| name |
Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03 |
STARCOS 3.2 eGK Version 1.0 |
| category |
Other Devices and Systems |
ICs, Smart Cards and Smart Card-Related Devices and Systems |
| scheme |
JP |
DE |
| status |
archived |
archived |
| not_valid_after |
07.10.2013 |
01.09.2019 |
| not_valid_before |
09.09.2005 |
18.12.2007 |
| cert_link |
None |
None |
| report_link |
https://www.commoncriteriaportal.org/files/epfiles/c0036_ecvr.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/20080514_0406a.pdf |
| st_link |
https://www.commoncriteriaportal.org/files/epfiles/ |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/20080514_0406b.pdf |
| manufacturer |
Canon Inc. |
G+D Mobile Security GmbH |
| manufacturer_web |
|
https://www.gi-de.com/de/de/mobile-security/ |
| security_level |
EAL3 |
ADV_IMP.2, AVA_MSU.3, EAL4+, AVA_VLA.4 |
| dgst |
fd7107359fa94ec9 |
1d84f97a0f8761d5 |
| heuristics/cert_id |
JISEC-CC-CRP-C0036 |
BSI-DSZ-CC-0406-2007 |
| heuristics/cert_lab |
[] |
BSI |
| heuristics/cpe_matches |
{} |
{} |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
{} |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
{} |
ADV_RCR.1, ALC_TAT.1, ADV_FSP.1, AVA_VLA.4, ADV_HLD.2, AGD_USR.1, AGD_ADM.1, ADV_LLD.1, ADV_IMP.2, ADV_SPM.1, AVA_MSU.3 |
| heuristics/extracted_versions |
2.03 |
3.2, 1.0 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
BSI-DSZ-CC-0407-2008, BSI-DSZ-CC-0533-2009 |
| heuristics/report_references/directly_referencing |
{} |
BSI-DSZ-CC-0322-2005 |
| heuristics/report_references/indirectly_referenced_by |
{} |
BSI-DSZ-CC-0407-2008, BSI-DSZ-CC-0533-2009 |
| heuristics/report_references/indirectly_referencing |
{} |
BSI-DSZ-CC-0266-2005, BSI-DSZ-CC-0169-2002, BSI-DSZ-CC-0322-2005, BSI-DSZ-CC-0223-2003 |
| heuristics/scheme_data |
- cert_id: JISEC-CC-CRP-C0036
- certification_date: 01.01.2006
- claim: EAL3
- enhanced:
- assurance_level: EAL3
- cert_link: https://www.ipa.go.jp/en/security/c0036_eimg.pdf
- description: PRODUCT DESCRIPTION This product is a software program to be installed for use on the Canon iR4570/iR3570/iR2870/iR2270 -series multifunction products (hereafter referred to collectively as the “multifunction product”). The multifunction product is a digital copier that offers the combined functionality of Copy, Send (Universal Send), Fax Reception, Mail Box, Print, Remote UI (a Web browser interface for operating the multifunction product), plus many others. When the Copy, Send (Universal Send), Fax Reception (fax/I-fax reception) or Print function is used, temporary image data is created on the hard drive of the multifunction product. Also, when the Mail Box function is used (for document storage) or the Fax Reception function is used (for “in-memory reception” of faxes/I-faxes or forwarding of faxes/I-faxes), image data is stored in the receiving inbox that is on the multifunction product. Furthermore, when the Remote UI function is used, image data is exchanged over the network between the Web browser on the user's PC and the multifunction product. By installing this product, security enhancements are added to the multifunction product, helping counter the threat of disclosure of temporary image data created on the hard drive, permanent image data stored in the inboxes, and image data that is transmitted over the Remote UI communication path.
- evaluation_facility: Electronic Commerce Security Technology Laboratory Inc. Evaluation Center
- product: Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2
- product_type: IT Product ( data protection function in digital MFD )
- report_link: https://www.ipa.go.jp/en/security/c0036_erpt.pdf
- target_link: https://www.ipa.go.jp/en/security/c0036_est.pdf
- toe_version: Version 2.03
- vendor: Canon Inc.
