TCOS FlexCert Version 2.0 Release 2/SLC52

CSV information ?

Status active
Valid from 24.06.2021
Valid until 24.06.2026
Scheme 🇩🇪 DE
Manufacturer Deutsche Telekom Security GmbH
Category ICs, Smart Cards and Smart Card-Related Devices and Systems
Security level AVA_VAN.5, ALC_DVS.2, EAL4+, ATE_DPT.2
Protection profiles

Heuristics summary ?

Certificate ID: BSI-DSZ-CC-0904-V2-2021

Certificate ?

Extracted keywords

Security level
EAL 4, EAL 5, EAL 2, EAL 4 augmented
Security Assurance Requirements (SAR)
ALC_DVS.2, ATE_DPT.2, AVA_VAN.5
Protection profiles
BSI-CC-PP-0082-V4-
Certificates
BSI-DSZ-CC-0904-V2-2021
Evaluation facilities
Deutsche Telekom Security

Standards
ISO/IEC 15408, ISO/IEC 18045

File metadata

Title Certification Report BSI-DSZ-CC-0904-V2-2021
Subject TCOS FlexCert Version 2.0 Release 2/SLC52 from Deutsche Telekom Security GmbH
Author Bundesamt für Sicherheit in der Informationstechnik
Creation date D:20210701140233+02'00'
Modification date D:20210701140348+02'00'
Pages 1
Creator Writer
Producer LibreOffice 6.3

Certification report ?

Extracted keywords

Symmetric Algorithms
AES, HPC, CMAC
Asymmetric Algorithms
RSA-OAEP, ECDH, ECDSA, ECC, Diffie-Hellman, DH
Hash functions
SHA-256
Schemes
MAC, Key Agreement
Protocols
PACE
Randomness
PRNG, RNG
Block cipher modes
CBC

Vendor
Infineon, Infineon Technologies AG

Security level
EAL 4, EAL 5, EAL 2, EAL 1, EAL 2+, EAL5+, EAL6, EAL 5+, EAL 6, EAL6+, EAL 4 augmented, EAL6 augmented
Security Assurance Requirements (SAR)
ADV_ARC, ALC_DVS.2, ALC_FLR, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, AVA_VAN.5
Security Functional Requirements (SFR)
FCS_COP, FCS_CKM, FCS_RNG, FCS_RNG.1, FIA_UAU, FIA_USB, FPT_ITE.1, FTP_ITC
Protection profiles
BSI-CC-PP-0082-V4-, BSI-CC-PP-0082-V4-2019
Certificates
BSI-DSZ-CC-0904-V2-2021, BSI-DSZ-CC-0904-2015, BSI-DSZ-CC-0904-2015-MA-01, BSI-DSZ-CC-1079-, BSI-DSZ-CC-1079-V2-2020, BSI-DSZ-CC-1079-V2-
Evaluation facilities
TÃœV Informationstechnik, Deutsche Telekom Security, SRC Security Research & Consulting, T-Systems International

Side-channel analysis
side channel, DPA, SPA, malfunction, DFA, fault injection, JIL
Certification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, Version 2.0 Release 2/SLC52, Version 1.1, 2 June 2021, SRC Security Research & Consulting GmbH (confidential document) [9] Configuration List BSI-DSZ-CC-0904-V2-2021, Konfigurationsliste von TCOS FlexCert Version 2.0, 2/SLC52, Version 0.92, 26 May 2021, Deutsche Telekom Security GmbH (confidential document) [10] TCOS FlexCert Version 2.0 Release 2, Administrator’s Guidance, Guidance Documentation of TCOS, G12, Revision 1.3, 3 April 2020, Infineon Technologies AG, BSI-DSZ-CC-1079-V2- 2020 (confidential document) Security Target Lite of the underlying hardware platform, Public Security Target Common Criteria, Certification Report DSZ-CC-1079-V2-2020, Version 2, 15 May 2020, TÜV Informationstechnik GmbH (confidential document) [18] Einführung der Gesundheitskarte, Spezifikation des Card Operating System (COS), Elektrische, RNG] Zufallszahlengenerierung in TCOS, Version 0.7, 3 November 2020, T-Systems International GmbH (confidential document) [AIS 20] see chapter 14, [4] of this report [AIS 31] see chapter 14, [4] of this report Note: End

Standards
FIPS 180-4, FIPS 197, FIPS PUB 180-4, FIPS PUB 197, PKCS#1, AIS 34, AIS 36, AIS 37, AIS 26, AIS 25, AIS 20, AIS 31, AIS 46, AIS 1, AIS 14, AIS 19, AIS 23, AIS 32, AIS 35, AIS 38, AIS31, AIS20, RFC 5639, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ISO/IEC 18031:2005
Technical reports
BSI TR-03116-1, BSI TR-03144, BSI TR-03143, BSI 7148

File metadata

Title Certification Report BSI-DSZ-CC-0904-V2-2021
Subject TCOS FlexCert Version 2.0 Release 2/SLC52 from Deutsche Telekom Security GmbH
Keywords "Common Criteria, Certification, Zertifizierung, G2 COS, eHealth"
Author Bundesamt für Sicherheit in der Informationstechnik
Creation date D:20210701134203+02'00'
Modification date D:20210701140047+02'00'
Pages 42
Creator Writer
Producer LibreOffice 6.3

Frontpage

Certificate ID BSI-DSZ-CC-0904-V2-2021
Certified item TCOS FlexCert Version 2.0 Release 2/SLC52
Certification lab BSI
Developer Deutsche Telekom Security GmbH

References

Outgoing
  • BSI-DSZ-CC-0904-2015 - archived - TCOS FlexCert 2.0 Release 1/SLE78CLX1440P
  • BSI-DSZ-CC-1079-V2-2020 - active - Infineon Security Controller IFX_CCI_00000Fh, IFX_CCI_000010h, IFX_CCI_000026h, IFX_CCI_000027h, IFX_CCI_000028h, IFX_CCI_000029h, IFX_CCI_00002Ah, IFX_CCI_00002Bh, IFX_CCI_00002Ch in the design step G12 and including optional software libraries and dedicated firmware

Security target ?

