This page was not yet optimized for use on mobile devices.
STARCOS 3.7 COS GKV C2
CSV information ?
| Status | active |
|---|---|
| Valid from | 22.08.2024 |
| Valid until | 22.08.2029 |
| Scheme | 🇩🇪 DE |
| Manufacturer | Giesecke+Devrient ePayments GmbH |
| Category | ICs, Smart Cards and Smart Card-Related Devices and Systems |
| Security level | AVA_VAN.5, ALC_DVS.2, EAL4+, ATE_DPT.2 |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-1243-2024
Certificate ?
Extracted keywords
Operating System name
STARCOS 3Vendor
Giesecke+DevrientSecurity level
EAL 4, EAL 5, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_DVS.2, ATE_DPT.2, AVA_VAN.5Protection profiles
BSI-CC-PP-0082-V4-Certificates
BSI-DSZ-CC-1243-2024Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
| Title | Certification Report BSI-DSZ-CC-1243-2024 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth |
| Keywords | "Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Pages | 1 |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, HPC, CMACAsymmetric Algorithms
RSA-OAEP, ECDH, ECDSA, ECC, Diffie-Hellman, DHHash functions
SHA-256Schemes
MAC, Key AgreementProtocols
PACERandomness
PRNG, RNGBlock cipher modes
CBCOperating System name
STARCOS 3Vendor
Infineon, Infineon Technologies AG, Giesecke+DevrientSecurity level
EAL 4, EAL 5, EAL 2, EAL 1, EAL 5+, EAL 6, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ADV_ARC, ALC_DVS.2, ALC_FLR, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, AVA_VAN.5Security Functional Requirements (SFR)
FCS_COP, FCS_CKM, FCS_RNG.1, FCS_RNG, FIA_UAU, FIA_USB, FPT_ITE.1Protection profiles
BSI-CC-PP-0082-V4-, BSI-CC-PP-0082-V4-2019Certificates
BSI-DSZ-CC-1243-2024, BSI-DSZ-CC-0976-V3-2019, BSI-DSZ-CC-0976-V3-2019-MA-01, BSI-DSZ-CC-0976-V3-, BSI-DSZ-CC-1110-V6-2023, BSI-DSZ-CC-1243, BSI-DSZ-CC-S-0260-2023Evaluation facilities
TÃœV Informationstechnik, SRC Security Research & ConsultingSide-channel analysis
side channel, DPA, SPA, physical tampering, malfunction, DFA, fault injection, JILCertification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, Target STARCOS 3.7 COS GKV C2, Version 1.6, 10 June 2024, Giesecke+Devrient ePayments GmbH (confidential document) [7] Security Target Lite BSI-DSZ-CC-1243, Security Target Lite STARCOS 3.7 COS GKV C2, Version 1.6, for STARCOS 3.7 COS GKV C2, Version 1.1, 1 August 2024, SRC Security Research & Consulting GmbH (confidential document) [10] Configuration List BSI-DSZ-CC-1243, Configuration List STARCOS 3.7 COS GKV C2, Version 1.2, July 2024, Giesecke+Devrient ePayments GmbH (confidential document) [11] Guidance Documentation STARCOS 3.7 COS GKV C2 – Main Document, Version 1.5, 5 June 2024, H13, Revision 4.4, 30 November 2023, Infineon Technologies AG, BSI-DSZ-CC- 1110-V6-2023 (confidential document) Security Target Lite of the underlying hardware platform, Common Criteria Public Security Target, procedure BSI-DSZ-CC-1110-V6-2023, Version 3, 01 December 2023, TÜV Informationstechnik GmbH (confidential document) [21] Einführung der Gesundheitskarte, Spezifikation des Card Operating System (COS), ElektrischeStandards
FIPS PUB 180-4, FIPS PUB 197, AIS 34, AIS 36, AIS 37, AIS 26, AIS 25, AIS 20, AIS 31, AIS 46, AIS 35, AIS 1, AIS 14, AIS 19, AIS 32, AIS 38, RFC 5639, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ISO/IEC 18031:2005Technical reports
BSI TR-03116-1, BSI TR-03144, BSI TR-03143, BSI 7148File metadata
| Title | Certification Report BSI-DSZ-CC-1243-2024 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth |
| Keywords | "Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Pages | 38 |
Frontpage
| Certificate ID | BSI-DSZ-CC-1243-2024 |
|---|---|
| Certified item | STARCOS 3.7 COS GKV C2 |
| Certification lab | BSI |
| Developer | Giesecke+Devrient ePayments GmbH |
References
Outgoing- BSI-DSZ-CC-0976-V3-2019 - archived - STARCOS 3.7 COS GKV C2
- BSI-DSZ-CC-1110-V6-2023 - active - Infineon Security Controller IFX_CCI_000003h, 000005h, 000008h, 00000Ch, 000013h, 000014h, 000015h, 00001Ch, 00001Dh, 000021h, 000022h in the design step H13 and including optional software libraries and dedicated firmware in several versions
Security target ?
