1, ATE_COV.2, ALC_TAT.1, AVA_MSU.2, ASE_SPD.1, ALC_CMS.5, AVA_VAN.5, ALC_DEL.1, AGD_ADM.1, ALC_LCD.1, ALC_FLR.3, AGD_OPE.1, AGD_PRE.1, ATE_FUN.1, APE_REQ.2, ADV_ARC.1, ASE_OBJ.2, APE_CCL.1, ALC_CMC.5, ATE_DPT.1, ASE_TSS.2, ASE_REQ.2, ALC_DVS.1, ADV_INT.3, APE_INT.1, APE_SPD.1, ATE_IND.2, ADV_LLD.1, APE_OBJ.2, ASE_CCL.1, ADV_TDS.6, ADV_SPM.1
heuristics/extracted_versions	2.03	4
heuristics/prev_certificates	{}	{}
heuristics/next_certificates	{}	{}
heuristics/report_references/directly_referenced_by	{}	{}
heuristics/report_references/directly_referencing	{}	BSI-DSZ-CC-0403-2008
heuristics/report_references/indirectly_referenced_by	{}	{}
heuristics/report_references/indirectly_referencing	{}	BSI-DSZ-CC-0403-2008
heuristics/scheme_data	cert_id: JISEC-CC-CRP-C0036 certification_date: 01.01.2006 claim: EAL3 enhanced: assurance_level: EAL3 cert_link: https://www.ipa.go.jp/en/security/c0036_eimg.pdf description: PRODUCT DESCRIPTION This product is a software program to be installed for use on the Canon iR4570/iR3570/iR2870/iR2270 -series multifunction products (hereafter referred to collectively as the “multifunction product”). The multifunction product is a digital copier that offers the combined functionality of Copy, Send (Universal Send), Fax Reception, Mail Box, Print, Remote UI (a Web browser interface for operating the multifunction product), plus many others. When the Copy, Send (Universal Send), Fax Reception (fax/I-fax reception) or Print function is used, temporary image data is created on the hard drive of the multifunction product. Also, when the Mail Box function is used (for document storage) or the Fax Reception function is used (for “in-memory reception” of faxes/I-faxes or forwarding of faxes/I-faxes), image data is stored in the receiving inbox that is on the multifunction product. Furthermore, when the Remote UI function is used, image data is exchanged over the network between the Web browser on the user's PC and the multifunction product. By installing this product, security enhancements are added to the multifunction product, helping counter the threat of disclosure of temporary image data created on the hard drive, permanent image data stored in the inboxes, and image data that is transmitted over the Remote UI communication path. evaluation_facility: Electronic Commerce Security Technology Laboratory Inc. Evaluation Center product: Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 product_type: IT Product ( data protection function in digital MFD ) report_link: https://www.ipa.go.jp/en/security/c0036_erpt.pdf target_link: https://www.ipa.go.jp/en/security/c0036_est.pdf toe_version: Version 2.03 vendor: Canon Inc. expiration_date: 01.10.2013 supplier: Canon Inc. toe_japan_name: Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03 toe_overseas_link: https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0036_it5070.html toe_overseas_name: Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03
