This page was not yet optimized for use on mobile devices.

Y7 4.3.1:1.2.9 with eHealth Application 1.1.20

CSV information

Status	active
Valid from	08.07.2025
Valid until	07.07.2030
Scheme	🇩🇪 DE
Manufacturer	JDM Payment Solutions SAS
Category	ICs, Smart Cards and Smart Card-Related Devices and Systems
Security level	EAL3+, ADV_FSP.4, ALC_TAT.1, AVA_VAN.4, ADV_IMP.1, ADV_TDS.3

Heuristics summary

Certificate ID: BSI-DSZ-CC-1233-2025

Certificate

Certificate PDF TXT

Extracted keywords

Security level

EAL 3, EAL 4, EAL 2, EAL 3 augmented

Security Assurance Requirements (SAR)

ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ALC_TAT.1, ALC_FLR, AVA_VAN.4

Protection profiles

BSI-CC-PP-0032-V3-

Certificates

BSI-DSZ-CC-1233-2025

Standards

ISO/IEC 15408, ISO/IEC 18045

File metadata

Title	Certificate BSI-DSZ-CC-1233-2025
Subject	Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA
Keywords	"Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA"
Author	Federal Office for Information Security
Pages	1

Certification report

Certification report PDF TXT

Extracted keywords

Symmetric Algorithms

AES256, AES-128, AES-256, AES, AES-, HPC

Asymmetric Algorithms

ECDH, ECDSA, Diffie-Hellman

Hash functions

SHA-256

Schemes

Key Agreement, AEAD

Protocols

TLS 1.2, TLS, TLS v1.2

Elliptic Curves

P-256, P-384, secp384r1, brainpoolP256r1, brainpoolP384r1

Block cipher modes

GCM

Security level

EAL 3, EAL 4, EAL 2, EAL 1, EAL3+, EAL 3 augmented

Claims

OE.ENV, OE.ADMIN, OE.CONNECTOR, OE.SM, OE.PUSH_SERVER

Security Assurance Requirements (SAR)

ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ALC_TAT.1, ALC_FLR, AVA_VAN.4

Security Functional Requirements (SFR)

FCS_COP.1, FCS_CKM.1

Protection profiles

BSI-CC-PP-0032-V3-, BSI-CC-PP-0032-V3-2023

Certificates

BSI-DSZ-CC-1233-2025, CC-1233

Evaluation facilities

SRC Security Research & Consulting

Side-channel analysis

physical tampering

Certification process

being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, list for the TOE, CC Configuration Items List, Version 0.0.8, JDM Payment Solutions SAS (confidential document) [10] Guidance documentation for the TOE [a] Y7 Operational User Guidance and Preparative

Standards

FIPS 180-4, FIPS 197, SP 800-38D, PKCS#1, AIS 1, AIS 14, AIS 19, AIS 32, AIS 45, RFC 8017, RFC-7027, RFC 5246, RFC 3268, RFC 5289, RFC 5116, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065

Technical reports

BSI 7148

File metadata

Title	Zertifizierungsreport BSI-DSZ-CC-1233-2025
Subject	Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA
Keywords	"Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA"
Author	Federal Office for Information Security
Pages	26

Frontpage

Certificate ID	BSI-DSZ-CC-1233-2025
Certified item	Y7 4.3.1:1.2.9 with eHealth Application 1.1.20
Certification lab	BSI
Developer	JDM Payment Solutions SAS

Security target

Security target PDF TXT

Extracted keywords

Symmetric Algorithms

AES, AES256, HPC, HMAC

Asymmetric Algorithms

ECDSA, ECC, DHE

Hash functions

SHA256

Schemes

MAC

Protocols

TLS, TLS 1.2

Elliptic Curves

P-256, P-384, secp384r1, secp256r1, secp224r1, brainpoolP256r1, brainpoolP384r1

Block cipher modes

GCM

TLS cipher suites

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256

Security level

EAL3+, EAL 3, EAL3, EAL 3 augmented, EAL3 augmented

Claims

O.ACCESS_CONTROL, O.PIN_ENTRY, O.MANAGEMENT, O.SECURE_CHANNEL, O.STATE, O.PROTECTION, T.COM, T.PIN, T.DATA, T.F-CONNECTOR, A.PUSH_SERVER, A.ENV, A.ADMIN, A.CONNECTOR, A.SM, OE.ENV, OE.ADMIN, OE.CONNECTOR, OE.SM, OE.PUSH_SERVER, OSP.PIN_ENTRY

