secunet konnektor 2.1.0, Version 5.0.5:2.1.0

CSV information ?

Status active
Valid from 08.04.2022
Valid until 07.04.2027
Scheme 🇩🇪 DE
Manufacturer Secunet Security Networks AG
Category Key Management Systems
Security level AVA_VAN.5, ALC_TAT.1, ALC_FLR.2, ADV_IMP.1, EAL3+, ADV_TDS.3, ADV_FSP.4

Heuristics summary ?

Certificate ID: BSI-DSZ-CC-1128-V4-2022

Certificate ?

Extracted keywords

Security level
EAL 3, EAL 5, EAL 4, EAL 2
Security Assurance Requirements (SAR)
ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ALC_TAT.1, ALC_FLR.2, ALC_FLR, AVA_VAN.5
Protection profiles
BSI-CC-PP-0097-
Certificates
BSI-DSZ-CC-1128-V4-2022

Standards
ISO/IEC 15408, ISO/IEC 18045

File metadata

Title Zertifikat BSI-DSZ-CC-1128-V4-2022
Subject Zertifikat BSI-DSZ-CC-1128-V4-2022
Keywords "Common Criteria, Certification, Zertifizierung, eHealth, Konnektor"
Author Bundesamt für Sicherheit in der Informtionstechnik
Creation date D:20220411134611+02'00'
Modification date D:20220414110436+02'00'
Pages 1
Creator Writer
Producer LibreOffice 6.3

Certification report ?

Extracted keywords

Symmetric Algorithms
AES, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512
Asymmetric Algorithms
ECDH, ECDSA, ECC, Diffie-Hellman, DH
Hash functions
SHA-1, SHA-256, SHA-512
Schemes
Key Exchange, AEAD
Protocols
TLS, TLS v1.2, TLSv1.2, IKEv2, IKE, IPsec, VPN
Block cipher modes
CBC, GCM

Operating System name
STARCOS 3

Security level
EAL 3, EAL 5, EAL 4, EAL 2, EAL 1, EAL 5+, EAL 6
Claims
OE.NK
Security Assurance Requirements (SAR)
ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ALC_TAT.1, ALC_FLR.2, ALC_FLR, ALC_CMS.4, ALC_CMS, AVA_VAN.5, AVA_ACC
Security Functional Requirements (SFR)
FCS_COP, FCS_CKM.1, FCS_CKM, FDP_ITC, FDP_UIT, FPT_TDC, FTP_ITC, FTP_TRP
Protection profiles
BSI-CC-PP-0097-, BSI-CC-PP-0097-V2-2020-MA-, BSI-CC-PP-0097-2021
Certificates
BSI-DSZ-CC-1128-V4-2022, BSI-DSZ-CC-1128-V3-2021, BSI-DSZ-CC-1128-V4-2021
Evaluation facilities
SRC Security Research & Consulting

Standards
FIPS180-4, FIPS 180-4, FIPS186-4, FIPS 197, FIPS PUB 180-4, FIPS197, SP 800-38D, PKCS#1, PKCS#12, AIS 34, AIS 20, AIS 32, RFC8017, RFC-5639, RFC-8017, RFC-6931, RFC3526, RFC7296, RFC-5246, RFC-3268, RFC-4492, RFC-3526, RFC 7027, RFC-2404, RFC-2104, RFC4055, RFC5280, RFC7292, RFC-4868, RFC-7296, RFC-3602, RFC-4303, RFC-4301, RFC-5289, RFC-5116, RFC-4880, RFC2104, RFC 2104, RFC2404, RFC3268, RFC 3268, RFC3602, RFC4301, RFC4303, RFC4346, RFC4868, RFC4880, RFC5246, RFC5289, RFC5996, RFC7027, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, X.509
Technical reports
BSI TR-02102, BSI TR-03116-1, BSI TR-03154, BSI TR-03155, BSI TR-03157, BSI 7148

File metadata

Title Zertifizierungsreport BSI-DSZ-CC-1128-V4-2022
Subject Zertifizierungsreport BSI-DSZ-CC-1128-V4-2022
Keywords "Common Criteria, Certification, Zertifizierung, eHealth, Konnektor"
Author Bundesamt für Sicherheit in der Informtionstechnik
Creation date D:20220411134611+02'00'
Modification date D:20220411151837+02'00'
Pages 35
Creator Writer
Producer LibreOffice 6.3

Frontpage

Certificate ID BSI-DSZ-CC-1128-V4-2022
Certified item secunet konnektor 2.1.0, Version 5.0.5:2.1.0
Certification lab BSI
Developer secunet Security Networks AG

References

Outgoing Incoming

Security target ?

Extracted keywords

Symmetric Algorithms
AES, AES-128, AES-256, HPC, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512
Asymmetric Algorithms
RSA 2048, ECDSA, ECC, Diffie-Hellman
Hash functions
SHA-1, SHA-256, SHA-2
Schemes
MAC, Key Exchange
Protocols
SSL, TLS, TLS 1.3, TLS 1.2, IKEv2, IKE, IPsec, VPN
Randomness
RNG
Elliptic Curves
P-256, P-384, brainpoolP256r1, brainpoolP384r1
Block cipher modes
CBC, GCM
TLS cipher suites
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384132

Operating System name
STARCOS 3

Security level
EAL3
Claims
O.NK, T.NK, A.NK, OE.NK, OSP.NK
Security Assurance Requirements (SAR)
ADV_ARC, ADV_FSP.4, ADV_TDS.3, ADV_IMP.1, ADV_ARC.1, ADV_TDS.2, ADV_TDS.1, AGD_OPE.1, AGD_OPE, AGD_PRE.1, ALC_DEL.1, ALC_TAT.1, ALC_FLR.2, ATE_DPT.1, AVA_VAN.5, AVA_VAN
Security Functional Requirements (SFR)
FAU_STG, FAU_GEN, FAU_GEN.1, FAU_GEN.2, FCS_COP, FCS_CKM.1, FCS_CKM.4, FCS_COP.1, FCS_CKM, FCS_CKM.2, FDP_IFC, FDP_IFF, FDP_IFF.1, FDP_IFC.1, FDP_RIP, FDP_RIP.1, FDP_ACC.1, FDP_ACC, FDP_ACF.1, FDP_ACF, FDP_ITC, FDP_ITC.1, FDP_UIT, FDP_UIT.1, FDP_ITC.2, FDP_ETC, FDP_ETC.2, FIA_UAU, FIA_UID.1, FIA_UID, FIA_UAU.1, FMT_MTD.1, FMT_MSA, FMT_MSA.3, FMT_MSA.1, FMT_SMR.1, FMT_SMR.1.1, FMT_MOF, FMT_MTD, FMT_SMF.1, FMT_SMF, FMT_MOF.1, FPT_EMS, FPT_EMS.1, FPT_STM, FPT_EMS.1.1, FPT_EMS.1.2, FPT_TDC, FPT_STM.1, FPT_TDC.1, FPT_TST, FPT_TST.1, FTP_ITC, FTP_TRP, FTP_ITC.1, FTP_TRP.1
Protection profiles
BSI-CC-PP-0097, BSI-CC-PP-0098, BSI-CC-PP-0097“
Certificates
BSI-DSZ-CC-1128-V4-2021