Extracted keywords
Symmetric Algorithms
AES, HPC, CMACAsymmetric Algorithms
ECDH, ECDSA, ECC, Diffie-Hellman, DH, DSAHash functions
SHA-1, SHA-224, SHA-384, SHA-256, SHA-512Schemes
MAC, Key agreement, Key AgreementProtocols
SSL, PACERandomness
RND, RNGElliptic Curves
brainpoolP256r1, brainpoolP384r1, brainpoolP512r1Block cipher modes
CBCOperating System name
STARCOS 3Trusted Execution Environments
SEVendor
NXP Semiconductors, Infineon, Infineon Technologies AG, Infineon Technologies, STMicroelectronics, Giesecke+Devrient, G+DSecurity level
EAL4, EAL 4, EAL 6, EAL6, EAL6+, EAL4 augmentedClaims
O.RND, O.AES, O.PACE_CHIP, T.RNDSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ADV_ARC, ADV_FSP, ADV_IMP, AGD_OPE.1, AGD_PRE.1, AGD_OPE, AGD_PRE, ALC_DVS.2, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ALC_DEL, ALC_DVS, ALC_CMS, ALC_CMC, ALC_FLR.1, ATE_FUN.1, ATE_IND.2, ATE_DPT.2, ATE_COV.2, ATE_COV, ATE_DPT.1, AVA_VAN.5, AVA_VAN, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1, ASE_ECDSecurity Functional Requirements (SFR)
FAU_SAS, FAU_SAS.1, FCS_RNG, FCS_RNG.1, FCS_COP, FCS_CKM, FCS_CKM.4, FCS_RNG.1.1, FCS_RNG.1.2, FCS_CKM.1, FCS_COP.1, FCS_CKM.2, FCS_COP.1.1, FCS_CKM.4.1, FDP_ITT, FDP_IFC, FDP_SDC, FDP_SDI, FDP_RIP.1, FDP_SDI.2, FDP_ACC, FDP_ACF, FDP_SDC.1, FDP_ITT.1, FDP_IFC.1, FDP_RIP.1.1, FDP_SDI.1, FDP_SDI.2.1, FDP_SDI.2.2, FDP_ACF.1, FDP_ACC.1, FDP_ITC.1, FDP_ITC.2, FDP_RIP, FDP_UCT, FDP_UCT.1, FDP_UIT, FDP_UIT.1, FIA_API, FIA_AFL, FIA_ATD.1, FIA_SOS.1, FIA_UAU.1, FIA_UAU.4, FIA_UAU.5, FIA_UAU.6, FIA_API.1, FIA_USB.1, FIA_USB, FIA_UAU, FIA_UID.1, FIA_SOS.1.1, FIA_AFL.1, FIA_ATD.1.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.4.1, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.6.1, FIA_UID.1.1, FIA_UID.1.2, FIA_API.1.1, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FIA_UID, FIA_ATD, FMT_LIM, FMT_SMR.1, FMT_MSA.3, FMT_SMF.1, FMT_MSA, FMT_MTD, FMT_LIM.1, FMT_LIM.2, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMF.1.1, FMT_MSA.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MTD.1, FMT_SMR, FMT_SRM, FPT_FLS, FPT_PHP, FPT_ITT, FPT_EMS, FPT_ITE, FPT_FLS.1, FPT_EMS.1, FPT_TDC.1, FPT_ITE.1, FPT_ITE.2, FPT_TST.1, FPT_PHP.3, FPT_ITT.1, FPT_FLS.1.1, FPT_TST, FPT_EMS.1.1, FPT_EMS.1.2, FPT_TDC.1.1, FPT_TDC.1.2, FPT_ITE.1.1, FPT_ITE.1.2, FPT_ITE.2.1, FPT_ITE.2.2, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FRU_FLT, FRU_FLT.2, FTP_ITC, FTP_ITE, FTP_ITC.1, FTP_TRP.1Protection profiles
BSI-PP-0082-V4, BSI-PP-0084-2014, BSI-CC-PP-0084-2014, BSI-CC-PP- 0084-2014, BSI-CC-PP-0082-V4, BSI-CC-PP-0082-, BSI-CC-PP- 16, BSI-CC-PP-0084-2007, BSI-CC-PP- 0082-V4, BSI-CC-PP-0084-, BSI-PP-0084-, BSI-CC-PP-0035-2007Certificates
BSI-DSZ-CC-1110-V6-2023Side-channel analysis
Leak-Inherent, Physical Probing, side channel, SPA, DPA, physical tampering, Malfunction, malfunction, DFA, Bleichenbacher attack, JILStandards
FIPS 180-4, FIPS 197, FIPS PUB 180-4, NIST SP 800-38B, PKCS #1, AIS31, AIS20, RFC5639, RFC 5639, ISO/IEC 7816, CCMB-2017-05-001, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004Technical reports