Security Assurance Requirements (SAR)

ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ADV_ARC.1, AGD_OPE.1, AGD_PRE.1, ALC_TAT.1, ALC_DEL, ALC_CMC.3, ALC_CMS.3, ALC_DEL.1, ALC_DVS.1, ALC_LCD.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.4, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1

Security Functional Requirements (SFR)

FCS_COP.1, FCS_COP, FCS_CKM, FCS_CKM.4, FCS_CKM.1, FCS_CKM.2, FCS_CKM.4.1, FDP_ACC, FDP_ACF, FDP_IFC, FDP_IFF, FDP_RIP.1, FDP_ITC.1, FDP_ITC.2, FDP_ACC.1, FDP_ACF.1, FDP_IFC.1, FDP_IFF.1, FDP_RIP.1.1, FIA_AFL.1, FIA_ATD.1, FIA_SOS.1, FIA_UAU.1, FIA_UAU.5, FIA_UAU.7, FIA_UID.1, FIA_AFL.1.1, FIA_AFL.1.2, FIA_ATD.1.1, FIA_SOS.1.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.7.1, FIA_UID.1.1, FIA_UID.1.2, FMT_MSA, FMT_MSA.2, FMT_SMF.1, FMT_SMR.1, FMT_MSA.3, FMT_MSA.1, FMT_MSA.2.1, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FPT_FLS.1, FPT_ITT.1, FPT_PHP.3, FPT_TST.1, FPT_FLS.1.1, FPT_ITT.1.1, FPT_PHP.3.1, FPT_PHP.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FTA_TAB, FTA_TAB.1, FTP_ITC, FTP_TRP, FTP_ITC.1, FTP_TRP.1

Protection profiles

BSI-CC-PP-0032-V3-2023

Certificates

BSI-DSZ-CC-1233

Side-channel analysis

physical tampering

Standards

PKCS#1, AIS 27, X.509, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004

Technical reports

BSI TR-03116-1, BSI TR-03120, BSI TR-03110-2

File metadata

Author	Julian Bain
Pages	86

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

Certificate ID

BSI-DSZ-CC-1233-2025

Extracted SARs

ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMC.3, ALC_CMS.3, ALC_DEL.1, ALC_DVS.1, ALC_LCD.1, ALC_TAT.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_VAN.4

Scheme data

Enhanced
Cert Id	BSI-DSZ-CC-1233-2025
Product	Y7 4.3.1:1.2.9 with eHealth Application 1.1.20
Vendor	JDM Payment Solutions SAS
Certification Date	08.07.2025
Category	eHealth
Url	https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/1233.html
	Product	Y7 4.3.1:1.2.9 with eHealth Application 1.1.20
	Applicant	JDM Payment Solutions SAS 2 rue Gallien, F-03400 Saint Ouen-sur-Sein
	Evaluation Facility	SRC Security Research & Consulting GmbH
	Assurance Level	EAL3+,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_TAT.1,AVA_VAN.4
	Protection Profile	Common Criteria Protection Profile Electronic Health Card Terminal (eHCT) Version 3.8, BSI-CC-PP-0032-V3-2023, 15.12. 2022
	Certification Date	08.07.2025
	Expiration Date	07.07.2030
	Entries	[frozendict({'id': 'BSI-DSZ-CC-1233-2025 (Ausstellungsdatum / Certification Date 08.07.2025, gültig bis / valid until 07.07.2030) Zertifizierungsreport / Certification Report', 'description': 'Certificate'})]
	Report Link	https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233a_pdf.pdf?__blob=publicationFile&v=2
	Target Link	https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233b_pdf.pdf?__blob=publicationFile&v=2
	Cert Link	https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233c_pdf.pdf?__blob=publicationFile&v=2
	Description	The Target of Evaluation (TOE) is a smart-card-terminal which fulfils the requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system. The terminal is based on a two-chip architecture
Subcategory	Card reader

References

No references are available for this certificate.

Updates Feed

15.12.2025

The certificate data changed.
Certificate changed

The state of the certificate object was updated.

The report property was updated, with the {'json_hash': None} values inserted.

The st property was updated, with the {'json_hash': None} values inserted.

The cert property was updated, with the {'json_hash': None} values inserted.

The computed heuristics were updated.

