TAXSAYA Online Version 1.5.0.12

CSV information ?

Status archived
Valid from 15.08.2013
Valid until 15.08.2018
Scheme 🇲🇾 MY
Manufacturer EA Link System Sdn Bhd
Category Other Devices and Systems
Security level EAL1

Heuristics summary ?

Certificate ID: ISCB-5-RPT-C038-CR-v1a

Certificate ?

Certification report ?

Extracted keywords

Protocols
SSL

Vendor
Microsoft

Security level
EAL1
Security Assurance Requirements (SAR)
ALC_DEL
Security Functional Requirements (SFR)
FAU_GEN.1, FAU_GEN.2, FDP_ETC.2, FDP_ACC.1, FDP_ACF.1.1, FDP_ACF.1.3, FIA_UAU.2, FIA_UID.2, FIA_AFL.1, FIA_SOS.1, FIA_ATD.1, FMT_SMF.1, FMT_SMR.1, FMT_MSA.1, FMT_MSA.3
Certificates
ISCB-5-RPT-C038-CR-v1a

Standards
ISO/IEC15408, ISO/IEC 18045

File metadata

Title C038 Certification Report
Subject TAXSAYA Online Version 1.5.0.12
Keywords TAXSAYA
Author ISCB Department
Creation date D:20130821145725+08'00'
Modification date D:20130821145730+08'00'
Pages 29
Creator Acrobat PDFMaker 10.1 for Word
Producer Adobe PDF Library 10.0

Security target ?

Extracted keywords

Protocols
SSL

Vendor
Microsoft

Security level
EAL1, EAL 1
Claims
OE.USERS, OE.PHYSICAL, OE.HARDENED, OE.BACKUP, OE.SECCOMCHANNEL
Security Assurance Requirements (SAR)
ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ATE_IND.1, AVA_VAN.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_TSS.1
Security Functional Requirements (SFR)
FAU_GEN.1, FAU_GEN.2, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2.1, FDP_ACC.1, FDP_ACF.1, FDP_ETC.2, FDP_IFC.1, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_ETC.2.1, FDP_ETC.2.2, FDP_ETC.2.3, FDP_ETC.2.4, FIA_SOS, FIA_UID.1, FIA_AFL.1, FIA_ATD.1, FIA_SOS.1, FIA_UAU.2, FIA_UID.2, FIA_AFL.1.1, FIA_AFL.1.2, FIA_ATD.1.1, FIA_SOS.1.1, FIA_UAU.2.1, FIA_UID.2.1, FMT_MSA.3, FMT_MSA.1, FMT_SMR.1, FMT_SMF.1, FMT_MSA.1.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FPT_STM.1

File metadata

Title CERTIFIED PERSONAL TAXATION SOFTWARE
Subject SECURITY TARGET FOR THE CC EVALUATION
Author Mehmet ÇAKIR
Creation date D:20130523115234+08'00'
Modification date D:20130523115234+08'00'
Pages 18
Creator Microsoft® Word 2010 Trial
Producer Microsoft® Word 2010 Trial

Heuristics ?

Certificate ID: ISCB-5-RPT-C038-CR-v1a

Extracted SARs

ADV_FSP.1, AGD_OPE.1, AGD_PRE.1, ALC_CMC.1, ALC_CMS.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.1, ASE_REQ.1, ASE_TSS.1, ATE_IND.1, AVA_VAN.1

Scheme data ?