BSI TR-03143, BSI TR-03111File metadata
| Title | ASE_STA37_COSGKV_C2_Lite |
|---|---|
| Author | wallhaek |
| Pages | 149 |
References
Outgoing- BSI-DSZ-CC-1110-V6-2023 - active - Infineon Security Controller IFX_CCI_000003h, 000005h, 000008h, 00000Ch, 000013h, 000014h, 000015h, 00001Ch, 00001Dh, 000021h, 000022h in the design step H13 and including optional software libraries and dedicated firmware in several versions
Heuristics ?
Certificate ID: BSI-DSZ-CC-1243-2024
Extracted SARs
ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_DVS.2, ALC_FLR.1, ALC_LCD.1, ALC_TAT.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1, ATE_COV.2, ATE_DPT.2, ATE_FUN.1, ATE_IND.2, AVA_VAN.5Similar certificates
| Name | Certificate ID | |
|---|---|---|
| STARCOS 3.7 COS GKV C2 | BSI-DSZ-CC-0976-V3-2019 | Compare |
| STARCOS 3.7 ID ePA C2, STARCOS 3.7 ID eAT C2, STARCOS 3.7 ID ePass C2 | BSI-DSZ-CC-1077-V2-2024 | Compare |
Scheme data ?
| Cert Id | BSI-DSZ-CC-1243-2024 | |
|---|---|---|
| Product | STARCOS 3.7 COS GKV C2 | |
| Vendor | Giesecke+Devrient ePayments GmbH | |
| Certification Date | 22.08.2024 | |
| Category | eHealth | |
| Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/1243.html | |
| Enhanced | ||
| Product | STARCOS 3.7 COS GKV C2 | |
| Applicant | Giesecke+Devrient ePayments GmbH Prinzregentenstr. 161 81677 München | |
| Evaluation Facility | SRC Security Research & Consulting GmbH | |
| Assurance Level | EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5 | |
| Protection Profile | Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019 | |
| Certification Date | 22.08.2024 | |
| Expiration Date | 21.08.2029 | |
| Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243a_pdf.pdf?__blob=publicationFile&v=2 | |
| Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243b_pdf.pdf?__blob=publicationFile&v=2 | |
| Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243c_pdf.pdf?__blob=publicationFile&v=2 | |
| Description | The Target of Evaluation (TOE) is the product STARCOS 3.7 COS GKV C2 developed by Giesecke+Devrient ePayments GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for the electronic Health Card (eHC) of the card generation G2.1 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional packages "RSA Key Generation" and "Contactless Interface". The TOE uses from the Protection Profile PP-0082-V4 the base part together with the corresponding optional packages. This certification procedure was carried out as a re-evaluation based on the certificate BSI-DSZ-CC-0976-V3-2019 including subsequent maintenance procedures BSI-DSZ-CC-0976-V3-2019-MA-01 and BSI-DSZ-CC-0976-V3-2019-MA-02. The TOE and its implementation itself did not change. The focus of this re-evaluation was on the change of the TOE’s life-cycle model regards production sites including renewal of corresponding site certificates, the update of the underlying HW certificate, and the renewal of the TOE’s vulnerability analysis and assessment including penetration testing of the TOE’s (crypto) implementation. | |
| Subcategory | Smartcards | |
References ?