Extracted keywords

Symmetric Algorithms
AES, AES128, AES-192, AES-256, DES, TDES, TDEA, CMAC, CBC-MAC
Asymmetric Algorithms
ECDH, ECDSA, ECC, DH, Diffie-Hellman
Hash functions
SHA-1, SHA-256, SHA-384, SHA-512, SHA512, SHA-2
Schemes
MAC, Key agreement, Key Agreement
Protocols
SSL, PACE
Randomness
TRNG, RND, RNG
Elliptic Curves
P-256, P-384, NIST P-256, brainpoolP256r1, brainpoolP384r1, brainpoolP512r1
Block cipher modes
ECB, CBC

Vendor
NXP Semiconductors, Infineon, Infineon Technologies AG, STMicroelectronics

Security level
EAL4, EAL 6, EAL 4, EAL 5, EAL6, EAL6+, EAL4 augmented, EAL 4 augmented, EAL 5 augmented, EAL6 augmented
Claims
O.RND, O.AES, O.PACE_CHIP, T.RND
Security Assurance Requirements (SAR)
ADV_ARC.1, ADV_TDS.3, ADV_FUN.1, ADV_FSP.4, ADV_IMP.1, ADV_ARC, ADV_FSP, AGD_OPE.1, AGD_PRE.1, AGD_OPE, ALC_DVS.2, ALC_DEL, ALC_DVS, ALC_CMS, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, ATE_DPT.1, ATE_COV, ATE_FUN, ATE_COV.2, ATE_FUN.1, AVA_VAN.5, AVA_VAN
Security Functional Requirements (SFR)
FAU_SAS, FAU_SAS.1, FAU_SAS.1.1, FCS_RNG, FCS_RNG.1, FCS_RNG.1.1, FCS_RNG.1.2, FCS_COP, FCS_CKM, FCS_CKM.4, FCS_CKM.1, FCS_COP.1, FCS_CKM.2, FCS_CKM.4.1, FDP_SDC, FDP_ACF, FDP_SDI, FDP_SDC.1, FDP_SDC.1.1, FDP_ITT, FDP_IFC, FDP_RIP.1, FDP_RIP, FDP_SDI.2, FDP_ACC, FDP_UCT, FDP_UIT, FDP_ITC.1, FDP_ITC.2, FDP_ACF.1, FDP_ACC.1, FDP_IFF.1, FDP_IFC.1, FDP_ITT.1, FDP_SDI.1, FDP_RIP.1.1, FDP_SDI.2.1, FDP_SDI.2.2, FDP_UCT.1, FDP_UIT.1, FIA_API, FIA_API.1, FIA_API.1.1, FIA_AFL, FIA_ATD.1, FIA_SOS.1, FIA_UAU.1, FIA_UAU.4, FIA_UAU, FIA_UAU.5, FIA_USB.1, FIA_USB, FIA_UID.1, FIA_UID, FIA_UAU.6, FIA_AFL.1, FIA_ATD.1.1, FIA_ATD, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.4.1, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.6.1, FIA_UID.1.1, FIA_UID.1.2, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FIA_SOS.1.1, FIA_SOS, FMT_LIM, FMT_LIM.1, FMT_LIM.2, FMT_LIM.1.1, FMT_LIM.2.1, FMT_SMR.1, FMT_MSA.3, FMT_MSA, FMT_SMF.1, FMT_SMR, FMT_MTD, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MSA.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MTD.1, FMT_SMF, FPT_EMS, FPT_ITE, FPT_EMS.1, FPT_EMS.1.1, FPT_EMS.1.2, FPT_ITE.1, FPT_ITE.2, FPT_ITE.1.1, FPT_ITE.1.2, FPT_ITE.2.1, FPT_ITE.2.2, FPT_FLS, FPT_PHP, FPT_ITT, FPT_FLS.1, FPT_TDC.1, FPT_TST.1, FPT_PHP.3, FPT_TDC.1.1, FPT_TDC.1.2, FPT_FLS.1.1, FPT_TST, FPT_ITT.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FPT_TST.2, FPT_TDC, FRU_FLT, FRU_FLT.2, FTP_ITC, FTP_TRP.1, FTP_ITC.1
Protection profiles
BSI-CC-PP-0082-V4-2019, BSI-CC-PP-0084-2014, BSI-CC-PP-0084-, BSI-CC-PP0082, BSI-CC-PP0084, BSI-CC-PP- 0035-2007, BSI-PP-0082, BSI-CC-PP- 0082-V4
Certificates
BSI-DSZ-CC-1079-V2-2020
Evaluation facilities
Deutsche Telekom Security

Side-channel analysis
Leak-Inherent, Physical Probing, physical probing, Physical probing, SPA, DPA, physical tampering, Malfunction, malfunction, DFA, Bleichenbacher attack

Standards
FIPS186, FIPS 180-4, FIPS180, FIPS 197, FIPS197, FIPS PUB 180-4, FIPS PUB 186-4, NIST SP 800-38B, SP 800-38A, PKCS#3, PKCS1, AIS36, AIS31, AIS 31, AIS 36, RFC5639, RFC3447, RFC 3447, RFC 5639, ISO/IEC 18033-3, ISO/IEC 9797-1, ICAO, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004

File metadata

Title Security Target TCOS FlexCert Version 2.0 Release 2
Subject TCOS FlexCert Version 2.0 Release 2
Keywords "TCOS FlexCert, Generation 2", Gesundheitskarte, electronic health card, TCOS
Author E.G. Giessmann, Markus Blick, DT Sec
Creation date D:20210526092934+02'00'
Modification date D:20210526092934+02'00'
Pages 132
Creator Microsoft® Word für Microsoft 365
Producer Microsoft® Word für Microsoft 365

References

Outgoing
  • BSI-DSZ-CC-1079-V2-2020 - active - Infineon Security Controller IFX_CCI_00000Fh, IFX_CCI_000010h, IFX_CCI_000026h, IFX_CCI_000027h, IFX_CCI_000028h, IFX_CCI_000029h, IFX_CCI_00002Ah, IFX_CCI_00002Bh, IFX_CCI_00002Ch in the design step G12 and including optional software libraries and dedicated firmware
Incoming

Heuristics ?

Certificate ID: BSI-DSZ-CC-0904-V2-2021

Extracted SARs

ADV_ARC.1, ADV_FSP.4, ADV_FUN.1, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_DVS.2, ALC_LCD.1, ALC_TAT.1, ATE_COV.2, ATE_DPT.2, ATE_FUN.1, AVA_VAN.5

Certificate versions

Name Certificate ID
Previous
TCOS FlexCert 2.0 Release 1/SLE78CLX1440P BSI-DSZ-CC-0904-2015 Compare

Scheme data ?