Cert No 2013-006-C038
Developer EA Link System Sdn Bhd
Level EAL1
Product TAXSAYA Online Version 1.5.0.12
Certification Date 15.08.2013
Expiration Date 15.08.2018
Recognition CCRA
Url https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/148
Enhanced
Cert Id C038
Product TAXSAYA Online Version 1.5.0.12
Developer Trevor KeeganB2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: [email protected]: +603 8315 6020Fax: +603 8315 6021
Category Other Devices and Systems
Type Web based frontend to the Microsoft Certification Authority (CA) services
Scope The Target of Evaluation (TOE), TAXSAYA Online Version 1.5.0.12 (hereafter referred as TAXSAYA) is a web application designed to assist tax payers to prepare and submit their tax returns. The TOE is hosted by Microsoft Azure servers and can be accessed via Internet Explorer or Firefox. In order to restrict the access to the TOE, users are required to login using username and password. After successfully identified and authenticated, the users are prompted to provide necessary information in order to prepare their tax returns. TOE provides a tax wizard function to support users to fill all the required fields to complete the operation. A tax optimiser provides the Taxpayers with suggested tax savings. The final tax file can either be printed or automatically filed and upload to the Tax Department (E-Hasil). In the context of the evaluation, the TOE provides the following major security features: Audit Logs - the TOE generates audit logs for the auditable events listed in section 5.1.1 of the Security Target. These audit records can only be reviewed by TAXSAYA administrators. Audit review and actions taken according to the audit logs are outside the scope of the evaluation and certification. Identification and Authentication – TOE identifies and authenticates its users before any action. All registered users have a Username and Password in order to complete the identification and authentication process. Tax Data Export - TOE provides a secure data export to the e-Hasil site by using the security attributes of the users. Users can upload their tax data to the e-Hasil site in order to complete the tax claim process. Management of Security Attributes - TOE support the management of security attributes belong to the users such as Username, Password and IC Number. The management functions include: i) Roles management, ii) Allow/deny access attempts, iii) Enforce access control policy, and iv) Manage user session.
Assurance Level EAL1
Certification Date 15.08.2013
Expiration Date 15.08.2018
Mutual Recognition CCRA
Target Link https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/TOV-ST-1.1.pdf
Report Link https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/ISCB-5-RPT-C038-CR-v1a.pdf
Status Archive

References ?

No references are available for this certificate.

Updates ?

  • 21.11.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'prev_certificates': [], 'next_certificates': []}.
  • 09.11.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The scheme_data property was updated, with the {'certification_date': '2013-08-15', 'expiration_date': '2018-08-15', 'enhanced': {'__update__': {'developer': 'Trevor KeeganB2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: [email protected]: +603 8315 6020Fax: +603 8315 6021', 'scope': 'The Target of Evaluation (TOE), TAXSAYA Online Version 1.5.0.12 (hereafter referred as TAXSAYA) is a web application designed to assist tax payers to prepare and submit their tax returns. The TOE is hosted by Microsoft Azure servers and can be accessed via Internet Explorer or Firefox. In order to restrict the access to the TOE, users are required to login using username and password. After successfully identified and authenticated, the users are prompted to provide necessary information in order to prepare their tax returns. TOE provides a tax wizard function to support users to fill all the required fields to complete the operation. A tax optimiser provides the Taxpayers with suggested tax savings. The final tax file can either be printed or automatically filed and upload to the Tax Department (E-Hasil). In the context of the evaluation, the TOE provides the following major security features: Audit Logs - the TOE generates audit logs for the auditable events listed in section 5.1.1 of the Security Target. These audit records can only be reviewed by TAXSAYA administrators. Audit review and actions taken according to the audit logs are outside the scope of the evaluation and certification. Identification and Authentication – TOE identifies and authenticates its users before any action. All registered users have a Username and Password in order to complete the identification and authentication process. Tax Data Export - TOE provides a secure data export to the e-Hasil site by using the security attributes of the users. Users can upload their tax data to the e-Hasil site in order to complete the tax claim process. Management of Security Attributes - TOE support the management of security attributes belong to the users such as Username, Password and IC Number. The management functions include: i) Roles management, ii) Allow/deny access attempts, iii) Enforce access control policy, and iv) Manage user session.', 'certification_date': '2013-08-15', 'expiration_date': '2018-08-15'}}} data.
  • 22.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '50fc216fece48be0231ba10f60e91b90b9a177f2da607d610c6f359b9028252a', 'txt_hash': 'd899ceaabc8cd063bbe935ba7c92c8312f10806ec5f97f6c9089c72e28a9b3b4'} data.
    • The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '76592ddca9edffad8b929a32f583f4bc6d0a1290d701dd4a39002fc177d0fea3', 'txt_hash': '19621832df8128a54a0caa75c13def302f70f9b51eb6b5583eff8fe51a00086e'} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to {'pdf_file_size_bytes': 332912, 'pdf_is_encrypted': True, 'pdf_number_of_pages': 29, '/Author': 'ISCB Department', '/Category': 'PUBLIC', '/Caveat': 'FINAL', '/Classification': 'PUBLIC', '/Company': 'CyberSecurity Malaysia', '/CreationDate': "D:20130821145725+08'00'", '/Creator': 'Acrobat PDFMaker 10.1 for Word', '/Developer': 'EA Link System Sdn Bhd', '/Document Type': 'REPORT', '/Identifier': 'ISCB-5-RPT-C038-CR-v1a', '/Index': 'MyCB_TMP_011', '/Keywords': 'TAXSAYA', '/ModDate': "D:20130821145730+08'00'", '/Phase': 'Release', '/Producer': 'Adobe PDF Library 10.0', '/Project Code': 'C038', '/Released': '15 August 2013', '/ST Title': 'TAXSAYA Online Version 1.5.0.12 Security Target', '/ST Version': 'Version 1.1', '/SourceModified': 'D:20130821065707', '/Sponsor': 'EA Link System Sdn Bhd', '/Subject': 'TAXSAYA Online Version 1.5.0.12', '/TOE Name': 'TAXSAYA Online', '/TOE Version': 'Version 1.5.0.12', '/Title': 'C038 Certification Report', '/Version': 'v1a', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.cybersecurity.my/mycc', 'mailto:[email protected]']}}.
    • The st_metadata property was set to {'pdf_file_size_bytes': 383132, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 18, '/Title': 'CERTIFIED PERSONAL TAXATION SOFTWARE', '/Author': 'Mehmet ÇAKIR', '/Subject': 'SECURITY TARGET FOR THE CC EVALUATION', '/Creator': 'Microsoft® Word 2010 Trial', '/CreationDate': "D:20130523115234+08'00'", '/ModDate': "D:20130523115234+08'00'", '/Producer': 'Microsoft® Word 2010 Trial', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.taxsaya.com/', 'http://www.taxsaya.net/']}}.
    • The report_frontpage property was set to {}.
    • The report_keywords property was set to {'cc_cert_id': {'MY': {'ISCB-5-RPT-C038-CR-v1a': 29}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL1': 11}}, 'cc_sar': {'ALC': {'ALC_DEL': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 1, 'FAU_GEN.2': 1}, 'FDP': {'FDP_ETC.2': 1, 'FDP_ACC.1': 1, 'FDP_ACF.1.1': 1, 'FDP_ACF.1.3': 1}, 'FIA': {'FIA_UAU.2': 1, 'FIA_UID.2': 1, 'FIA_AFL.1': 1, 'FIA_SOS.1': 1, 'FIA_ATD.1': 1}, 'FMT': {'FMT_SMF.1': 1, 'FMT_SMR.1': 1, 'FMT_MSA.1': 1, 'FMT_MSA.3': 1}}, 'cc_claims': {}, 'vendor': {'Microsoft': {'Microsoft': 7}}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The st_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL1': 4, 'EAL 1': 1}}, 'cc_sar': {'ADV': {'ADV_FSP.1': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1}, 'ALC': {'ALC_CMC.1': 1, 'ALC_CMS.1': 1}, 'ATE': {'ATE_IND.1': 1}, 'AVA': {'AVA_VAN.1': 1}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.1': 1, 'ASE_REQ.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 3, 'FAU_GEN.2': 2, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2.1': 1}, 'FDP': {'FDP_ACC.1': 3, 'FDP_ACF.1': 3, 'FDP_ETC.2': 3, 'FDP_IFC.1': 2, 'FDP_ACC.1.1': 1, 'FDP_ACF.1.1': 1, 'FDP_ACF.1.2': 1, 'FDP_ACF.1.3': 1, 'FDP_ACF.1.4': 1, 'FDP_ETC.2.1': 1, 'FDP_ETC.2.2': 1, 'FDP_ETC.2.3': 1, 'FDP_ETC.2.4': 1}, 'FIA': {'FIA_SOS': 1, 'FIA_UID.1': 2, 'FIA_AFL.1': 3, 'FIA_ATD.1': 2, 'FIA_SOS.1': 3, 'FIA_UAU.2': 3, 'FIA_UID.2': 3, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 1, 'FIA_ATD.1.1': 1, 'FIA_SOS.1.1': 1, 'FIA_UAU.2.1': 1, 'FIA_UID.2.1': 1}, 'FMT': {'FMT_MSA.3': 3, 'FMT_MSA.1': 4, 'FMT_SMR.1': 5, 'FMT_SMF.1': 3, 'FMT_MSA.1.1': 1, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_SMF.1.1': 1, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1}, 'FPT': {'FPT_STM.1': 2}}, 'cc_claims': {'OE': {'OE.USERS': 1, 'OE.PHYSICAL': 1, 'OE.HARDENED': 1, 'OE.BACKUP': 1, 'OE.SECCOMCHANNEL': 1}}, 'vendor': {'Microsoft': {'Microsoft': 13}}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The report_filename property was set to ISCB-5-RPT-C038-CR-v1a.pdf.
    • The st_filename property was set to TOV-ST-1.1.pdf.

    The computed heuristics were updated.

    • The cert_id property was set to ISCB-5-RPT-C038-CR-v1a.
    • The extracted_sars property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 1}]}.
  • 17.08.2024 The certificate data changed.
    Certificate changed

    The report_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C038-CR-v1a.pdf.

    The st_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/TOV-ST-1.1.pdf.
  • 12.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The report property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
    • The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

    The PDF extraction data was updated.

    • The report_metadata property was set to None.
    • The st_metadata property was set to None.
    • The report_frontpage property was set to None.
    • The report_keywords property was set to None.
    • The st_keywords property was set to None.
    • The report_filename property was set to None.
    • The st_filename property was set to None.

    The computed heuristics were updated.

    • The cert_id property was set to None.
    • The extracted_sars property was set to None.
  • 23.07.2024 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name TAXSAYA Online Version 1.5.0.12 was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Other Devices and Systems",
  "cert_link": null,
  "dgst": "f7382ce5518160b3",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "ISCB-5-RPT-C038-CR-v1a",
    "cert_lab": null,
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_INT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_ECD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_CCL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_REQ",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_OBJ",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ASE_TSS",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "1.5.0.12"
      ]
    },
    "indirect_transitive_cves": null,
    "next_certificates": [],
    "prev_certificates": [],
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": {
      "cert_no": "2013-006-C038",
      "certification_date": "2013-08-15",
      "developer": "EA Link System Sdn Bhd",
      "enhanced": {
        "assurance_level": "EAL1",
        "category": "Other Devices and Systems",
        "cert_id": "C038",
        "certification_date": "2013-08-15",
        "developer": "Trevor KeeganB2-05, Block B, 2nd Floor,SME Technopreneur Centre Cyberjaya,2270 Jalan Usahawan 2,6300 Cyberjaya, SelangorMALAYSIA URL: http://www.ealink.com/index.htmEmail: [email protected]: +603 8315 6020Fax: +603 8315 6021",
        "expiration_date": "2018-08-15",
        "mutual_recognition": "CCRA",
        "product": "TAXSAYA Online Version 1.5.0.12",
        "report_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/ISCB-5-RPT-C038-CR-v1a.pdf",
        "scope": "The Target of Evaluation (TOE), TAXSAYA Online Version 1.5.0.12 (hereafter referred as TAXSAYA) is a web application designed to assist tax payers to prepare and submit their tax returns. The TOE is hosted by Microsoft Azure servers and can be accessed via Internet Explorer or Firefox. In order to restrict the access to the TOE, users are required to login using username and password. After successfully identified and authenticated, the users are prompted to provide necessary information in order to prepare their tax returns. TOE provides a tax wizard function to support users to fill all the required fields to complete the operation. A tax optimiser provides the Taxpayers with suggested tax savings. The final tax file can either be printed or automatically filed and upload to the Tax Department (E-Hasil). In the context of the evaluation, the TOE provides the following major security features: Audit Logs - the TOE generates audit logs for the auditable events listed in section 5.1.1 of the Security Target. These audit records can only be reviewed by TAXSAYA administrators. Audit review and actions taken according to the audit logs are outside the scope of the evaluation and certification. Identification and Authentication \u2013 TOE identifies and authenticates its users before any action. All registered users have a Username and Password in order to complete the identification and authentication process. Tax Data Export - TOE provides a secure data export to the e-Hasil site by using the security attributes of the users. Users can upload their tax data to the e-Hasil site in order to complete the tax claim process. Management of Security Attributes - TOE support the management of security attributes belong to the users such as Username, Password and IC Number. The management functions include: i) Roles management, ii) Allow/deny access attempts, iii) Enforce access control policy, and iv) Manage user session.",
        "status": "Archive",
        "target_link": "https://iscb.cybersecurity.my/resources/document/mycc/mycpr/C038/TOV-ST-1.1.pdf",
        "type": "Web based frontend to the Microsoft Certification Authority (CA) services"
      },
      "expiration_date": "2018-08-15",
      "level": "EAL1",
      "product": "TAXSAYA Online Version 1.5.0.12",
      "recognition": "CCRA",
      "url": "https://iscb.cybersecurity.my/index.php/certification/product-certification/mycc/archived-certified-products-and-systems/submission-view/148"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "EA Link System Sdn Bhd",
  "manufacturer_web": "https://www.ealink.com/index.htm",
  "name": "TAXSAYA Online Version 1.5.0.12",
  "not_valid_after": "2018-08-15",
  "not_valid_before": "2013-08-15",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": null,
    "cert_frontpage": null,
    "cert_keywords": null,
    "cert_metadata": null,
    "report_filename": "ISCB-5-RPT-C038-CR-v1a.pdf",
    "report_frontpage": {},
    "report_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "MY": {
          "ISCB-5-RPT-C038-CR-v1a": 29
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ALC": {
          "ALC_DEL": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL1": 11