Side-channel analysis
side channel

Standards
FIPS PUB 180-4, FIPS 197, FIPS PUB 186-4, FIPS 180-4, PKCS#1, PKCS#12, PKCS #12, RFC 2131, RFC 2132, RFC 4301, RFC 4303, RFC 7296, RFC 3602, RFC 2404, RFC 4868, RFC 8017, RFC 5246, RFC-5639, RFC-7027, RFC 2104, RFC 8422, RFC 5289, RFC 4055, RFC 5639, RFC 2402, RFC 4302, RFC 2406, RFC 2401, RFC 791, RFC 2460, RFC 2663, RFC 958, RFC 2560, RFC 4330, RFC 793, RFC 1323, RFC7296, RFC 5905, RFC 3526, RFC 8446, RFC 3268, RFC 5280, RFC 7027, X.509, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004
Technical reports
BSI TR-03116-1, BSI TR-03111, BSI TR-03144

File metadata

Author Röhnelt, Andreas
Creation date D:20220303173233+01'00'
Modification date D:20220303173233+01'00'
Pages 154
Creator Microsoft® Word 2016
Producer Microsoft® Word 2016

Heuristics ?

Certificate ID: BSI-DSZ-CC-1128-V4-2022

Extracted SARs

ADV_TDS.3, AGD_OPE.1, ALC_DEL.1, AGD_PRE.1, ALC_FLR.2, ATE_DPT.1, ALC_CMS.4, ALC_TAT.1, ADV_IMP.1, AVA_VAN.5, ADV_ARC.1, ADV_FSP.4

Similar certificates

Name Certificate ID
secunet konnektor 2.1.0, Version 5.0.5:2.1.0 BSI-DSZ-CC-1190-2022 Compare
secunet konnektor 2.0.0 und 2.0.1, Version 5.50.1:2.0.0 und 5.50.1:2.0.1 BSI-DSZ-CC-1044-V7-2023 Compare
secunet konnektor 2.1.0, Version 5.1.2:2.1.0 BSI-DSZ-CC-1128-V5-2022 Compare
secunet konnektor 2.1.0, Version 5.1.2:2.1.0 BSI-DSZ-CC-1202-2022 Compare
secunet konnektor 2.0.0, Version 5.1.2:2.0.0 BSI-DSZ-CC-1201-2022 Compare
secunet konnektor 2.0.0, Version 5.1.2:2.0.0 BSI-DSZ-CC-1044-V6-2022 Compare
secunet konnektor 2.1.0, Version 3.5.0:2.1.0 BSI-DSZ-CC-1128-V2-2020 Compare
secunet konnektor 2.1.0, Version 5.50.1:2.1.0 BSI-DSZ-CC-1218-2023 Compare
secunet Konnektor 2.1.0, Version 3.5.0:2.1.0 BSI-DSZ-CC-1157-2020 Compare
secunet konnektor 2.0.0, Version 5.0.5:2.0.0 BSI-DSZ-CC-1044-V5-2022 Compare
secunet konnektor 2.0.0, Version 5.0.5:2.0.0 BSI-DSZ-CC-1184-2022 Compare
secunet konnektor 2.1.0, Version 4.1.3:2.1.0 BSI-DSZ-CC-1174-2021 Compare
secunet konnektor 2.1.0, Version 4.1.3:2.1.0 BSI-DSZ-CC-1128-V3-2021 Compare
secunet konnektor 2.0.0 Version 3.5.0:2.0.0 BSI-DSZ-CC-1135-2020 Compare
secunet konnektor 2.0.0, Version 3.5.0:2.0.0 BSI-DSZ-CC-1044-V3-2020 Compare
secunet konnektor 2.0.0, Version 4.1.3:2.0.0 BSI-DSZ-CC-1044-V4-2021 Compare
secunet konnektor 2.0.0, Version 4.1.3:2.0.0 (PTV4 - EBK) BSI-DSZ-CC-1163-2021 Compare
HaltDos Mitigation Platform version 1.1 comprising of hdInspector version 1.0, hdDeviceUI version 2.0, hdDetectionService version 1.0 and hdCLI version 2.0. IC3S/BG01/HALTDOS/EAL2/0317/0008 Compare
- Kanguru Defender Elite 200 with Kanguru Defender Manager Elite 200, Firmware Version 02.03.10, KDME200 v2.0.0.0-2/3/6,- Kanguru Defender 2000 with Kanguru Defender Manager 2000, Firmware Version 02.03.10, KDM2000 v1.2.1.8-2/3/6,- Universal Kanguru Local Administrator, Version 3.2.0.3 and- Kanguru Remote Management Console, Version 5.0.2.6 BSI-DSZ-CC-0772-2014 Compare
NCR E10 New Generation FCR 2.0 (FCR Application Version 2.0, OpenSSL Version 1.0.2d Secure-IC firmware and hardware crypto library Version 0.0.6) 21.0.03/TSE-CCCS-48 Compare
Showing 5 out of 20.

Scheme data ?

Cert Id BSI-DSZ-CC-1128-V6-2023
Product secunet konnektor 2.1.0, Version 5.50.1:2.1.0
Vendor secunet Security Networks AG
Certification Date 19.10.2023
Category eHealth
Url https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html
Enhanced
Product secunet konnektor 2.1.0, Version 5.50.1:2.1.0
Applicant secunet Security Networks AG Kurfürstenstraße 58 45138 Essen
Evaluation Facility SRC Security Research & Consulting GmbH
Assurance Level EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4
Protection Profile Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021
Certification Date 19.10.2023
Expiration Date 18.10.2028
Entries [frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)', 'description': 'Hardware'}), frozendict({'id': 'BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)', 'description': 'Hardware'}), frozendict({'id': 'BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)', 'description': 'Server'}), frozendict({'id': 'BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)', 'description': 'Certificate'}), frozendict({'id': 'BSI-DSZ-CC-1128-V2-2020 (06.11.2020) Zertifizierungsreport / Certification Report', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}), frozendict({'id': 'BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)', 'description': '-instances of the net-connector which are installed on two separate circuit boards.'}), frozendict({'id': 'BSI-DSZ-CC-1128-2019 (20.12.2019) Zertifizierungsreport / Certification Report', 'description': 'Certificate'})]
Report Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile&v=1
Target Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile&v=1
Cert Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile&v=1
Description The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards.
Subcategory Software

References ?

Updates ?