Cert Id BSI-DSZ-CC-0904-V2-2021
Product TCOS FlexCert Version 2.0 Release 2/SLC52
Vendor Deutsche Telekom Security GmbH
Certification Date 24.06.2021
Category eHealth
Url https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0904.html
Enhanced
Product TCOS FlexCert Version 2.0 Release 2/SLC52
Applicant Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen
Evaluation Facility SRC Security Research & Consulting GmbH
Assurance Level EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5
Protection Profile Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019
Certification Date 24.06.2021
Expiration Date 23.06.2026
Entries [frozendict({'id': 'BSI-DSZ-CC-0904-V2-2021 (Ausstellungsdatum / Certification Date 24.06.2021, gültig bis / valid until 23.06.2026) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate', 'description': 'Software'}), frozendict({'id': 'BSI-DSZ-CC-0904-2015-MA-02 (13.05.2020)', 'description': 'The maintenance procedure addresses the change of the production site.'}), frozendict({'id': 'BSI', 'description': 'Maintenance Report'}), frozendict({'id': 'BSI', 'description': 'Security Target'})]
Report Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2c_pdf.pdf?__blob=publicationFile&v=3
Target Link https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2b_pdf.pdf?__blob=publicationFile&v=2
Description The Target of Evaluation (TOE) is the product TCOS FlexCert 2.0 Release 1/SLE78CLX1440P developed by T-Systems International GmbH. The TOE is a smart card product according to the G2 Card Operating System specification from gematik. The TOE is intended to be used as a card operating system platform for different card types and applications of the card generation G2 in the framework of the German health care system. The TOE implements from the PP-0082-V2 the base part and the packages Crypto Box, Logical Channel and Contactless.
Subcategory Smartcards

References ?

Updates ?

  • 21.11.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'prev_certificates': ['BSI-DSZ-CC-0904-2015'], 'next_certificates': []}.
  • 09.11.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The scheme_data property was updated, with the {'certification_date': '2021-06-24', 'enhanced': {'__update__': {'applicant': 'Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen', 'certification_date': '2021-06-24', 'expiration_date': '2026-06-23', 'entries': {'0': {'__update__': {'id': 'BSI-DSZ-CC-0904-V2-2021 (Ausstellungsdatum / Certification Date 24.06.2021, gültig bis / valid until 23.06.2026) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate'}}}}}} data.
  • 17.10.2024 The certificate data changed.
    Certificate changed

    The Protection Profiles of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Card Operating System Generation 2 (PP COS G2)', 'pp_eal': 'EAL4+', 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/pp0082V4b_pdf.pdf', 'pp_ids': {'_type': 'Set', 'elements': ['BSI-CC-PP-0082-V4-2019']}}]}.
  • 30.09.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The scheme_data property was updated, with the {'url': 'https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0904.html', 'enhanced': {'__update__': {'protection_profile': 'Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019', 'entries': {'0': {'__update__': {'id': 'BSI-DSZ-CC-0904-V2-2021 (Ausstellungsdatum / Certification Date 24.06.2021, gültig bis / valid until 23.06.2026) \nZertifizierungsreport / Certification Report\nSicherheitsvorgaben / Security Target\nZertifikat / Certificate'}}}}}} data.
  • 22.08.2024 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The st property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '9fc2cae429ee0b55b6c3164df63d8565ca8c96505defd4ffe0f3dc3e81a67726', 'txt_hash': '474b2d63c444631302016e1138d232d60f8e2181a956e81fc65f2cf7c77ff9a0'} data.
    • The cert property was updated, with the {'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd627cfdbfe88eceac19e0197a3de99dbde5d92c3a3d3b02a6797098e2cbf38d2', 'txt_hash': '82d6fd8d6f827e6abd2f67fc375d2890dec47aa118a3db486b1dfce636e5e95f'} data.

    The PDF extraction data was updated.

