This page was not yet optimized for use on mobile
devices.
Sm@rtCafe Expert Version 5.0
CSV information
| Status | archived |
|---|---|
| Valid from | 17.12.2009 |
| Valid until | 01.09.2019 |
| Scheme | 🇩🇪 DE |
| Manufacturer | G+D Mobile Security GmbH |
| Category | ICs, Smart Cards and Smart Card-Related Devices and Systems |
| Security level | EAL4+ |
Heuristics summary
Certificate ID: BSI-DSZ-CC-0537-2009
Certificate
certificate file processing did not finish successfully.
Show more...
Download pdf:
ERROR
Convert pdf to text:
ERROR
Extract keywords:
ERROR
Certification report
Extracted keywords
Symmetric Algorithms
AES, DES, 3-DES, 3DESAsymmetric Algorithms
RSA 1024CPLC
IC Fabricator, IC TypeVendor
NXP, Giesecke & DevrientSecurity level
EAL 4, EAL4, EAL 1, EAL 7, EAL5+, EAL1, EAL3, EAL5, EAL7, EAL2, EAL6, EAL 4 augmentedClaims
OE.NATIVE, OE.APPLET, OE.VERIFICATIONSecurity Assurance Requirements (SAR)
ACM_AUT, ACM_CAP, ACM_SCP, ACM_AUT.1, ACM_CAP.4, ACM_SCP.2, ADO_DEL, ADO_IGS, ADO_DEL.2, ADO_IGS.1, ADV_IMP.2, ADV_FSP, ADV_HLD, ADV_IMP, ADV_INT, ADV_LLD, ADV_RCR, ADV_SPM, AGD_ADM, AGD_USR, ALC_DVS, ALC_FLR, ALC_LCD, ALC_TAT, ALC_DVS.1, ALC_LCD.1, ALC_TAT.1, ATE_FUN, ATE_IND, ATE_COV, ATE_DPT, AVA_VLA.4, AVA_VLA, AVA_CCA, AVA_MSU, AVA_SOF, AVA_VLA.2, AVA_VLA.3, APE_DES, APE_ENV, APE_INT, APE_OBJ, APE_REQ, APE_SRE, ASE_DES, ASE_ENV, ASE_INT, ASE_OBJ, ASE_PPC, ASE_REQ, ASE_SRE, ASE_TSSCertificates
BSI-DSZ-CC-0537-2009, BSI-DSZ-CC-0404-2007, BSI-DSZ-CC-0410-2007, BSI-DSZ-CC-0411-2007, BSI-DSZ-CC-0537, BSI-DSZ-CC-0404, BSI-DSZ-CC-0410, BSI-DSZ-CC-0411Evaluation facilities
TĂśV InformationstechnikSide-channel analysis
JILCertification process
out of scope, the Smart Card at the initialisation site. The initialisation and the personalisation process are out of scope of this evaluation. 13 / 36 Certification Report BSI-DSZ-CC-0537-2009 The hardware product can be, contained in one or more Java packages. Note, that applets are not part of the TOE and therefore out of scope. The hardware platform was always the NXP P5CD144V0B. ● an emulator which is required for test, are tested through Module Tests. As the initialisation and the personalisation process are out of scope of this evaluation, the TOE was always tested in its usage phase. 16 / 36 BSI-DSZ-CC-0537-2009, Version 3.0, Status 27.08.2009, Security Target SmartCafe Expert V5.0, Giesecke & Devrient (confidential document) 8 specifically • AIS 20, Version 1, 2 December 1999, Funktionalitätsklassen und, 7] Evaluation Technical Report, Version 2, Date: 2009-10-14, BSI-DSZ-CC-0537, TUVIT (confidential document) [8] Configuration list for the TOE, Version 1.4, Date: 2009-08-27, Giesecke & DevrientStandards
AIS 34, AIS 20, AIS 25, AIS 26, AIS 36, AIS 37, AIS20, AIS 35, AIS 32, AIS36, ISO/IEC 15408:2005Technical reports
BSI 7125, BSI 7148, BSI 7149File metadata
| Title | Certification Report BSI-DSZ-CC-0537-2009 |
|---|---|
| Subject | Common Criteria Certification |
| Keywords | Sm@rtCafe ExpertVersion 5.0, Giesecke & Devrient GmbH, Java Card, Common Criteria, Certification, Zertifzierung |
| Author | Bundesamt fĂĽr Sicherheit in der Informationstechnik |
| Creation date | D:20100111131526+01'00' |
| Modification date | D:20100111135143+01'00' |
| Pages | 36 |
| Creator | Writer |
| Producer | StarOffice 9 |
Frontpage