heuristics/st_references/directly_referenced_by	{}	{}
heuristics/st_references/directly_referencing	{}	{}
heuristics/st_references/indirectly_referenced_by	{}	{}
heuristics/st_references/indirectly_referencing	{}	{}
heuristics/protection_profiles	{}	{}
maintenance_updates
protection_profiles
protection_profile_links	{}	{}
pdf_data/cert_filename	None	None
pdf_data/cert_frontpage
pdf_data/cert_keywords/cc_cert_id
pdf_data/cert_keywords/cc_protection_profile_id
pdf_data/cert_keywords/cc_security_level
pdf_data/cert_keywords/cc_sar
pdf_data/cert_keywords/cc_sfr
pdf_data/cert_keywords/cc_claims
pdf_data/cert_keywords/vendor
pdf_data/cert_keywords/eval_facility
pdf_data/cert_keywords/symmetric_crypto
pdf_data/cert_keywords/asymmetric_crypto
pdf_data/cert_keywords/pq_crypto
pdf_data/cert_keywords/hash_function
pdf_data/cert_keywords/crypto_scheme
pdf_data/cert_keywords/crypto_protocol
pdf_data/cert_keywords/randomness
pdf_data/cert_keywords/cipher_mode
pdf_data/cert_keywords/ecc_curve
pdf_data/cert_keywords/crypto_engine
pdf_data/cert_keywords/tls_cipher_suite
pdf_data/cert_keywords/crypto_library
pdf_data/cert_keywords/vulnerability
pdf_data/cert_keywords/side_channel_analysis
pdf_data/cert_keywords/technical_report_id
pdf_data/cert_keywords/device_model
pdf_data/cert_keywords/tee_name
pdf_data/cert_keywords/os_name
pdf_data/cert_keywords/cplc_data
pdf_data/cert_keywords/ic_data_group
pdf_data/cert_keywords/standard_id
pdf_data/cert_keywords/javacard_version
pdf_data/cert_keywords/javacard_api_const
pdf_data/cert_keywords/javacard_packages
pdf_data/cert_keywords/certification_process
pdf_data/cert_metadata
pdf_data/report_filename	c0036_ecvr.pdf	0588a_pdf.pdf
pdf_data/report_frontpage	DE:	DE: cert_id: BSI-DSZ-CC-0588-2009 cert_item: Oracle Database 11g Enterprise Edition with Oracle Database Vault Release 11.1.0.7 with Critical Patch Updates up to and including July 2009 cert_lab: BSI developer: Oracle Corporation match_rules: *['(BSI-DSZ-CC-.+?) (?:for\|For) (.+?) from (.)']**
pdf_data/report_keywords/cc_cert_id	JP: Certification No. C0036: 1	DE: BSI-DSZ-CC-0403-2008: 3 BSI-DSZ-CC-0588: 1 BSI-DSZ-CC-0588-2009: 15
pdf_data/report_keywords/cc_protection_profile_id
pdf_data/report_keywords/cc_security_level	EAL: EAL3: 1	EAL: EAL 1: 1 EAL 4: 3 EAL 4 augmented: 2 EAL 7: 1 EAL1: 6 EAL2: 3 EAL3: 4 EAL4: 7 EAL4 augmented: 1 EAL5: 6 EAL6: 3 EAL7: 4