    • The st_metadata property was set to {'pdf_file_size_bytes': 1779349, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 132, '/Title': 'Security Target TCOS FlexCert Version 2.0 Release 2', '/Author': 'E.G. Giessmann, Markus Blick, DT Sec', '/Subject': 'TCOS FlexCert Version 2.0 Release 2', '/Keywords': '"TCOS FlexCert, Generation 2", Gesundheitskarte, electronic health card, TCOS', '/Creator': 'Microsoft® Word für Microsoft 365', '/CreationDate': "D:20210526092934+02'00'", '/ModDate': "D:20210526092934+02'00'", '/Producer': 'Microsoft® Word für Microsoft 365', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://csrc.nist.gov/groups/ST/toolkit/rng/documents/sts-2.1.1.zip', 'http://www.phy.duke.edu/~rgb/General/dieharder/dieharder-3.31.0.tgz']}}.
    • The cert_metadata property was set to {'pdf_file_size_bytes': 241525, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20210701140233+02'00'", '/Creator': 'Writer', '/ModDate': "D:20210701140348+02'00'", '/Producer': 'LibreOffice 6.3', '/Subject': 'TCOS FlexCert Version 2.0 Release 2/SLC52 from Deutsche Telekom Security GmbH', '/Title': 'Certification Report BSI-DSZ-CC-0904-V2-2021', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}.
    • The st_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1079-V2-2020': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0082-V4-2019': 2, 'BSI-CC-PP-0084-2014': 21, 'BSI-CC-PP-0084-': 1, 'BSI-CC-PP0082': 4, 'BSI-CC-PP0084': 2, 'BSI-CC-PP- 0035-2007': 1, 'BSI-PP-0082': 1, 'BSI-CC-PP- 0082-V4': 1}}, 'cc_security_level': {'EAL': {'EAL4': 10, 'EAL 6': 1, 'EAL 4': 1, 'EAL 5': 1, 'EAL6': 1, 'EAL6+': 1, 'EAL4 augmented': 2, 'EAL 4 augmented': 1, 'EAL 5 augmented': 1, 'EAL6 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 4, 'ADV_TDS.3': 3, 'ADV_FUN.1': 1, 'ADV_FSP.4': 2, 'ADV_IMP.1': 2, 'ADV_ARC': 1, 'ADV_FSP': 1}, 'AGD': {'AGD_OPE.1': 2, 'AGD_PRE.1': 2, 'AGD_OPE': 1}, 'ALC': {'ALC_DVS.2': 7, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_CMS': 1, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_DPT.2': 5, 'ATE_DPT.1': 1, 'ATE_COV': 1, 'ATE_FUN': 1, 'ATE_COV.2': 1, 'ATE_FUN.1': 1}, 'AVA': {'AVA_VAN.5': 8, 'AVA_VAN': 1}}, 'cc_sfr': {'FAU': {'FAU_SAS': 10, 'FAU_SAS.1': 7, 'FAU_SAS.1.1': 1}, 'FCS': {'FCS_RNG': 36, 'FCS_RNG.1': 28, 'FCS_RNG.1.1': 4, 'FCS_RNG.1.2': 2, 'FCS_COP': 141, 'FCS_CKM': 42, 'FCS_CKM.4': 28, 'FCS_CKM.1': 23, 'FCS_COP.1': 20, 'FCS_CKM.2': 4, 'FCS_CKM.4.1': 2}, 'FDP': {'FDP_SDC': 10, 'FDP_ACF': 77, 'FDP_SDI': 9, 'FDP_SDC.1': 5, 'FDP_SDC.1.1': 1, 'FDP_ITT': 5, 'FDP_IFC': 5, 'FDP_RIP.1': 9, 'FDP_RIP': 6, 'FDP_SDI.2': 6, 'FDP_ACC': 64, 'FDP_UCT': 6, 'FDP_UIT': 6, 'FDP_ITC.1': 19, 'FDP_ITC.2': 17, 'FDP_ACF.1': 38, 'FDP_ACC.1': 39, 'FDP_IFF.1': 1, 'FDP_IFC.1': 10, 'FDP_ITT.1': 3, 'FDP_SDI.1': 2, 'FDP_RIP.1.1': 1, 'FDP_SDI.2.1': 1, 'FDP_SDI.2.2': 1, 'FDP_UCT.1': 1, 'FDP_UIT.1': 2}, 'FIA': {'FIA_API': 11, 'FIA_API.1': 17, 'FIA_API.1.1': 2, 'FIA_AFL': 19, 'FIA_ATD.1': 12, 'FIA_SOS.1': 6, 'FIA_UAU.1': 12, 'FIA_UAU.4': 12, 'FIA_UAU': 37, 'FIA_UAU.5': 15, 'FIA_USB.1': 29, 'FIA_USB': 28, 'FIA_UID.1': 14, 'FIA_UID': 7, 'FIA_UAU.6': 9, 'FIA_AFL.1': 4, 'FIA_ATD.1.1': 1, 'FIA_ATD': 5, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1, 'FIA_UAU.4.1': 1, 'FIA_UAU.5.1': 1, 'FIA_UAU.5.2': 1, 'FIA_UAU.6.1': 1, 'FIA_UID.1.1': 1, 'FIA_UID.1.2': 1, 'FIA_USB.1.1': 1, 'FIA_USB.1.2': 1, 'FIA_USB.1.3': 2, 'FIA_SOS.1.1': 1, 'FIA_SOS': 1}, 'FMT': {'FMT_LIM': 17, 'FMT_LIM.1': 17, 'FMT_LIM.2': 16, 'FMT_LIM.1.1': 1, 'FMT_LIM.2.1': 1, 'FMT_SMR.1': 22, 'FMT_MSA.3': 25, 'FMT_MSA': 52, 'FMT_SMF.1': 34, 'FMT_SMR': 6, 'FMT_MTD': 27, 'FMT_SMF.1.1': 1, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_MSA.1': 7, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_MTD.1': 4, 'FMT_SMF': 1}, 'FPT': {'FPT_EMS': 10, 'FPT_ITE': 14, 'FPT_EMS.1': 16, 'FPT_EMS.1.1': 3, 'FPT_EMS.1.2': 3, 'FPT_ITE.1': 12, 'FPT_ITE.2': 12, 'FPT_ITE.1.1': 2, 'FPT_ITE.1.2': 2, 'FPT_ITE.2.1': 6, 'FPT_ITE.2.2': 2, 'FPT_FLS': 7, 'FPT_PHP': 5, 'FPT_ITT': 5, 'FPT_FLS.1': 16, 'FPT_TDC.1': 5, 'FPT_TST.1': 7, 'FPT_PHP.3': 7, 'FPT_TDC.1.1': 1, 'FPT_TDC.1.2': 1, 'FPT_FLS.1.1': 2, 'FPT_TST': 3, 'FPT_ITT.1': 2, 'FPT_TST.1.1': 1, 'FPT_TST.1.2': 1, 'FPT_TST.1.3': 1, 'FPT_TST.2': 1, 'FPT_TDC': 1}, 'FRU': {'FRU_FLT': 6, 'FRU_FLT.2': 3}, 'FTP': {'FTP_ITC': 12, 'FTP_TRP.1': 2, 'FTP_ITC.1': 6}}, 'cc_claims': {'O': {'O.RND': 3, 'O.AES': 1, 'O.PACE_CHIP': 9}, 'T': {'T.RND': 4}}, 'vendor': {'NXP': {'NXP Semiconductors': 1}, 'Infineon': {'Infineon': 1, 'Infineon Technologies AG': 2}, 'STMicroelectronics': {'STMicroelectronics': 1}}, 'eval_facility': {'DeutscheTelekom': {'Deutsche Telekom Security': 137}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 49, 'AES128': 2, 'AES-192': 1, 'AES-256': 1}}, 'DES': {'DES': {'DES': 2}, '3DES': {'TDES': 1, 'TDEA': 1}}, 'constructions': {'MAC': {'CMAC': 36, 'CBC-MAC': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 5}, 'ECDSA': {'ECDSA': 26}, 'ECC': {'ECC': 10}}, 'FF': {'DH': {'DH': 5, 'Diffie-Hellman': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 5}, 'SHA2': {'SHA-256': 12, 'SHA-384': 7, 'SHA-512': 5, 'SHA512': 1, 'SHA-2': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 26}, 'KA': {'Key agreement': 1, 'Key Agreement': 1}}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}}, 'PACE': {'PACE': 100}}, 'randomness': {'TRNG': {'TRNG': 1}, 'RNG': {'RND': 7, 'RNG': 46}}, 'cipher_mode': {'ECB': {'ECB': 2}, 'CBC': {'CBC': 5}}, 'ecc_curve': {'NIST': {'P-256': 3, 'P-384': 2, 'NIST P-256': 1}, 'Brainpool': {'brainpoolP256r1': 3, 'brainpoolP384r1': 3, 'brainpoolP512r1': 2}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'Leak-Inherent': 8, 'Physical Probing': 2, 'physical probing': 1, 'Physical probing': 1, 'SPA': 1, 'DPA': 1}, 'FI': {'physical tampering': 1, 'Malfunction': 7, 'malfunction': 6, 'DFA': 1}, 'other': {'Bleichenbacher attack': 1}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS186': 5, 'FIPS 180-4': 1, 'FIPS180': 2, 'FIPS 197': 4, 'FIPS197': 8, 'FIPS PUB 180-4': 1, 'FIPS PUB 186-4': 1}, 'NIST': {'NIST SP 800-38B': 1, 'SP 800-38A': 3}, 'PKCS': {'PKCS#3': 3, 'PKCS1': 3}, 'BSI': {'AIS36': 4, 'AIS31': 5, 'AIS 31': 1, 'AIS 36': 1}, 'RFC': {'RFC5639': 8, 'RFC3447': 7, 'RFC 3447': 1, 'RFC 5639': 1}, 'ISO': {'ISO/IEC 18033-3': 3, 'ISO/IEC 9797-1': 2}, 'ICAO': {'ICAO': 2}, 'CC': {'CCMB-2017-04-001': 2, 'CCMB-2017-04-002': 2, 'CCMB-2017-04-003': 2, 'CCMB-2017-04-004': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The cert_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-0904-V2-2021': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0082-V4-': 1}}, 'cc_security_level': {'EAL': {'EAL 4': 1, 'EAL 5': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_DVS.2': 1}, 'ATE': {'ATE_DPT.2': 1}, 'AVA': {'AVA_VAN.5': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'DeutscheTelekom': {'Deutsche Telekom Security': 1}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
    • The st_filename property was set to 0904V2b_pdf.pdf.
    • The cert_filename property was set to 0904V2c_pdf.pdf.