| Certificate ID | BSI-DSZ-CC-0537-2009 |
|---|---|
| Certified item | Sm@rtCafe Expert Version 5.0 |
| Certification lab | BSI |
| Developer | Giesecke & Devrient GmbH |
References
Outgoing- BSI-DSZ-CC-0404-2007 - archived - NXP Secure Smart Card Controller P5CD040V0B, P5CC040V0B, P5CD020V0B and P5CC021V0B each with specific IC Dedicated Software
- BSI-DSZ-CC-0411-2007 - archived - NXP Secure Smart Card Controller P5CD144V0B, P5CN144V0B and P5CC144V0B each with specific IC Dedicated Software
- BSI-DSZ-CC-0410-2007 - archived - NXP Secure Smart Card Controller P5CD080V0B, P5CN080V0B and P5CC080V0B each with specific IC Dedicated Software
Security target
Extracted keywords
Symmetric Algorithms
AES, AES-, DES, 3-DES, Triple-DESAsymmetric Algorithms
DSAHash functions
SHA256Schemes
MACRandomness
TRNG, RNDBlock cipher modes
ECB, CBCJavaCard versions
Java Card 2.2.2, Java Card 2.2, GlobalPlatform 2.1.1Vendor
NXP, NXP Semiconductors, Giesecke & DevrientSecurity level
EAL4, EAL 4, EAL 5, EAL4 augmented, EAL 4 augmented, EAL 5 augmentedClaims
D.APP_CODE, D.APP_C_DATA, D.APP_I_DATA, D.PIN, D.APP_, D.JCS_CODE, D.JCS_, D.SEC_DATA, D.API_DATA, D.CRYPTO, D.JCS_DATA, O.SID, O.OPERATE, O.RESOURCES, O.FIREWALL, O.NATIVE, O.REALLOCATION, O.SHRD_VAR_CONFID, O.SHRD_VAR_INTEG, O.ALARM, O.TRANSACTION, O.CIPHER, O.PIN-MNGT, O.KEY-MNGT, O.INSTALL, O.LOAD, O.DELETION, O.OBJ-DELETION, O.REMOTE, O.SCP, O.CARD-MANAGEMENT, O.RND, O.SIDE_CHANNEL, O.CHECK_INIT, O.JAVAOBJECT, O.APPLET, O.CODE_PKG, O.CODE_PCKG, O.REMOTE_OBJ, O.REMOTE_MTHD, O.ROR, O.RMI_SERVICE, O.REMOTE_OBJECT, O.PACKAGE, O.CARD_MANAGEMENT, O.CARD-, O.REALLOCATIO, O.SHRD_VAR_IN, O.SHRD_VAR_CO, O.SHRD_VAR_CONF, O.XYZ, O.PIN-, O.REALLO, O.LOA, O.SHRD_VAR, O.KEY_MNGT, T.PHYSICAL, T.CONFID-JCS-CODE, T.CONFID-APPLI-DATA, T.CONFID-JCS-DATA, T.INTEG-APPLI-CODE, T.INTEG-JCS-CODE, T.INTEG-APPLI-DATA, T.INTEG-JCS-DATA, T.SID, T.EXE-CODE, T.NATIVE, T.RESOURCES, T.INSTALL, T.EXE-CODE-REMOTE, T.DELETION, T.OBJ-DELETION, T.RND, T.LEAKAGE, T.CHIP, T.CONF, T.INTEG-, T.INTEG, T.PHYSI, T.CONFID-, T.CONFID-JCS-, T.INTEG-JCS-, T.EXE-, T.INTEG-APPLI-, T.NATIV, T.RESOURC, T.OBJ-, T.A, A.NATIVE, A.VERIFICATION, A.APPLET, A.VERIFICA, R.JAVA, R.CMRG, OP.PUT, OP.CREATE, OP.JAVA, OP.DELETE_APPLET, OP.DELETE_PCKG, OP.DELETE_PCKG_APPLET, OP.GET_ROR, OP.INVOKE, OP.RET_RORD, OP.INVK_INTERFACE, OP.SEND, OP.RECEIVE, OP.PACKAGE_LOADING, OP.APPLET_INSTALLATION, OP.APPLET_DELETION, OP.PACKAGE_DELETION, OP.BYTECODE, OE.NATIVE, OE.APPLET, OE.VERIFICATION, OE.VERIFICAT, OE.XYZ, OSP.VERIFICATIONSecurity Assurance Requirements (SAR)
ACM_AUT, ACM_AUT.1, ACM_CAP, ACM_CAP.4, ACM_SCP, ACM_SCP.2, ACM_CAP.3, ADO_DEL, ADO_DEL.2, ADO_IGS.1, ADO_IGS, ADV_IMP.2, ADV_FSP, ADV_FSP.2, ADV_HLD, ADV_HLD.2, ADV_IMP, ADV_LLD, ADV_LLD.1, ADV_RCR, ADV_RCR.1, ADV_SPM, ADV_SPM.1, ADV_FSP.1, ADV_IMP.1, ADV_HLD.1, AGD_ADM, AGD_ADM.1, AGD_USR, AGD_USR.1, ALC_DVS, ALC_DVS.1, ALC_LCD, ALC_LCD.1, ALC_TAT, ALC_TAT.1, ALC_DVS.2, ATE_COV, ATE_COV.2, ATE_DPT, ATE_DPT.1, ATE_FUN, ATE_FUN.1, ATE_IND, ATE_IND.2, AVA_VLA.4, AVA_MSU, AVA_MSU.2, AVA_VLA, AVA_SOF, AVA_SOF.1, AVA_VLA.3, AVA_VLA.2, AVA_MSU.3Security Functional Requirements (SFR)