  • 09.11.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The scheme_data property was set to {'cert_id': 'BSI-DSZ-CC-1128-V6-2023', 'product': 'secunet konnektor 2.1.0, Version 5.50.1:2.1.0', 'vendor': 'secunet Security Networks AG', 'certification_date': '2023-10-19', 'category': 'eHealth', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html', 'enhanced': {'product': 'secunet konnektor 2.1.0, Version 5.50.1:2.1.0', 'applicant': 'secunet Security Networks AG Kurfürstenstraße 58 45138 Essen', 'evaluation_facility': 'SRC Security Research & Consulting GmbH', 'assurance_level': 'EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4', 'protection_profile': 'Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021', 'certification_date': '2023-10-19', 'expiration_date': '2028-10-18', 'entries': [{'id': 'BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)', 'description': 'Hardware'}, {'id': 'BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022) Maintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)', 'description': 'Hardware'}, {'id': 'BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)', 'description': 'Server'}, {'id': 'BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)', 'description': 'Certificate'}, {'id': 'BSI-DSZ-CC-1128-V2-2020 (06.11.2020) Zertifizierungsreport / Certification Report', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)', 'description': '-instances of the net-connector which are installed on two separate circuit boards.'}, {'id': 'BSI-DSZ-CC-1128-2019 (20.12.2019) Zertifizierungsreport / Certification Report', 'description': 'Certificate'}], 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile&v=1', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile&v=1', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile&v=1', 'description': 'The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards.'}, 'subcategory': 'Software'}.
  • 22.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '6ee7f93dea2b743e1bfb8715f1023e0711e16ad324f65dcbdcd0d977cf850db1', 'txt_hash': '93c77ef3993fdc76a4426007a4716730b9fd9e48ac02d6b46380b0e5bfdb1ea1'} data.
    • The cert property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'ae956cdaeb7155d8f55bde1afb1da441cc75d2bc208d4916ecfba51e1e0c07e4', 'txt_hash': '021cb5cbd27482e8b9c6db7c58e116d9a8b332a2502ea8fde36888afd0dd3d8c'} data.

    The PDF extraction data was updated.

    • The st_metadata property was set to {'pdf_file_size_bytes': 1824868, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 154, '/Author': 'Röhnelt, Andreas', '/Creator': 'Microsoft® Word 2016', '/CreationDate': "D:20220303173233+01'00'", '/ModDate': "D:20220303173233+01'00'", '/Producer': 'Microsoft® Word 2016', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.rfc-editor.org/rfc/rfc4868.txt', 'http://tools.ietf.org/html/', 'http://www.rfc-editor.org/rfc/rfc2404.txt', 'http://www.rfc-editor.org/rfc/rfc4055.txt', 'http://tools.ietf.org/html/rfc958', 'http://www.ietf.org/rfc/rfc5280.txt', 'http://www.rfc-editor.org/rfc/rfc3602.txt', 'http://tools.ietf.org/html/rfc2663', 'http://www.gematik.de/', 'http://www.ietf.org/rfc/rfc7296.txt', 'http://www.ietf.org/rfc/rfc2132.txt', 'https://tools.ietf.org/html/rfc5639', 'http://www.bmg.bund.de/', 'http://www.rfc-editor.org/rfc/rfc8017.txt', 'http://www.rfc-editor.org/rfc/rfc3526.txt', 'http://tools.ietf.org/html/rfc4301', 'http://www.ietf.org/rfc/rfc5905.txt', 'http://tools.ietf.org/html/rfc5996', 'http://tools.ietf.org/html/rfc793', 'http://www.bundesnetzagentur.de/', 'http://tools.ietf.org/html/rfc1323', 'http://tools.ietf.org/html/rfc2401', 'http://www.ietf.org/rfc/rfc7027.txt', 'http://tools.ietf.org/html/rfc2406', 'http://tools.ietf.org/html/rfc2460', 'http://tools.ietf.org/html/rfc4330', 'http://www.eecis.udel.edu/~mills/ntp/html/release.html', 'http://www.ietf.org/rfc/rfc2406.txt', 'http://tools.ietf.org/html/rfc791', 'http://www.ietf.org/rfc/rfc4303.txt', 'http://tools.ietf.org/html/rfc2402', 'http://www.ietf.org/rfc/rfc2131.txt', 'http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf', 'http://www.dimdi.de/', 'http://tools.ietf.org/html/rfc4303', 'http://tools.ietf.org/html/rfc4302']}}.
    • The cert_metadata property was set to {'pdf_file_size_bytes': 396001, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informtionstechnik', '/CreationDate': "D:20220411134611+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor"', '/ModDate': "D:20220414110436+02'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'Zertifikat BSI-DSZ-CC-1128-V4-2022', '/Title': 'Zertifikat BSI-DSZ-CC-1128-V4-2022', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.
    • The st_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1128-V4-2021': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0097': 4, 'BSI-CC-PP-0098': 6, 'BSI-CC-PP-0097“': 2}}, 'cc_security_level': {'EAL': {'EAL3': 14}}, 'cc_sar': {'ADV': {'ADV_ARC': 2, 'ADV_FSP.4': 7, 'ADV_TDS.3': 7, 'ADV_IMP.1': 9, 'ADV_ARC.1': 1, 'ADV_TDS.2': 2, 'ADV_TDS.1': 1}, 'AGD': {'AGD_OPE.1': 13, 'AGD_OPE': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_DEL.1': 5, 'ALC_TAT.1': 8, 'ALC_FLR.2': 6}, 'ATE': {'ATE_DPT.1': 1}, 'AVA': {'AVA_VAN.5': 11, 'AVA_VAN': 1}}, 'cc_sfr': {'FAU': {'FAU_STG': 2, 'FAU_GEN': 16, 'FAU_GEN.1': 5, 'FAU_GEN.2': 1}, 'FCS': {'FCS_COP': 77, 'FCS_CKM.1': 14, 'FCS_CKM.4': 13, 'FCS_COP.1': 12, 'FCS_CKM': 86, 'FCS_CKM.2': 6}, 'FDP': {'FDP_IFC': 18, 'FDP_IFF': 20, 'FDP_IFF.1': 20, 'FDP_IFC.1': 7, 'FDP_RIP': 6, 'FDP_RIP.1': 1, 'FDP_ACC.1': 7, 'FDP_ACC': 11, 'FDP_ACF.1': 5, 'FDP_ACF': 5, 'FDP_ITC': 16, 'FDP_ITC.1': 15, 'FDP_UIT': 6, 'FDP_UIT.1': 2, 'FDP_ITC.2': 17, 'FDP_ETC': 8, 'FDP_ETC.2': 4}, 'FIA': {'FIA_UAU': 11, 'FIA_UID.1': 5, 'FIA_UID': 9, 'FIA_UAU.1': 2}, 'FMT': {'FMT_MTD.1': 2, 'FMT_MSA': 40, 'FMT_MSA.3': 7, 'FMT_MSA.1': 2, 'FMT_SMR.1': 28, 'FMT_SMR.1.1': 1, 'FMT_MOF': 12, 'FMT_MTD': 7, 'FMT_SMF.1': 4, 'FMT_SMF': 19, 'FMT_MOF.1': 1}, 'FPT': {'FPT_EMS': 16, 'FPT_EMS.1': 7, 'FPT_STM': 11, 'FPT_EMS.1.1': 2, 'FPT_EMS.1.2': 2, 'FPT_TDC': 22, 'FPT_STM.1': 2, 'FPT_TDC.1': 6, 'FPT_TST': 7, 'FPT_TST.1': 3}, 'FTP': {'FTP_ITC': 41, 'FTP_TRP': 13, 'FTP_ITC.1': 21, 'FTP_TRP.1': 6}}, 'cc_claims': {'O': {'O.NK': 190}, 'T': {'T.NK': 154}, 'A': {'A.NK': 63}, 'OE': {'OE.NK': 169}, 'OSP': {'OSP.NK': 22}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 23, 'AES-128': 3, 'AES-256': 2}, 'HPC': {'HPC': 1}}, 'constructions': {'MAC': {'HMAC': 33, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1}}}, 'asymmetric_crypto': {'RSA': {'RSA 2048': 1}, 'ECC': {'ECDSA': {'ECDSA': 4}, 'ECC': {'ECC': 5}}, 'FF': {'DH': {'Diffie-Hellman': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 5}, 'SHA2': {'SHA-256': 6, 'SHA-2': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 1}, 'KEX': {'Key Exchange': 4}}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 2}, 'TLS': {'TLS': 147, 'TLS 1.3': 2, 'TLS 1.2': 2}}, 'IKE': {'IKEv2': 8, 'IKE': 22}, 'IPsec': {'IPsec': 31}, 'VPN': {'VPN': 59}}, 'randomness': {'RNG': {'RNG': 14}}, 'cipher_mode': {'CBC': {'CBC': 3}, 'GCM': {'GCM': 4}}, 'ecc_curve': {'NIST': {'P-256': 2, 'P-384': 2}, 'Brainpool': {'brainpoolP256r1': 2, 'brainpoolP384r1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {'TLS': {'TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256': 3, 'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384': 2, 'TLS_DHE_RSA_WITH_AES_128_CBC_SHA': 3, 'TLS_DHE_RSA_WITH_AES_256_CBC_SHA': 3, 'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA': 3, 'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA': 3, 'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256': 3, 'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384': 3, 'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256': 3, 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384': 2, 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384132': 1}}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'side channel': 1}}, 'technical_report_id': {'BSI': {'BSI TR-03116-1': 2, 'BSI TR-03111': 2, 'BSI TR-03144': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {'STARCOS': {'STARCOS 3': 2}}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS PUB 180-4': 5, 'FIPS 197': 2, 'FIPS PUB 186-4': 2, 'FIPS 180-4': 1}, 'PKCS': {'PKCS#1': 2, 'PKCS#12': 2, 'PKCS #12': 1}, 'RFC': {'RFC 2131': 2, 'RFC 2132': 2, 'RFC 4301': 5, 'RFC 4303': 6, 'RFC 7296': 7, 'RFC 3602': 3, 'RFC 2404': 2, 'RFC 4868': 2, 'RFC 8017': 3, 'RFC 5246': 4, 'RFC-5639': 1, 'RFC-7027': 1, 'RFC 2104': 2, 'RFC 8422': 2, 'RFC 5289': 2, 'RFC 4055': 2, 'RFC 5639': 3, 'RFC 2402': 1, 'RFC 4302': 2, 'RFC 2406': 2, 'RFC 2401': 1, 'RFC 791': 1, 'RFC 2460': 1, 'RFC 2663': 1, 'RFC 958': 1, 'RFC 2560': 1, 'RFC 4330': 1, 'RFC 793': 1, 'RFC 1323': 1, 'RFC7296': 1, 'RFC 5905': 1, 'RFC 3526': 1, 'RFC 8446': 1, 'RFC 3268': 1, 'RFC 5280': 1, 'RFC 7027': 1}, 'X509': {'X.509': 16}, 'CC': {'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The cert_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1128-V4-2022': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0097-': 1}}, 'cc_security_level': {'EAL': {'EAL 3': 1, 'EAL 5': 1, 'EAL 4': 1, 'EAL 2': 1}}, 'cc_sar': {'ADV': {'ADV_FSP.4': 1, 'ADV_IMP.1': 1, 'ADV_TDS.3': 1}, 'ALC': {'ALC_TAT.1': 1, 'ALC_FLR.2': 1, 'ALC_FLR': 1}, 'AVA': {'AVA_VAN.5': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The st_filename property was set to 1128V4b_pdf.pdf.
    • The cert_filename property was set to 1128V4c_pdf.pdf.