Updates ?
-
21.11.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'prev_certificates': [], 'next_certificates': []}.
- The following values were inserted:
-
09.11.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The scheme_data property was updated, with the
{'certification_date': '2024-08-22', 'enhanced': {'__update__': {'applicant': 'Giesecke+Devrient ePayments GmbH Prinzregentenstr. 161 81677 München', 'certification_date': '2024-08-22', 'expiration_date': '2029-08-21', 'description': 'The Target of Evaluation (TOE) is the product STARCOS 3.7 COS GKV C2 developed by Giesecke+Devrient ePayments GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for the electronic Health Card (eHC) of the card generation G2.1 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional packages "RSA Key Generation" and "Contactless Interface". The TOE uses from the Protection Profile PP-0082-V4 the base part together with the corresponding optional packages. This certification procedure was carried out as a re-evaluation based on the certificate BSI-DSZ-CC-0976-V3-2019 including subsequent maintenance procedures BSI-DSZ-CC-0976-V3-2019-MA-01 and BSI-DSZ-CC-0976-V3-2019-MA-02. The TOE and its implementation itself did not change. The focus of this re-evaluation was on the change of the TOE’s life-cycle model regards production sites including renewal of corresponding site certificates, the update of the underlying HW certificate, and the renewal of the TOE’s vulnerability analysis and assessment including penetration testing of the TOE’s (crypto) implementation.'}}}data.
- The scheme_data property was updated, with the
-
17.10.2024 The certificate data changed.
Certificate changed
The Protection Profiles of the certificate were updated.
- The new value is
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Card Operating System Generation 2', 'pp_eal': 'EAL4+', 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/pp0082b_pdf.pdf', 'pp_ids': None}]}.
- The new value is
-
30.09.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name STARCOS 3.7 COS GKV C2 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1243c_pdf.pdf",
"dgst": "7e00946c0c70e2a7",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1243-2024",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"3.7"
]
},
"indirect_transitive_cves": null,
"next_certificates": [],
"prev_certificates": [],
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0976-V3-2019",
"BSI-DSZ-CC-1110-V6-2023"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-0976-2015",
"BSI-DSZ-CC-0782-V2-2015",
"BSI-DSZ-CC-0945-2017",
"BSI-DSZ-CC-0879-2014",
"BSI-DSZ-CC-1110-V2-2019",
"BSI-DSZ-CC-0891-2015",
"BSI-DSZ-CC-1110-2019",
"BSI-DSZ-CC-0945-V2-2018",
"BSI-DSZ-CC-0945-V3-2018",
"BSI-DSZ-CC-1110-V3-2020",
"BSI-DSZ-CC-0976-V3-2019",
"BSI-DSZ-CC-0976-V2-2018",
"BSI-DSZ-CC-0782-2012",
"BSI-DSZ-CC-1110-V6-2023",
"BSI-DSZ-CC-0891-V2-2016",
"BSI-DSZ-CC-1110-V5-2022",
"BSI-DSZ-CC-1110-V4-2021",
"BSI-DSZ-CC-0916-2015"
]
}
},
"scheme_data": {
"category": "eHealth",
"cert_id": "BSI-DSZ-CC-1243-2024",
"certification_date": "2024-08-22",
"enhanced": {
"applicant": "Giesecke+Devrient ePayments GmbH Prinzregentenstr. 161 81677 M\u00fcnchen",
"assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243c_pdf.pdf?__blob=publicationFile\u0026v=2",
"certification_date": "2024-08-22",