    The computed heuristics were updated.

    • The st_references property was updated, with the {'directly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1068-V3-2022', 'BSI-DSZ-CC-1067-V3-2022', 'BSI-DSZ-CC-1068-V4-2023', 'BSI-DSZ-CC-1067-V4-2023']}, 'indirectly_referenced_by': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1068-V3-2022', 'BSI-DSZ-CC-1067-V3-2022', 'BSI-DSZ-CC-1068-V4-2023', 'BSI-DSZ-CC-1067-V4-2023']}, 'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1079-V2-2020']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1079-V2-2020']}} data.
    • The report_references property was updated, with the {'directly_referencing': {'__add__': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0904-2015']}}, 'indirectly_referencing': {'__add__': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0829-2012', 'BSI-DSZ-CC-0904-2015', 'BSI-DSZ-CC-0728-2011', 'BSI-DSZ-CC-0640-2010']}}} data.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}]} values added.
  • 19.08.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The report_references property was updated, with the {'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1079-V2-2020']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1079-V2-2020']}} data.
  • 17.08.2024 The certificate data changed.
    Certificate changed

    The report_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2a_pdf.pdf.

    The st_link was updated.

    • The new value is https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2b_pdf.pdf.

    The state of the certificate object was updated.

    • The st property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.
    • The cert property was updated, with the {'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None} data.

    The PDF extraction data was updated.

    • The st_metadata property was set to None.
    • The cert_metadata property was set to None.
    • The st_keywords property was set to None.
    • The cert_keywords property was set to None.
    • The st_filename property was set to None.
    • The cert_filename property was set to None.

    The computed heuristics were updated.