    The computed heuristics were updated.

    • The report_references property was updated, with the {'directly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1128-V5-2022']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1128-V5-2022']}, 'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1128-V3-2021']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1044-V2-2019', 'BSI-DSZ-CC-1044-2019', 'BSI-DSZ-CC-1128-V3-2021']}} data.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}]} values added.
    • The scheme_data property was set to None.
  • 19.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '19378fb12202bcc589ebde2e2631e992bde3cdfd14127f8aee5e074323d9e6d3', 'txt_hash': '755347476f03b89d98f37213eb4f57b00fd13fc652082d21004531920c2b1569'} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to {'pdf_file_size_bytes': 605403, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 35, '/Author': 'Bundesamt für Sicherheit in der Informtionstechnik', '/CreationDate': "D:20220411134611+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor"', '/ModDate': "D:20220411151837+02'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'Zertifizierungsreport BSI-DSZ-CC-1128-V4-2022', '/Title': 'Zertifizierungsreport BSI-DSZ-CC-1128-V4-2022', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/', 'https://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/zertifizierung', 'https://www.bsi.bund.de/AIS', 'https://www.bsi.bund.de/zertifizierungsreporte', 'https://www.sogis.eu/']}}.
    • The report_frontpage property was set to {'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) zu (.+?) der (.*)'], 'cert_id': 'BSI-DSZ-CC-1128-V4-2022', 'cert_item': 'secunet konnektor 2.1.0, Version 5.0.5:2.1.0', 'developer': 'secunet Security Networks AG', 'cert_lab': 'BSI'}}.
    • The report_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1128-V4-2022': 17, 'BSI-DSZ-CC-1128-V3-2021': 2, 'BSI-DSZ-CC-1128-V4-2021': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0097-': 1, 'BSI-CC-PP-0097-V2-2020-MA-': 1, 'BSI-CC-PP-0097-2021': 1}}, 'cc_security_level': {'EAL': {'EAL 3': 4, 'EAL 5': 1, 'EAL 4': 4, 'EAL 2': 3, 'EAL 1': 1, 'EAL 5+': 1, 'EAL 6': 1}}, 'cc_sar': {'ADV': {'ADV_FSP.4': 4, 'ADV_IMP.1': 4, 'ADV_TDS.3': 4}, 'ALC': {'ALC_TAT.1': 4, 'ALC_FLR.2': 4, 'ALC_FLR': 3, 'ALC_CMS.4': 1, 'ALC_CMS': 1}, 'AVA': {'AVA_VAN.5': 6, 'AVA_ACC': 1}}, 'cc_sfr': {'FCS': {'FCS_COP': 11, 'FCS_CKM.1': 1, 'FCS_CKM': 5}, 'FDP': {'FDP_ITC': 2, 'FDP_UIT': 2}, 'FPT': {'FPT_TDC': 9}, 'FTP': {'FTP_ITC': 3, 'FTP_TRP': 1}}, 'cc_claims': {'OE': {'OE.NK': 4}}, 'vendor': {}, 'eval_facility': {'SRC': {'SRC Security Research & Consulting': 4}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 9}}, 'constructions': {'MAC': {'HMAC': 12, 'HMAC-SHA-256': 2, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 3}, 'ECDSA': {'ECDSA': 6}, 'ECC': {'ECC': 3}}, 'FF': {'DH': {'Diffie-Hellman': 3, 'DH': 7}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 1}, 'SHA2': {'SHA-256': 5, 'SHA-512': 1}}}, 'crypto_scheme': {'KEX': {'Key Exchange': 4}, 'AEAD': {'AEAD': 1}}, 'crypto_protocol': {'TLS': {'TLS': {'TLS': 35, 'TLS v1.2': 7, 'TLSv1.2': 1}}, 'IKE': {'IKEv2': 9, 'IKE': 3}, 'IPsec': {'IPsec': 8}, 'VPN': {'VPN': 8}}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 1}, 'GCM': {'GCM': 5}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI TR-02102': 1, 'BSI TR-03116-1': 1, 'BSI TR-03154': 1, 'BSI TR-03155': 1, 'BSI TR-03157': 2, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {'STARCOS': {'STARCOS 3': 2}}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS180-4': 5, 'FIPS 180-4': 8, 'FIPS186-4': 2, 'FIPS 197': 3, 'FIPS PUB 180-4': 1, 'FIPS197': 1}, 'NIST': {'SP 800-38D': 1}, 'PKCS': {'PKCS#1': 3, 'PKCS#12': 1}, 'BSI': {'AIS 34': 2, 'AIS 20': 2, 'AIS 32': 1}, 'RFC': {'RFC8017': 3, 'RFC-5639': 2, 'RFC-8017': 5, 'RFC-6931': 1, 'RFC3526': 2, 'RFC7296': 3, 'RFC-5246': 4, 'RFC-3268': 3, 'RFC-4492': 2, 'RFC-3526': 1, 'RFC 7027': 1, 'RFC-2404': 2, 'RFC-2104': 3, 'RFC4055': 1, 'RFC5280': 1, 'RFC7292': 1, 'RFC-4868': 1, 'RFC-7296': 2, 'RFC-3602': 2, 'RFC-4303': 2, 'RFC-4301': 2, 'RFC-5289': 1, 'RFC-5116': 1, 'RFC-4880': 1, 'RFC2104': 1, 'RFC 2104': 1, 'RFC2404': 1, 'RFC3268': 1, 'RFC 3268': 1, 'RFC3602': 1, 'RFC4301': 1, 'RFC4303': 1, 'RFC4346': 1, 'RFC4868': 1, 'RFC4880': 1, 'RFC5246': 1, 'RFC5289': 1, 'RFC5996': 1, 'RFC7027': 1}, 'ISO': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}, 'X509': {'X.509': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The report_filename property was set to 1128V4a_pdf.pdf.