FAU_ARP, FAU_ARP.1, FAU_SAA.1, FCO_NRO.2, FCO_NRO, FCS_RND, FCS_RND.1, FCS_CKM.1, FCS_CKM.1.1, FCS_CKM.2, FCS_CKM.2.1, FCS_CKM.3, FCS_CKM.3.1, FCS_CKM.4, FCS_CKM.4.1, FCS_COP.1, FCS_COP.1.1, FCS_RND.1.1, FDP_IFC, FDP_IFC.1, FDP_IFF, FDP_IFF.1, FDP_RIP, FDP_RIP.1, FDP_ROL.1, FDP_ROL, FDP_SDI.2, FDP_SDI.2.1, FDP_SDI.2.2, FDP_ACF.1, FDP_ITC.2, FDP_ACC, FDP_ACC.2, FDP_ROL.1.1, FDP_IFC.2, FDP_UIT.1, FDP_ACC.1, FDP_IFF.2, FDP_IFF.2.7, FDP_ACF, FDP_ITC.1, FDP_UIT, FDP_ITT.1, FIA_ATD, FIA_ATD.1, FIA_UID, FIA_UID.2, FIA_USB.1, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FIA_UID.1, FIA_SOS.2, FMT_LIM, FMT_LIM.1, FMT_LIM.2, FMT_SMF.1, FMT_MSA, FMT_MSA.2, FMT_MSA.3, FMT_SMR, FMT_SMR.1, FMT_MTD, FMT_MTD.1, FMT_MTD.3, FMT_MTD.3.1, FMT_MSA.1, FMT_REV.1, FMT_LIM.1.1, FMT_LIM.2.1, FMT_REV, FPR_UNO.1, FPR_UNO.1.1, FPT_SEP.1, FPT_SEP.1.1, FPT_SEP.1.2, FPT_RCV.3, FPT_RVM.1, FPT_RVM.1.1, FPT_TDC.1, FPT_TDC.1.1, FPT_TDC.1.2, FPT_FLS, FPT_FLS.1, FPT_TST.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FPT_AMT.1, FPT_PHP.3, FPT_RCV.4, FPT_AMT, FPT_PHP, FPT_SEP, FPT_RCV, FPT_RVM, FPT_RND.1, FPT_ITT.1, FPT_TST, FRU_RSA.1, FRU_FLT.1, FRU_FLT, FRU_RSA, FRU_FLT.2, FTP_ITC.1, FTP_TRP.1, FTP_ITCProtection profiles
BSI-PP-0026, BSI-PP-0002Certificates
BSI-DSZ-CC-0404-2007, BSI-DSZ-CC-0410-2007, BSI-DSZ-CC-0411-2007, BSI-DSZ-CC-0404Side-channel analysis
Leak-Inherent, physical probing, side-channel, side channel, DPA, SPA, timing attack, timing attacks, physical tampering, malfunction, Malfunction, DFA, Reverse EngineeringCertification process
out of scope, the Smart Card at the initialisation site. The initialisation and the personalisation process are out of scope of this evaluation. The TOE’s delivery scope beside the initialisation file and the mask keys, a timeout policy that prevent them from being blocked should a card fails to answer. That point is out of scope of this ST, though. 8.1.1.14 T.PHYSICAL Covered by O.SCP.IC. Physical protections rely on the SCPStandards
FIPS PUB 46-3, FIPS PUB 197, PKCS1, AIS 20, AIS20, AIS31, AIS 31, RFC 3447, ISO/IEC 7816-3, ISO/IEC 7816-5, ICAO, CCIMB-2005-08-001, CCIMB-2005-08-002, CCIMB-2005-08-003, CCMB-2005-08-004File metadata
| Title | Security Target Lite SmartCafe Expert V5.0 |
|---|---|
| Subject | Security Target Lite SmartCafe Expert V5.0 |
| Keywords | Version 1.0 / Status 27.10.2009, Java Card, Standard 2.2 configuration, SUN Java Card System PP, Global Platform 2.1.1 Card Implementation, NXP P5CD040/080/144 |
| Author | G&D/CSRD22 |
| Creation date | D:20091027093026+01'00' |
| Modification date | D:20091027105141+01'00' |
| Pages | 178 |
| Creator | Acrobat PDFMaker 7.0 fĂĽr Word |
| Producer | Acrobat Distiller 7.0 (Windows) |
References
Outgoing- BSI-DSZ-CC-0404-2007 - archived - NXP Secure Smart Card Controller P5CD040V0B, P5CC040V0B, P5CD020V0B and P5CC021V0B each with specific IC Dedicated Software
- BSI-DSZ-CC-0411-2007 - archived - NXP Secure Smart Card Controller P5CD144V0B, P5CN144V0B and P5CC144V0B each with specific IC Dedicated Software
- BSI-DSZ-CC-0410-2007 - archived - NXP Secure Smart Card Controller P5CD080V0B, P5CN080V0B and P5CC080V0B each with specific IC Dedicated Software
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.Certificate ID
BSI-DSZ-CC-0537-2009Extracted SARs
ADV_FSP.2, ADV_HLD.2, ADV_IMP.2, ADV_LLD.1, ADV_RCR.1, ADV_SPM.1, AGD_ADM.1, AGD_USR.1, ALC_DVS.2, ALC_LCD.1, ALC_TAT.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_MSU.3, AVA_SOF.1, AVA_VLA.4References
Loading...
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"cert_link": null,
"dgst": "b7f131020fc0cf4f",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-0537-2009",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"eal": "EAL4+",
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_SPM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_HLD",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_USR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_SOF",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_LLD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_ADM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VLA",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_MSU",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_RCR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 2
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"5.0"
]
},
"indirect_transitive_cves": null,
"next_certificates": null,
"prev_certificates": null,
"protection_profiles": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0410-2007",
"BSI-DSZ-CC-0404-2007",
"BSI-DSZ-CC-0411-2007"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0410-2007",
"BSI-DSZ-CC-0404-2007",
"BSI-DSZ-CC-0411-2007"
]
}
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0410-2007",
"BSI-DSZ-CC-0404-2007",
"BSI-DSZ-CC-0411-2007"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0410-2007",
"BSI-DSZ-CC-0404-2007",
"BSI-DSZ-CC-0411-2007"
]
}
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "G+D Mobile Security GmbH",
"manufacturer_web": "https://www.gi-de.com/de/de/mobile-security/",
"name": "Sm@rtCafe Expert Version 5.0",
"not_valid_after": "2019-09-01",
"not_valid_before": "2009-12-17",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": null,
"cert_frontpage": null,
"cert_keywords": null,
"cert_metadata": null,
"report_filename": "0537a_pdf.pdf",
"report_frontpage": {
"DE": {
"cert_id": "BSI-DSZ-CC-0537-2009",
"cert_item": "Sm@rtCafe Expert Version 5.0",
"cert_lab": "BSI",
"developer": "Giesecke \u0026 Devrient GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
]
}
},
"report_keywords": {
"asymmetric_crypto": {
"RSA": {
"RSA 1024": 1
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-0404": 1,
"BSI-DSZ-CC-0404-2007": 3,
"BSI-DSZ-CC-0410": 1,
"BSI-DSZ-CC-0410-2007": 3,
"BSI-DSZ-CC-0411": 1,
"BSI-DSZ-CC-0411-2007": 3,
"BSI-DSZ-CC-0537": 3,
"BSI-DSZ-CC-0537-2009": 19
}
},
"cc_claims": {
"OE": {
"OE.APPLET": 1,
"OE.NATIVE": 1,
"OE.VERIFICATION": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ACM": {
"ACM_AUT": 2,
"ACM_AUT.1": 1,
"ACM_CAP": 2,
"ACM_CAP.4": 1,
"ACM_SCP": 2,
"ACM_SCP.2": 1
},
"ADO": {
"ADO_DEL": 2,
"ADO_DEL.2": 1,
"ADO_IGS": 2,
"ADO_IGS.1": 1
},
"ADV": {
"ADV_FSP": 2,
"ADV_HLD": 2,
"ADV_IMP": 2,
"ADV_IMP.2": 5,
"ADV_INT": 2,
"ADV_LLD": 2,
"ADV_RCR": 2,
"ADV_SPM": 2
},
"AGD": {
"AGD_ADM": 2,
"AGD_USR": 2
},
"ALC": {
"ALC_DVS": 2,
"ALC_DVS.1": 1,
"ALC_FLR": 2,
"ALC_LCD": 1,
"ALC_LCD.1": 1,
"ALC_TAT": 2,
"ALC_TAT.1": 1
},
"APE": {
"APE_DES": 1,
"APE_ENV": 1,
"APE_INT": 1,
"APE_OBJ": 1,
"APE_REQ": 1,
"APE_SRE": 1
},
"ASE": {
"ASE_DES": 1,
"ASE_ENV": 1,
"ASE_INT": 1,
"ASE_OBJ": 1,
"ASE_PPC": 1,
"ASE_REQ": 1,
"ASE_SRE": 1,
"ASE_TSS": 1
},
"ATE": {
"ATE_COV": 2,
"ATE_DPT": 2,
"ATE_FUN": 4,
"ATE_IND": 4
},
"AVA": {
"AVA_CCA": 2,
"AVA_MSU": 2,
"AVA_SOF": 3,
"AVA_VLA": 5,
"AVA_VLA.2": 1,
"AVA_VLA.3": 1,
"AVA_VLA.4": 6
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 4": 9,
"EAL 4 augmented": 3,
"EAL 7": 1,
"EAL1": 5,
"EAL2": 3,
"EAL3": 4,
"EAL4": 7,
"EAL5": 6,
"EAL5+": 1,
"EAL6": 3,
"EAL7": 4
}
},
"cc_sfr": {},
"certification_process": {
"ConfidentialDocument": {
"7] Evaluation Technical Report, Version 2, Date: 2009-10-14, BSI-DSZ-CC-0537, TUVIT (confidential document) [8] Configuration list for the TOE, Version 1.4, Date: 2009-08-27, Giesecke \u0026 Devrient": 1,
"Version 3.0, Status 27.08.2009, Security Target SmartCafe Expert V5.0, Giesecke \u0026 Devrient (confidential document) 8 specifically \u2022 AIS 20, Version 1, 2 December 1999, Funktionalit\u00e4tsklassen und": 1
},
"OutOfScope": {
"are tested through Module Tests. As the initialisation and the personalisation process are out of scope of this evaluation, the TOE was always tested in its usage phase. 16 / 36 BSI-DSZ-CC-0537-2009": 1,
"contained in one or more Java packages. Note, that applets are not part of the TOE and therefore out of scope. The hardware platform was always the NXP P5CD144V0B. \u25cf an emulator which is required for test": 1,
"out of scope": 3,
"the Smart Card at the initialisation site. The initialisation and the personalisation process are out of scope of this evaluation. 13 / 36 Certification Report BSI-DSZ-CC-0537-2009 The hardware product can be": 1
}
},
"cipher_mode": {},
"cplc_data": {
"ICFab": {
"IC Fabricator": 2
},
"ICType": {
"IC Type": 2
}
},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"TUV": {
"T\u00dcV Informationstechnik": 2
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {
"other": {
"JIL": 4
}
},
"standard_id": {
"BSI": {
"AIS 20": 3,
"AIS 25": 2,
"AIS 26": 2,
"AIS 32": 1,
"AIS 34": 3,
"AIS 35": 2,
"AIS 36": 2,
"AIS 37": 1,
"AIS20": 1,
"AIS36": 3
},
"ISO": {
"ISO/IEC 15408:2005": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 2
}
},
"DES": {
"3DES": {
"3-DES": 1,
"3DES": 1
},
"DES": {
"DES": 2
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7125": 2,
"BSI 7148": 1,
"BSI 7149": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"GD": {
"Giesecke \u0026 Devrient": 10
},
"NXP": {
"NXP": 11
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20100111131526+01\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "Sm@rtCafe ExpertVersion 5.0, Giesecke \u0026 Devrient GmbH, Java Card, Common Criteria, Certification, Zertifzierung",
"/ModDate": "D:20100111135143+01\u002700\u0027",
"/Producer": "StarOffice 9",
"/Subject": "Common Criteria Certification",
"/Title": "Certification Report BSI-DSZ-CC-0537-2009",
"pdf_file_size_bytes": 1096697,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://de.wikipedia.org/wiki/Electrically_Erasable_Programmable_Read_Only_Memory",
"http://www.bsi.bund.de/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 36
},
"st_filename": "0537b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"FF": {
"DSA": {
"DSA": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-0404": 1,
"BSI-DSZ-CC-0404-2007": 2,
"BSI-DSZ-CC-0410-2007": 2,
"BSI-DSZ-CC-0411-2007": 2
}
},
"cc_claims": {
"A": {
"A.APPLET": 5,
"A.NATIVE": 9,
"A.VERIFICA": 1,
"A.VERIFICATION": 5
},
"D": {
"D.API_DATA": 3,
"D.APP_": 1,
"D.APP_CODE": 7,
"D.APP_C_DATA": 3,
"D.APP_I_DATA": 5,
"D.CRYPTO": 6,
"D.JCS_": 1,
"D.JCS_CODE": 3,
"D.JCS_DATA": 4,
"D.PIN": 6,
"D.SEC_DATA": 7
},
"O": {
"O.ALARM": 11,
"O.APPLET": 29,
"O.CARD-": 7,
"O.CARD-MANAGEMENT": 7,
"O.CARD_MANAGEMENT": 7,
"O.CHECK_INIT": 6,
"O.CIPHER": 11,
"O.CODE_PCKG": 8,
"O.CODE_PKG": 7,
"O.DELETION": 7,
"O.FIREWALL": 15,
"O.INSTALL": 13,
"O.JAVAOBJECT": 24,
"O.KEY-MNGT": 8,
"O.KEY_MNGT": 1,
"O.LOA": 1,
"O.LOAD": 8,
"O.NATIVE": 10,
"O.OBJ-DELETION": 4,
"O.OPERATE": 13,
"O.PACKAGE": 6,
"O.PIN-": 2,
"O.PIN-MNGT": 8,
"O.REALLO": 1,
"O.REALLOCATIO": 1,
"O.REALLOCATION": 6,
"O.REMOTE": 7,
"O.REMOTE_MTHD": 5,
"O.REMOTE_OBJ": 8,
"O.REMOTE_OBJECT": 1,
"O.RESOURCES": 9,
"O.RMI_SERVICE": 13,
"O.RND": 11,
"O.ROR": 5,
"O.SCP": 53,
"O.SHRD_VAR": 1,
"O.SHRD_VAR_CO": 2,
"O.SHRD_VAR_CONF": 1,
"O.SHRD_VAR_CONFID": 5,
"O.SHRD_VAR_IN": 1,
"O.SHRD_VAR_INTEG": 5,
"O.SID": 14,
"O.SIDE_CHANNEL": 9,
"O.TRANSACTION": 8,
"O.XYZ": 1
},
"OE": {
"OE.APPLET": 9,
"OE.NATIVE": 9,
"OE.VERIFICAT": 1,
"OE.VERIFICATION": 22,
"OE.XYZ": 1
},
"OP": {
"OP.APPLET_DELETION": 5,
"OP.APPLET_INSTALLATION": 5,
"OP.BYTECODE": 1,
"OP.CREATE": 3,
"OP.DELETE_APPLET": 3,
"OP.DELETE_PCKG": 2,
"OP.DELETE_PCKG_APPLET": 2,
"OP.GET_ROR": 2,
"OP.INVK_INTERFACE": 1,
"OP.INVOKE": 2,
"OP.JAVA": 2,
"OP.PACKAGE_DELETION": 5,
"OP.PACKAGE_LOADING": 5,
"OP.PUT": 5,
"OP.RECEIVE": 1,
"OP.RET_RORD": 3,
"OP.SEND": 1
},
"OSP": {
"OSP.VERIFICATION": 3
},
"R": {
"R.CMRG": 4,
"R.JAVA": 15
},
"T": {
"T.A": 1,
"T.CHIP": 4,
"T.CONF": 1,
"T.CONFID-": 2,
"T.CONFID-APPLI-DATA": 3,
"T.CONFID-JCS-": 1,
"T.CONFID-JCS-CODE": 3,
"T.CONFID-JCS-DATA": 3,
"T.DELETION": 5,
"T.EXE-": 5,
"T.EXE-CODE": 7,
"T.EXE-CODE-REMOTE": 3,
"T.INSTALL": 5,
"T.INTEG": 1,
"T.INTEG-": 4,
"T.INTEG-APPLI-": 2,
"T.INTEG-APPLI-CODE": 8,
"T.INTEG-APPLI-DATA": 8,
"T.INTEG-JCS-": 4,
"T.INTEG-JCS-CODE": 3,
"T.INTEG-JCS-DATA": 3,
"T.LEAKAGE": 7,
"T.NATIV": 1,
"T.NATIVE": 4,
"T.OBJ-": 1,
"T.OBJ-DELETION": 3,
"T.PHYSI": 1,
"T.PHYSICAL": 7,
"T.RESOURC": 1,
"T.RESOURCES": 3,
"T.RND": 11,
"T.SID": 14
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-PP-0002": 1,
"BSI-PP-0026": 3
}
},
"cc_sar": {
"ACM": {
"ACM_AUT": 2,
"ACM_AUT.1": 11,
"ACM_CAP": 2,
"ACM_CAP.3": 3,
"ACM_CAP.4": 22,
"ACM_SCP": 3,
"ACM_SCP.2": 8
},
"ADO": {
"ADO_DEL": 2,
"ADO_DEL.2": 10,
"ADO_IGS": 1,
"ADO_IGS.1": 10
},
"ADV": {
"ADV_FSP": 2,
"ADV_FSP.1": 10,
"ADV_FSP.2": 20,
"ADV_HLD": 2,
"ADV_HLD.1": 2,
"ADV_HLD.2": 22,
"ADV_IMP": 1,
"ADV_IMP.1": 3,
"ADV_IMP.2": 22,
"ADV_LLD": 2,
"ADV_LLD.1": 21,
"ADV_RCR": 2,
"ADV_RCR.1": 15,
"ADV_SPM": 2,
"ADV_SPM.1": 31
},
"AGD": {
"AGD_ADM": 2,
"AGD_ADM.1": 26,