    • The st_references property was updated, with the {'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None} data.
    • The report_references property was updated, with the {'directly_referencing': None, 'indirectly_referencing': None} data.
    • The extracted_sars property was updated, with the {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}]} values discarded.
  • 12.08.2024 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The st_references property was updated, with the {'directly_referenced_by': {'__discard__': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1067-V4-2023']}}, 'indirectly_referenced_by': {'__discard__': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1067-V4-2023']}}} data.
  • 23.07.2024 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name TCOS FlexCert Version 2.0 Release 2/SLC52 was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2c_pdf.pdf",
  "dgst": "8bed4c0262f0c75c",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "BSI-DSZ-CC-0904-V2-2021",
    "cert_lab": [
      "BSI"
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_TAT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DEL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_IMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FUN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_DPT",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_OPE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_FSP",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_ARC",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_TDS",
          "level": 3
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_LCD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AGD_PRE",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_FUN",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DVS",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_COV",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 5
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "2.0"
      ]
    },
    "indirect_transitive_cves": null,
    "next_certificates": [],
    "prev_certificates": [
      "BSI-DSZ-CC-0904-2015"
    ],
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-0904-2015",
          "BSI-DSZ-CC-1079-V2-2020"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-0904-2015",
          "BSI-DSZ-CC-0640-2010",
          "BSI-DSZ-CC-1079-V2-2020",
          "BSI-DSZ-CC-0829-2012",
          "BSI-DSZ-CC-0728-2011"
        ]
      }
    },
    "scheme_data": {
      "category": "eHealth",
      "cert_id": "BSI-DSZ-CC-0904-V2-2021",
      "certification_date": "2021-06-24",
      "enhanced": {
        "applicant": "Deutsche Telekom Security GmbH Untere Industriestra\u00dfe 20 57250 Netphen",
        "assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5",
        "certification_date": "2021-06-24",
        "description": "The Target of Evaluation (TOE) is the product TCOS FlexCert 2.0 Release 1/SLE78CLX1440P developed by T-Systems International GmbH. The TOE is a smart card product according to the G2 Card Operating System specification from gematik. The TOE is intended to be used as a card operating system platform for different card types and applications of the card generation G2 in the framework of the German health care system. The TOE implements from the PP-0082-V2 the base part and the packages Crypto Box, Logical Channel and Contactless.",
        "entries": [
          {
            "description": "Software",
            "id": "BSI-DSZ-CC-0904-V2-2021 (Ausstellungsdatum / Certification Date 24.06.2021, g\u00fcltig bis / valid until 23.06.2026) Zertifizierungsreport / Certification Report Sicherheitsvorgaben / Security Target Zertifikat / Certificate"
          },
          {
            "description": "The maintenance procedure addresses the change of the production site.",
            "id": "BSI-DSZ-CC-0904-2015-MA-02 (13.05.2020)"
          },
          {
            "description": "Maintenance Report",
            "id": "BSI"
          },
          {
            "description": "Security Target",
            "id": "BSI"
          }
        ],
        "evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
        "expiration_date": "2026-06-23",
        "product": "TCOS FlexCert Version 2.0 Release 2/SLC52",
        "protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019",
        "report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2c_pdf.pdf?__blob=publicationFile\u0026v=3",
        "target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte09/0904V2b_pdf.pdf?__blob=publicationFile\u0026v=2"
      },
      "product": "TCOS FlexCert Version 2.0 Release 2/SLC52",
      "subcategory": "Smartcards",
      "url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/0904.html",
      "vendor": "Deutsche Telekom Security GmbH"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1068-V3-2022",
          "BSI-DSZ-CC-1068-V4-2023",
          "BSI-DSZ-CC-1067-V4-2023",
          "BSI-DSZ-CC-1067-V3-2022"
        ]
      },
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1079-V2-2020"
        ]
      },
      "indirectly_referenced_by": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1068-V3-2022",
          "BSI-DSZ-CC-1068-V4-2023",
          "BSI-DSZ-CC-1067-V4-2023",
          "BSI-DSZ-CC-1067-V3-2022"
        ]
      },
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-1079-V2-2020"
        ]
      }
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "Deutsche Telekom Security GmbH",
  "manufacturer_web": "https://www.telekom.de/security",
  "name": "TCOS FlexCert Version 2.0 Release 2/SLC52",
  "not_valid_after": "2026-06-24",
  "not_valid_before": "2021-06-24",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "0904V2c_pdf.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-0904-V2-2021": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0082-V4-": 1
        }
      },
      "cc_sar": {
        "ALC": {
          "ALC_DVS.2": 1
        },
        "ATE": {
          "ATE_DPT.2": 1
        },
        "AVA": {
          "AVA_VAN.5": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 2": 1,
          "EAL 4": 1,
          "EAL 4 augmented": 1,
          "EAL 5": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "DeutscheTelekom": {
          "Deutsche Telekom Security": 1
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408": 2,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/CreationDate": "D:20210701140233+02\u002700\u0027",
      "/Creator": "Writer",
      "/ModDate": "D:20210701140348+02\u002700\u0027",
      "/Producer": "LibreOffice 6.3",
      "/Subject": "TCOS FlexCert Version 2.0 Release 2/SLC52 from Deutsche Telekom Security GmbH",
      "/Title": "Certification Report BSI-DSZ-CC-0904-V2-2021",
      "pdf_file_size_bytes": 241525,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "0904V2a_pdf.pdf",
    "report_frontpage": {
      "DE": {
        "cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2 and AVA_VAN.5",
        "cc_version": "PP conformant Common Criteria Part 2 extended",
        "cert_id": "BSI-DSZ-CC-0904-V2-2021",
        "cert_item": "TCOS FlexCert Version 2.0 Release 2/SLC52",
        "cert_lab": "BSI",
        "developer": "Deutsche Telekom Security GmbH",
        "match_rules": [
          "(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
        ],
        "ref_protection_profiles": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4- 2019"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 7
          },
          "ECDH": {
            "ECDH": 3
          },
          "ECDSA": {
            "ECDSA": 14
          }
        },
        "FF": {
          "DH": {
            "DH": 1,
            "Diffie-Hellman": 1
          }
        },
        "RSA": {
          "RSA-OAEP": 2
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-0904-2015": 3,
          "BSI-DSZ-CC-0904-2015-MA-01": 2,
          "BSI-DSZ-CC-0904-V2-2021": 26,
          "BSI-DSZ-CC-1079-": 1,
          "BSI-DSZ-CC-1079-V2-": 2,
          "BSI-DSZ-CC-1079-V2-2020": 4
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0082-V4-": 1,
          "BSI-CC-PP-0082-V4-2019": 3
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1
        },
        "ALC": {
          "ALC_CMC.4": 1,
          "ALC_CMS.4": 1,
          "ALC_DEL.1": 1,
          "ALC_DVS.2": 5,
          "ALC_FLR": 2,
          "ALC_LCD.1": 1,
          "ALC_TAT.1": 1
        },
        "ATE": {
          "ATE_DPT.2": 4
        },
        "AVA": {
          "AVA_VAN.5": 4
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 2": 2,
          "EAL 2+": 1,
          "EAL 4": 5,
          "EAL 4 augmented": 3,
          "EAL 5": 4,
          "EAL 5+": 1,
          "EAL 6": 1,
          "EAL5+": 1,
          "EAL6": 3,
          "EAL6 augmented": 2,
          "EAL6+": 2
        }
      },
      "cc_sfr": {
        "FCS": {
          "FCS_CKM": 4,
          "FCS_COP": 28,
          "FCS_RNG": 6,
          "FCS_RNG.1": 1
        },
        "FIA": {
          "FIA_UAU": 2,
          "FIA_USB": 1
        },
        "FPT": {
          "FPT_ITE.1": 1
        },
        "FTP": {
          "FTP_ITC": 2
        }
      },
      "certification_process": {
        "ConfidentialDocument": {
          "2/SLC52, Version 0.92, 26 May 2021, Deutsche Telekom Security GmbH (confidential document) [10] TCOS FlexCert Version 2.0 Release 2, Administrator\u2019s Guidance, Guidance Documentation of TCOS": 1,
          "Certification Report DSZ-CC-1079-V2-2020, Version 2, 15 May 2020, T\u00dcV Informationstechnik GmbH (confidential document) [18] Einf\u00fchrung der Gesundheitskarte, Spezifikation des Card Operating System (COS), Elektrische": 1,
          "G12, Revision 1.3, 3 April 2020, Infineon Technologies AG, BSI-DSZ-CC-1079-V2- 2020 (confidential document) Security Target Lite of the underlying hardware platform, Public Security Target Common Criteria": 1,
          "RNG] Zufallszahlengenerierung in TCOS, Version 0.7, 3 November 2020, T-Systems International GmbH (confidential document) [AIS 20] see chapter 14, [4] of this report [AIS 31] see chapter 14, [4] of this report Note: End": 1,
          "Version 2.0 Release 2/SLC52, Version 1.1, 2 June 2021, SRC Security Research \u0026 Consulting GmbH (confidential document) [9] Configuration List BSI-DSZ-CC-0904-V2-2021, Konfigurationsliste von TCOS FlexCert Version 2.0": 1,
          "being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 10
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "PACE": {
          "PACE": 17
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 2
        },
        "MAC": {
          "MAC": 3
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "DeutscheTelekom": {
          "Deutsche Telekom Security": 20
        },
        "SRC": {
          "SRC Security Research \u0026 Consulting": 3
        },
        "TSystems": {
          "T-Systems International": 2
        },
        "TUV": {
          "T\u00dcV Informationstechnik": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA2": {
            "SHA-256": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "PRNG": 1
        },
        "RNG": {
          "RNG": 10
        }
      },
      "side_channel_analysis": {
        "FI": {
          "DFA": 1,
          "fault injection": 1,
          "malfunction": 3
        },
        "SCA": {
          "DPA": 1,
          "SPA": 1,
          "side channel": 1
        },
        "other": {
          "JIL": 6
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 1": 1,
          "AIS 14": 1,
          "AIS 19": 1,
          "AIS 20": 4,
          "AIS 23": 1,
          "AIS 25": 4,
          "AIS 26": 4,
          "AIS 31": 6,
          "AIS 32": 1,
          "AIS 34": 4,
          "AIS 35": 1,
          "AIS 36": 5,
          "AIS 37": 2,
          "AIS 38": 1,
          "AIS 46": 2,
          "AIS20": 2,
          "AIS31": 2
        },
        "FIPS": {
          "FIPS 180-4": 7,
          "FIPS 197": 13,
          "FIPS PUB 180-4": 1,
          "FIPS PUB 197": 1
        },
        "ISO": {
          "ISO/IEC 15408": 4,
          "ISO/IEC 17065": 2,
          "ISO/IEC 18031:2005": 1,
          "ISO/IEC 18045": 4
        },
        "PKCS": {
          "PKCS#1": 5
        },
        "RFC": {
          "RFC 5639": 12
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 32
          },
          "HPC": {
            "HPC": 4
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 17
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI 7148": 1,
          "BSI TR-03116-1": 1,
          "BSI TR-03143": 4,
          "BSI TR-03144": 9
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Infineon": {
          "Infineon": 9,
          "Infineon Technologies AG": 6
        }
      },
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/CreationDate": "D:20210701134203+02\u002700\u0027",
      "/Creator": "Writer",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, G2 COS, eHealth\"",
      "/ModDate": "D:20210701140047+02\u002700\u0027",
      "/Producer": "LibreOffice 6.3",
      "/Subject": "TCOS FlexCert Version 2.0 Release 2/SLC52 from Deutsche Telekom Security GmbH",
      "/Title": "Certification Report BSI-DSZ-CC-0904-V2-2021",
      "pdf_file_size_bytes": 944995,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.sogis.eu/",
          "https://www.bsi.bund.de/",
          "https://www.bsi.bund.de/zertifizierung",
          "http://www.commoncriteriaportal.org/",
          "https://www.bsi.bund.de/zertifizierungsreporte",
          "https://www.bsi.bund.de/AIS",
          "http://www.commoncriteriaportal.org/cc/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 42
    },
    "st_filename": "0904V2b_pdf.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 10
          },
          "ECDH": {
            "ECDH": 5
          },
          "ECDSA": {
            "ECDSA": 26
          }
        },
        "FF": {
          "DH": {
            "DH": 5,
            "Diffie-Hellman": 2
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-1079-V2-2020": 1
        }
      },
      "cc_claims": {
        "O": {
          "O.AES": 1,
          "O.PACE_CHIP": 9,
          "O.RND": 3
        },
        "T": {
          "T.RND": 4
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP- 0035-2007": 1,
          "BSI-CC-PP- 0082-V4": 1,
          "BSI-CC-PP-0082-V4-2019": 2,
          "BSI-CC-PP-0084-": 1,
          "BSI-CC-PP-0084-2014": 21,
          "BSI-CC-PP0082": 4,
          "BSI-CC-PP0084": 2,
          "BSI-PP-0082": 1
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_ARC": 1,
          "ADV_ARC.1": 4,
          "ADV_FSP": 1,
          "ADV_FSP.4": 2,
          "ADV_FUN.1": 1,
          "ADV_IMP.1": 2,
          "ADV_TDS.3": 3
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_OPE.1": 2,
          "AGD_PRE.1": 2
        },
        "ALC": {
          "ALC_CMC.4": 1,
          "ALC_CMS": 1,
          "ALC_CMS.4": 1,
          "ALC_DEL": 1,
          "ALC_DEL.1": 1,
          "ALC_DVS": 1,
          "ALC_DVS.2": 7,
          "ALC_LCD.1": 1,
          "ALC_TAT.1": 1
        },
        "ATE": {
          "ATE_COV": 1,
          "ATE_COV.2": 1,
          "ATE_DPT.1": 1,
          "ATE_DPT.2": 5,
          "ATE_FUN": 1,
          "ATE_FUN.1": 1
        },
        "AVA": {
          "AVA_VAN": 1,
          "AVA_VAN.5": 8
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 4": 1,
          "EAL 4 augmented": 1,
          "EAL 5": 1,
          "EAL 5 augmented": 1,
          "EAL 6": 1,
          "EAL4": 10,
          "EAL4 augmented": 2,
          "EAL6": 1,
          "EAL6 augmented": 1,
          "EAL6+": 1
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_SAS": 10,
          "FAU_SAS.1": 7,
          "FAU_SAS.1.1": 1
        },
        "FCS": {
          "FCS_CKM": 42,
          "FCS_CKM.1": 23,
          "FCS_CKM.2": 4,
          "FCS_CKM.4": 28,
          "FCS_CKM.4.1": 2,
          "FCS_COP": 141,
          "FCS_COP.1": 20,
          "FCS_RNG": 36,
          "FCS_RNG.1": 28,
          "FCS_RNG.1.1": 4,
          "FCS_RNG.1.2": 2
        },
        "FDP": {
          "FDP_ACC": 64,
          "FDP_ACC.1": 39,
          "FDP_ACF": 77,
          "FDP_ACF.1": 38,