    The computed heuristics were updated.

    • The cert_lab property was set to ['BSI'].
    • The cert_id property was set to BSI-DSZ-CC-1128-V4-2022.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}]} values added.
  • 17.08.2024 The certificate data changed.
    Certificate changed

    The report_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1128V4a_pdf.pdf.

    The st_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1128V4b_pdf.pdf.

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
    • The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
    • The cert property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to None.
    • The st_metadata property was set to None.
    • The cert_metadata property was set to None.
    • The report_frontpage property was set to None.
    • The report_keywords property was set to None.
    • The st_keywords property was set to None.
    • The cert_keywords property was set to None.
    • The report_filename property was set to None.
    • The st_filename property was set to None.
    • The cert_filename property was set to None.

    The computed heuristics were updated.

    • The cert_lab property was set to None.
    • The cert_id property was set to None.
    • The report_references property was updated, with the {'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None} data.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}]} values discarded.
    • The scheme_data property was set to {'cert_id': 'BSI-DSZ-CC-1044-V7-2023', 'product': 'secunet konnektor 2.0.0 und 2.0.1, Version 5.50.1:2.0.0 und 5.50.1:2.0.1', 'vendor': 'secunet Security Networks AG', 'certification_date': '19.10.2023', 'category': 'eHealth', 'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1044_1044V2_1044V3_1044V4_1044V5_1044V6_1044V7.html', 'enhanced': {'product': 'secunet konnektor 2.0.0 und 2.0.1, Version 5.50.1:2.0.0 und 5.50.1:2.0.1', 'applicant': 'secunet Security Networks AG\nKurfürstenstraße 58\n45138 Essen', 'evaluation_facility': 'SRC Security Research & Consulting GmbH', 'assurance_level': 'EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4', 'protection_profile': 'Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021', 'certification_date': '19.10.2023', 'expiration_date': '18.10.2028', 'entries': [{'id': 'BSI-DSZ-CC-1044-V7-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1044-V7-2023 (Ausstellungsdatum / Certification Date 19.10.2023, gültig bis / valid until 18.10.2028)', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1044-V6-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1044-V6-2022 (Ausstellungsdatum / Certification Date 09.09.2022, gültig bis / valid until 08.09.2027)', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1044-V5-2022 (Ausstellungsdatum / Certification Date 08.04.2022, gültig bis / valid until 07.04.2027)', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1044-V4-2021 (Ausstellungsdatum / Certification Date 16.07.2021, gültig bis / valid until 15.07.2026)', 'description': ')'}, {'id': 'BSI-DSZ-CC-1044-V3-2020 (Ausstellungsdatum / Certification Date 06.11.2020, gültig bis / valid until 05.11.2025)', 'description': 'The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.'}, {'id': 'BSI-DSZ-CC-1044-V2-2019-MA-01 (Ausstellungsdatum / Certification Date 10.06.2020)\nMaintenance Report', 'description': 'is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration."'}, {'id': 'BSI-DSZ-CC-1044-V2-2019 (Ausstellungsdatum / Certification Date 13.11.2019, gültig bis / valid until 12.11.2024)', 'description': 'Certificate'}, {'id': 'BSI-DSZ-CC-1044-2019-MA-02 (Ausstellungsdatum / Certification Date 19.09.2019)\nMaintanance Report', 'description': 'Maintanance Report'}, {'id': 'BSI-DSZ-CC-1044-2019_MA-01 (Ausstellungsdatum / Certification Date 06.06.2019)\nMaintenance Report', 'description': 'The change compared to the certified product was made at the level of adjustment of the guidance document.'}, {'id': 'BSI-DSZ-CC-1044-2019 (Ausstellungsdatum / Certification Date 25.01.2019, gültig bis / valid until 24.01.2024)\nZertifizierungsreport / Certification Report', 'description': 'Certificate'}], 'report_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1044V7a_pdf.pdf?__blob=publicationFile&v=1', 'target_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1044V7b_pdf.pdf?__blob=publicationFile&v=1', 'cert_link': 'https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1044V7c_pdf.pdf?__blob=publicationFile&v=1', 'description': 'Target of evaluation (TOE) is the product secunet konnektor 2.0.0 provided by secunet Security Networks AG. The TOE is a pure software TOE consisting of the Netzkonnektor as specified in the protection profile Common Criteria Schutzprofil (Protection Profile), Schutzprofil 1: Anforderungen an den Netzkonnektor, BSI-CC-PP-0097, Version 1.5, 27.04.2018, Bundesamt für Sicherheit in der Informationstechnik (BSI)'}, 'subcategory': 'Software'}.
  • 12.08.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The report_references property was updated, with the {'indirectly_referencing': {'__discard__': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1044-2019']}}} data.
  • 23.07.2024 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name secunet konnektor 2.1.0, Version 5.0.5:2.1.0 was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Key Management Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1128V4c_pdf.pdf",
  "dgst": "e7f32273d0c69183",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "BSI-DSZ-CC-1128-V4-2022",
    "cert_lab": [
      "BSI"
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_DPT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_TAT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_IMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_ARC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 5
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DEL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_TDS",
          "level": 3
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "2.1.0",
        "5.0.5"
      ]
    },
    "indirect_transitive_cves": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1128-V5-2022"
        ]
      },
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1128-V3-2021"
        ]
      },
      "indirectly_referenced_by": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1128-V5-2022"
        ]
      },
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1044-V2-2019",
          "BSI-DSZ-CC-1128-V3-2021",
          "BSI-DSZ-CC-1044-2019"
        ]
      }
    },
    "scheme_data": {
      "category": "eHealth",
      "cert_id": "BSI-DSZ-CC-1128-V6-2023",
      "certification_date": "2023-10-19",
      "enhanced": {
        "applicant": "secunet Security Networks AG Kurf\u00fcrstenstra\u00dfe 58 45138 Essen",
        "assurance_level": "EAL3,AVA_VAN.5,ALC_TAT.1,ALC_FLR.2,ADV_TDS.3,ADV_IMP.1,ADV_FSP.4",
        "cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6c_pdf.pdf?__blob=publicationFile\u0026v=1",