pdf_data/report_keywords/cc_sar		ADV: ADV_ARC: 1 ADV_ARC.1: 1 ADV_FSP: 1 ADV_FSP.1: 1 ADV_FSP.2: 1 ADV_FSP.3: 1 ADV_FSP.4: 1 ADV_FSP.5: 1 ADV_FSP.6: 1 ADV_IMP: 1 ADV_IMP.1: 1 ADV_IMP.2: 1 ADV_INT: 1 ADV_INT.1: 1 ADV_INT.2: 1 ADV_INT.3: 1 ADV_SPM: 1 ADV_SPM.1: 1 ADV_TDS: 1 ADV_TDS.1: 1 ADV_TDS.2: 1 ADV_TDS.3: 1 ADV_TDS.4: 1 ADV_TDS.5: 1 ADV_TDS.6: 1 AGD: AGD_OPE: 1 AGD_OPE.1: 1 AGD_PRE: 1 AGD_PRE.1: 1 ALC: ALC_CMC: 1 ALC_CMC.1: 1 ALC_CMC.2: 1 ALC_CMC.3: 1 ALC_CMC.4: 1 ALC_CMC.5: 1 ALC_CMS: 1 ALC_CMS.1: 1 ALC_CMS.2: 1 ALC_CMS.3: 1 ALC_CMS.4: 1 ALC_CMS.5: 1 ALC_DEL: 1 ALC_DEL.1: 1 ALC_DVS: 1 ALC_DVS.1: 1 ALC_DVS.2: 1 ALC_FLR: 1 ALC_FLR.1: 1 ALC_FLR.2: 1 ALC_FLR.3: 5 ALC_LCD.1: 1 ALC_LCD.2: 1 ALC_TAT: 1 ALC_TAT.1: 1 ALC_TAT.2: 1 ALC_TAT.3: 1 APE: APE_CCL.1: 1 APE_ECD.1: 1 APE_INT.1: 1 APE_OBJ.1: 1 APE_OBJ.2: 1 APE_REQ.1: 1 APE_REQ.2: 1 APE_SPD.1: 1 ASE: ASE_CCL: 1 ASE_CCL.1: 1 ASE_ECD: 1 ASE_ECD.1: 1 ASE_INT: 1 ASE_INT.1: 1 ASE_OBJ: 1 ASE_OBJ.1: 1 ASE_OBJ.2: 1 ASE_REQ.1: 1 ASE_REQ.2: 1 ASE_SPD: 1 ASE_SPD.1: 1 ASE_TSS: 1 ASE_TSS.1: 1 ASE_TSS.2: 1 ATE: ATE_COV: 1 ATE_COV.1: 1 ATE_COV.2: 1 ATE_COV.3: 1 ATE_DPT: 1 ATE_DPT.1: 1 ATE_DPT.2: 1 ATE_DPT.3: 1 ATE_DPT.4: 1 ATE_FUN: 1 ATE_FUN.1: 1 ATE_FUN.2: 1 ATE_IND: 1 ATE_IND.1: 1 ATE_IND.2: 1 ATE_IND.3: 1 AVA: AVA_VAN: 2 AVA_VAN.1: 1 AVA_VAN.2: 1 AVA_VAN.3: 1 AVA_VAN.4: 1 AVA_VAN.5: 1
pdf_data/report_keywords/cc_sfr
pdf_data/report_keywords/cc_claims		OE: OE.CLIENT_AP: 1 OE.COM_PROT: 1 OE.DBV_INSTALL: 1 OE.DIR_CONTROL: 1
pdf_data/report_keywords/vendor
pdf_data/report_keywords/eval_facility		atsec: atsec: 3
pdf_data/report_keywords/symmetric_crypto
pdf_data/report_keywords/asymmetric_crypto
pdf_data/report_keywords/pq_crypto
pdf_data/report_keywords/hash_function		SHA: SHA1: SHA-1: 1
pdf_data/report_keywords/crypto_scheme
pdf_data/report_keywords/crypto_protocol		TLS: SSL: SSL: 1
pdf_data/report_keywords/randomness
pdf_data/report_keywords/cipher_mode
pdf_data/report_keywords/ecc_curve
pdf_data/report_keywords/crypto_engine
pdf_data/report_keywords/tls_cipher_suite
pdf_data/report_keywords/crypto_library
pdf_data/report_keywords/vulnerability
pdf_data/report_keywords/side_channel_analysis
pdf_data/report_keywords/technical_report_id		BSI: BSI 7125: 2 BSI 7148: 1 BSI 7149: 1
pdf_data/report_keywords/device_model
pdf_data/report_keywords/tee_name
pdf_data/report_keywords/os_name
pdf_data/report_keywords/cplc_data
pdf_data/report_keywords/ic_data_group
pdf_data/report_keywords/standard_id		BSI: AIS 38: 1
pdf_data/report_keywords/javacard_version
pdf_data/report_keywords/javacard_api_const
pdf_data/report_keywords/javacard_packages
pdf_data/report_keywords/certification_process		ConfidentialDocument: 1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part number: 1 Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness: 1