          "FDP_IFC": 5,
          "FDP_IFC.1": 10,
          "FDP_IFF.1": 1,
          "FDP_ITC.1": 19,
          "FDP_ITC.2": 17,
          "FDP_ITT": 5,
          "FDP_ITT.1": 3,
          "FDP_RIP": 6,
          "FDP_RIP.1": 9,
          "FDP_RIP.1.1": 1,
          "FDP_SDC": 10,
          "FDP_SDC.1": 5,
          "FDP_SDC.1.1": 1,
          "FDP_SDI": 9,
          "FDP_SDI.1": 2,
          "FDP_SDI.2": 6,
          "FDP_SDI.2.1": 1,
          "FDP_SDI.2.2": 1,
          "FDP_UCT": 6,
          "FDP_UCT.1": 1,
          "FDP_UIT": 6,
          "FDP_UIT.1": 2
        },
        "FIA": {
          "FIA_AFL": 19,
          "FIA_AFL.1": 4,
          "FIA_API": 11,
          "FIA_API.1": 17,
          "FIA_API.1.1": 2,
          "FIA_ATD": 5,
          "FIA_ATD.1": 12,
          "FIA_ATD.1.1": 1,
          "FIA_SOS": 1,
          "FIA_SOS.1": 6,
          "FIA_SOS.1.1": 1,
          "FIA_UAU": 37,
          "FIA_UAU.1": 12,
          "FIA_UAU.1.1": 1,
          "FIA_UAU.1.2": 1,
          "FIA_UAU.4": 12,
          "FIA_UAU.4.1": 1,
          "FIA_UAU.5": 15,
          "FIA_UAU.5.1": 1,
          "FIA_UAU.5.2": 1,
          "FIA_UAU.6": 9,
          "FIA_UAU.6.1": 1,
          "FIA_UID": 7,
          "FIA_UID.1": 14,
          "FIA_UID.1.1": 1,
          "FIA_UID.1.2": 1,
          "FIA_USB": 28,
          "FIA_USB.1": 29,
          "FIA_USB.1.1": 1,
          "FIA_USB.1.2": 1,
          "FIA_USB.1.3": 2
        },
        "FMT": {
          "FMT_LIM": 17,
          "FMT_LIM.1": 17,
          "FMT_LIM.1.1": 1,
          "FMT_LIM.2": 16,
          "FMT_LIM.2.1": 1,
          "FMT_MSA": 52,
          "FMT_MSA.1": 7,
          "FMT_MSA.3": 25,
          "FMT_MSA.3.1": 1,
          "FMT_MSA.3.2": 1,
          "FMT_MTD": 27,
          "FMT_MTD.1": 4,
          "FMT_SMF": 1,
          "FMT_SMF.1": 34,
          "FMT_SMF.1.1": 1,
          "FMT_SMR": 6,
          "FMT_SMR.1": 22,
          "FMT_SMR.1.1": 1,
          "FMT_SMR.1.2": 1
        },
        "FPT": {
          "FPT_EMS": 10,
          "FPT_EMS.1": 16,
          "FPT_EMS.1.1": 3,
          "FPT_EMS.1.2": 3,
          "FPT_FLS": 7,
          "FPT_FLS.1": 16,
          "FPT_FLS.1.1": 2,
          "FPT_ITE": 14,
          "FPT_ITE.1": 12,
          "FPT_ITE.1.1": 2,
          "FPT_ITE.1.2": 2,
          "FPT_ITE.2": 12,
          "FPT_ITE.2.1": 6,
          "FPT_ITE.2.2": 2,
          "FPT_ITT": 5,
          "FPT_ITT.1": 2,
          "FPT_PHP": 5,
          "FPT_PHP.3": 7,
          "FPT_TDC": 1,
          "FPT_TDC.1": 5,
          "FPT_TDC.1.1": 1,
          "FPT_TDC.1.2": 1,
          "FPT_TST": 3,
          "FPT_TST.1": 7,
          "FPT_TST.1.1": 1,
          "FPT_TST.1.2": 1,
          "FPT_TST.1.3": 1,
          "FPT_TST.2": 1
        },
        "FRU": {
          "FRU_FLT": 6,
          "FRU_FLT.2": 3
        },
        "FTP": {
          "FTP_ITC": 12,
          "FTP_ITC.1": 6,
          "FTP_TRP.1": 2
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 5
        },
        "ECB": {
          "ECB": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "PACE": {
          "PACE": 100
        },
        "TLS": {
          "SSL": {
            "SSL": 1
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1,
          "Key agreement": 1
        },
        "MAC": {
          "MAC": 26
        }
      },
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP256r1": 3,
          "brainpoolP384r1": 3,
          "brainpoolP512r1": 2
        },
        "NIST": {
          "NIST P-256": 1,
          "P-256": 3,
          "P-384": 2
        }
      },
      "eval_facility": {
        "DeutscheTelekom": {
          "Deutsche Telekom Security": 137
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 5
          },
          "SHA2": {
            "SHA-2": 2,
            "SHA-256": 12,
            "SHA-384": 7,
            "SHA-512": 5,
            "SHA512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RND": 7,
          "RNG": 46
        },
        "TRNG": {
          "TRNG": 1
        }
      },
      "side_channel_analysis": {
        "FI": {
          "DFA": 1,
          "Malfunction": 7,
          "malfunction": 6,
          "physical tampering": 1
        },
        "SCA": {
          "DPA": 1,
          "Leak-Inherent": 8,
          "Physical Probing": 2,
          "Physical probing": 1,
          "SPA": 1,
          "physical probing": 1
        },
        "other": {
          "Bleichenbacher attack": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 31": 1,
          "AIS 36": 1,
          "AIS31": 5,
          "AIS36": 4
        },
        "CC": {
          "CCMB-2017-04-001": 2,
          "CCMB-2017-04-002": 2,
          "CCMB-2017-04-003": 2,
          "CCMB-2017-04-004": 2
        },
        "FIPS": {
          "FIPS 180-4": 1,
          "FIPS 197": 4,
          "FIPS PUB 180-4": 1,
          "FIPS PUB 186-4": 1,
          "FIPS180": 2,
          "FIPS186": 5,
          "FIPS197": 8
        },
        "ICAO": {
          "ICAO": 2
        },
        "ISO": {
          "ISO/IEC 18033-3": 3,
          "ISO/IEC 9797-1": 2
        },
        "NIST": {
          "NIST SP 800-38B": 1,
          "SP 800-38A": 3
        },
        "PKCS": {
          "PKCS#3": 3,
          "PKCS1": 3
        },
        "RFC": {
          "RFC 3447": 1,
          "RFC 5639": 1,
          "RFC3447": 7,
          "RFC5639": 8
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 49,
            "AES-192": 1,
            "AES-256": 1,
            "AES128": 2
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "TDES": 1
          },
          "DES": {
            "DES": 2
          }
        },
        "constructions": {
          "MAC": {
            "CBC-MAC": 1,
            "CMAC": 36
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "Infineon": {
          "Infineon": 1,
          "Infineon Technologies AG": 2
        },
        "NXP": {
          "NXP Semiconductors": 1
        },
        "STMicroelectronics": {
          "STMicroelectronics": 1
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "E.G. Giessmann, Markus Blick, DT Sec",
      "/CreationDate": "D:20210526092934+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word f\u00fcr Microsoft 365",
      "/Keywords": "\"TCOS FlexCert, Generation 2\", Gesundheitskarte, electronic health card, TCOS",
      "/ModDate": "D:20210526092934+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word f\u00fcr Microsoft 365",
      "/Subject": "TCOS FlexCert Version 2.0 Release 2",
      "/Title": "Security Target TCOS FlexCert Version 2.0 Release 2",
      "pdf_file_size_bytes": 1779349,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.phy.duke.edu/~rgb/General/dieharder/dieharder-3.31.0.tgz",
          "http://csrc.nist.gov/groups/ST/toolkit/rng/documents/sts-2.1.1.zip"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 132
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": "EAL4+",
        "pp_ids": {
          "_type": "Set",
          "elements": [
            "BSI-CC-PP-0082-V4-2019"
          ]
        },
        "pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/pp0082V4b_pdf.pdf",
        "pp_name": "Card Operating System Generation 2 (PP COS G2)"
      }
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2a_pdf.pdf",
  "scheme": "DE",
  "security_level": {
    "_type": "Set",
    "elements": [
      "AVA_VAN.5",
      "ATE_DPT.2",
      "EAL4+",
      "ALC_DVS.2"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/0904V2b_pdf.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "d627cfdbfe88eceac19e0197a3de99dbde5d92c3a3d3b02a6797098e2cbf38d2",
      "txt_hash": "82d6fd8d6f827e6abd2f67fc375d2890dec47aa118a3db486b1dfce636e5e95f"
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "f6b33ccd5ecf48831f757eb1efe6df95f4d170076a320dd71bf127ddc8c8bdd3",
      "txt_hash": "244291a65824e47d868a7face80d68cc15cc8b4a25944981c0630f0b244dbea6"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "9fc2cae429ee0b55b6c3164df63d8565ca8c96505defd4ffe0f3dc3e81a67726",
      "txt_hash": "474b2d63c444631302016e1138d232d60f8e2181a956e81fc65f2cf7c77ff9a0"
    }
  },
  "status": "active"
}