        "certification_date": "2023-10-19",
        "description": "The Target of evaluation (TOE) is a pure software TOE consisting of the net connector (Netzkonnektor) as specified in the protection Profile BSI-CC-PP-0097. The net connectorincludes the security functionality of a firewall and a VPN client as well as a NTP Server, a name service (DNS) and a DHCP service. It also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the connektor and it is delivered pre-installed on exactly one hardware configuration which includes two instances of the net connector which are installed on two separate circuit boards.",
        "entries": [
          {
            "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
            "id": "BSI-DSZ-CC-1128-V6-2023-MA-02 (Ausstellungsdatum / Certification Date 19.08.2024) Maintenance Report"
          },
          {
            "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
            "id": "BSI-DSZ-CC-1128-V6-2023-MA-01 (Ausstellungsdatum / Certification Date 31.10.2023) Maintenance Report"
          },
          {
            "description": "Hardware",
            "id": "BSI-DSZ-CC-1128-V6-2023 (Ausstellungsdatum / Certification Date 19.10.2023, g\u00fcltig bis / valid until 18.10.2028)"
          },
          {
            "description": "is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
            "id": "BSI-DSZ-CC-1128-V5-2022-MA-01 (Ausstellungsdatum / Certification Date 21.11.2022) Maintenance Report"
          },
          {
            "description": "Hardware",
            "id": "BSI-DSZ-CC-1128-V5-2022 (Ausstellungsdatum / Certification Date 09.09.2022, g\u00fcltig bis / valid until 08.09.2027)"
          },
          {
            "description": "Server",
            "id": "BSI-DSZ-CC-1128-V4-2022 (Ausstellungsdatum / Certification Date 08.04.2022, g\u00fcltig bis / valid until 07.04.2027)"
          },
          {
            "description": "Certificate",
            "id": "BSI-DSZ-CC-1128-V3-2021 (Ausstellungsdatum / Certification Date 16.07.2021, g\u00fcltig bis / valid until 15.07.2026)"
          },
          {
            "description": "The Target of evaluation (TOE) is a software product consisting of the Netzkonnektor as specified in the Protection Profile BSI-CC-PP-0097. The Netzkonnektor includes the security functionality of a Firewall, a VPN-client, an NTP Server, a name service (DNS) and a DHCP service. The TOE also includes the basic functions for establishment of secure TLS connections to other IT products. The TOE is part of the Konnektor and it is delivered pre-installed on exactly one hardware-configuration.",
            "id": "BSI-DSZ-CC-1128-V2-2020 (06.11.2020) Zertifizierungsreport / Certification Report"
          },
          {
            "description": "-instances of the net-connector which are installed on two separate circuit boards.",
            "id": "BSI-DSZ-CC- 1128-2019-MA-01 (10.06.2020)"
          },
          {
            "description": "Certificate",
            "id": "BSI-DSZ-CC-1128-2019 (20.12.2019) Zertifizierungsreport / Certification Report"
          }
        ],
        "evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
        "expiration_date": "2028-10-18",
        "product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0",
        "protection_profile": "Common Criteria Schutzprofil (Protection Profile) Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.6, BSI-CC-PP-0097-V2-2020-MA-01 vom 15.04.2021",
        "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6a_pdf.pdf?__blob=publicationFile\u0026v=1",
        "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1128V6b_pdf.pdf?__blob=publicationFile\u0026v=1"
      },
      "product": "secunet konnektor 2.1.0, Version 5.50.1:2.1.0",
      "subcategory": "Software",
      "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_Software/1128_1128V2_1128V3_1128V4_1128V5_1128V6.html",
      "vendor": "secunet Security Networks AG"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "Secunet Security Networks AG",
  "manufacturer_web": "https://www.secunet.com/en/",
  "name": "secunet konnektor 2.1.0, Version 5.0.5:2.1.0",
  "not_valid_after": "2027-04-07",
  "not_valid_before": "2022-04-08",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "1128V4c_pdf.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1128-V4-2022": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0097-": 1
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_FSP.4": 1,
          "ADV_IMP.1": 1,
          "ADV_TDS.3": 1
        },
        "ALC": {
          "ALC_FLR": 1,
          "ALC_FLR.2": 1,
          "ALC_TAT.1": 1
        },
        "AVA": {
          "AVA_VAN.5": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 2": 1,
          "EAL 3": 1,
          "EAL 4": 1,
          "EAL 5": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408": 2,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informtionstechnik",
      "/CreationDate": "D:20220411134611+02\u002700\u0027",
      "/Creator": "Writer",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor\"",
      "/ModDate": "D:20220414110436+02\u002700\u0027",
      "/Producer": "LibreOffice 6.3",
      "/Subject": "Zertifikat BSI-DSZ-CC-1128-V4-2022",
      "/Title": "Zertifikat BSI-DSZ-CC-1128-V4-2022",
      "pdf_file_size_bytes": 396001,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "1128V4a_pdf.pdf",
    "report_frontpage": {
      "DE": {
        "cert_id": "BSI-DSZ-CC-1128-V4-2022",
        "cert_item": "secunet konnektor 2.1.0, Version 5.0.5:2.1.0",
        "cert_lab": "BSI",
        "developer": "secunet Security Networks AG",
        "match_rules": [
          "(BSI-DSZ-CC-.+?) zu (.+?) der (.*)"
        ]
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 3
          },
          "ECDH": {
            "ECDH": 3
          },
          "ECDSA": {
            "ECDSA": 6
          }
        },
        "FF": {
          "DH": {
            "DH": 7,
            "Diffie-Hellman": 3
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1128-V3-2021": 2,
          "BSI-DSZ-CC-1128-V4-2021": 1,
          "BSI-DSZ-CC-1128-V4-2022": 17
        }
      },
      "cc_claims": {
        "OE": {
          "OE.NK": 4
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0097-": 1,
          "BSI-CC-PP-0097-2021": 1,
          "BSI-CC-PP-0097-V2-2020-MA-": 1
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_FSP.4": 4,
          "ADV_IMP.1": 4,
          "ADV_TDS.3": 4
        },
        "ALC": {
          "ALC_CMS": 1,
          "ALC_CMS.4": 1,
          "ALC_FLR": 3,
          "ALC_FLR.2": 4,
          "ALC_TAT.1": 4
        },
        "AVA": {
          "AVA_ACC": 1,
          "AVA_VAN.5": 6
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 2": 3,
          "EAL 3": 4,
          "EAL 4": 4,
          "EAL 5": 1,
          "EAL 5+": 1,
          "EAL 6": 1
        }
      },
      "cc_sfr": {
        "FCS": {
          "FCS_CKM": 5,
          "FCS_CKM.1": 1,