"description": "The Target of Evaluation (TOE) is the product STARCOS 3.7 COS GKV C2 developed by Giesecke+Devrient ePayments GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for the electronic Health Card (eHC) of the card generation G2.1 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional packages \"RSA Key Generation\" and \"Contactless Interface\". The TOE uses from the Protection Profile PP-0082-V4 the base part together with the corresponding optional packages. This certification procedure was carried out as a re-evaluation based on the certificate BSI-DSZ-CC-0976-V3-2019 including subsequent maintenance procedures BSI-DSZ-CC-0976-V3-2019-MA-01 and BSI-DSZ-CC-0976-V3-2019-MA-02. The TOE and its implementation itself did not change. The focus of this re-evaluation was on the change of the TOE\u2019s life-cycle model regards production sites including renewal of corresponding site certificates, the update of the underlying HW certificate, and the renewal of the TOE\u2019s vulnerability analysis and assessment including penetration testing of the TOE\u2019s (crypto) implementation.",
"evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
"expiration_date": "2029-08-21",
"product": "STARCOS 3.7 COS GKV C2",
"protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4-2019",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243a_pdf.pdf?__blob=publicationFile\u0026v=2",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1243b_pdf.pdf?__blob=publicationFile\u0026v=2"
},
"product": "STARCOS 3.7 COS GKV C2",
"subcategory": "Smartcards",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/1243.html",
"vendor": "Giesecke+Devrient ePayments GmbH"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1110-V6-2023"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1110-V6-2023"
]
}
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Giesecke+Devrient ePayments GmbH",
"manufacturer_web": "https://www.gi-de.com/de/",
"name": "STARCOS 3.7 COS GKV C2",
"not_valid_after": "2029-08-22",
"not_valid_before": "2024-08-22",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1243c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1243-2024": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0082-V4-": 1
}
},
"cc_sar": {
"ALC": {
"ALC_DVS.2": 1
},
"ATE": {
"ATE_DPT.2": 1
},
"AVA": {
"AVA_VAN.5": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 1,
"EAL 4 augmented": 1,
"EAL 5": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {
"STARCOS": {
"STARCOS 3": 1
}
},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"GD": {
"Giesecke+Devrient": 1
}
},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth",
"/Title": "Certification Report BSI-DSZ-CC-1243-2024",
"pdf_file_size_bytes": 233610,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1243a_pdf.pdf",
"report_frontpage": {
"DE": {
"cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2 and AVA_VAN.5 valid until: 21 August 2029",
"cc_version": "PP conformant Common Criteria Part 2 extended",
"cert_id": "BSI-DSZ-CC-1243-2024",
"cert_item": "STARCOS 3.7 COS GKV C2",
"cert_lab": "BSI",
"developer": "Giesecke+Devrient ePayments GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
],
"ref_protection_profiles": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4- 2019"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 9
},
"ECDH": {
"ECDH": 4
},
"ECDSA": {
"ECDSA": 13
}
},
"FF": {
"DH": {
"DH": 1,
"Diffie-Hellman": 2
}
},
"RSA": {
"RSA-OAEP": 1
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-0976-V3-": 2,
"BSI-DSZ-CC-0976-V3-2019": 3,
"BSI-DSZ-CC-0976-V3-2019-MA-01": 2,