The scheme_data property was set to {'cert_id': 'BSI-DSZ-CC-1233-2025', 'product': 'Y7 4.3.1:1.2.9 with eHealth Application 1.1.20', 'vendor': 'JDM Payment Solutions SAS', 'certification_date': '2025-07-08', 'category': 'eHealth', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/1233.html', 'enhanced': {'product': 'Y7 4.3.1:1.2.9 with eHealth Application 1.1.20', 'applicant': 'JDM Payment Solutions SAS 2 rue Gallien, F-03400 Saint Ouen-sur-Sein', 'evaluation_facility': 'SRC Security Research & Consulting GmbH', 'assurance_level': 'EAL3+,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_TAT.1,AVA_VAN.4', 'protection_profile': 'Common Criteria Protection Profile Electronic Health Card Terminal (eHCT) Version 3.8, BSI-CC-PP-0032-V3-2023, 15.12. 2022', 'certification_date': '2025-07-08', 'expiration_date': '2030-07-07', 'entries': [{'id': 'BSI-DSZ-CC-1233-2025 (Ausstellungsdatum / Certification Date 08.07.2025, gültig bis / valid until 07.07.2030) Zertifizierungsreport / Certification Report', 'description': 'Certificate'}], 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233a_pdf.pdf?__blob=publicationFile&v=2', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233b_pdf.pdf?__blob=publicationFile&v=2', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233c_pdf.pdf?__blob=publicationFile&v=2', 'description': 'The Target of Evaluation (TOE) is a smart-card-terminal which fulfils the requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system. The terminal is based on a two-chip architecture'}, 'subcategory': 'Card reader'}.
04.08.2025