          "FCS_COP": 11
        },
        "FDP": {
          "FDP_ITC": 2,
          "FDP_UIT": 2
        },
        "FPT": {
          "FPT_TDC": 9
        },
        "FTP": {
          "FTP_ITC": 3,
          "FTP_TRP": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        },
        "GCM": {
          "GCM": 5
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 3,
          "IKEv2": 9
        },
        "IPsec": {
          "IPsec": 8
        },
        "TLS": {
          "TLS": {
            "TLS": 35,
            "TLS v1.2": 7,
            "TLSv1.2": 1
          }
        },
        "VPN": {
          "VPN": 8
        }
      },
      "crypto_scheme": {
        "AEAD": {
          "AEAD": 1
        },
        "KEX": {
          "Key Exchange": 4
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "SRC": {
          "SRC Security Research \u0026 Consulting": 4
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 1
          },
          "SHA2": {
            "SHA-256": 5,
            "SHA-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {
        "STARCOS": {
          "STARCOS 3": 2
        }
      },
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "BSI": {
          "AIS 20": 2,
          "AIS 32": 1,
          "AIS 34": 2
        },
        "FIPS": {
          "FIPS 180-4": 8,
          "FIPS 197": 3,
          "FIPS PUB 180-4": 1,
          "FIPS180-4": 5,
          "FIPS186-4": 2,
          "FIPS197": 1
        },
        "ISO": {
          "ISO/IEC 15408": 4,
          "ISO/IEC 17065": 2,
          "ISO/IEC 18045": 4
        },
        "NIST": {
          "SP 800-38D": 1
        },
        "PKCS": {
          "PKCS#1": 3,
          "PKCS#12": 1
        },
        "RFC": {
          "RFC 2104": 1,
          "RFC 3268": 1,
          "RFC 7027": 1,
          "RFC-2104": 3,
          "RFC-2404": 2,
          "RFC-3268": 3,
          "RFC-3526": 1,
          "RFC-3602": 2,
          "RFC-4301": 2,
          "RFC-4303": 2,
          "RFC-4492": 2,
          "RFC-4868": 1,
          "RFC-4880": 1,
          "RFC-5116": 1,
          "RFC-5246": 4,
          "RFC-5289": 1,
          "RFC-5639": 2,
          "RFC-6931": 1,
          "RFC-7296": 2,
          "RFC-8017": 5,
          "RFC2104": 1,
          "RFC2404": 1,
          "RFC3268": 1,
          "RFC3526": 2,
          "RFC3602": 1,
          "RFC4055": 1,
          "RFC4301": 1,
          "RFC4303": 1,
          "RFC4346": 1,
          "RFC4868": 1,
          "RFC4880": 1,
          "RFC5246": 1,
          "RFC5280": 1,
          "RFC5289": 1,
          "RFC5996": 1,
          "RFC7027": 1,
          "RFC7292": 1,
          "RFC7296": 3,
          "RFC8017": 3
        },
        "X509": {
          "X.509": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 9
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 12,
            "HMAC-SHA-256": 2,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI 7148": 1,
          "BSI TR-02102": 1,
          "BSI TR-03116-1": 1,
          "BSI TR-03154": 1,
          "BSI TR-03155": 1,
          "BSI TR-03157": 2
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informtionstechnik",
      "/CreationDate": "D:20220411134611+02\u002700\u0027",
      "/Creator": "Writer",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, eHealth, Konnektor\"",
      "/ModDate": "D:20220411151837+02\u002700\u0027",
      "/Producer": "LibreOffice 6.3",
      "/Subject": "Zertifizierungsreport BSI-DSZ-CC-1128-V4-2022",
      "/Title": "Zertifizierungsreport BSI-DSZ-CC-1128-V4-2022",
      "pdf_file_size_bytes": 605403,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.commoncriteriaportal.org/",
          "https://www.bsi.bund.de/AIS",
          "https://www.bsi.bund.de/zertifizierungsreporte",
          "https://www.bsi.bund.de/zertifizierung",
          "https://www.bsi.bund.de/",
          "https://www.sogis.eu/",
          "https://www.commoncriteriaportal.org/cc/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 35
    },
    "st_filename": "1128V4b_pdf.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 5
          },
          "ECDSA": {
            "ECDSA": 4
          }
        },
        "FF": {
          "DH": {
            "Diffie-Hellman": 1
          }
        },
        "RSA": {
          "RSA 2048": 1
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1128-V4-2021": 1
        }
      },
      "cc_claims": {
        "A": {
          "A.NK": 63
        },
        "O": {
          "O.NK": 190
        },
        "OE": {
          "OE.NK": 169
        },
        "OSP": {
          "OSP.NK": 22
        },
        "T": {
          "T.NK": 154
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0097": 4,
          "BSI-CC-PP-0097\u201c": 2,
          "BSI-CC-PP-0098": 6
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 2,
          "ADV_ARC.1": 1,
          "ADV_FSP.4": 7,
          "ADV_IMP.1": 9,
          "ADV_TDS.1": 1,
          "ADV_TDS.2": 2,
          "ADV_TDS.3": 7
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_OPE.1": 13,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_DEL.1": 5,
          "ALC_FLR.2": 6,
          "ALC_TAT.1": 8
        },
        "ATE": {
          "ATE_DPT.1": 1
        },
        "AVA": {
          "AVA_VAN": 1,
          "AVA_VAN.5": 11
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL3": 14
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN": 16,
          "FAU_GEN.1": 5,
          "FAU_GEN.2": 1,
          "FAU_STG": 2
        },
        "FCS": {
          "FCS_CKM": 86,
          "FCS_CKM.1": 14,
          "FCS_CKM.2": 6,
          "FCS_CKM.4": 13,
          "FCS_COP": 77,
          "FCS_COP.1": 12
        },
        "FDP": {
          "FDP_ACC": 11,
          "FDP_ACC.1": 7,
          "FDP_ACF": 5,
          "FDP_ACF.1": 5,
          "FDP_ETC": 8,
          "FDP_ETC.2": 4,
          "FDP_IFC": 18,
          "FDP_IFC.1": 7,
          "FDP_IFF": 20,
          "FDP_IFF.1": 20,
          "FDP_ITC": 16,
          "FDP_ITC.1": 15,
          "FDP_ITC.2": 17,
          "FDP_RIP": 6,
          "FDP_RIP.1": 1,
          "FDP_UIT": 6,
          "FDP_UIT.1": 2
        },
        "FIA": {
          "FIA_UAU": 11,
          "FIA_UAU.1": 2,
          "FIA_UID": 9,
          "FIA_UID.1": 5
        },
        "FMT": {
          "FMT_MOF": 12,
          "FMT_MOF.1": 1,
          "FMT_MSA": 40,
          "FMT_MSA.1": 2,
          "FMT_MSA.3": 7,
          "FMT_MTD": 7,
          "FMT_MTD.1": 2,
          "FMT_SMF": 19,
          "FMT_SMF.1": 4,
          "FMT_SMR.1": 28,
          "FMT_SMR.1.1": 1
        },
        "FPT": {
          "FPT_EMS": 16,
          "FPT_EMS.1": 7,
          "FPT_EMS.1.1": 2,
          "FPT_EMS.1.2": 2,
          "FPT_STM": 11,
          "FPT_STM.1": 2,
          "FPT_TDC": 22,
          "FPT_TDC.1": 6,
          "FPT_TST": 7,
          "FPT_TST.1": 3
        },
        "FTP": {
          "FTP_ITC": 41,
          "FTP_ITC.1": 21,
          "FTP_TRP": 13,
          "FTP_TRP.1": 6
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "GCM": {
          "GCM": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKE": 22,
          "IKEv2": 8
        },
        "IPsec": {
          "IPsec": 31
        },
        "TLS": {
          "SSL": {
            "SSL": 2
          },
          "TLS": {
            "TLS": 147,
            "TLS 1.2": 2,
            "TLS 1.3": 2
          }
        },
        "VPN": {
          "VPN": 59
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key Exchange": 4
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 2,
          "brainpoolP384r1": 1
        },
        "NIST": {
          "P-256": 2,
          "P-384": 2
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 5
          },
          "SHA2": {
            "SHA-2": 2,
            "SHA-256": 6
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {
        "STARCOS": {
          "STARCOS 3": 2
        }
      },
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 14
        }
      },
      "side_channel_analysis": {
        "SCA": {
          "side channel": 1
        }
      },
      "standard_id": {
        "CC": {
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1,
          "CCMB-2017-04-004": 1
        },
        "FIPS": {
          "FIPS 180-4": 1,
          "FIPS 197": 2,
          "FIPS PUB 180-4": 5,
          "FIPS PUB 186-4": 2
        },
        "PKCS": {
          "PKCS #12": 1,
          "PKCS#1": 2,
          "PKCS#12": 2
        },
        "RFC": {
          "RFC 1323": 1,
          "RFC 2104": 2,
          "RFC 2131": 2,
          "RFC 2132": 2,
          "RFC 2401": 1,
          "RFC 2402": 1,
          "RFC 2404": 2,
          "RFC 2406": 2,
          "RFC 2460": 1,
          "RFC 2560": 1,
          "RFC 2663": 1,
          "RFC 3268": 1,
          "RFC 3526": 1,
          "RFC 3602": 3,
          "RFC 4055": 2,
          "RFC 4301": 5,
          "RFC 4302": 2,
          "RFC 4303": 6,
          "RFC 4330": 1,
          "RFC 4868": 2,
          "RFC 5246": 4,
          "RFC 5280": 1,
          "RFC 5289": 2,
          "RFC 5639": 3,
          "RFC 5905": 1,
          "RFC 7027": 1,
          "RFC 7296": 7,
          "RFC 791": 1,
          "RFC 793": 1,
          "RFC 8017": 3,
          "RFC 8422": 2,
          "RFC 8446": 1,
          "RFC 958": 1,
          "RFC-5639": 1,
          "RFC-7027": 1,
          "RFC7296": 1
        },
        "X509": {
          "X.509": 16
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 23,
            "AES-128": 3,
            "AES-256": 2
          },
          "HPC": {
            "HPC": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 33,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI TR-03111": 2,
          "BSI TR-03116-1": 2,
          "BSI TR-03144": 1
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {
        "TLS": {
          "TLS_DHE_RSA_WITH_AES_128_CBC_SHA": 3,
          "TLS_DHE_RSA_WITH_AES_256_CBC_SHA": 3,
          "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 3,
          "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 2,
          "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA": 3,
          "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256": 3,
          "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": 3,
          "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA": 3,
          "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384": 3,
          "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384": 2,
          "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384132": 1
        }
      },
      "vendor": {},
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "R\u00f6hnelt, Andreas",
      "/CreationDate": "D:20220303173233+01\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2016",
      "/ModDate": "D:20220303173233+01\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2016",
      "pdf_file_size_bytes": 1824868,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://tools.ietf.org/html/rfc4303",
          "http://www.ietf.org/rfc/rfc2131.txt",
          "http://www.ietf.org/rfc/rfc2132.txt",
          "http://www.rfc-editor.org/rfc/rfc8017.txt",
          "http://tools.ietf.org/html/rfc791",
          "http://tools.ietf.org/html/",
          "http://tools.ietf.org/html/rfc4330",
          "http://www.rfc-editor.org/rfc/rfc3526.txt",
          "http://www.rfc-editor.org/rfc/rfc4868.txt",
          "http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
          "http://www.ietf.org/rfc/rfc7296.txt",
          "http://tools.ietf.org/html/rfc4302",
          "http://tools.ietf.org/html/rfc2402",
          "http://tools.ietf.org/html/rfc2401",
          "http://www.ietf.org/rfc/rfc5905.txt",
          "http://www.ietf.org/rfc/rfc7027.txt",
          "http://tools.ietf.org/html/rfc2663",
          "http://tools.ietf.org/html/rfc1323",
          "http://www.bundesnetzagentur.de/",
          "http://www.rfc-editor.org/rfc/rfc4055.txt",
          "http://www.rfc-editor.org/rfc/rfc2404.txt",
          "http://www.ietf.org/rfc/rfc4303.txt",
          "http://tools.ietf.org/html/rfc4301",
          "http://www.eecis.udel.edu/~mills/ntp/html/release.html",
          "http://tools.ietf.org/html/rfc5996",
          "http://www.rfc-editor.org/rfc/rfc3602.txt",
          "http://tools.ietf.org/html/rfc2460",
          "http://www.bmg.bund.de/",
          "https://tools.ietf.org/html/rfc5639",
          "http://www.dimdi.de/",
          "http://www.gematik.de/",
          "http://www.ietf.org/rfc/rfc2406.txt",
          "http://tools.ietf.org/html/rfc958",
          "http://tools.ietf.org/html/rfc793",
          "http://tools.ietf.org/html/rfc2406",
          "http://www.ietf.org/rfc/rfc5280.txt"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 154
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": null,
        "pp_ids": null,
        "pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0097V2b_pdf.pdf",
        "pp_name": "Schutzprofil 1: Anforderungen an den Netzkonnektor, Version 1.6.4"
      }
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1128V4a_pdf.pdf",
  "scheme": "DE",
  "security_level": {
    "_type": "Set",
    "elements": [
      "ALC_TAT.1",
      "ADV_TDS.3",
      "ALC_FLR.2",
      "EAL3+",
      "AVA_VAN.5",
      "ADV_IMP.1",
      "ADV_FSP.4"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1128V4b_pdf.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "ae956cdaeb7155d8f55bde1afb1da441cc75d2bc208d4916ecfba51e1e0c07e4",
      "txt_hash": "021cb5cbd27482e8b9c6db7c58e116d9a8b332a2502ea8fde36888afd0dd3d8c"
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "19378fb12202bcc589ebde2e2631e992bde3cdfd14127f8aee5e074323d9e6d3",
      "txt_hash": "755347476f03b89d98f37213eb4f57b00fd13fc652082d21004531920c2b1569"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "6ee7f93dea2b743e1bfb8715f1023e0711e16ad324f65dcbdcd0d977cf850db1",
      "txt_hash": "93c77ef3993fdc76a4426007a4716730b9fd9e48ac02d6b46380b0e5bfdb1ea1"
    }
  },
  "status": "active"
}