"BSI-DSZ-CC-1110-V6-2023": 7,
"BSI-DSZ-CC-1243": 4,
"BSI-DSZ-CC-1243-2024": 21,
"BSI-DSZ-CC-S-0260-2023": 2
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0082-V4-": 1,
"BSI-CC-PP-0082-V4-2019": 3
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 1
},
"ALC": {
"ALC_CMC.4": 1,
"ALC_CMS.4": 1,
"ALC_DEL.1": 1,
"ALC_DVS.2": 5,
"ALC_FLR": 2,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ATE": {
"ATE_DPT.2": 4
},
"AVA": {
"AVA_VAN.5": 4
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 3,
"EAL 4": 5,
"EAL 4 augmented": 3,
"EAL 5": 4,
"EAL 5+": 2,
"EAL 6": 2
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM": 4,
"FCS_COP": 25,
"FCS_RNG": 3,
"FCS_RNG.1": 1
},
"FIA": {
"FIA_UAU": 2,
"FIA_USB": 1
},
"FPT": {
"FPT_ITE.1": 1
}
},
"certification_process": {
"ConfidentialDocument": {
"H13, Revision 4.4, 30 November 2023, Infineon Technologies AG, BSI-DSZ-CC- 1110-V6-2023 (confidential document) Security Target Lite of the underlying hardware platform, Common Criteria Public Security Target": 1,
"July 2024, Giesecke+Devrient ePayments GmbH (confidential document) [11] Guidance Documentation STARCOS 3.7 COS GKV C2 \u2013 Main Document, Version 1.5, 5 June 2024": 1,
"Target STARCOS 3.7 COS GKV C2, Version 1.6, 10 June 2024, Giesecke+Devrient ePayments GmbH (confidential document) [7] Security Target Lite BSI-DSZ-CC-1243, Security Target Lite STARCOS 3.7 COS GKV C2, Version 1.6": 1,
"being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1,
"for STARCOS 3.7 COS GKV C2, Version 1.1, 1 August 2024, SRC Security Research \u0026 Consulting GmbH (confidential document) [10] Configuration List BSI-DSZ-CC-1243, Configuration List STARCOS 3.7 COS GKV C2, Version 1.2": 1,
"procedure BSI-DSZ-CC-1110-V6-2023, Version 3, 01 December 2023, T\u00dcV Informationstechnik GmbH (confidential document) [21] Einf\u00fchrung der Gesundheitskarte, Spezifikation des Card Operating System (COS), Elektrische": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 6
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 18
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 2
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 3
},
"TUV": {
"T\u00dcV Informationstechnik": 1
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {
"STARCOS": {
"STARCOS 3": 38
}
},
"pq_crypto": {},
"randomness": {
"PRNG": {
"PRNG": 1
},
"RNG": {
"RNG": 5
}
},
"side_channel_analysis": {
"FI": {
"DFA": 1,
"fault injection": 1,
"malfunction": 1,
"physical tampering": 1
},
"SCA": {
"DPA": 1,
"SPA": 1,
"side channel": 1
},
"other": {
"JIL": 6
}
},
"standard_id": {
"BSI": {
"AIS 1": 1,
"AIS 14": 1,
"AIS 19": 1,
"AIS 20": 5,
"AIS 25": 4,
"AIS 26": 4,
"AIS 31": 4,
"AIS 32": 1,
"AIS 34": 4,
"AIS 35": 2,
"AIS 36": 5,
"AIS 37": 3,
"AIS 38": 1,
"AIS 46": 3
},
"FIPS": {
"FIPS PUB 180-4": 1,
"FIPS PUB 197": 1
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18031:2005": 1,
"ISO/IEC 18045": 4
},
"RFC": {
"RFC 5639": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 21
},
"HPC": {
"HPC": 1
}
},
"constructions": {
"MAC": {
"CMAC": 9
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-03116-1": 1,
"BSI TR-03143": 5,
"BSI TR-03144": 11
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"GD": {
"Giesecke+Devrient": 33
},
"Infineon": {
"Infineon": 12,
"Infineon Technologies AG": 6
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, PP-0082-V4, G+D, STARCOS 3.7, eHealth",
"/Title": "Certification Report BSI-DSZ-CC-1243-2024",