- expiration_date: 01.10.2013
- supplier: Canon Inc.
- toe_japan_name: Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03
- toe_overseas_link: https://www.ipa.go.jp/en/security/jisec/software/certified-cert/c0036_it5070.html
- toe_overseas_name: Canon iR4570/iR3570/iR2870/iR2270 Series iR Security Kit-B2 Version 2.03
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
None |
None |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
c0036_ecvr.pdf |
20080514_0406a.pdf |
| pdf_data/report_frontpage |
|
- DE:
- cert_id: BSI-DSZ-CC-0406-2007
- cert_item: STARCOS 3.2 eGK Version 1.0
- cert_lab: BSI
- developer: Giesecke & Devrient GmbH Certification Report V1.1 ZS-01-01-F-326 V4.04 BSI -
- match_rules: ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)']
|
| pdf_data/report_keywords/cc_cert_id |
- JP:
- Certification No. C0036: 1
|
- DE:
- BSI-DSZ-CC-0322-2005: 1
- BSI-DSZ-CC-0406-2007: 19
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-PP-0020-: 1
- BSI-PP-0020-V2-: 1
- BSI-PP-0020-V2-2007: 2
|
| pdf_data/report_keywords/cc_security_level |
|
- EAL:
- EAL 1: 1
- EAL 4: 8
- EAL 4 augmented: 3
- EAL 7: 1
- EAL1: 5
- EAL2: 3
- EAL3: 4
- EAL4: 6
- EAL5: 6
- EAL5+: 1
- EAL6: 3
- EAL7: 4
|
| pdf_data/report_keywords/cc_sar |
|
- ACM:
- ACM_AUT: 2
- ACM_CAP: 2
- ACM_SCP: 2
- ADO:
- ADV:
- ADV_FSP: 2
- ADV_HLD: 2
- ADV_IMP: 2
- ADV_IMP.2: 5
- ADV_INT: 2
- ADV_LLD: 2
- ADV_RCR: 2
- ADV_SPM: 2
- AGD:
- ALC:
- ALC_DVS: 2
- ALC_FLR: 2
- ALC_LCD: 1
- ALC_TAT: 2
- APE:
- APE_DES: 1
- APE_ENV: 1
- APE_INT: 1
- APE_OBJ: 1
- APE_REQ: 1
- APE_SRE: 1
- ASE:
- ASE_DES: 1
- ASE_ENV: 1
- ASE_INT: 1
- ASE_OBJ: 1
- ASE_PPC: 1
- ASE_REQ: 1
- ASE_SRE: 1
- ASE_TSS: 1
- ATE:
- ATE_COV: 2
- ATE_DPT: 2
- ATE_FUN: 3
- ATE_IND: 4
- AVA:
- AVA_CCA: 2
- AVA_MSU: 2
- AVA_MSU.3: 5
- AVA_SOF: 3
- AVA_VLA: 5
- AVA_VLA.2: 1
- AVA_VLA.3: 1
- AVA_VLA.4: 6
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
- GD:
- G&D: 5
- Giesecke & Devrient: 9
- Infineon:
|
| pdf_data/report_keywords/eval_facility |
|
- TUV:
- TÜV Informationstechnik: 4
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
- RSA:
- RSA 1024: 1
- RSA 1280: 1
- RSA 1536: 1
- RSA 2048: 2
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
- RIPEMD:
- SHA:
- SHA1:
- SHA2:
- SHA-224: 3
- SHA-256: 3
- SHA-384: 3
- SHA-512: 2
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
- FI:
- malfunction: 1
- physical tampering: 1
|
| pdf_data/report_keywords/technical_report_id |
|
- BSI:
- BSI 7125: 2
- BSI 7148: 1
- BSI 7149: 1
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
- BSI:
- AIS 20: 1
- AIS 25: 2
- AIS 26: 2
- AIS 31: 1
- AIS 32: 1
- AIS 34: 3
- AIS 35: 2
- AIS 36: 3
- AIS 38: 1
- ISO:
- ISO/IEC 15408:2005: 2
- ISO/IEC 9796-1: 1
- ISO/IEC 9796-2: 1
- PKCS:
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
- ConfidentialDocument:
- 2007, Version 7, 13.12.2007, Evaluation Body for IT-Security of TÜV Informationstechnik GmbH (confidential document) [9] Common Criteria Protection Profile electronic Health Card (eHC) – elektronische: 1
- Security Target of STARCOS 3.2 eGK, BSI-DSZ-0406-2007, Version 1.4, 20.11.2007, Giesecke&Devrient (confidential document) [7] Security Target Lite of STARCOS 3.2 eGK, BSI-DSZ-0406-2007, Version 1.1, 20.11.2007: 1
- list for the TOE, Version 1.7, 13.12.2007, Configuration List STARCOS 3.2 eGK, Giesecke&Devrient (confidential document) [11] Administrator Guidance STARCOS 3.2 eGK; STARCOS 3.2 QES V1.0, Version 1.0/Status 13.12.07: 1
|
| pdf_data/report_metadata |
- /CreationDate: D:20060123172731+09'00'
- /ModDate: D:20060123172731+09'00'
- /Producer: Acrobat Distiller 6.0.1 (Windows)
- /Title: untitled
- pdf_file_size_bytes: 14795
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 1
|
- /Author: Bundesamt für Sicherheit in der Informationstechnik
- /Company: BSI, Postfach 200363, 53133 Bonn
- /CreationDate: D:20080303080757+01'00'
- /Creator: Acrobat PDFMaker 8.1 für Word
- /Keywords: "Common Criteria, Certification, Zertifizierung, elektronische Gesundheitskarte, eGK, Common Criteria, CC"
- /ModDate: D:20080303164731+01'00'
- /Producer: Acrobat Distiller 8.1.0 (Windows)
- /SourceModified: D:20080303070750
- /Title: Certification Report BSI-DSZ-CC-0406-2007
- pdf_file_size_bytes: 254398
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 36
|
| pdf_data/st_filename |
|
20080514_0406b.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
- DE:
- BSI-DSZ-CC-0322-2005-MA-04: 2
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
- BSI:
- BSI-PP-****: 1
- BSI-PP-0002: 2
- BSI-PP-0002-2001: 1
- BSI-PP-0005-: 1
- BSI-PP-0006-2002T: 1
- BSI-PP-0020-V2-2007: 1
|
| pdf_data/st_keywords/cc_security_level |
|
- EAL:
- EAL4: 11
- EAL4 augmented: 2
- EAL5+: 1
|
| pdf_data/st_keywords/cc_sar |
|
- ADO:
- ADV:
- ADV_FSP.1: 2
- ADV_HLD.2: 1
- ADV_IMP.1: 1
- ADV_IMP.2: 6
- ADV_LLD.1: 2
- ADV_RCR.1: 1
- ADV_SPM.1: 2
- AGD:
- AGD_ADM.1: 2
- AGD_USR.1: 2
- ALC:
- AVA:
- AVA_MSU.3: 5
- AVA_VLA.4: 6
|
| pdf_data/st_keywords/cc_sfr |
|
- FCS:
- FCS_CKM: 7
- FCS_CKM.1: 24
- FCS_CKM.2: 2
- FCS_CKM.4: 26
- FCS_CKM.4.1: 3
- FCS_COP: 45
- FCS_COP.1: 27
- FCS_RND: 9
- FCS_RND.1: 13
- FCS_RND.1.1: 4
- FDP:
- FDP_ACC.1: 7
- FDP_ACC.2: 14
- FDP_ACC.2.1: 4
- FDP_ACC.2.2: 5
- FDP_ACF: 1
- FDP_ACF.1: 13
- FDP_ACF.1.1: 3
- FDP_ACF.1.2: 3
- FDP_ACF.1.3: 3
- FDP_ACF.1.4: 3
- FDP_IFC.1: 4
- FDP_ITC.1: 16
- FDP_ITC.2: 15
- FDP_RIP: 14
- FDP_RIP.1: 11
- FDP_RIP.1.1: 2
- FDP_SDI.1: 2
- FDP_SDI.2: 5
- FDP_SDI.2.1: 3
- FDP_SDI.2.2: 3
- FDP_UCT.1: 11
- FDP_UCT.1.1: 3
