accordai ce with the authorit / Granted under Act 11/2002, regulating the National Intelligence Centre, and applying es nd 2, second paragraph, letter c, of Royal Decree 421/2004, 12th March, regulating the National Cry] gic Centre, | hereby: Certify that the security of the KONA26CC, version 1.1, developed by KEBTechnology Co.Ltd., EXCON Venture-Tower 8F, 15-24, Yeouido-dong, Yeongdeungpo, Seoul, South Korea, fulfills its Security Target identified as SP-01-07 KONA26CC ST v1.6, 2010/06/07, to the extent defined by the evaluation assurance level EAL4+ (ALC_DVS.2; AVA_VAN.5), using the norms “Common Criteria for Information Technology Security Evaluation” and “Common Methodology for Information Technology Security Evaluation”, version 3.1. Claimed Protection Profiles: Java Card System - Standard 2.2 Configuration PP v1.0b, Aug’03 Evaluated Plataform: Samsung IC S3CC91C revision 0 Evaluation Facility: LGAI-APPLUS Certification Report: INF-510 This certificate, its scope and validity are subject to the terms, conditions and requirements specified in the “Reglamento de Evaluacion y Certificacién de la Seguridad de las T.I.C.” at PRE/2740/2007, september the 19th. The above-mentioned Security Target and Certification Report are available at the National Cryptologic Centre. Madrid, August 16th 2010 . Secretary of State Director ® een CERTIFICACION NANCPRIOG Félix Sanz Roldan The IT product identified in this certificate has been e\ nsed/approved evaluation facility using the Common Methodology for Information Technology Security Ev: ion 3.1, for conformance to the Common Criteria for Information Technology Security Evaluation, version 3.1. This certificate applies the specific version and release of the product in its evaluated configuration and in conjunction with the complete Certification/Validation re The evaluation has been conducted in accordance with the provisions of the SP IT Security Evaluation and Certification Scheme, PRE/2740/2007 september the 19th, and the conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by the Scheme or by any other organisation that recognises or gives effect to this certificate, and no warranty of the IT product by the Scheme or by any other organisation that recognises or gives effect to this certificate, is either expressed or implied.