"pdf_file_size_bytes": 428132,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.sogis.eu/",
"https://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/",
"https://www.bsi.bund.de/zertifizierung",
"http://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/zertifizierungsreporte",
"https://www.bsi.bund.de/AIS",
"http://www.commoncriteriaportal.org/cc/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 38
},
"st_filename": "1243b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 14
},
"ECDH": {
"ECDH": 6
},
"ECDSA": {
"ECDSA": 38
}
},
"FF": {
"DH": {
"DH": 12,
"Diffie-Hellman": 1
},
"DSA": {
"DSA": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1110-V6-2023": 1
}
},
"cc_claims": {
"O": {
"O.AES": 6,
"O.PACE_CHIP": 2,
"O.RND": 7
},
"T": {
"T.RND": 5
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP- 0082-V4": 1,
"BSI-CC-PP- 0084-2014": 8,
"BSI-CC-PP- 16": 1,
"BSI-CC-PP-0035-2007": 1,
"BSI-CC-PP-0082-": 1,
"BSI-CC-PP-0082-V4": 24,
"BSI-CC-PP-0084-": 4,
"BSI-CC-PP-0084-2007": 1,
"BSI-CC-PP-0084-2014": 54,
"BSI-PP-0082-V4": 147,
"BSI-PP-0084-": 2,
"BSI-PP-0084-2014": 8
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 2,
"ADV_ARC.1": 9,
"ADV_FSP": 2,
"ADV_FSP.4": 6,
"ADV_IMP": 2,
"ADV_IMP.1": 6,
"ADV_TDS.3": 3
},
"AGD": {
"AGD_OPE": 2,
"AGD_OPE.1": 6,
"AGD_PRE": 2,
"AGD_PRE.1": 2
},
"ALC": {
"ALC_CMC": 2,
"ALC_CMC.4": 1,
"ALC_CMS": 2,
"ALC_CMS.4": 1,
"ALC_DEL": 2,
"ALC_DEL.1": 1,
"ALC_DVS": 2,
"ALC_DVS.2": 12,
"ALC_FLR.1": 1,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD": 2,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.2": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_COV": 2,
"ATE_COV.2": 1,
"ATE_DPT.1": 1,
"ATE_DPT.2": 11,
"ATE_FUN.1": 6,
"ATE_IND.2": 5
},
"AVA": {
"AVA_VAN": 2,
"AVA_VAN.5": 10
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 2,
"EAL 6": 2,
"EAL4": 14,
"EAL4 augmented": 4,
"EAL6": 1,
"EAL6+": 1
}
},
"cc_sfr": {
"FAU": {
"FAU_SAS": 8,
"FAU_SAS.1": 4
},
"FCS": {
"FCS_CKM": 67,
"FCS_CKM.1": 31,
"FCS_CKM.2": 8,
"FCS_CKM.4": 49,
"FCS_CKM.4.1": 1,
"FCS_COP": 144,
"FCS_COP.1": 21,
"FCS_COP.1.1": 1,
"FCS_RNG": 32,
"FCS_RNG.1": 20,
"FCS_RNG.1.1": 3,
"FCS_RNG.1.2": 2
},
"FDP": {
"FDP_ACC": 114,
"FDP_ACC.1": 41,
"FDP_ACF": 93,
"FDP_ACF.1": 35,
"FDP_IFC": 7,
"FDP_IFC.1": 17,
"FDP_ITC.1": 27,
"FDP_ITC.2": 27,
"FDP_ITT": 7,
"FDP_ITT.1": 4,
"FDP_RIP": 9,
"FDP_RIP.1": 12,
"FDP_RIP.1.1": 1,
"FDP_SDC": 8,
"FDP_SDC.1": 4,
"FDP_SDI": 7,
"FDP_SDI.1": 1,
"FDP_SDI.2": 11,
"FDP_SDI.2.1": 1,
"FDP_SDI.2.2": 1,
"FDP_UCT": 7,
"FDP_UCT.1": 1,
"FDP_UIT": 8,
"FDP_UIT.1": 2
},
"FIA": {
"FIA_AFL": 22,
"FIA_AFL.1": 4,
"FIA_API": 1,
"FIA_API.1": 14,
"FIA_API.1.1": 1,
"FIA_ATD": 10,
"FIA_ATD.1": 14,
"FIA_ATD.1.1": 1,
"FIA_SOS.1": 8,
"FIA_SOS.1.1": 1,
"FIA_UAU": 40,
"FIA_UAU.1": 20,
"FIA_UAU.1.1": 1,
"FIA_UAU.1.2": 1,
"FIA_UAU.4": 12,
"FIA_UAU.4.1": 1,
"FIA_UAU.5": 17,
"FIA_UAU.5.1": 1,
"FIA_UAU.5.2": 1,
"FIA_UAU.6": 11,
"FIA_UAU.6.1": 1,
"FIA_UID": 14,
"FIA_UID.1": 19,
"FIA_UID.1.1": 1,
"FIA_UID.1.2": 1,
"FIA_USB": 13,
"FIA_USB.1": 23,
"FIA_USB.1.1": 1,
"FIA_USB.1.2": 1,
"FIA_USB.1.3": 1
},
"FMT": {
"FMT_LIM": 15,
"FMT_LIM.1": 4,
"FMT_LIM.2": 2,
"FMT_MSA": 60,
"FMT_MSA.1": 6,
"FMT_MSA.3": 33,
"FMT_MSA.3.1": 1,
"FMT_MSA.3.2": 1,
"FMT_MTD": 38,
"FMT_MTD.1": 4,
"FMT_SMF.1": 51,
"FMT_SMF.1.1": 1,
"FMT_SMR": 9,
"FMT_SMR.1": 38,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1,
"FMT_SRM": 1
},
"FPT": {
"FPT_EMS": 10,
"FPT_EMS.1": 15,
"FPT_EMS.1.1": 1,
"FPT_EMS.1.2": 1,
"FPT_FLS": 7,