The certificate was first processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1233c_pdf.pdf",
  "dgst": "e5d6f575b6cc6e2b",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "BSI-DSZ-CC-1233-2025",
    "cert_lab": [
      "BSI"
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "eal": "EAL3+",
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DEL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_TDS",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_ARC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_TAT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_ECD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_FUN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_INT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_DPT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_REQ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_LCD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_OBJ",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DVS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_COV",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_CCL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_IMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_SPD",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "1.2.9",
        "1.1.20",
        "4.3.1"
      ]
    },
    "indirect_transitive_cves": null,
    "next_certificates": null,
    "prev_certificates": null,
    "protection_profiles": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": {
      "category": "eHealth",
      "cert_id": "BSI-DSZ-CC-1233-2025",
      "certification_date": "2025-07-08",
      "enhanced": {
        "applicant": "JDM Payment Solutions SAS 2 rue Gallien, F-03400 Saint Ouen-sur-Sein",
        "assurance_level": "EAL3+,ADV_FSP.4,ADV_IMP.1,ADV_TDS.3,ALC_TAT.1,AVA_VAN.4",
        "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233c_pdf.pdf?__blob=publicationFile\u0026v=2",
        "certification_date": "2025-07-08",
        "description": "The Target of Evaluation (TOE) is a smart-card-terminal which fulfils the requirements to be used with the German electronic Health Card (eHC) and the German Health Professional Card (HPC) based on the regulations of the German healthcare system. The terminal is based on a two-chip architecture",
        "entries": [
          {
            "description": "Certificate",
            "id": "BSI-DSZ-CC-1233-2025 (Ausstellungsdatum / Certification Date 08.07.2025, g\u00fcltig bis / valid until 07.07.2030) Zertifizierungsreport / Certification Report"
          }
        ],
        "evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
        "expiration_date": "2030-07-07",
        "product": "Y7 4.3.1:1.2.9 with eHealth Application 1.1.20",
        "protection_profile": "Common Criteria Protection Profile Electronic Health Card Terminal (eHCT) Version 3.8, BSI-CC-PP-0032-V3-2023, 15.12. 2022",
        "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233a_pdf.pdf?__blob=publicationFile\u0026v=2",
        "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1233b_pdf.pdf?__blob=publicationFile\u0026v=2"
      },
      "product": "Y7 4.3.1:1.2.9 with eHealth Application 1.1.20",
      "subcategory": "Card reader",
      "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Kartenlesegeraete/1233.html",
      "vendor": "JDM Payment Solutions SAS"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "JDM Payment Solutions SAS",
  "manufacturer_web": "https://www.jdm.de",
  "name": "Y7 4.3.1:1.2.9 with eHealth Application 1.1.20",
  "not_valid_after": "2030-07-07",
  "not_valid_before": "2025-07-08",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "1233c_pdf.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1233-2025": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0032-V3-": 1
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_FSP.4": 1,
          "ADV_IMP.1": 1,
          "ADV_TDS.3": 1
        },
        "ALC": {
          "ALC_FLR": 1,
          "ALC_TAT.1": 1
        },
        "AVA": {
          "AVA_VAN.4": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 2": 1,
          "EAL 3": 1,
          "EAL 3 augmented": 1,
          "EAL 4": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408": 2,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Federal Office for Information Security",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA\"",
      "/Subject": "Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA",
      "/Title": "Certificate BSI-DSZ-CC-1233-2025",
      "pdf_file_size_bytes": 231900,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "1233a_pdf.pdf",
    "report_frontpage": {
      "DE": {
        "cc_security_level": "Common Criteria Part 3 conformant EAL 3 augmented by ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ALC_TAT.1 and AVA_VAN.4 valid until: 07 July 2030",
        "cc_version": "PP conformant Common Criteria Part 2 extended",
        "cert_id": "BSI-DSZ-CC-1233-2025",
        "cert_item": "Y7 4.3.1:1.2.9 with eHealth Application 1.1.20",
        "cert_lab": "BSI",
        "developer": "JDM Payment Solutions SAS",
        "match_rules": [
          "(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
        ],
        "ref_protection_profiles": "Common Criteria Protection Profile Electronic Health Card Terminal (eHCT), BSI-CC-PP-0032-V3- 2023, 15.12.2022"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 2
          },
          "ECDSA": {
            "ECDSA": 6
          }
        },
        "FF": {
          "DH": {
            "Diffie-Hellman": 1
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1233-2025": 14
        },
        "NL": {
          "CC-1233": 1
        }
      },
      "cc_claims": {
        "OE": {
          "OE.ADMIN": 1,
