This page was not yet optimized for use on mobile
devices.
IDEMIA_HC_Germany_NEO_G2.1_COS, V3
CSV information
| Status | active |
|---|---|
| Valid from | 06.08.2025 |
| Valid until | 05.08.2030 |
| Scheme | 🇩🇪 DE |
| Manufacturer | IDEMIA Germany GmbH |
| Category | ICs, Smart Cards and Smart Card-Related Devices and Systems |
| Security level | EAL4+, ATE_DPT.2, AVA_VAN.5, ALC_DVS.2 |
| Protection profiles |
Heuristics summary
Certificate ID: BSI-DSZ-CC-1261-2025
Certificate
Extracted keywords
Vendor
IDEMIASecurity level
EAL 4, EAL 5, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_DVS.2, ATE_DPT.2, AVA_VAN.5Protection profiles
BSI-CC-PP-0082-V4-Certificates
BSI-DSZ-CC-1261-2025Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
| Title | Certificate BSI-DSZ-CC-1261-2025 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH |
| Keywords | "Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Pages | 1 |
Certification report
Extracted keywords
Symmetric Algorithms
AES, HPC, CMACAsymmetric Algorithms
RSA-OAEP, ECDH, ECDSA, ECC, Diffie-HellmanHash functions
SHA1, SHA-1, SHA256, SHA-256, SHA-384, SHA-512, SHA2Schemes
MAC, Key AgreementProtocols
PACERandomness
PRNG, RNGElliptic Curves
brainpoolP256r1, brainpoolP384r1, brainpoolP512r1Block cipher modes
CBCVendor
Infineon, Infineon Technologies AG, IDEMIA, IdemiaSecurity level
EAL 4, EAL 5, EAL 2, EAL 1, EAL5+, EAL6, EAL 5+, EAL 6, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ADV_ARC, ALC_DVS.2, ALC_FLR, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, AVA_VAN.5Security Functional Requirements (SFR)
FCS_COP, FCS_CKM, FCS_RNG, FCS_RNG.1, FPT_ITE.1, FTP_ITCProtection profiles
BSI-CC-PP-0082-V4-, BSI-CC-PP-0082-V4-2019Certificates
BSI-DSZ-CC-1261-2025, BSI-DSZ-CC-1098-2020, BSI-DSZ-CC-1098-2020-MA-02, BSI-DSZ-CC-1110-V7-2024Evaluation facilities
TÃœV Informationstechnik, SRC Security Research & ConsultingSide-channel analysis
side channel, DPA, SPA, malfunction, DFA, fault injection, JILCertification process
being maintained is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, Security Target IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3, Version 1.29, 7 July 2025, IDEMIA Germany GmbH (confidential document) [7] Security Target Lite BSI-DSZ-CC-1261-2025, Security Target Lite IDEMIA_HC_GERMANY_NEO_G2.1_COS, 1_COS, V3, Version 1.8, 30 July 2025, SRC Security Research & Consulting GmbH (confidential document) [10] Configuration List BSI-DSZ-CC-1261-2025, consisting of: Software Release Sheet HC_Germany_G2, V3, Version 3.36, 29 July 2025, IDEMIA Germany GmbH (confidential document) IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3 – External References Document, Version 1.8, 29 July 2025, H13, Revision 5.1, 11 September 2024, Infineon Technologies AG, BSI-DSZ- CC-1110-V7-2024 (confidential document) Security Target Lite of the underlying hardware platform, Common Criteria Public Security Target, ETR-COMP) for BSI-DSZ- CC-1110-V6-2023, Version 3, 2023-12-01, TÜV Informationstechnik GmbH (confidential document) Evaluation Technical Report for Composite Evaluation Addendum (ETR COMP_ADD) for, Version 3, 2024-09-20, TÜV Informationstechnik GmbH (confidential document) [18] Einführung der Gesundheitskarte, Spezifikation des Card Operating System (COS), ElektrischeStandards
FIPS PUB 180-4, FIPS PUB 197, FIPS PUB 186-5, AIS 34, AIS 36, AIS 37, AIS 26, AIS 25, AIS 20, AIS 31, AIS 46, AIS 35, AIS 1, AIS 14, AIS 19, AIS 32, AIS 38, RFC 5639, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065Technical reports
BSI TR-03116-1, BSI TR-03144, BSI TR-03143, BSI 7148File metadata
| Title | Certification Report BSI-DSZ-CC-1261-2025 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH |
| Keywords | "Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Pages | 47 |
Frontpage
| Certificate ID | BSI-DSZ-CC-1261-2025 |
|---|---|
| Certified item | IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3 |
| Certification lab | BSI |
| Developer | IDEMIA Germany GmbH |
References
Outgoing- BSI-DSZ-CC-1098-2020 - archived - IDEMIA_HC_Germany_NEO_G2.1_COS, V1
- BSI-DSZ-CC-1110-V7-2024 - active - Infineon Security Controller IFX_CCI_000003h, 000005h, 000008h, 00000Ch, 000013h, 000014h, 000015h, 00001Ch, 00001Dh, 000021h, 000022h in the design step H13
Security target
security target file processing did not finish successfully.
Show more...