pdf_data/report_metadata	/CreationDate: D:20060123172731+09'00' /ModDate: D:20060123172731+09'00' /Producer: Acrobat Distiller 6.0.1 (Windows) /Title: untitled pdf_file_size_bytes: 14795 pdf_hyperlinks: {} pdf_is_encrypted: False pdf_number_of_pages: 1	/Author: Bundesamt für Sicherheit in der Informationstechnik /CreationDate: D:20091030082805+01'00' /Creator: Writer /Keywords: "Common Criteria, Certification, Zertifizierung, Oracle Coporation" /ModDate: D:20091030093623+01'00' /Producer: StarOffice 9 /Subject: Common Criteria, Certification /Title: Certification Report BSI-DSZ-CC-0588-2009 pdf_file_size_bytes: 931333 pdf_hyperlinks: http://www.bsi.bund.de/ pdf_is_encrypted: False pdf_number_of_pages: 34
pdf_data/st_filename		0308b_pdf.pdf
pdf_data/st_frontpage
pdf_data/st_keywords/cc_cert_id
pdf_data/st_keywords/cc_protection_profile_id
pdf_data/st_keywords/cc_security_level		EAL: EAL4: 10
pdf_data/st_keywords/cc_sar		ACM: ACM_AUT.1: 3 ACM_CAP.3: 1 ACM_CAP.4: 3 ACM_SCP.1: 1 ACM_SCP.2: 3 ADO: ADO_DEL.2: 3 ADO_IGS.1: 4 ADV: ADV_FSP.1: 7 ADV_FSP.2: 3 ADV_HLD.1: 2 ADV_HLD.2: 5 ADV_IMP.1: 4 ADV_LLD.1: 5 ADV_RCR.1: 4 ADV_SPM.1: 6 AGD: AGD_ADM.1: 7 AGD_USR.1: 3 ALC: ALC_DVS.1: 4 ALC_LCD.1: 3 ALC_TAT.1: 4 ATE: ATE_COV.2: 3 ATE_DPT.1: 3 ATE_FUN.1: 3 ATE_IND.2: 3 AVA: AVA_MSU.2: 3 AVA_SOF.1: 3 AVA_VLA.2: 3
pdf_data/st_keywords/cc_sfr		FCS: FCS_CKM.1: 20 FCS_CKM.1.1: 2 FCS_CKM.4: 16 FCS_CKM.4.1: 2 FCS_COP.1: 22 FCS_COP.1.1: 2 FDP: FDP_ACC: 3 FDP_ACC.1: 13 FDP_ACC.1.1: 1 FDP_ACF.1: 10 FDP_ACF.1.1: 1 FDP_ACF.1.2: 1 FDP_ACF.1.3: 1 FDP_ACF.1.4: 1 FDP_IFC.1: 20 FDP_IFC.1.1: 1 FDP_IFF.1: 15 FDP_IFF.1.1: 1 FDP_IFF.1.2: 1 FDP_IFF.1.3: 1 FDP_IFF.1.4: 1 FDP_IFF.1.5: 1 FDP_IFF.1.6: 1 FDP_ITC.1: 2 FDP_ITT.1: 12 FDP_ITT.1.1: 1 FDP_SDI.1: 14 FDP_SDI.1.1: 1 FDP_UCT.1: 11 FDP_UCT.1.1: 1 FDP_UIT.1: 11 FDP_UIT.1.1: 1 FDP_UIT.1.2: 1 FIA: FIA_AFL: 1 FIA_AFL.1: 7 FIA_AFL.1.1: 1 FIA_AFL.1.2: 2 FIA_ALF.1: 2 FIA_UAU: 1 FIA_UAU.2: 10 FIA_UAU.2.1: 1 FIA_UID.1: 11 FIA_UID.1.1: 1 FIA_UID.1.2: 1 FMT: FMT_MSA: 1 FMT_MSA.1: 22 FMT_MSA.1.1: 2 FMT_MSA.2: 11 FMT_MSA.2.1: 1 FMT_MSA.3: 12 FMT_MSA.3.1: 1 FMT_MSA.3.2: 1 FMT_MTD.1: 10 FMT_MTD.1.1: 1 FMT_SMF.1: 11 FMT_SMF.1.1: 1 FMT_SMR.1: 15 FMT_SMR.1.1: 1 FMT_SMR.1.2: 1 FPT: FPT_AMT.1: 3 FPT_FLS.1: 19 FPT_FLS.1.1: 1 FPT_ITT.1: 12 FPT_ITT.1.1: 1 FPT_PHP.3: 14 FPT_PHP.3.1: 1 FPT_RCV.4: 20 FPT_RCV.4.1: 1 FPT_SDI.1: 1 FPT_TST: 1 FPT_TST.1: 11 FPT_TST.1.1: 1 FPT_TST.1.2: 1 FPT_TST.1.3: 1 FTP: FTP_ITC.1: 22 FTP_ITC.1.1: 2 FTP_ITC.1.2: 2 FTP_ITC.1.3: 2 FTP_TRP.1: 2
pdf_data/st_keywords/cc_claims
pdf_data/st_keywords/vendor
pdf_data/st_keywords/eval_facility		TUV: TÜV Informationstechnik: 1
pdf_data/st_keywords/symmetric_crypto		DES: 3DES: Triple-DES: 4 DES: DES: 17
pdf_data/st_keywords/asymmetric_crypto
pdf_data/st_keywords/pq_crypto
pdf_data/st_keywords/hash_function
pdf_data/st_keywords/crypto_scheme
pdf_data/st_keywords/crypto_protocol
pdf_data/st_keywords/randomness		RNG: RNG: 1
pdf_data/st_keywords/cipher_mode		CBC: CBC: 1
pdf_data/st_keywords/ecc_curve