- FDP_UIT.1: 6
- FDP_UIT.1.1: 3
- FDP_UIT.1.2: 3
- FIA:
- FIA_AFL: 42
- FIA_AFL.1: 25
- FIA_ATD.1: 7
- FIA_ATD.1.1: 3
- FIA_UAU.1: 14
- FIA_UAU.1.1: 3
- FIA_UAU.1.2: 3
- FIA_UAU.4: 8
- FIA_UAU.4.1: 3
- FIA_UID.1: 8
- FIA_UID.1.1: 3
- FIA_UID.1.2: 3
- FMT:
- FMT_LIM: 5
- FMT_LIM.1: 20
- FMT_LIM.1.1: 4
- FMT_LIM.2: 19
- FMT_LIM.2.1: 3
- FMT_MSA.1: 1
- FMT_MSA.2: 19
- FMT_MSA.3: 2
- FMT_MTD: 27
- FMT_MTD.1: 19
- FMT_SMF.1: 19
- FMT_SMF.1.1: 3
- FMT_SMR.1: 19
- FMT_SMR.1.1: 3
- FMT_SMR.1.2: 3
- FPT:
- FPT_AMT.1: 2
- FPT_FLS.1: 9
- FPT_FLS.1.1: 3
- FPT_PHP.3: 9
- FPT_PHP.3.1: 3
- FPT_RVM.1: 10
- FPT_RVM.1.1: 3
- FPT_SEP.1: 10
- FPT_SEP.1.1: 3
- FPT_SEP.1.2: 3
- FPT_TST.1: 11
- FPT_TST.1.1: 3
- FPT_TST.1.2: 3
- FPT_TST.1.3: 3
- FTP:
- FTP_ITC.1: 14
- FTP_ITC.1.1: 3
- FTP_ITC.1.2: 3
- FTP_ITC.1.3: 3
- FTP_TRP.1: 4
|
| pdf_data/st_keywords/cc_claims |
|
|
| pdf_data/st_keywords/vendor |
|
- GD:
- Infineon:
- Infineon: 9
- Infineon Technologies AG: 1
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
- AES_competition:
- DES:
- 3DES:
- 3-DES: 2
- TDES: 5
- Triple-DES: 11
- DES:
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
- FI:
- Malfunction: 3
- Physical Tampering: 2
- Physical tampering: 1
- fault injection: 1
- malfunction: 4
- physical tampering: 7
- SCA:
- DPA: 1
- physical probing: 5
- side channel: 1
- side channels: 2
- other:
- Bleichenbacher attack: 1
- reverse engineering: 1
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- BSI:
- AIS 20: 1
- AIS20: 2
- AIS31: 2
- CC:
- CCIMB-2005-08-001: 1
- CCIMB-2005-08-002: 1
- CCIMB-2005-08-003: 1
- CCIMB-2005-08-004: 1
- CCMB-2005-08-001: 1
- CCMB-2005-08-002: 1
- FIPS:
- FIPS 180-2: 3
- FIPS 46-3: 2
- FIPS PUB 46-3: 2
- ISO:
- ISO/IEC 7816-4: 1
- ISO/IEC 9796-1: 1
- ISO/IEC9796-2: 5
- PKCS:
- X509:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- FDP_ACF.1 Note by the ST-author 31: Keys and other data for creation of qualified signatures are out of scope of this Security Target. The TOE shall meet the requirement “Security attribute based access: 1
- out of scope: 1
|
| pdf_data/st_metadata |
|
- /CreationDate: D:20071120144357+01'00'
- /Creator: PScript5.dll Version 5.2.2
- /ModDate: D:20080303164809+01'00'
- /Producer: Acrobat Distiller 7.0 (Windows)
- /Title: Security Target Lite STARCOS 3.2 eGK V1.0
- pdf_file_size_bytes: 374430
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 114
|
| state/cert/convert_garbage |
False |
False |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
False |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Equal |
Equal |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
False |
True |
| state/st/download_ok |
False |
True |
| state/st/extract_ok |
False |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |