This page was not yet optimized for use on mobile
devices.
MultiApp V5.1 GP-SE PlatformConfiguration 1 : 5.1 revision B version 2 (0x3055) et filter set 0x00,configuration 2 : 5.1 revision C version 2 (0x3055) et filter set 0x10,configuration 3 : 5.1 revision B version 2 (0x3055) et filter set 0x14,configuration 4 : 5.1 revision C version 2 (0x3055) et filter set 0x24(ANSSI-CC-2025/57)
CSV information
| Status | active |
|---|---|
| Valid from | 04.02.2026 |
| Valid until | 04.02.2031 |
| Scheme | 🇫🇷 FR |
| Manufacturer | THALES DIS FRANCE SA |
| Category | ICs, Smart Cards and Smart Card-Related Devices and Systems |
| Security level | EAL6+, ALC_FLR.2 |
| Protection profiles |
Heuristics summary
Certificate ID: ANSSI-CC-2025/57
Certificate
Extracted keywords
Security level
EAL6, EAL2Security Assurance Requirements (SAR)
ALC_FLR.2Protection profiles
BSI-PP-099-V2-2020Certificates
ANSSI-CC-2025/57Evaluation facilities
CEA - LETIFile metadata
| Creation date | D:20260119101711+01'00' |
|---|---|
| Modification date | D:20260204134646+00'00' |
| Pages | 2 |
| Creator | Acrobat PDFMaker 25 pour Word |
| Producer | PDFKit.NET 26.1.0.63468 DMV9 |
Certification report
Extracted keywords
Symmetric Algorithms
DESSecurity level
EAL6, EAL2, EAL7, ITSEC E6 ElevéSecurity Assurance Requirements (SAR)
AGD_OPE, AGD_PRE, ALC_FLR.2, ALC_FLR, AVA_VANProtection profiles
BSI-CC-PP-0099-V2-2020Certificates
ANSSI-CC-2025/57, ANSSI-CC-2023/01-R01Evaluation facilities
CESTI, CEA - LETIStandards
CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004File metadata
| Creation date | D:20260119101909+01'00' |
|---|---|
| Modification date | D:20260204134644+00'00' |
| Pages | 14 |
| Creator | Acrobat PDFMaker 25 pour Word |
| Producer | PDFKit.NET 26.1.0.63468 DMV9 |
References
Outgoing- ANSSI-CC-2023/01-R01 - active - AQUARIUS_BA_09 & CA_09 Référence : AQUARIUS_TOE_v3 ( ANSSI-CC-2023/01-R01)
Security target
Extracted keywords
Symmetric Algorithms
AES, AES-256, AES256, DES, TDEA, 3DES, TDES, Triple-DES, HMAC, KMAC, CMACAsymmetric Algorithms
RSA 1024, ECDH, ECDSA, ECC, DH, Diffie-HellmanHash functions
SHA1, SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, SHA224, SHA2, SHA3, SHA3-256, SHA3-384, SHA3-512Schemes
MAC, Key Agreement, Key agreementProtocols
TLS, PACERandomness
PRNG, RNG, RNDBlock cipher modes
ECB, CBC, CCMJavaCard versions
Java Card 3.1JavaCard API constants
TYPE_ACCESSCPLC
IC Fabricator, IC TypeIC data groups
EF.DG1, EF.DG16, EF.DG3, EF.DG4Trusted Execution Environments
SEVendor
ThalesSecurity level
EAL6+, EAL6, EAL4, EAL 6+, EAL4 augmented, EAL6 augmentedClaims
D.API_DATA, D.CRYPTO, D.JCS_CODE, D.JCS_DATA, D.SEC_DATA, D.APP_CODE, D.APP_C_DATA, D.APP_I_DATA, D.APP_KEYS, D.ISD_KEYS, D.APSD_KEYS, D.CASD_KEYS, D.PIN, D.TOE_IDENTIFIER, D.GP_REGISTRY, D.GP_CODE, D.CVM_PIN, D.CVM_MGMT_STATE, D.TOKEN-VERIFICATION-KEY, D.RECEIPT-GENERATION-KEY, D.CONFIRMATION-DATA, D.DAP_BLOCK, D.APSD_DAP_KEYS, D.CASD_DAP_KEYS, D.OS-UPDATE_DEC-KEY, D.OS-UPDATE_SGNVER-KEY, D.OS-, D.OS-UPDATE-CODE-ID, D.OS-UPDATE_ADDITIONALCODE, O.DELETION, O.SID, O.FIREWALL, O.GLOBAL_ARRAYS_CONFID, O.GLOBAL_ARRAYS_INTEG, O.NATIVE, O.OPERATE, O.REALLOCATION, O.RESOURCES, O.ALARM, O.CIPHER, O.RNG, O.KEY-MNGT, O.PIN-MNGT, O.TRANSACTION, O.OBJ-DELETION, O.LOAD, O.INSTALL, O.CARD-MANAGEMENT, O.DOMAIN_RIGHTS, O.APPLI-AUTH, O.COMM_AUTH, O.COMM_INTEGRITY, O.COMM_CONFIDENTIALITY, O.SECURITY_DOMAINS, O.NO-KEY-REUSE, O.PRIVILEGES-MANAGEMENT, O.LC-MANAGEMENT, O.ARRAY_VIEWS_CONFID, O.SCP, O.CARD-, O.DOMAIN-RIGHTS, O.SECURITY-, O.COMM-AUTH, O.COMM-INTEGRITY, O.COMM-, O.PRIVILEGES-, O.GLOBAL-CVM, O.CVM-BLOCK, O.CVM-MGMT, O.RECEIPT, O.TOKEN, O.SECURE_LOAD_ACODE, O.SECURE_AC_ACTIVATION, O.TOE_IDENTIFICATION, O.CONFID-OS-UPDATE, O.PIN_MNGT, O.KEY_DELETION, O.ARRAY_VIEWS_INTEG, O.COMM-CONFIDENTIALITY, O.CVM-MGNT, O.SECURITY-DOMAINS, O.RND, O.APPLET, O.CODE_CAP_FILE, O.JAVAOBJECT, O.OBJ_DELETION, O.CVM-MNGT, T.CONFID-APPLI-DATA, T.CONFID-JCS-CODE, T.CONFID-JCS-DATA, T.INTEG-APPLI-CODE, T.INTEG-APPLI-DATA, T.INTEG-JCS-CODE, T.INTEG-JCS-DATA, T.SID, T.EXE-CODE, T.NATIVE, T.RESOURCES, T.DELETION, T.INSTALL, T.OBJ-DELETION, T.PHYSICAL, T.COM_EXPLOIT, T.UNAUTHORIZED_CARD_MNGT, T.LIFE_CYCLE, T.BRUTE-FORCE-SCP, T.UNAUTHORISED-CARD-MGMT, T.LIFE-CYCLE, T.COM-EXPLOIT, T.CVM-IMPERSONATE, T.CVM-UPDATE, T.BRUTE-FORCE-CVM, T.RECEIPT, T.TOKEN, T.INTEGAPPLI-DATA, T.UNAUTHORISED-TOE-CODE-UPDATE, T.FAKE-SGNVER-KEY, T.WRONG-UPDATE-STATE, T.INTEG-OS-UPDATE_LOAD, T.CONFID-OS-UPDATE_LOAD, T.INTEG-APPLI-, T.INTEG, T.CONFID-OS-UPDATE-LOAD, A.DELETION, A.APPLET, A.VERIFICATION, A.OTA-ADMIN, A.APPS-PROVIDER, A.VERIFICATION-AUTHORITY, A.KEY-ESCROW, A.PERSONALIZER, A.CONTROLLING-AUTHORITY, A.PRODUCTION, A.ISSUER, A.SCP-SUPP, A.KEYS-PROT, A.ADMIN, A.PERSONALISER, A.OS-UPDATE-EVIDENCE, A.SECURE_ACODE_MANAGEMENT, A.CAP_FILE, R.JAVA, OT.X, OP.ARRAY_ACCESS, OP.ARRAY_LENGTH, OP.ARRAY_AASTORE, OP.ARRAY_T_ALOAD, OP.ARRAY_T_ASTORE, OP.CREATE, OP.DELETE_APPLET, OP.DELETE_CAP_FILE, OP.DELETE_CAP_FILE_APPLET, OP.INSTANCE_FIELD, OP.INVK_VIRTUAL, OP.INVK_INTERFACE, OP.JAVA, OP.THROW, OP.TYPE_ACCESS, OP.PUT, OP.PUTFIELD, OP.PUTSTATIC, OE.APPLET, OE.CARD-MANAGEMENT, OE.SCP, OE.VERIFICATION, OE.CODE-EVIDENCE, OE.OTA-ADMIN, OE.APPS-PROVIDER, OE.VERIFICATION-AUTHORITY, OE.KEY-ESCROW, OE.PERSONALIZER, OE.CONTROLLING-AUTHORITY, OE.PRODUCTION, OE.AID-MANAGEMENT, OE.OTA-LOADING, OE.OTA-SERVERS, OE.AP-KEYS, OE.KEY-GENERATION, OE.CA-KEYS, OE.VA-KEYS, OE.KEY-CHANGE, OE.SECURITY-DOMAINS, OE.ISSUER, OE.ISSUER-KEYS, OE.APPLICATIONS, OE.CARD_MANAGEMENT, OE.OS-UPDATE-ENCRYPTION, OE.CAP_FILE, OE.ADMIN, OE.VERIFICATION-, OE.PERSONALISER, OE.CONTROLLING-, OE.SCP-SUPP, OE.KEYS-PROT, OE.LOADING, OE.SERVERS, OE.ISD-KEYS, OE.TOKEN-GEN, OE.RECEIPT-VER, OE.DAP_BLOCK_GEN, OE.OS-UPDATE-EVIDENCE, OE.SECURE_ACODE_MANAGEMENT, OE.KEY-, OE.RECEIPTVER, OE.OS-, OE.NATIVE, OSP, OSP.VERIFICATION, OSP.AID-MANAGEMENT, OSP.OTA-LOADING, OSP.OTA-SERVERS, OSP.APSD-KEYS, OSP.KEY-GENERATION, OSP.CASD-KEYS, OSP.KEY-CHANGE, OSP.SECURITY-DOMAINS, OSP.ISSUER-KEYS, OSP.APPLICATIONS, OSP.LOADING, OSP.SERVERS, OSP.ISD-KEYS, OSP.RNG, OSP.TOKEN-GEN, OSP.RECEIPT-VER, OSP.DAP_BLOCK_GEN, OSP.ATOMIC_ACTIVATION, OSP.TOE_IDENTIFICATION, OSP.ADDITIONAL_CODE_SIGNING, OSP.ADDITIONAL_CODE_ENCRYPTIONSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.5, ADV_IMP.2, ADV_INT.3, ADV_SPM.1, ADV_TDS.5, ADV_FSP.4, ADV_ARC, ADV_TDS.1, ADV_IMP.1, ADV_TDS.3, ADV_FSP.1, ADV_FSP.2, ADV_TDS.4, ADV_FSP, ADV_IMP, ADV_TDS, ADV_INT.2, AGD_OPE, AGD_PRE, AGD_OPE.1, AGD_PRE.1, ALC_FLR.2, ALC_DVS.2, ALC_CMC.5, ALC_CMS.5, ALC_DEL.1, ALC_LCD.1, ALC_TAT.3, ALC_TAT.1, ALC_CMC.4, ALC_TAT.2, ATE_COV.3, ATE_DPT.3, ATE_FUN.2, ATE_IND.2, ATE_FUN.1, ATE_COV.1, ATE_COV.2, ATE_DPT.1, AVA_VAN.5, ASE_TSS.2, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_ARP.1, FAU_ARP.1.1, FAU_SAA.1, FAU_SAS.1, FCO_NRO, FCO_NRO.2, FCO_NRR, FCO_NRR.1, FCS_RNG, FCS_CKM, FCS_COP, FCS_CKM.1, FCS_CKM.4, FCS_COP.1, FCS_RNG.1, FCS_RNG.1.1, FCS_RNG.1.2, FCS_CKM.1.1, FCS_CKM.2, FCS_CKM.2.1, FCS_CKM.3, FCS_CKM.3.1, FCS_CKM.4.1, FCS_COP.1.1, FCS_CMK.4, FDP_ACC, FDP_ACF, FDP_IFC, FDP_IFF, FDP_RIP, FDP_ROL, FDP_SDI, FDP_ITC, FDP_UIT, FDP_UCT, FDP_ACC.2, FDP_ACF.1, FDP_IFC.1, FDP_IFF.1, FDP_RIP.1, FDP_ROL.1, FDP_SDI.2, FDP_ACC.1, FDP_ITC.1, FDP_ITC.2, FDP_RIP.1.1, FDP_IFC.2, FDP_UIT.1, FDP_UCT.1, FDP_SDC.1, FDP_ITT.1, FIA_AFL, FIA_ATD, FIA_UID, FIA_USB, FIA_UAU, FIA_ATD.1, FIA_UID.2, FIA_USB.1, FIA_UAU.4, FIA_UAU.1, FIA_AFL.1.1, FIA_AFL.1.2, FIA_UID.1.1, FIA_UID.1.2, FIA_UID.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.4.1, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.6.1, FIA_AFL.1, FIA_API.1, FMT_LIM, FMT_LIM.1, FMT_LIM.2, FMT_MSA, FMT_SMF.1, FMT_SMR.1, FMT_MTD, FMT_SMR, FMT_SMF, FMT_LIM.1.1, FMT_LIM.2.1, FMT_MSA.1, FMT_MSA.2, FMT_MSA.3, FMT_MTD.1, FMT_MTD.3, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FPR_UNO.1, FPR_UNO, FPR_UNO.1.1, FPT_EMS, FPT_TST, FPT_EMS.1, FPT_FLS.1, FPT_TDC.1, FPT_FLS, FPT_RCV, FPT_TDC, FPT_EMS.1.1, FPT_EMS.1.2, FPT_TDC.1.1, FPT_TDC.1.2, FPT_TST.1, FPT_PHP, FPT_PHP.3, FPT_RCV.4, FPT_ITT, FPT_ITT.1, FPT_FLS.1.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FPT_PHP.3.1, FPT_RCV.3, FRU_FLT.2, FTP_ITC, FTP_TRP, FTP_ITC.1.1, FTP_ITC.1.2, FTP_ITC.1.3, FTP_TRP.1, FTP_ITC.1Protection profiles
BSI-CC-PP- 00842014, BSI-CC-PP-0099-V2-, BSI-PP-0056-V2-MA-2012, BSI-CC-PP-0084-2014Certificates
ANSSI-CC-2023/01-R01, CC-1, CC-2, CC-3Side-channel analysis
Leak-Inherent, physical probing, DPA, SPA, timing attacks, physical tampering, Physical Tampering, malfunction, Malfunction, fault inductionCertification process
out of scope, biometry is out of scope of the TOE, in §1.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE, filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE, • The DELETE and INSTALL APDU commands are out of scope of this SPM, 1 : MultiApp v5.1 Rev. B with biometry features but forbidden to use without patch (biometry is out of scope of the TOE) 2. Config 2 : MultiApp v5.1 Rev. C with biometry features but forbidden to use without, biometry is out of scope of the TOE) 3. Config 3 : MultiApp v5.1 Rev. B with biometry features included in the TOE (Upgraded, in §1.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE. 2.4 TOE DESCRIPTION 2.4.1 Architecture The MultiApp V5.1 platform is an operating, for 2 others configurations (filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE. If another patch is required in the future, it would require at least a maintenance of, a timeout policy that prevent them from being blocked should a card fails to answer. That point is out of scope of this Security Target, though. Finally, the objectives O.SCP.RECOVERY and O.SCP.SUPPORT are, the active context is not the same as the Selected Applet Context. Application note: This rule is out of scope of the SPM modelisation because CLEAR_ON_DESELECT objects can be created exclusively in the API, is also out of scope (Hypothesis 4 of the SPM document [MAV51_SPM]).. 3) S.CAP_FILE performing OP.ARRAY_AASTORE of the, as a null reference. Such a mechanism is implementation-dependent. The deletion of applets is out of scope of this SPM scope. In the case of an array type, fields are components of the array ([JVM], §2.14, Context, the Selected Applet Context, and the Active Applets Note: the Selected Applet context is out of scope of the VM functionalities. It is a process that occurs prior to VM start The initial setting of, and deletion; see #.DELETION and #.INSTALL). • The DELETE and INSTALL APDU commands are out of scope of this SPM. The list of registred applets’ AIDs is proven to be not modified during the execution, 1, are out of the scope of the SPM as they are linked to the applet loading or deletion that is out of scope of the SPM boundaries limited to VM opcodes The SFR FMT_MTD.3/JCRE is out of scope of the SPM, because AID registry is created during loading phase, which is also out of scope of the SPM (Hypothesis 2 of the SPM document [MAV51_SPM]). MultiApp V5.1: GP-SE Security TargetStandards
FIPS180-4, FIPS202, FIPS197, FIPS 197, FIPS 198, FIPS 180-4, SP 800-67, PKCS#1, PKCS#5, BSI-AIS31, AIS31, AIS20, ICAO, SCP02, SCP21, SCP01, SCP03, SCP10, SCP11, SCP22, SCP80, SCP81, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003File metadata
| Creation date | D:20251211164533+01'00' |
|---|---|
| Modification date | D:20251211164533+01'00' |
| Pages | 199 |
| Creator | Microsoft® Word for Microsoft 365 |
| Producer | Microsoft® Word for Microsoft 365 |
References
Outgoing- ANSSI-CC-2023/01-R01 - active - AQUARIUS_BA_09 & CA_09 Référence : AQUARIUS_TOE_v3 ( ANSSI-CC-2023/01-R01)
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.Certificate ID
ANSSI-CC-2025/57Extracted SARs
ADV_ARC.1, ADV_FSP.5, ADV_IMP.2, ADV_INT.3, ADV_SPM.1, ADV_TDS.5, AGD_OPE.1, AGD_PRE.1, ALC_CMC.5, ALC_CMS.5, ALC_DEL.1, ALC_DVS.2, ALC_FLR.2, ALC_LCD.1, ALC_TAT.3, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.2, ATE_COV.3, ATE_DPT.3, ATE_FUN.2, ATE_IND.2, AVA_VAN.5Similar certificates
Showing 5 out of 188.
References
Loading...
Updates Feed
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-57-certificat.pdf",
"dgst": "31cf2a7aec823213",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "ANSSI-CC-2025/57",
"cert_lab": null,
"cpe_matches": null,
"direct_transitive_cves": null,
"eal": "EAL6+",
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_INT",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_SPM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 5
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"5.1"
]
},
"indirect_transitive_cves": null,
"next_certificates": null,
"prev_certificates": null,
"protection_profiles": {
"_type": "Set",
"elements": [
"7f886b64878b68c1",
"3ebd6b9f8d81e522"
]
},
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"ANSSI-CC-2023/01-R01"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"ANSSI-CC-2023/01-R01"
]
}
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"ANSSI-CC-2023/01-R01"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"ANSSI-CC-2023/01-R01"
]
}
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "THALES DIS FRANCE SA",
"manufacturer_web": "https://www.thalesgroup.com/en/europe/france",
"name": "MultiApp V5.1 GP-SE PlatformConfiguration 1 : 5.1 revision B version 2 (0x3055) et filter set 0x00,configuration 2 : 5.1 revision C version 2 (0x3055) et filter set 0x10,configuration 3 : 5.1 revision B version 2 (0x3055) et filter set 0x14,configuration 4 : 5.1 revision C version 2 (0x3055) et filter set 0x24(ANSSI-CC-2025/57)",
"not_valid_after": "2031-02-04",
"not_valid_before": "2026-02-04",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "ANSSI-CC-2025-57-certificat.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"FR": {
"ANSSI-CC-2025/57": 2
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-PP-099-V2-2020": 1
}
},
"cc_sar": {
"ALC": {
"ALC_FLR.2": 2
}
},
"cc_security_level": {
"EAL": {
"EAL2": 1,
"EAL6": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"CEA-LETI": {
"CEA - LETI": 1
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/CreationDate": "D:20260119101711+01\u002700\u0027",
"/Creator": "Acrobat PDFMaker 25 pour Word",
"/ModDate": "D:20260204134646+00\u002700\u0027",
"/Producer": "PDFKit.NET 26.1.0.63468 DMV9",
"pdf_file_size_bytes": 306939,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 2
},
"report_filename": "ANSSI-CC-2025-57-rapport.pdf",
"report_frontpage": {
"FR": {}
},
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"FR": {
"ANSSI-CC-2023/01-R01": 2,
"ANSSI-CC-2025/57": 3
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0099-V2-2020": 2
}
},
"cc_sar": {
"AGD": {
"AGD_OPE": 2,
"AGD_PRE": 1
},
"ALC": {
"ALC_FLR": 1,
"ALC_FLR.2": 2
},
"AVA": {
"AVA_VAN": 1
}
},
"cc_security_level": {
"EAL": {
"EAL2": 2,
"EAL6": 1,
"EAL7": 1
},
"ITSEC": {
"ITSEC E6 Elev\u00e9": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"CEA-LETI": {
"CEA - LETI": 1
},
"CESTI": {
"CESTI": 5
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"CC": {
"CCMB-2017-04-001": 1,
"CCMB-2017-04-002": 1,
"CCMB-2017-04-003": 1,
"CCMB-2017-04-004": 1
}
},
"symmetric_crypto": {
"DES": {
"DES": {
"DES": 1
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/CreationDate": "D:20260119101909+01\u002700\u0027",
"/Creator": "Acrobat PDFMaker 25 pour Word",
"/ModDate": "D:20260204134644+00\u002700\u0027",
"/Producer": "PDFKit.NET 26.1.0.63468 DMV9",
"pdf_file_size_bytes": 875393,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.cyber.gouv.fr/",
"http://www.commoncriteriaportal.org/",
"http://www.sogis.eu/",
"mailto:[email protected]"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 14
},
"st_filename": "ANSSI-CC-2025-57-cible.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 12
},
"ECDH": {
"ECDH": 8
},
"ECDSA": {
"ECDSA": 4
}
},
"FF": {
"DH": {
"DH": 14,
"Diffie-Hellman": 5
}
},
"RSA": {
"RSA 1024": 3
}
},
"cc_cert_id": {
"FR": {
"ANSSI-CC-2023/01-R01": 1
},
"NL": {
"CC-1": 2,
"CC-2": 4,
"CC-3": 4
}
},
"cc_claims": {
"A": {
"A.ADMIN": 3,
"A.APPLET": 1,
"A.APPS-PROVIDER": 4,
"A.CAP_FILE": 3,
"A.CONTROLLING-AUTHORITY": 4,
"A.DELETION": 2,
"A.ISSUER": 4,
"A.KEY-ESCROW": 4,
"A.KEYS-PROT": 4,
"A.OS-UPDATE-EVIDENCE": 3,
"A.OTA-ADMIN": 1,
"A.PERSONALISER": 3,
"A.PERSONALIZER": 1,
"A.PRODUCTION": 4,
"A.SCP-SUPP": 4,
"A.SECURE_ACODE_MANAGEMENT": 3,
"A.VERIFICATION": 4,
"A.VERIFICATION-AUTHORITY": 4
},
"D": {
"D.API_DATA": 4,
"D.APP_CODE": 8,
"D.APP_C_DATA": 6,
"D.APP_I_DATA": 8,
"D.APP_KEYS": 9,
"D.APSD_DAP_KEYS": 1,
"D.APSD_KEYS": 6,
"D.CASD_DAP_KEYS": 1,
"D.CASD_KEYS": 4,
"D.CONFIRMATION-DATA": 2,
"D.CRYPTO": 6,
"D.CVM_MGMT_STATE": 3,
"D.CVM_PIN": 3,
"D.DAP_BLOCK": 1,
"D.GP_CODE": 2,
"D.GP_REGISTRY": 4,
"D.ISD_KEYS": 6,
"D.JCS_CODE": 7,
"D.JCS_DATA": 9,
"D.OS-": 1,
"D.OS-UPDATE-CODE-ID": 3,
"D.OS-UPDATE_ADDITIONALCODE": 4,
"D.OS-UPDATE_DEC-KEY": 2,
"D.OS-UPDATE_SGNVER-KEY": 3,
"D.PIN": 6,
"D.RECEIPT-GENERATION-KEY": 2,
"D.SEC_DATA": 9,
"D.TOE_IDENTIFIER": 2,
"D.TOKEN-VERIFICATION-KEY": 2
},
"O": {
"O.ALARM": 15,
"O.APPLET": 28,
"O.APPLI-AUTH": 7,
"O.ARRAY_VIEWS_CONFID": 5,
"O.ARRAY_VIEWS_INTEG": 3,
"O.CARD-": 3,
"O.CARD-MANAGEMENT": 23,
"O.CIPHER": 13,
"O.CODE_CAP_FILE": 23,
"O.COMM-": 1,
"O.COMM-AUTH": 5,
"O.COMM-CONFIDENTIALITY": 4,
"O.COMM-INTEGRITY": 5,
"O.COMM_AUTH": 1,
"O.COMM_CONFIDENTIALITY": 1,
"O.COMM_INTEGRITY": 1,
"O.CONFID-OS-UPDATE": 5,
"O.CVM-BLOCK": 5,
"O.CVM-MGMT": 6,
"O.CVM-MGNT": 1,
"O.CVM-MNGT": 1,
"O.DELETION": 7,
"O.DOMAIN-RIGHTS": 4,
"O.DOMAIN_RIGHTS": 1,
"O.FIREWALL": 14,
"O.GLOBAL-CVM": 5,
"O.GLOBAL_ARRAYS_CONFID": 8,
"O.GLOBAL_ARRAYS_INTEG": 6,
"O.INSTALL": 10,
"O.JAVAOBJECT": 68,
"O.KEY-MNGT": 7,
"O.KEY_DELETION": 1,
"O.LC-MANAGEMENT": 4,
"O.LOAD": 11,
"O.NATIVE": 11,
"O.NO-KEY-REUSE": 4,
"O.OBJ-DELETION": 5,
"O.OBJ_DELETION": 1,
"O.OPERATE": 17,
"O.PIN-MNGT": 7,
"O.PIN_MNGT": 2,
"O.PRIVILEGES-": 1,
"O.PRIVILEGES-MANAGEMENT": 5,
"O.REALLOCATION": 6,
"O.RECEIPT": 4,
"O.RESOURCES": 9,
"O.RND": 1,
"O.RNG": 13,
"O.SCP": 32,
"O.SECURE_AC_ACTIVATION": 6,
"O.SECURE_LOAD_ACODE": 8,
"O.SECURITY-": 1,
"O.SECURITY-DOMAINS": 3,
"O.SECURITY_DOMAINS": 1,
"O.SID": 13,
"O.TOE_IDENTIFICATION": 7,
"O.TOKEN": 5,
"O.TRANSACTION": 7
},
"OE": {
"OE.ADMIN": 2,
"OE.AID-MANAGEMENT": 4,
"OE.AP-KEYS": 3,
"OE.APPLET": 1,
"OE.APPLICATIONS": 3,
"OE.APPS-PROVIDER": 4,
"OE.CA-KEYS": 4,
"OE.CAP_FILE": 5,
"OE.CARD-MANAGEMENT": 2,
"OE.CARD_MANAGEMENT": 1,
"OE.CODE-EVIDENCE": 12,
"OE.CONTROLLING-": 1,
"OE.CONTROLLING-AUTHORITY": 3,
"OE.DAP_BLOCK_GEN": 3,
"OE.ISD-KEYS": 3,
"OE.ISSUER": 4,
"OE.ISSUER-KEYS": 1,
"OE.KEY-": 2,
"OE.KEY-CHANGE": 2,
"OE.KEY-ESCROW": 4,
"OE.KEY-GENERATION": 2,
"OE.KEYS-PROT": 2,
"OE.LOADING": 2,
"OE.NATIVE": 1,
"OE.OS-": 3,
"OE.OS-UPDATE-ENCRYPTION": 4,
"OE.OS-UPDATE-EVIDENCE": 2,
"OE.OTA-ADMIN": 1,
"OE.OTA-LOADING": 1,
"OE.OTA-SERVERS": 1,
"OE.PERSONALISER": 2,
"OE.PERSONALIZER": 1,
"OE.PRODUCTION": 4,
"OE.RECEIPT-VER": 1,
"OE.RECEIPTVER": 1,
"OE.SCP": 9,
"OE.SCP-SUPP": 2,
"OE.SECURE_ACODE_MANAGEMENT": 4,
"OE.SECURITY-DOMAINS": 1,
"OE.SERVERS": 3,
"OE.TOKEN-GEN": 3,
"OE.VA-KEYS": 1,
"OE.VERIFICATION": 26,
"OE.VERIFICATION-": 1,
"OE.VERIFICATION-AUTHORITY": 2
},
"OP": {
"OP.ARRAY_AASTORE": 3,
"OP.ARRAY_ACCESS": 7,
"OP.ARRAY_LENGTH": 3,
"OP.ARRAY_T_ALOAD": 3,
"OP.ARRAY_T_ASTORE": 3,
"OP.CREATE": 11,
"OP.DELETE_APPLET": 6,
"OP.DELETE_CAP_FILE": 4,
"OP.DELETE_CAP_FILE_APPLET": 4,
"OP.INSTANCE_FIELD": 6,
"OP.INVK_INTERFACE": 10,
"OP.INVK_VIRTUAL": 8,
"OP.JAVA": 8,
"OP.PUT": 8,
"OP.PUTFIELD": 1,
"OP.PUTSTATIC": 1,
"OP.THROW": 7,
"OP.TYPE_ACCESS": 7
},
"OSP": {
"OSP": 3,
"OSP.ADDITIONAL_CODE_ENCRYPTION": 3,
"OSP.ADDITIONAL_CODE_SIGNING": 3,
"OSP.AID-MANAGEMENT": 4,
"OSP.APPLICATIONS": 4,
"OSP.APSD-KEYS": 4,
"OSP.ATOMIC_ACTIVATION": 3,
"OSP.CASD-KEYS": 4,
"OSP.DAP_BLOCK_GEN": 3,
"OSP.ISD-KEYS": 3,
"OSP.ISSUER-KEYS": 1,
"OSP.KEY-CHANGE": 4,
"OSP.KEY-GENERATION": 4,
"OSP.LOADING": 3,
"OSP.OTA-LOADING": 1,
"OSP.OTA-SERVERS": 1,
"OSP.RECEIPT-VER": 3,
"OSP.RNG": 3,
"OSP.SECURITY-DOMAINS": 4,
"OSP.SERVERS": 3,
"OSP.TOE_IDENTIFICATION": 3,
"OSP.TOKEN-GEN": 3,
"OSP.VERIFICATION": 4
},
"OT": {
"OT.X": 1
},
"R": {
"R.JAVA": 13
},
"T": {
"T.BRUTE-FORCE-CVM": 3,
"T.BRUTE-FORCE-SCP": 5,
"T.COM-EXPLOIT": 4,
"T.COM_EXPLOIT": 2,
"T.CONFID-APPLI-DATA": 4,
"T.CONFID-JCS-CODE": 4,
"T.CONFID-JCS-DATA": 4,
"T.CONFID-OS-UPDATE-LOAD": 1,
"T.CONFID-OS-UPDATE_LOAD": 2,
"T.CVM-IMPERSONATE": 3,
"T.CVM-UPDATE": 3,
"T.DELETION": 6,
"T.EXE-CODE": 8,
"T.FAKE-SGNVER-KEY": 3,
"T.INSTALL": 6,
"T.INTEG": 1,
"T.INTEG-APPLI-": 2,
"T.INTEG-APPLI-CODE": 9,
"T.INTEG-APPLI-DATA": 8,
"T.INTEG-JCS-CODE": 4,
"T.INTEG-JCS-DATA": 4,
"T.INTEG-OS-UPDATE_LOAD": 2,
"T.INTEGAPPLI-DATA": 1,
"T.LIFE-CYCLE": 3,
"T.LIFE_CYCLE": 2,
"T.NATIVE": 4,
"T.OBJ-DELETION": 4,
"T.PHYSICAL": 4,
"T.RECEIPT": 3,
"T.RESOURCES": 4,
"T.SID": 8,
"T.TOKEN": 3,
"T.UNAUTHORISED-CARD-MGMT": 4,
"T.UNAUTHORISED-TOE-CODE-UPDATE": 3,
"T.UNAUTHORIZED_CARD_MNGT": 2,
"T.WRONG-UPDATE-STATE": 3
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP- 00842014": 1,
"BSI-CC-PP-0084-2014": 1,
"BSI-CC-PP-0099-V2-": 1,
"BSI-PP-0056-V2-MA-2012": 1
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 2,
"ADV_ARC.1": 10,
"ADV_FSP": 1,
"ADV_FSP.1": 1,
"ADV_FSP.2": 2,
"ADV_FSP.4": 2,
"ADV_FSP.5": 8,
"ADV_IMP": 1,
"ADV_IMP.1": 5,
"ADV_IMP.2": 4,
"ADV_INT.2": 2,
"ADV_INT.3": 2,
"ADV_SPM.1": 9,
"ADV_TDS": 1,
"ADV_TDS.1": 2,
"ADV_TDS.3": 3,
"ADV_TDS.4": 2,
"ADV_TDS.5": 6
},
"AGD": {
"AGD_OPE": 1,
"AGD_OPE.1": 10,
"AGD_PRE": 2,
"AGD_PRE.1": 7
},
"ALC": {
"ALC_CMC.4": 2,
"ALC_CMC.5": 4,
"ALC_CMS.5": 3,
"ALC_DEL.1": 4,
"ALC_DVS.2": 7,
"ALC_FLR.2": 7,
"ALC_LCD.1": 6,
"ALC_TAT.1": 2,
"ALC_TAT.2": 2,
"ALC_TAT.3": 4
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.2": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1,
"ASE_TSS.2": 1
},
"ATE": {
"ATE_COV.1": 2,
"ATE_COV.2": 3,
"ATE_COV.3": 2,
"ATE_DPT.1": 1,
"ATE_DPT.3": 4,
"ATE_FUN.1": 6,
"ATE_FUN.2": 4,
"ATE_IND.2": 5
},
"AVA": {
"AVA_VAN.5": 5
}
},
"cc_security_level": {
"EAL": {
"EAL 6+": 1,
"EAL4": 1,
"EAL4 augmented": 1,
"EAL6": 34,
"EAL6 augmented": 1,
"EAL6+": 3
}
},
"cc_sfr": {
"FAU": {
"FAU_ARP.1": 18,
"FAU_ARP.1.1": 1,
"FAU_SAA.1": 2,
"FAU_SAS.1": 2
},
"FCO": {
"FCO_NRO": 34,
"FCO_NRO.2": 9,
"FCO_NRR": 7,
"FCO_NRR.1": 3
},
"FCS": {
"FCS_CKM": 63,
"FCS_CKM.1": 38,
"FCS_CKM.1.1": 3,
"FCS_CKM.2": 12,
"FCS_CKM.2.1": 1,
"FCS_CKM.3": 7,
"FCS_CKM.3.1": 1,
"FCS_CKM.4": 41,
"FCS_CKM.4.1": 2,
"FCS_CMK.4": 1,
"FCS_COP": 97,
"FCS_COP.1": 35,
"FCS_COP.1.1": 5,
"FCS_RNG": 29,
"FCS_RNG.1": 17,
"FCS_RNG.1.1": 3,
"FCS_RNG.1.2": 3
},
"FDP": {
"FDP_ACC": 57,
"FDP_ACC.1": 25,
"FDP_ACC.2": 6,
"FDP_ACF": 53,
"FDP_ACF.1": 25,
"FDP_IFC": 71,
"FDP_IFC.1": 22,
"FDP_IFC.2": 4,
"FDP_IFF": 50,
"FDP_IFF.1": 23,
"FDP_ITC": 45,
"FDP_ITC.1": 19,
"FDP_ITC.2": 29,
"FDP_ITT.1": 2,
"FDP_RIP": 124,
"FDP_RIP.1": 11,
"FDP_RIP.1.1": 1,
"FDP_ROL": 24,
"FDP_ROL.1": 7,
"FDP_SDC.1": 2,
"FDP_SDI": 11,
"FDP_SDI.2": 4,
"FDP_UCT": 9,
"FDP_UCT.1": 3,
"FDP_UIT": 19,
"FDP_UIT.1": 4
},
"FIA": {
"FIA_AFL": 42,
"FIA_AFL.1": 7,
"FIA_AFL.1.1": 2,
"FIA_AFL.1.2": 2,
"FIA_API.1": 2,
"FIA_ATD": 15,
"FIA_ATD.1": 3,
"FIA_UAU": 92,
"FIA_UAU.1": 7,
"FIA_UAU.1.1": 2,
"FIA_UAU.1.2": 2,
"FIA_UAU.4": 2,
"FIA_UAU.4.1": 1,
"FIA_UAU.5.1": 1,
"FIA_UAU.5.2": 1,
"FIA_UAU.6.1": 1,
"FIA_UID": 67,
"FIA_UID.1": 24,
"FIA_UID.1.1": 2,
"FIA_UID.1.2": 2,
"FIA_UID.2": 1,
"FIA_USB": 9,
"FIA_USB.1": 3
},
"FMT": {
"FMT_LIM": 42,
"FMT_LIM.1": 17,
"FMT_LIM.1.1": 3,
"FMT_LIM.2": 16,
"FMT_LIM.2.1": 3,
"FMT_MSA": 174,
"FMT_MSA.1": 16,
"FMT_MSA.2": 2,
"FMT_MSA.3": 24,
"FMT_MTD": 100,
"FMT_MTD.1": 16,
"FMT_MTD.3": 2,
"FMT_SMF": 111,
"FMT_SMF.1": 33,
"FMT_SMF.1.1": 2,
"FMT_SMR": 128,
"FMT_SMR.1": 38,
"FMT_SMR.1.1": 2,
"FMT_SMR.1.2": 2
},
"FPR": {
"FPR_UNO": 23,
"FPR_UNO.1": 13,
"FPR_UNO.1.1": 1
},
"FPT": {
"FPT_EMS": 4,
"FPT_EMS.1": 16,
"FPT_EMS.1.1": 3,
"FPT_EMS.1.2": 3,
"FPT_FLS": 72,
"FPT_FLS.1": 19,
"FPT_FLS.1.1": 1,
"FPT_ITT": 8,
"FPT_ITT.1": 2,
"FPT_PHP": 9,
"FPT_PHP.3": 19,
"FPT_PHP.3.1": 1,
"FPT_RCV": 31,
"FPT_RCV.3": 5,
"FPT_RCV.4": 1,
"FPT_TDC": 10,
"FPT_TDC.1": 14,
"FPT_TDC.1.1": 1,
"FPT_TDC.1.2": 1,
"FPT_TST": 10,
"FPT_TST.1": 16,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1
},
"FRU": {
"FRU_FLT.2": 2
},
"FTP": {
"FTP_ITC": 41,
"FTP_ITC.1": 11,
"FTP_ITC.1.1": 1,
"FTP_ITC.1.2": 1,
"FTP_ITC.1.3": 1,
"FTP_TRP": 21,
"FTP_TRP.1": 14
}
},
"certification_process": {
"OutOfScope": {
" \u2022 The DELETE and INSTALL APDU commands are out of scope of this SPM": 1,
"1 : MultiApp v5.1 Rev. B with biometry features but forbidden to use without patch (biometry is out of scope of the TOE) 2. Config 2 : MultiApp v5.1 Rev. C with biometry features but forbidden to use without": 1,
"1, are out of the scope of the SPM as they are linked to the applet loading or deletion that is out of scope of the SPM boundaries limited to VM opcodes The SFR FMT_MTD.3/JCRE is out of scope of the SPM": 1,
"Context, the Selected Applet Context, and the Active Applets Note: the Selected Applet context is out of scope of the VM functionalities. It is a process that occurs prior to VM start The initial setting of": 1,
"a timeout policy that prevent them from being blocked should a card fails to answer. That point is out of scope of this Security Target, though. Finally, the objectives O.SCP.RECOVERY and O.SCP.SUPPORT are": 1,
"and deletion; see #.DELETION and #.INSTALL). \u2022 The DELETE and INSTALL APDU commands are out of scope of this SPM. The list of registred applets\u2019 AIDs is proven to be not modified during the execution": 1,
"as a null reference. Such a mechanism is implementation-dependent. The deletion of applets is out of scope of this SPM scope. In the case of an array type, fields are components of the array ([JVM], \u00a72.14": 1,
"because AID registry is created during loading phase, which is also out of scope of the SPM (Hypothesis 2 of the SPM document [MAV51_SPM]). MultiApp V5.1: GP-SE Security Target": 1,
"biometry is out of scope of the TOE": 2,
"biometry is out of scope of the TOE) 3. Config 3 : MultiApp v5.1 Rev. B with biometry features included in the TOE (Upgraded": 1,
"filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE": 1,
"for 2 others configurations (filter set = 0x00 and 0x10) no patch is loaded and Biometry feature is out of scope of the TOE. If another patch is required in the future, it would require at least a maintenance of": 1,
"in \u00a71.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE": 1,
"in \u00a71.3, Filter set field = 0X00 Rev. C with patch or 0X10 Rev. C with patch), we consider BioPIN out of scope of the TOE. 2.4 TOE DESCRIPTION 2.4.1 Architecture The MultiApp V5.1 platform is an operating": 1,
"is also out of scope (Hypothesis 4 of the SPM document [MAV51_SPM]).. 3) S.CAP_FILE performing OP.ARRAY_AASTORE of the": 1,
"out of scope": 13,
"the active context is not the same as the Selected Applet Context. Application note: This rule is out of scope of the SPM modelisation because CLEAR_ON_DESELECT objects can be created exclusively in the API": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 5
},
"CCM": {
"CCM": 8
},
"ECB": {
"ECB": 1
}
},
"cplc_data": {
"ICFab": {
"IC Fabricator": 1
},
"ICType": {
"IC Type": 1
}
},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 169
},
"TLS": {
"TLS": {
"TLS": 1
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 6,
"Key agreement": 2
},
"MAC": {
"MAC": 16
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 6,
"SHA1": 2
},
"SHA2": {
"SHA-224": 1,
"SHA-256": 5,
"SHA-384": 5,
"SHA-512": 4,
"SHA2": 1,
"SHA224": 1
},
"SHA3": {
"SHA3": 2,
"SHA3-256": 1,
"SHA3-384": 1,
"SHA3-512": 1
}
}
},
"ic_data_group": {
"EF": {
"EF.DG1": 4,
"EF.DG16": 4,
"EF.DG3": 1,
"EF.DG4": 1
}
},
"javacard_api_const": {
"misc": {
"TYPE_ACCESS": 7
}
},
"javacard_packages": {
"com": {
"com.gemalto.belpic": 1,
"com.gemalto.javacard.eid": 1,
"com.gemalto.javacard.fido.ctap": 1,
"com.gemalto.javacard.iasclassic": 1,
"com.gemalto.javacard.mspnp": 1,
"com.gemalto.javacardx.gdp": 1,
"com.gemalto.moc.client": 1,
"com.gemalto.moc.server": 1,
"com.gemalto.mpcos": 1,
"com.gemalto.puredi": 1,
"com.gemalto.tacho": 1
},
"java": {
"java.lang": 1
},
"javacard": {
"javacard.eid": 1,
"javacard.fido.ctap": 1,
"javacard.framework": 3,
"javacard.iasclassic": 1,
"javacard.mspnp": 1
},
"javacardx": {
"javacardx.gdp": 1
}
},
"javacard_version": {
"JavaCard": {
"Java Card 3.1": 8
}
},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"PRNG": 1
},
"RNG": {
"RND": 3,
"RNG": 44
}
},
"side_channel_analysis": {
"FI": {
"Malfunction": 6,
"Physical Tampering": 3,
"fault induction": 2,
"malfunction": 9,
"physical tampering": 1
},
"SCA": {
"DPA": 2,
"Leak-Inherent": 3,
"SPA": 1,
"physical probing": 7,
"timing attacks": 1
}
},
"standard_id": {
"BSI": {
"AIS20": 2,
"AIS31": 7,
"BSI-AIS31": 1
},
"CC": {
"CCMB-2017-04-001": 1,
"CCMB-2017-04-002": 1,
"CCMB-2017-04-003": 1
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 2,
"FIPS 198": 2,
"FIPS180-4": 2,
"FIPS197": 5,
"FIPS202": 2
},
"ICAO": {
"ICAO": 3
},
"NIST": {
"SP 800-67": 1
},
"PKCS": {
"PKCS#1": 8,
"PKCS#5": 5
},
"SCP": {
"SCP01": 4,
"SCP02": 18,
"SCP03": 16,
"SCP10": 1,
"SCP11": 1,
"SCP21": 8,
"SCP22": 1,
"SCP80": 1,
"SCP81": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 35,
"AES-256": 1,
"AES256": 1
}
},
"DES": {
"3DES": {
"3DES": 2,
"TDEA": 1,
"TDES": 18,
"Triple-DES": 3
},
"DES": {
"DES": 21
}
},
"constructions": {
"MAC": {
"CMAC": 5,
"HMAC": 3,
"KMAC": 2
}
}
},
"technical_report_id": {},
"tee_name": {
"IBM": {
"SE": 58
}
},
"tls_cipher_suite": {},
"vendor": {
"Thales": {
"Thales": 41
}
},
"vulnerability": {}
},
"st_metadata": {
"/CreationDate": "D:20251211164533+01\u002700\u0027",
"/Creator": "Microsoft\u00ae Word for Microsoft 365",
"/MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_ActionId": "ad2ebb1e-ca3f-4ce0-b0a2-d8e4c7eec706",
"/MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_ContentBits": "3",
"/MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Enabled": "true",
"/MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Method": "Privileged",
"/MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_Name": "DIS Limited Distribution Scope",
"/MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_SetDate": "2025-09-18T16:05:00Z",
"/MSIP_Label_c6c1d335-5221-4a6a-889f-c684b2c8474c_SiteId": "6e603289-5e46-4e26-ac7c-03a85420a9a5",
"/ModDate": "D:20251211164533+01\u002700\u0027",
"/Producer": "Microsoft\u00ae Word for Microsoft 365",
"pdf_file_size_bytes": 6700116,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 199
}
},
"protection_profile_links": {
"_type": "Set",
"elements": [
"https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/CCN-CC-PP-5-2021.pdf",
"https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0099V2b_pdf.pdf"
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-57-rapport.pdf",
"scheme": "FR",
"security_level": {
"_type": "Set",
"elements": [
"ALC_FLR.2",
"EAL6+"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/ANSSI-CC-2025-57-cible.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"json_hash": null,
"pdf_hash": "fd507a764e59520c1763cd82adf9d720dcf13ef376e6c6e039240c3c71e966ca",
"txt_hash": "7c633055191a70553c331affcd04dff4b5780cbefddf882917cd74ac50893f07"
},
"report": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"json_hash": null,
"pdf_hash": "e6b2b0cea522d6b5593342f2cdcf9adc0c885704ba9cf0d1a3eb61f64bbd74bc",
"txt_hash": "1dbcae04b6bc36369705ffcc7f33b6a5ae5a326fb5f97c1400c9d5e4b17f591d"
},
"st": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"json_hash": null,
"pdf_hash": "2f41a2f1de4f32d63ced3556ef8590b43b6672257e71517d93f85c179c097687",
"txt_hash": "e5dcc5cf55ada6c7187988b43b0cf7b19594a89e60cf8daf376e87700241d5af"
}
},
"status": "active"
}