TAXSAYA Online Version 1.5.0.12
CSV information ?
Status | archived |
---|---|
Valid from | 15.08.2013 |
Valid until | 15.08.2018 |
Scheme | 🇲🇾 MY |
Manufacturer | EA Link System Sdn Bhd |
Category | Other Devices and Systems |
Security level | EAL1 |
Heuristics summary ?
Certificate ?
Certification report ?
Extracted keywords
Protocols
SSLVendor
MicrosoftSecurity level
EAL1Security Assurance Requirements (SAR)
ALC_DELSecurity Functional Requirements (SFR)
FAU_GEN.1, FAU_GEN.2, FDP_ETC.2, FDP_ACC.1, FDP_ACF.1.1, FDP_ACF.1.3, FIA_UAU.2, FIA_UID.2, FIA_AFL.1, FIA_SOS.1, FIA_ATD.1, FMT_SMF.1, FMT_SMR.1, FMT_MSA.1, FMT_MSA.3Certificates
ISCB-5-RPT-C038-CR-v1aStandards
ISO/IEC15408, ISO/IEC 18045File metadata
Title | C038 Certification Report |
---|---|
Subject | TAXSAYA Online Version 1.5.0.12 |
Keywords | TAXSAYA |
Author | ISCB Department |
Creation date | D:20130821145725+08'00' |
Modification date | D:20130821145730+08'00' |
Pages | 29 |
Creator | Acrobat PDFMaker 10.1 for Word |
Producer | Adobe PDF Library 10.0 |
Security target ?
Extracted keywords
Protocols
SSLVendor
MicrosoftSecurity level
EAL1, EAL 1Claims
OE.USERS, OE.PHYSICAL, OE.HARDENED, OE.BACKUP, OE.SECCOMCHANNELSecurity Assurance Requirements (SAR)
ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_GEN.1, FAU_GEN.2, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FDP_ACC.1, FDP_ACF.1, FDP_ETC.2, FDP_IFC.1, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_ETC.2.1, FDP_ETC.2.2, FDP_ETC.2.3, FDP_ETC.2.4, FIA_SOS, FIA_UID.1, FIA_AFL.1, FIA_ATD.1, FIA_SOS.1, FIA_UAU.2, FIA_UID.2, FIA_AFL.1.1, FIA_AFL.1.2, FIA_ATD.1.1, FIA_SOS.1.1, FIA_UAU.2.1, FIA_UID.2.1, FMT_MSA.3, FMT_MSA.1, FMT_SMR.1, FMT_SMF.1, FMT_MSA.1.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FPT_STM.1File metadata
Title | CERTIFIED PERSONAL TAXATION SOFTWARE |
---|---|
Subject | SECURITY TARGET FOR THE CC EVALUATION |
Author | Mehmet ÇAKIR |
Creation date | D:20130523115234+08'00' |
Modification date | D:20130523115234+08'00' |
Pages | 18 |
Creator | Microsoft® Word 2010 Trial |
Producer | Microsoft® Word 2010 Trial |
Heuristics ?
Extracted SARs
ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_TSS.1, ATE_IND.1, AVA_VAN.1Scheme data ?
Cert No | 2013-006-C038 | |
---|---|---|
Developer | EA Link System Sdn Bhd | |
Level | EAL1 | |
Product | TAXSAYA Online Version 1.5.0.12 | |
Certification Date | 15.08.2013 | |
Expiration Date | 15.08.2018 | |
Recognition | CCRA | |
Url | https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/148 | |
Enhanced | ||
Cert Id | C038 | |
Product | TAXSAYA Online Version 1.5.0.12 | |
Developer | Trevor KeeganB2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: [email protected]: +603 8315 6020Fax: +603 8315 6021 | |
Category | Other Devices and Systems | |
Type | Web based frontend to the Microsoft Certification Authority (CA) services | |
Scope | The Target of Evaluation (TOE), TAXSAYA Online Version 1.5.0.12 (hereafter referred as TAXSAYA) is a web application designed to assist tax payers to prepare and submit their tax returns. The TOE is hosted by Microsoft Azure servers and can be accessed via Internet Explorer or Firefox. In order to restrict the access to the TOE, users are required to login using username and password. After successfully identified and authenticated, the users are prompted to provide necessary information in order to prepare their tax returns. TOE provides a tax wizard function to support users to fill all the required fields to complete the operation. A tax optimiser provides the Taxpayers with suggested tax savings. The final tax file can either be printed or automatically filed and upload to the Tax Department (E-Hasil). In the context of the evaluation, the TOE provides the following major security features: Audit Logs - the TOE generates audit logs for the auditable events listed in section 5.1.1 of the Security Target. These audit records can only be reviewed by TAXSAYA administrators. Audit review and actions taken according to the audit logs are outside the scope of the evaluation and certification. Identification and Authentication – TOE identifies and authenticates its users before any action. All registered users have a Username and Password in order to complete the identification and authentication process. Tax Data Export - TOE provides a secure data export to the e-Hasil site by using the security attributes of the users. Users can upload their tax data to the e-Hasil site in order to complete the tax claim process. Management of Security Attributes - TOE support the management of security attributes belong to the users such as Username, Password and IC Number. The management functions include: i) Roles management, ii) Allow/deny access attempts, iii) Enforce access control policy, and iv) Manage user session. | |
Assurance Level | EAL1 | |
Certification Date | 15.08.2013 | |
Expiration Date | 15.08.2018 | |
Mutual Recognition | CCRA | |
Target Link | https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/TOV-ST-1.1.pdf | |
Report Link | https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/ISCB-5-RPT-C038-CR-v1a.pdf | |
Status | Archive |
References ?
No references are available for this certificate.
Updates ?
-
21.11.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'prev_certificates': [], 'next_certificates': []}
.
- The following values were inserted:
-
09.11.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was updated, with the
{'certification_date': '2013-08-15', 'expiration_date': '2018-08-15', 'enhanced': {'__update__': {'developer': 'Trevor KeeganB2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: [email protected]: +603 8315 6020Fax: +603 8315 6021', 'scope': 'The Target of Evaluation (TOE), TAXSAYA Online Version 1.5.0.12 (hereafter referred as TAXSAYA) is a web application designed to assist tax payers to prepare and submit their tax returns. The TOE is hosted by Microsoft Azure servers and can be accessed via Internet Explorer or Firefox. In order to restrict the access to the TOE, users are required to login using username and password. After successfully identified and authenticated, the users are prompted to provide necessary information in order to prepare their tax returns. TOE provides a tax wizard function to support users to fill all the required fields to complete the operation. A tax optimiser provides the Taxpayers with suggested tax savings. The final tax file can either be printed or automatically filed and upload to the Tax Department (E-Hasil). In the context of the evaluation, the TOE provides the following major security features: Audit Logs - the TOE generates audit logs for the auditable events listed in section 5.1.1 of the Security Target. These audit records can only be reviewed by TAXSAYA administrators. Audit review and actions taken according to the audit logs are outside the scope of the evaluation and certification. Identification and Authentication – TOE identifies and authenticates its users before any action. All registered users have a Username and Password in order to complete the identification and authentication process. Tax Data Export - TOE provides a secure data export to the e-Hasil site by using the security attributes of the users. Users can upload their tax data to the e-Hasil site in order to complete the tax claim process. Management of Security Attributes - TOE support the management of security attributes belong to the users such as Username, Password and IC Number. The management functions include: i) Roles management, ii) Allow/deny access attempts, iii) Enforce access control policy, and iv) Manage user session.', 'certification_date': '2013-08-15', 'expiration_date': '2018-08-15'}}}
data.
- The scheme_data property was updated, with the
-
22.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '50fc216fece48be0231ba10f60e91b90b9a177f2da607d610c6f359b9028252a', 'txt_hash': 'd899ceaabc8cd063bbe935ba7c92c8312f10806ec5f97f6c9089c72e28a9b3b4'}
data. - The st property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '76592ddca9edffad8b929a32f583f4bc6d0a1290d701dd4a39002fc177d0fea3', 'txt_hash': '19621832df8128a54a0caa75c13def302f70f9b51eb6b5583eff8fe51a00086e'}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 332912, 'pdf_is_encrypted': True, 'pdf_number_of_pages': 29, '/Author': 'ISCB Department', '/Category': 'PUBLIC', '/Caveat': 'FINAL', '/Classification': 'PUBLIC', '/Company': 'CyberSecurity Malaysia', '/CreationDate': "D:20130821145725+08'00'", '/Creator': 'Acrobat PDFMaker 10.1 for Word', '/Developer': 'EA Link System Sdn Bhd', '/Document Type': 'REPORT', '/Identifier': 'ISCB-5-RPT-C038-CR-v1a', '/Index': 'MyCB_TMP_011', '/Keywords': 'TAXSAYA', '/ModDate': "D:20130821145730+08'00'", '/Phase': 'Release', '/Producer': 'Adobe PDF Library 10.0', '/Project Code': 'C038', '/Released': '15 August 2013', '/ST Title': 'TAXSAYA Online Version 1.5.0.12 Security Target', '/ST Version': 'Version 1.1', '/SourceModified': 'D:20130821065707', '/Sponsor': 'EA Link System Sdn Bhd', '/Subject': 'TAXSAYA Online Version 1.5.0.12', '/TOE Name': 'TAXSAYA Online', '/TOE Version': 'Version 1.5.0.12', '/Title': 'C038 Certification Report', '/Version': 'v1a', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.cybersecurity.my/mycc', 'mailto:[email protected]']}}
. - The st_metadata property was set to
{'pdf_file_size_bytes': 383132, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 18, '/Title': 'CERTIFIED PERSONAL TAXATION SOFTWARE', '/Author': 'Mehmet ÇAKIR', '/Subject': 'SECURITY TARGET FOR THE CC EVALUATION', '/Creator': 'Microsoft® Word 2010 Trial', '/CreationDate': "D:20130523115234+08'00'", '/ModDate': "D:20130523115234+08'00'", '/Producer': 'Microsoft® Word 2010 Trial', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.taxsaya.com/', 'http://www.taxsaya.net/']}}
. - The report_frontpage property was set to
{}
. - The report_keywords property was set to
{'cc_cert_id': {'MY': {'ISCB-5-RPT-C038-CR-v1a': 29}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL1': 11}}, 'cc_sar': {'ALC': {'ALC_DEL': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 1, 'FAU_GEN.2': 1}, 'FDP': {'FDP_ETC.2': 1, 'FDP_ACC.1': 1, 'FDP_ACF.1.1': 1, 'FDP_ACF.1.3': 1}, 'FIA': {'FIA_UAU.2': 1, 'FIA_UID.2': 1, 'FIA_AFL.1': 1, 'FIA_SOS.1': 1, 'FIA_ATD.1': 1}, 'FMT': {'FMT_SMF.1': 1, 'FMT_SMR.1': 1, 'FMT_MSA.1': 1, 'FMT_MSA.3': 1}}, 'cc_claims': {}, 'vendor': {'Microsoft': {'Microsoft': 7}}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL1': 4, 'EAL 1': 1}}, 'cc_sar': {'ADV': {'ADV_FSP.1': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_CMC.1': 1, 'ALC_CMS.1': 1}, 'ATE': {'ATE_IND.1': 1}, 'AVA': {'AVA_VAN.1': 1}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.1': 1, 'ASE_REQ.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 3, 'FAU_GEN.2': 2, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2.1': 1}, 'FDP': {'FDP_ACC.1': 3, 'FDP_ACF.1': 3, 'FDP_ETC.2': 3, 'FDP_IFC.1': 2, 'FDP_ACC.1.1': 1, 'FDP_ACF.1.1': 1, 'FDP_ACF.1.2': 1, 'FDP_ACF.1.3': 1, 'FDP_ACF.1.4': 1, 'FDP_ETC.2.1': 1, 'FDP_ETC.2.2': 1, 'FDP_ETC.2.3': 1, 'FDP_ETC.2.4': 1}, 'FIA': {'FIA_SOS': 1, 'FIA_UID.1': 2, 'FIA_AFL.1': 3, 'FIA_ATD.1': 2, 'FIA_SOS.1': 3, 'FIA_UAU.2': 3, 'FIA_UID.2': 3, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 1, 'FIA_ATD.1.1': 1, 'FIA_SOS.1.1': 1, 'FIA_UAU.2.1': 1, 'FIA_UID.2.1': 1}, 'FMT': {'FMT_MSA.3': 3, 'FMT_MSA.1': 4, 'FMT_SMR.1': 5, 'FMT_SMF.1': 3, 'FMT_MSA.1.1': 1, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_SMF.1.1': 1, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1}, 'FPT': {'FPT_STM.1': 2}}, 'cc_claims': {'OE': {'OE.USERS': 1, 'OE.PHYSICAL': 1, 'OE.HARDENED': 1, 'OE.BACKUP': 1, 'OE.SECCOMCHANNEL': 1}}, 'vendor': {'Microsoft': {'Microsoft': 13}}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}
. - The report_filename property was set to
ISCB-5-RPT-C038-CR-v1a.pdf
. - The st_filename property was set to
TOV-ST-1.1.pdf
.
The computed heuristics were updated.
- The cert_id property was set to
ISCB-5-RPT-C038-CR-v1a
. - The extracted_sars property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 1}]}
.
- The report property was updated, with the
-
17.08.2024 The certificate data changed.
Certificate changed
The report_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C038-CR-v1a.pdf
.
The st_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/TOV-ST-1.1.pdf
.
- The new value is
-
12.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data. - The st property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}
data.
The PDF extraction data was updated.
- The report_metadata property was set to
None
. - The st_metadata property was set to
None
. - The report_frontpage property was set to
None
. - The report_keywords property was set to
None
. - The st_keywords property was set to
None
. - The report_filename property was set to
None
. - The st_filename property was set to
None
.
The computed heuristics were updated.
- The cert_id property was set to
None
. - The extracted_sars property was set to
None
.
- The report property was updated, with the
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name TAXSAYA Online Version 1.5.0.12 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Other Devices and Systems",
"cert_link": null,
"dgst": "f7382ce5518160b3",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "ISCB-5-RPT-C038-CR-v1a",
"cert_lab": null,
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"1.5.0.12"
]
},
"indirect_transitive_cves": null,
"next_certificates": [],
"prev_certificates": [],
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"scheme_data": {
"cert_no": "2013-006-C038",
"certification_date": "2013-08-15",
"developer": "EA Link System Sdn Bhd",
"enhanced": {
"assurance_level": "EAL1",
"category": "Other Devices and Systems",
"cert_id": "C038",
"certification_date": "2013-08-15",
"developer": "Trevor KeeganB2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: [email protected]: +603 8315 6020Fax: +603 8315 6021",
"expiration_date": "2018-08-15",
"mutual_recognition": "CCRA",
"product": "TAXSAYA Online Version 1.5.0.12",
"report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/ISCB-5-RPT-C038-CR-v1a.pdf",
"scope": "The Target of Evaluation (TOE), TAXSAYA Online Version 1.5.0.12 (hereafter referred as TAXSAYA) is a web application designed to assist tax payers to prepare and submit their tax returns. The TOE is hosted by Microsoft Azure servers and can be accessed via Internet Explorer or Firefox. In order to restrict the access to the TOE, users are required to login using username and password. After successfully identified and authenticated, the users are prompted to provide necessary information in order to prepare their tax returns. TOE provides a tax wizard function to support users to fill all the required fields to complete the operation. A tax optimiser provides the Taxpayers with suggested tax savings. The final tax file can either be printed or automatically filed and upload to the Tax Department (E-Hasil). In the context of the evaluation, the TOE provides the following major security features: Audit Logs - the TOE generates audit logs for the auditable events listed in section 5.1.1 of the Security Target. These audit records can only be reviewed by TAXSAYA administrators. Audit review and actions taken according to the audit logs are outside the scope of the evaluation and certification. Identification and Authentication \u2013 TOE identifies and authenticates its users before any action. All registered users have a Username and Password in order to complete the identification and authentication process. Tax Data Export - TOE provides a secure data export to the e-Hasil site by using the security attributes of the users. Users can upload their tax data to the e-Hasil site in order to complete the tax claim process. Management of Security Attributes - TOE support the management of security attributes belong to the users such as Username, Password and IC Number. The management functions include: i) Roles management, ii) Allow/deny access attempts, iii) Enforce access control policy, and iv) Manage user session.",
"status": "Archive",
"target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/TOV-ST-1.1.pdf",
"type": "Web based frontend to the Microsoft Certification Authority (CA) services"
},
"expiration_date": "2018-08-15",
"level": "EAL1",
"product": "TAXSAYA Online Version 1.5.0.12",
"recognition": "CCRA",
"url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/148"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "EA Link System Sdn Bhd",
"manufacturer_web": "https://www.ealink.com/index.htm",
"name": "TAXSAYA Online Version 1.5.0.12",
"not_valid_after": "2018-08-15",
"not_valid_before": "2013-08-15",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": null,
"cert_frontpage": null,
"cert_keywords": null,
"cert_metadata": null,
"report_filename": "ISCB-5-RPT-C038-CR-v1a.pdf",
"report_frontpage": {},
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"MY": {
"ISCB-5-RPT-C038-CR-v1a": 29
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"ALC": {
"ALC_DEL": 1
}
},
"cc_security_level": {
"EAL": {
"EAL1": 11
}
},
"cc_sfr": {
"FAU": {
"FAU_GEN.1": 1,
"FAU_GEN.2": 1
},
"FDP": {
"FDP_ACC.1": 1,
"FDP_ACF.1.1": 1,
"FDP_ACF.1.3": 1,
"FDP_ETC.2": 1
},
"FIA": {
"FIA_AFL.1": 1,
"FIA_ATD.1": 1,
"FIA_SOS.1": 1,
"FIA_UAU.2": 1,
"FIA_UID.2": 1
},
"FMT": {
"FMT_MSA.1": 1,
"FMT_MSA.3": 1,
"FMT_SMF.1": 1,
"FMT_SMR.1": 1
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 18045": 2,
"ISO/IEC15408": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 7
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "ISCB Department",
"/Category": "PUBLIC",
"/Caveat": "FINAL",
"/Classification": "PUBLIC",
"/Company": "CyberSecurity Malaysia",
"/CreationDate": "D:20130821145725+08\u002700\u0027",
"/Creator": "Acrobat PDFMaker 10.1 for Word",
"/Developer": "EA Link System Sdn Bhd",
"/Document Type": "REPORT",
"/Identifier": "ISCB-5-RPT-C038-CR-v1a",
"/Index": "MyCB_TMP_011",
"/Keywords": "TAXSAYA",
"/ModDate": "D:20130821145730+08\u002700\u0027",
"/Phase": "Release",
"/Producer": "Adobe PDF Library 10.0",
"/Project Code": "C038",
"/Released": "15 August 2013",
"/ST Title": "TAXSAYA Online Version 1.5.0.12 Security Target",
"/ST Version": "Version 1.1",
"/SourceModified": "D:20130821065707",
"/Sponsor": "EA Link System Sdn Bhd",
"/Subject": "TAXSAYA Online Version 1.5.0.12",
"/TOE Name": "TAXSAYA Online",
"/TOE Version": "Version 1.5.0.12",
"/Title": "C038 Certification Report",
"/Version": "v1a",
"pdf_file_size_bytes": 332912,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.cybersecurity.my/mycc",
"mailto:[email protected]"
]
},
"pdf_is_encrypted": true,
"pdf_number_of_pages": 29
},
"st_filename": "TOV-ST-1.1.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {
"OE": {
"OE.BACKUP": 1,
"OE.HARDENED": 1,
"OE.PHYSICAL": 1,
"OE.SECCOMCHANNEL": 1,
"OE.USERS": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_FSP.1": 1
},
"AGD": {
"AGD_OPE.1": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMC.1": 1,
"ALC_CMS.1": 1
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.1": 1,
"ASE_REQ.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_IND.1": 1
},
"AVA": {
"AVA_VAN.1": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL1": 4
}
},
"cc_sfr": {
"FAU": {
"FAU_GEN.1": 3,
"FAU_GEN.1.1": 1,
"FAU_GEN.1.2": 1,
"FAU_GEN.2": 2,
"FAU_GEN.2.1": 1
},
"FDP": {
"FDP_ACC.1": 3,
"FDP_ACC.1.1": 1,
"FDP_ACF.1": 3,
"FDP_ACF.1.1": 1,
"FDP_ACF.1.2": 1,
"FDP_ACF.1.3": 1,
"FDP_ACF.1.4": 1,
"FDP_ETC.2": 3,
"FDP_ETC.2.1": 1,
"FDP_ETC.2.2": 1,
"FDP_ETC.2.3": 1,
"FDP_ETC.2.4": 1,
"FDP_IFC.1": 2
},
"FIA": {
"FIA_AFL.1": 3,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 1,
"FIA_ATD.1": 2,
"FIA_ATD.1.1": 1,
"FIA_SOS": 1,
"FIA_SOS.1": 3,
"FIA_SOS.1.1": 1,
"FIA_UAU.2": 3,
"FIA_UAU.2.1": 1,
"FIA_UID.1": 2,
"FIA_UID.2": 3,
"FIA_UID.2.1": 1
},
"FMT": {
"FMT_MSA.1": 4,
"FMT_MSA.1.1": 1,
"FMT_MSA.3": 3,
"FMT_MSA.3.1": 1,
"FMT_MSA.3.2": 1,
"FMT_SMF.1": 3,
"FMT_SMF.1.1": 1,
"FMT_SMR.1": 5,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_STM.1": 2
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Microsoft": {
"Microsoft": 13
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "Mehmet \u00c7AKIR",
"/CreationDate": "D:20130523115234+08\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2010 Trial",
"/ModDate": "D:20130523115234+08\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2010 Trial",
"/Subject": "SECURITY TARGET FOR THE CC EVALUATION",
"/Title": "CERTIFIED PERSONAL TAXATION SOFTWARE",
"pdf_file_size_bytes": 383132,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.taxsaya.net/",
"http://www.taxsaya.com/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 18
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C038-CR-v1a.pdf",
"scheme": "MY",
"security_level": {
"_type": "Set",
"elements": [
"EAL1"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/TOV-ST-1.1.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": false,
"download_ok": false,
"extract_ok": false,
"pdf_hash": null,
"txt_hash": null
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "50fc216fece48be0231ba10f60e91b90b9a177f2da607d610c6f359b9028252a",
"txt_hash": "d899ceaabc8cd063bbe935ba7c92c8312f10806ec5f97f6c9089c72e28a9b3b4"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "76592ddca9edffad8b929a32f583f4bc6d0a1290d701dd4a39002fc177d0fea3",
"txt_hash": "19621832df8128a54a0caa75c13def302f70f9b51eb6b5583eff8fe51a00086e"
}
},
"status": "archived"
}