          "OE.CONNECTOR": 1,
          "OE.ENV": 1,
          "OE.PUSH_SERVER": 1,
          "OE.SM": 1
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0032-V3-": 1,
          "BSI-CC-PP-0032-V3-2023": 2
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_FSP.4": 4,
          "ADV_IMP.1": 4,
          "ADV_TDS.3": 4
        },
        "ALC": {
          "ALC_FLR": 3,
          "ALC_TAT.1": 4
        },
        "AVA": {
          "AVA_VAN.4": 5
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 2": 3,
          "EAL 3": 4,
          "EAL 3 augmented": 3,
          "EAL 4": 4,
          "EAL3+": 1
        }
      },
      "cc_sfr": {
        "FCS": {
          "FCS_CKM.1": 2,
          "FCS_COP.1": 5
        }
      },
      "certification_process": {
        "ConfidentialDocument": {
          "being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1,
          "list for the TOE, CC Configuration Items List, Version 0.0.8, JDM Payment Solutions SAS (confidential document) [10] Guidance documentation for the TOE [a] Y7 Operational User Guidance and Preparative": 1
        }
      },
      "cipher_mode": {
        "GCM": {
          "GCM": 3
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS": 10,
            "TLS 1.2": 3,
            "TLS v1.2": 3
          }
        }
      },
      "crypto_scheme": {
        "AEAD": {
          "AEAD": 1
        },
        "KA": {
          "Key Agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 3,
          "brainpoolP384r1": 4
        },
        "NIST": {
          "P-256": 8,
          "P-384": 8,
          "secp384r1": 2
        }
      },
      "eval_facility": {
        "SRC": {
          "SRC Security Research \u0026 Consulting": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 4
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {
        "FI": {
          "physical tampering": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 1": 1,
          "AIS 14": 1,
          "AIS 19": 1,
          "AIS 32": 1,
          "AIS 45": 1
        },
        "FIPS": {
          "FIPS 180-4": 2,
          "FIPS 197": 1
        },
        "ISO": {
          "ISO/IEC 15408": 4,
          "ISO/IEC 17065": 2,
          "ISO/IEC 18045": 4
        },
        "NIST": {
          "SP 800-38D": 1
        },
        "PKCS": {
          "PKCS#1": 5
        },
        "RFC": {
          "RFC 3268": 1,
          "RFC 5116": 1,
          "RFC 5246": 2,
          "RFC 5289": 1,
          "RFC 8017": 2,
          "RFC-7027": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 1,
            "AES-": 2,
            "AES-128": 1,
            "AES-256": 1,
            "AES256": 1
          },
          "HPC": {
            "HPC": 2
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI 7148": 1
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "Federal Office for Information Security",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA\"",
      "/Subject": "Common Criteria, Certification, Zertifizierung, Smart-Card-Terminal, eHealth-Kartenterminal, eGK, HBA",
      "/Title": "Zertifizierungsreport BSI-DSZ-CC-1233-2025",
      "pdf_file_size_bytes": 349474,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.bsi.bund.de/zertifizierungsreporte",
          "https://www.bsi.bund.de/AIS",
          "https://www.sogis.eu/",
          "https://www.bsi.bund.de/zertifizierung",
          "https://www.commoncriteriaportal.org/",
          "http://www.commoncriteriaportal.org/",
          "http://www.commoncriteriaportal.org/cc/",
          "https://www.bsi.bund.de/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 26
    },
    "st_filename": "1233b_pdf.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDSA": {
            "ECDSA": 6
          }
        },
        "FF": {
          "DH": {
            "DHE": 3
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1233": 2
        }
      },
      "cc_claims": {
        "A": {
          "A.ADMIN": 3,
          "A.CONNECTOR": 3,
          "A.ENV": 7,
          "A.PUSH_SERVER": 4,
          "A.SM": 6
        },
        "O": {
          "O.ACCESS_CONTROL": 6,
          "O.MANAGEMENT": 4,
          "O.PIN_ENTRY": 6,
          "O.PROTECTION": 9,
          "O.SECURE_CHANNEL": 4,
          "O.STATE": 4
        },
        "OE": {
          "OE.ADMIN": 4,
          "OE.CONNECTOR": 5,
          "OE.ENV": 10,
          "OE.PUSH_SERVER": 3,
          "OE.SM": 2
        },
        "OSP": {
          "OSP.PIN_ENTRY": 5
        },
        "T": {
          "T.COM": 3,
          "T.DATA": 3,
          "T.F-CONNECTOR": 3,
          "T.PIN": 6
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0032-V3-2023": 1
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_ARC.1": 1,
          "ADV_FSP.4": 5,
          "ADV_IMP.1": 6,
          "ADV_TDS.3": 5
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC.3": 1,
          "ALC_CMS.3": 1,
          "ALC_DEL": 1,
          "ALC_DEL.1": 1,
          "ALC_DVS.1": 1,
          "ALC_LCD.1": 1,
          "ALC_TAT.1": 5
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.2": 1,
          "ASE_REQ.2": 1,
          "ASE_SPD.1": 1,
          "ASE_TSS.1": 1
        },
        "ATE": {
          "ATE_COV.2": 1,
          "ATE_DPT.1": 1,
          "ATE_FUN.1": 1,
          "ATE_IND.2": 1
        },
        "AVA": {
          "AVA_VAN.4": 5
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 3": 3,
          "EAL 3 augmented": 3,
          "EAL3": 1,
          "EAL3 augmented": 1,
          "EAL3+": 1
        }
      },
      "cc_sfr": {
        "FCS": {
          "FCS_CKM": 20,
          "FCS_CKM.1": 16,
          "FCS_CKM.2": 4,
          "FCS_CKM.4": 35,
          "FCS_CKM.4.1": 1,
          "FCS_COP": 54,
          "FCS_COP.1": 12
        },
        "FDP": {
          "FDP_ACC": 23,