"FPT_FLS.1": 16,
"FPT_FLS.1.1": 1,
"FPT_ITE": 11,
"FPT_ITE.1": 11,
"FPT_ITE.1.1": 1,
"FPT_ITE.1.2": 1,
"FPT_ITE.2": 13,
"FPT_ITE.2.1": 5,
"FPT_ITE.2.2": 1,
"FPT_ITT": 7,
"FPT_ITT.1": 4,
"FPT_PHP": 7,
"FPT_PHP.3": 5,
"FPT_TDC.1": 10,
"FPT_TDC.1.1": 1,
"FPT_TDC.1.2": 1,
"FPT_TST": 2,
"FPT_TST.1": 11,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1
},
"FRU": {
"FRU_FLT": 7,
"FRU_FLT.2": 4
},
"FTP": {
"FTP_ITC": 22,
"FTP_ITC.1": 12,
"FTP_ITE": 1,
"FTP_TRP.1": 5
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 125
},
"TLS": {
"SSL": {
"SSL": 1
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1,
"Key agreement": 1
},
"MAC": {
"MAC": 33
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 4,
"brainpoolP384r1": 4,
"brainpoolP512r1": 4
}
},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 3
},
"SHA2": {
"SHA-224": 2,
"SHA-256": 11,
"SHA-384": 6,
"SHA-512": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {
"STARCOS": {
"STARCOS 3": 16
}
},
"pq_crypto": {},
"randomness": {
"RNG": {
"RND": 14,
"RNG": 38
}
},
"side_channel_analysis": {
"FI": {
"DFA": 1,
"Malfunction": 16,
"malfunction": 1,
"physical tampering": 3
},
"SCA": {
"DPA": 1,
"Leak-Inherent": 14,
"Physical Probing": 2,
"SPA": 1,
"side channel": 1
},
"other": {
"Bleichenbacher attack": 1,
"JIL": 3
}
},
"standard_id": {
"BSI": {
"AIS20": 2,
"AIS31": 1
},
"CC": {
"CCMB-2017-04-001": 1,
"CCMB-2017-04-002": 1,
"CCMB-2017-04-003": 1,
"CCMB-2017-04-004": 1,
"CCMB-2017-05-001": 1
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 3,
"FIPS PUB 180-4": 1
},
"ISO": {
"ISO/IEC 7816": 2
},
"NIST": {
"NIST SP 800-38B": 1
},
"PKCS": {
"PKCS #1": 1
},
"RFC": {
"RFC 5639": 1,
"RFC5639": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 56
},
"HPC": {
"HPC": 1
}
},
"constructions": {
"MAC": {
"CMAC": 24
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03111": 3,
"BSI TR-03143": 2
}
},
"tee_name": {
"IBM": {
"SE": 1
}
},
"tls_cipher_suite": {},
"vendor": {
"GD": {
"G+D": 147,
"Giesecke+Devrient": 13
},
"Infineon": {
"Infineon": 2,
"Infineon Technologies": 1,
"Infineon Technologies AG": 1
},
"NXP": {
"NXP Semiconductors": 1
},
"STMicroelectronics": {
"STMicroelectronics": 1
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "wallhaek",
"/Keywords": "",
"/Subject": "",
"/Title": "ASE_STA37_COSGKV_C2_Lite",
"pdf_file_size_bytes": 1178896,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 149
}
},
"protection_profiles": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"pp_eal": "EAL4+",
"pp_ids": null,
"pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/pp0082b_pdf.pdf",
"pp_name": "Card Operating System Generation 2"
}
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1243a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"AVA_VAN.5",
"ATE_DPT.2",
"EAL4+",
"ALC_DVS.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1243b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "57bbec555eedfd99faa0583bd3ccee33a71770dea620b5d3517a1d9a172c2b99",
"txt_hash": "408bcf8acdf0d64a57a65b8792df7d4c8684e91f2ae326b191006957f6a120bd"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "fce2018eb519659d7b800ffafffa70303f3258363fe080a0b85002a559b7526b",
"txt_hash": "983f2d60b5a22a8913664a14c76fe78ad830ec05b028d0e852c211d8c608f3a3"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "aa232ec17a73d03b9d55cecc140fc93cc57b918736413fc877d79ef3c809e95d",
"txt_hash": "355f5fe9a5144a23432ce02ab54539ef236aaa3ce954d0e6ce52d854ea59c3cc"
}
},
"status": "active"
}