pdf_data/st_keywords/crypto_engine
pdf_data/st_keywords/tls_cipher_suite
pdf_data/st_keywords/crypto_library
pdf_data/st_keywords/vulnerability
pdf_data/st_keywords/side_channel_analysis		FI: DFA: 1 Malfunction: 26 SCA: DPA: 1 Physical Probing: 5 physical probing: 3 other: reverse engineering: 1
pdf_data/st_keywords/technical_report_id
pdf_data/st_keywords/device_model
pdf_data/st_keywords/tee_name
pdf_data/st_keywords/os_name
pdf_data/st_keywords/cplc_data
pdf_data/st_keywords/ic_data_group
pdf_data/st_keywords/standard_id		BSI: AIS 20: 1 AIS20: 2 CC: CCIMB-99-031: 1 CCIMB-99-032: 1 CCIMB-99-033: 1 ISO: ISO/IEC 15408: 6 ISO/IEC 18092: 2
pdf_data/st_keywords/javacard_version
pdf_data/st_keywords/javacard_api_const
pdf_data/st_keywords/javacard_packages
pdf_data/st_keywords/certification_process		OutOfScope: 2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of: 1 Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information: 1 Out of scope: 1 Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE: 1 i.e. TOE is operating in Normal Mode) is out of scope of this evaluation: 1 level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the: 1 mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer: 1 of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious: 1 of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip: 1 out of scope: 10 parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04: 1 processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE: 1 results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data: 1 that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The: 1 up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the: 1 utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the: 1
pdf_data/st_metadata		/Author: EbisawaHiroki /Comments: 英文校正 by H.Hamada /Company: Sony Corporation /CreationDate: D:20050819223433+09'00' /Creator: Word 用 Acrobat PDFMaker 7.0 /ModDate: D:20050819223926+09'00' /Producer: Acrobat Distiller 7.0 (Windows) /Subject: 英文(K.H.) /Title: MDPU2 ST Ver1.11 pdf_file_size_bytes: 309061 pdf_hyperlinks: {} pdf_is_encrypted: True pdf_number_of_pages: 70
state/cert/convert_garbage	False	False
state/cert/convert_ok	False	False
state/cert/download_ok	False	False
state/cert/extract_ok	False	False
state/cert/pdf_hash	Equal	Equal
state/cert/txt_hash	Equal	Equal
state/report/convert_garbage	False	False
state/report/convert_ok	True	True
state/report/download_ok	True	True
state/report/extract_ok	True	True
state/report/pdf_hash	Different	Different
state/report/txt_hash	Different	Different
state/st/convert_garbage	False	False
state/st/convert_ok	False	True
state/st/download_ok	False	True
state/st/extract_ok	False	True
state/st/pdf_hash	Different	Different
state/st/txt_hash	Different	Different