"AGD_USR": 2,
"AGD_USR.1": 19
},
"ALC": {
"ALC_DVS": 2,
"ALC_DVS.1": 11,
"ALC_DVS.2": 1,
"ALC_LCD": 2,
"ALC_LCD.1": 9,
"ALC_TAT": 2,
"ALC_TAT.1": 13
},
"ATE": {
"ATE_COV": 2,
"ATE_COV.2": 8,
"ATE_DPT": 2,
"ATE_DPT.1": 6,
"ATE_FUN": 2,
"ATE_FUN.1": 17,
"ATE_IND": 1,
"ATE_IND.2": 9
},
"AVA": {
"AVA_MSU": 2,
"AVA_MSU.2": 15,
"AVA_MSU.3": 1,
"AVA_SOF": 2,
"AVA_SOF.1": 9,
"AVA_VLA": 1,
"AVA_VLA.2": 1,
"AVA_VLA.3": 1,
"AVA_VLA.4": 28
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 2,
"EAL 4 augmented": 1,
"EAL 5": 3,
"EAL 5 augmented": 1,
"EAL4": 8,
"EAL4 augmented": 2
}
},
"cc_sfr": {
"FAU": {
"FAU_ARP": 7,
"FAU_ARP.1": 11,
"FAU_SAA.1": 3
},
"FCO": {
"FCO_NRO": 1,
"FCO_NRO.2": 9
},
"FCS": {
"FCS_CKM.1": 15,
"FCS_CKM.1.1": 2,
"FCS_CKM.2": 6,
"FCS_CKM.2.1": 2,
"FCS_CKM.3": 5,
"FCS_CKM.3.1": 2,
"FCS_CKM.4": 13,
"FCS_CKM.4.1": 2,
"FCS_COP.1": 16,
"FCS_COP.1.1": 4,
"FCS_RND": 7,
"FCS_RND.1": 14,
"FCS_RND.1.1": 6
},
"FDP": {
"FDP_ACC": 20,
"FDP_ACC.1": 22,
"FDP_ACC.2": 19,
"FDP_ACF": 15,
"FDP_ACF.1": 51,
"FDP_IFC": 23,
"FDP_IFC.1": 28,
"FDP_IFC.2": 11,
"FDP_IFF": 13,
"FDP_IFF.1": 50,
"FDP_IFF.2": 10,
"FDP_IFF.2.7": 1,
"FDP_ITC.1": 4,
"FDP_ITC.2": 25,
"FDP_ITT.1": 3,
"FDP_RIP": 43,
"FDP_RIP.1": 34,
"FDP_ROL": 4,
"FDP_ROL.1": 15,
"FDP_ROL.1.1": 2,
"FDP_SDI.2": 6,
"FDP_SDI.2.1": 2,
"FDP_SDI.2.2": 2,
"FDP_UIT": 1,
"FDP_UIT.1": 6
},
"FIA": {
"FIA_ATD": 3,
"FIA_ATD.1": 7,
"FIA_SOS.2": 1,
"FIA_UID": 13,
"FIA_UID.1": 25,
"FIA_UID.2": 4,
"FIA_USB.1": 7,
"FIA_USB.1.1": 3,
"FIA_USB.1.2": 3,
"FIA_USB.1.3": 3
},
"FMT": {
"FMT_LIM": 6,
"FMT_LIM.1": 20,
"FMT_LIM.1.1": 3,
"FMT_LIM.2": 13,
"FMT_LIM.2.1": 2,
"FMT_MSA": 49,
"FMT_MSA.1": 41,
"FMT_MSA.2": 16,
"FMT_MSA.3": 45,
"FMT_MTD": 3,
"FMT_MTD.1": 8,
"FMT_MTD.3": 5,
"FMT_MTD.3.1": 2,
"FMT_REV": 1,
"FMT_REV.1": 8,
"FMT_SMF.1": 28,
"FMT_SMR": 34,
"FMT_SMR.1": 63
},
"FPR": {
"FPR_UNO.1": 7,
"FPR_UNO.1.1": 2
},
"FPT": {
"FPT_AMT": 4,
"FPT_AMT.1": 11,
"FPT_FLS": 14,
"FPT_FLS.1": 27,
"FPT_ITT.1": 3,
"FPT_PHP": 3,
"FPT_PHP.3": 10,
"FPT_RCV": 9,
"FPT_RCV.3": 34,
"FPT_RCV.4": 7,
"FPT_RND.1": 1,
"FPT_RVM": 3,
"FPT_RVM.1": 15,
"FPT_RVM.1.1": 2,
"FPT_SEP": 3,
"FPT_SEP.1": 13,
"FPT_SEP.1.1": 2,
"FPT_SEP.1.2": 2,
"FPT_TDC.1": 6,
"FPT_TDC.1.1": 2,
"FPT_TDC.1.2": 3,
"FPT_TST": 1,
"FPT_TST.1": 11,
"FPT_TST.1.1": 2,
"FPT_TST.1.2": 3,
"FPT_TST.1.3": 2
},
"FRU": {
"FRU_FLT": 3,
"FRU_FLT.1": 6,
"FRU_FLT.2": 5,
"FRU_RSA": 2,
"FRU_RSA.1": 8
},
"FTP": {
"FTP_ITC": 3,
"FTP_ITC.1": 11,
"FTP_TRP.1": 2
}
},
"certification_process": {
"OutOfScope": {
"a timeout policy that prevent them from being blocked should a card fails to answer. That point is out of scope of this ST, though. 8.1.1.14 T.PHYSICAL Covered by O.SCP.IC. Physical protections rely on the SCP": 1,
"out of scope": 2,
"the Smart Card at the initialisation site. The initialisation and the personalisation process are out of scope of this evaluation. The TOE\u2019s delivery scope beside the initialisation file and the mask keys": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
},
"ECB": {
"ECB": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA2": {
"SHA256": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {
"java": {
"java.lang": 1,
"java.rmi": 2
},
"javacard": {
"javacard.framework": 5,
"javacard.framework.applet": 1,
"javacard.framework.service": 1,
"javacard.security": 2
},
"javacardx": {
"javacardx.crypto": 2,
"javacardx.rmi": 1,
"javacardx.security": 1
}
},
"javacard_version": {
"GlobalPlatform": {
"GlobalPlatform 2.1.1": 4
},
"JavaCard": {
"Java Card 2.2": 1,
"Java Card 2.2.2": 3
}
},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RND": 22
},
"TRNG": {
"TRNG": 3
}
},
"side_channel_analysis": {
"FI": {
"DFA": 2,
"Malfunction": 6,
"malfunction": 2,
"physical tampering": 1
},
"SCA": {
"DPA": 3,
"Leak-Inherent": 6,
"SPA": 2,
"physical probing": 1,
"side channel": 1,
"side-channel": 1,
"timing attack": 1,
"timing attacks": 1
},
"other": {
"Reverse Engineering": 1
}
},
"standard_id": {
"BSI": {
"AIS 20": 2,
"AIS 31": 1,
"AIS20": 3,
"AIS31": 2
},
"CC": {
"CCIMB-2005-08-001": 1,
"CCIMB-2005-08-002": 1,
"CCIMB-2005-08-003": 1,
"CCMB-2005-08-004": 1
},
"FIPS": {
"FIPS PUB 197": 1,
"FIPS PUB 46-3": 1
},
"ICAO": {
"ICAO": 3
},
"ISO": {
"ISO/IEC 7816-3": 1,
"ISO/IEC 7816-5": 1
},
"PKCS": {
"PKCS1": 2
},
"RFC": {
"RFC 3447": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 16,
"AES-": 1
}
},
"DES": {
"3DES": {
"3-DES": 5,
"Triple-DES": 1
},
"DES": {
"DES": 9
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"GD": {
"Giesecke \u0026 Devrient": 8
},
"NXP": {
"NXP": 14,
"NXP Semiconductors": 3
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "G\u0026D/CSRD22",
"/Comments": "Open",
"/Company": "GuD",
"/CreationDate": "D:20091027093026+01\u002700\u0027",
"/Creator": "Acrobat PDFMaker 7.0 f\u00fcr Word",
"/Keywords": "Version 1.0 / Status 27.10.2009, Java Card, Standard 2.2 configuration, SUN Java Card System PP, Global Platform 2.1.1 Card Implementation, NXP P5CD040/080/144",
"/ModDate": "D:20091027105141+01\u002700\u0027",
"/Producer": "Acrobat Distiller 7.0 (Windows)",
"/SourceModified": "D:20091027082407",
"/Subject": "Security Target Lite SmartCafe Expert V5.0",
"/Title": "Security Target Lite SmartCafe Expert V5.0",
"pdf_file_size_bytes": 2381740,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": true,
"pdf_number_of_pages": 178
}
},
"protection_profile_links": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0537a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL4+"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0537b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": false,
"download_ok": false,
"extract_ok": false,
"pdf_hash": null,
"txt_hash": null
},
"report": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "ff28a8aa87558aa3d4b92d8156a53d0441ed733de8f30244cc34b9c6a6e3f80f",
"txt_hash": "b62fff87a932f46a7be46ce2991d96e93b9aa83d3288caa5b29f9ce8577ea551"
},
"st": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "20abe1238194eeac1de616ce74550d24b8cb9fd9a455511e34ba52c7a4fae0f8",
"txt_hash": "9fce462a012153236228285802669692312a2af43eaecf1c2dfbc6c2c9eccf69"
}
},
"status": "archived"
}