          "FDP_ACC.1": 13,
          "FDP_ACF": 24,
          "FDP_ACF.1": 13,
          "FDP_IFC": 21,
          "FDP_IFC.1": 12,
          "FDP_IFF": 21,
          "FDP_IFF.1": 14,
          "FDP_ITC.1": 18,
          "FDP_ITC.2": 14,
          "FDP_RIP.1": 7,
          "FDP_RIP.1.1": 1
        },
        "FIA": {
          "FIA_AFL.1": 7,
          "FIA_AFL.1.1": 1,
          "FIA_AFL.1.2": 2,
          "FIA_ATD.1": 6,
          "FIA_ATD.1.1": 2,
          "FIA_SOS.1": 7,
          "FIA_SOS.1.1": 1,
          "FIA_UAU.1": 11,
          "FIA_UAU.1.1": 1,
          "FIA_UAU.1.2": 1,
          "FIA_UAU.5": 6,
          "FIA_UAU.5.1": 1,
          "FIA_UAU.5.2": 1,
          "FIA_UAU.7": 7,
          "FIA_UAU.7.1": 1,
          "FIA_UID.1": 15,
          "FIA_UID.1.1": 1,
          "FIA_UID.1.2": 1
        },
        "FMT": {
          "FMT_MSA": 34,
          "FMT_MSA.1": 9,
          "FMT_MSA.2": 9,
          "FMT_MSA.2.1": 1,
          "FMT_MSA.3": 15,
          "FMT_SMF.1": 12,
          "FMT_SMF.1.1": 1,
          "FMT_SMR.1": 22,
          "FMT_SMR.1.1": 1,
          "FMT_SMR.1.2": 1
        },
        "FPT": {
          "FPT_FLS.1": 7,
          "FPT_FLS.1.1": 2,
          "FPT_ITT.1": 7,
          "FPT_ITT.1.1": 1,
          "FPT_PHP.1": 1,
          "FPT_PHP.3": 9,
          "FPT_PHP.3.1": 1,
          "FPT_TST.1": 10,
          "FPT_TST.1.1": 1,
          "FPT_TST.1.2": 1,
          "FPT_TST.1.3": 1
        },
        "FTA": {
          "FTA_TAB": 7,
          "FTA_TAB.1": 1
        },
        "FTP": {
          "FTP_ITC": 7,
          "FTP_ITC.1": 3,
          "FTP_TRP": 6,
          "FTP_TRP.1": 3
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "GCM": {
          "GCM": 1
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "TLS": {
            "TLS": 13,
            "TLS 1.2": 3
          }
        }
      },
      "crypto_scheme": {
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 1,
          "brainpoolP384r1": 1
        },
        "NIST": {
          "P-256": 4,
          "P-384": 4,
          "secp224r1": 1,
          "secp256r1": 1,
          "secp384r1": 3
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA256": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {
        "FI": {
          "physical tampering": 7
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 27": 1
        },
        "CC": {
          "CCMB-2017-04-001": 2,
          "CCMB-2017-04-002": 2,
          "CCMB-2017-04-003": 2,
          "CCMB-2017-04-004": 1
        },
        "PKCS": {
          "PKCS#1": 2
        },
        "X509": {
          "X.509": 5
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 3,
            "AES256": 1
          },
          "HPC": {
            "HPC": 7
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 1
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI TR-03110-2": 1,
          "BSI TR-03116-1": 1,
          "BSI TR-03120": 2
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {
        "TLS": {
          "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 1,
          "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 2,
          "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": 4,
          "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 4
        }
      },
      "vendor": {},
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Julian Bain",
      "pdf_file_size_bytes": 1399416,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 86
    }
  },
  "protection_profile_links": {
    "_type": "Set",
    "elements": []
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1233a_pdf.pdf",
  "scheme": "DE",
  "security_level": {
    "_type": "Set",
    "elements": [
      "EAL3+",
      "ADV_IMP.1",
      "ALC_TAT.1",
      "ADV_FSP.4",
      "ADV_TDS.3",
      "AVA_VAN.4"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1233b_pdf.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "2104263b10c8a377c663eba84d304e01062750f1a76e2d36be06dc7b782fc513",
      "txt_hash": "8a28b096b7a64bf8db81888a34372e1f57fc06dab983d178a459caedb5de06ab"
    },
    "report": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "4942bdfdedf4af895655d03037aadcb89d488ed6a863b802a2ec6731d674d57c",
      "txt_hash": "8c613f3143eb04f7fecae1e128bef9c3fd78d1365a5a545940f004da267f7529"
    },
    "st": {
      "_type": "sec_certs.sample.document_state.DocumentState",
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "json_hash": null,
      "pdf_hash": "bf52a732e7ad25aac55eb0c1e38230bf6495b651de4ce1e72628192e4228f60c",
      "txt_hash": "8d98d35dd259d10fc45ea459c2ce973ef6e97440a9bb915a9d3edd17b97b8150"
    }
  },
  "status": "active"
}

Sections

Y7 4.3.1:1.2.9 with eHealth Application 1.1.20

CSV information

Heuristics summary

Certificate

Extracted keywords

Common Criteria

Security level

Security Assurance Requirements (SAR)

Protection profiles

Certificates

Other

Standards

File metadata

Certification report

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Elliptic Curves

Block cipher modes

Common Criteria

Security level

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Protection profiles

Certificates

Evaluation facilities

Security

Side-channel analysis

Certification process

Other

Standards

Technical reports

File metadata

Frontpage

Security target

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Schemes

Protocols

Elliptic Curves

Block cipher modes

TLS cipher suites

Common Criteria

Security level

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Protection profiles

Certificates

Security

Side-channel analysis

Other

Standards

Technical reports

File metadata

Heuristics

Automated inference - use with caution

Certificate ID

Extracted SARs

Scheme data

References

Updates Feed

Raw data

Toggle raw data