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN.1": 1,
          "FAU_GEN.2": 1
        },
        "FDP": {
          "FDP_ACC.1": 1,
          "FDP_ACF.1.1": 1,
          "FDP_ACF.1.3": 1,
          "FDP_ETC.2": 1
        },
        "FIA": {
          "FIA_AFL.1": 1,
          "FIA_ATD.1": 1,
          "FIA_SOS.1": 1,
          "FIA_UAU.2": 1,
          "FIA_UID.2": 1
        },
        "FMT": {
          "FMT_MSA.1": 1,
          "FMT_MSA.3": 1,
          "FMT_SMF.1": 1,
          "FMT_SMR.1": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "SSL": {
            "SSL": 1
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 18045": 2,
          "ISO/IEC15408": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Microsoft": {
          "Microsoft": 7
        }
      },
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "ISCB Department",
      "/Category": "PUBLIC",
      "/Caveat": "FINAL",
      "/Classification": "PUBLIC",
      "/Company": "CyberSecurity Malaysia",
      "/CreationDate": "D:20130821145725+08\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 10.1 for Word",
      "/Developer": "EA Link System Sdn Bhd",
      "/Document Type": "REPORT",
      "/Identifier": "ISCB-5-RPT-C038-CR-v1a",
      "/Index": "MyCB_TMP_011",
      "/Keywords": "TAXSAYA",
      "/ModDate": "D:20130821145730+08\u002700\u0027",
      "/Phase": "Release",
      "/Producer": "Adobe PDF Library 10.0",
      "/Project Code": "C038",
      "/Released": "15 August 2013",
      "/ST Title": "TAXSAYA Online Version 1.5.0.12 Security Target",
      "/ST Version": "Version 1.1",
      "/SourceModified": "D:20130821065707",
      "/Sponsor": "EA Link System Sdn Bhd",
      "/Subject": "TAXSAYA Online Version 1.5.0.12",
      "/TOE Name": "TAXSAYA Online",
      "/TOE Version": "Version 1.5.0.12",
      "/Title": "C038 Certification Report",
      "/Version": "v1a",
      "pdf_file_size_bytes": 332912,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.cybersecurity.my/mycc",
          "mailto:[email protected]"
        ]
      },
      "pdf_is_encrypted": true,
      "pdf_number_of_pages": 29
    },
    "st_filename": "TOV-ST-1.1.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {},
      "cc_claims": {
        "OE": {
          "OE.BACKUP": 1,
          "OE.HARDENED": 1,
          "OE.PHYSICAL": 1,
          "OE.SECCOMCHANNEL": 1,
          "OE.USERS": 1
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ADV": {
          "ADV_FSP.1": 1
        },
        "AGD": {
          "AGD_OPE.1": 1,
          "AGD_PRE.1": 1
        },
        "ALC": {
          "ALC_CMC.1": 1,
          "ALC_CMS.1": 1
        },
        "ASE": {
          "ASE_CCL.1": 1,
          "ASE_ECD.1": 1,
          "ASE_INT.1": 1,
          "ASE_OBJ.1": 1,
          "ASE_REQ.1": 1,
          "ASE_TSS.1": 1
        },
        "ATE": {
          "ATE_IND.1": 1
        },
        "AVA": {
          "AVA_VAN.1": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL1": 4
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN.1": 3,
          "FAU_GEN.1.1": 1,
          "FAU_GEN.1.2": 1,
          "FAU_GEN.2": 2,
          "FAU_GEN.2.1": 1
        },
        "FDP": {
          "FDP_ACC.1": 3,
          "FDP_ACC.1.1": 1,
          "FDP_ACF.1": 3,
          "FDP_ACF.1.1": 1,
          "FDP_ACF.1.2": 1,
          "FDP_ACF.1.3": 1,
          "FDP_ACF.1.4": 1,
          "FDP_ETC.2": 3,
          "FDP_ETC.2.1": 1,
          "FDP_ETC.2.2": 1,
          "FDP_ETC.2.3": 1,
          "FDP_ETC.2.4": 1,
          "FDP_IFC.1": 2
        },
        "FIA": {
          "FIA_AFL.1": 3,
          "FIA_AFL.1.1": 1,
          "FIA_AFL.1.2": 1,
          "FIA_ATD.1": 2,
          "FIA_ATD.1.1": 1,
          "FIA_SOS": 1,
          "FIA_SOS.1": 3,
          "FIA_SOS.1.1": 1,
          "FIA_UAU.2": 3,
          "FIA_UAU.2.1": 1,
          "FIA_UID.1": 2,
          "FIA_UID.2": 3,
          "FIA_UID.2.1": 1
        },
        "FMT": {
          "FMT_MSA.1": 4,
          "FMT_MSA.1.1": 1,
          "FMT_MSA.3": 3,
          "FMT_MSA.3.1": 1,
          "FMT_MSA.3.2": 1,
          "FMT_SMF.1": 3,
          "FMT_SMF.1.1": 1,
          "FMT_SMR.1": 5,
          "FMT_SMR.1.1": 1,
          "FMT_SMR.1.2": 1
        },
        "FPT": {
          "FPT_STM.1": 2
        }
      },
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "SSL": {
            "SSL": 1
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {},
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Microsoft": {
          "Microsoft": 13
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Mehmet \u00c7AKIR",
      "/CreationDate": "D:20130523115234+08\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2010 Trial",
      "/ModDate": "D:20130523115234+08\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2010 Trial",
      "/Subject": "SECURITY TARGET FOR THE CC EVALUATION",
      "/Title": "CERTIFIED PERSONAL TAXATION SOFTWARE",
      "pdf_file_size_bytes": 383132,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.taxsaya.net/",
          "http://www.taxsaya.com/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 18
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": []
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ISCB-5-RPT-C038-CR-v1a.pdf",
  "scheme": "MY",
  "security_level": {
    "_type": "Set",
    "elements": [
      "EAL1"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/TOV-ST-1.1.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": false,
      "download_ok": false,
      "extract_ok": false,
      "pdf_hash": null,
      "txt_hash": null
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "50fc216fece48be0231ba10f60e91b90b9a177f2da607d610c6f359b9028252a",
      "txt_hash": "d899ceaabc8cd063bbe935ba7c92c8312f10806ec5f97f6c9089c72e28a9b3b4"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "76592ddca9edffad8b929a32f583f4bc6d0a1290d701dd4a39002fc177d0fea3",
      "txt_hash": "19621832df8128a54a0caa75c13def302f70f9b51eb6b5583eff8fe51a00086e"
    }
  },
  "status": "archived"
}