Download pdf:
OK
Convert pdf to text:
OK
Extract keywords:
ERROR
Extracted keywords
Symmetric Algorithms
AES, AES-, AES-192, AES-256, HPC, DES, TDES, CMACAsymmetric Algorithms
RSA2048, RSA4096, ECDH, ECDSA, ECC, Diffie-Hellman, DHHash functions
SHA-1, SHA1, SHA-256, SHA-384, SHA-512, SHA2Schemes
MAC, Key Agreement, Key agreementProtocols
SSL, PACERandomness
TRNG, RND, RNGElliptic Curves
brainpoolP256r1, brainpoolP384r1, brainpoolP512r1Block cipher modes
CBCIC data groups
EF.CardAccessVendor
NXP Semiconductors, Infineon Technologies AG, Infineon, Oberthur Technologies, IDEMIA, Idemia, MorphoSecurity level
EAL 4, EAL4, EAL6, EAL 4 augmented, EAL4 augmented, EAL6 augmentedClaims
O.RND, O.AES, O.PACE_CHIP, O.TDS, T.RND, OE.TOE_AUTHSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_ARC, ADV_TDS.3, ADV_FSP, ADV_IMP, AGD_OPE.1, AGD_OPE, AGD_PRE, AGD_WRP, AGD_PRE.1, ALC_DVS.2, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ALC_DEL, ALC_DVS, ALC_CMS, ALC_CMC, ALC_FLR.1, ATE_FUN.1, ATE_IND.2, ATE_DPT.2, ATE_COV.2, ATE_COV, ATE_DPT.1, AVA_VAN.5, AVA_VAN, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_SAS, FAU_SAS.1, FCS_RNG, FCS_CKM, FCS_COP, FCS_RNG.1, FCS_CKM.4, FCS_RNG.1.1, FCS_RNG.1.2, FCS_CKM.1, FCS_COP.1, FCS_CKM.2, FCS_CKM.4.1, FDP_SDC, FDP_SDI, FDP_ITT, FDP_IFC, FDP_ACC, FDP_ACF, FDP_RIP.1, FDP_SDI.2, FDP_RIP, FDP_UCT, FDP_UIT, FDP_ACC.1, FDP_ACF.1, FDP_IFC.1, FDP_ITT.1, FDP_SDC.1, FDP_UCT.1, FDP_UIT.1, FDP_RIP.1.1, FDP_SDI.1, FDP_SDI.2.1, FDP_SDI.2.2, FDP_ITC.1, FDP_ITC.2, FIA_API, FIA_API.1, FIA_API.1.1, FIA_AFL, FIA_ATD.1, FIA_SOS.1, FIA_UAU.1, FIA_UAU.4, FIA_UAU.5, FIA_UAU.6, FIA_UID.1, FIA_USB.1, FIA_USB, FIA_UID, FIA_UAU, FIA_ATD, FIA_SOS.1.1, FIA_AFL.1, FIA_ATD.1.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.6.1, FIA_UID.1.1, FIA_UID.1.2, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FMT_LIM, FMT_MSA, FMT_SMF, FMT_SMR.1, FMT_MSA.3, FMT_SMF.1, FMT_MTD, FMT_LIM.1, FMT_LIM.2, FMT_MSA.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMR, FMT_SMF.1.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MTD.1, FPT_EMS, FPT_ITE, FPT_TST.2, FPT_EMS.1, FPT_EMS.1.1, FPT_EMS.1.2, FPT_ITE.1, FPT_ITE.2, FPT_ITE.1.1, FPT_ITE.1.2, FPT_ITE.2.1, FPT_ITE.2.2, FPT_FLS, FPT_PHP, FPT_ITT, FPT_TST, FPT_FLS.1, FPT_TDC.1, FPT_TST.1, FPT_ITT.1, FPT_PHP.3, FPT_FLS.1.1, FPT_TDC.1.1, FPT_TDC.1.2, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FRU_FLT, FRU_FLT.2, FTP_ITC, FTP_ITC.1, FTP_TRP.1Protection profiles
BSI-CC-PP-0084-2014, BSI-CC-PP-0084-, BSI-CC-PP-0082-V4, BSI-PP-0084-2014, BSI-CC-PP-0035-2007, BSI-CC-PP-0082-, BSI-CC-PP- 0082-V4, BSI-CC-PP- 0084-2014Certificates
BSI-DSZ-CC-1261, BSI-DSZ-CC-1110-V7-2024, BSI-DSZ-CC-1110-V3-2020Evaluation facilities
SRC Security Research & ConsultingSide-channel analysis
Leak-Inherent, Physical Probing, side channel, SPA, DPA, timing attacks, Malfunction, malfunction, DFA, Bleichenbacher attack, JILStandards
FIPS PUB 197, FIPS PUB 180-4, FIPS180-4, FIPS 180-4, FIPS 197, NIST SP 800-38B, PKCS #1, PKCS #3, PKCS#3, PKCS#1, AIS31, RFC 5639, RFC5639, ISO/IEC 14443, ISO/IEC 7816-3, ISO/IEC 7816, ISO/IEC 14888-3, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004Technical reports
BSI TR-03116-1, BSI TR-3106, BSI TR-03143References
Outgoing- BSI-DSZ-CC-1110-V7-2024 - active - Infineon Security Controller IFX_CCI_000003h, 000005h, 000008h, 00000Ch, 000013h, 000014h, 000015h, 00001Ch, 00001Dh, 000021h, 000022h in the design step H13
- BSI-DSZ-CC-1110-V3-2020 - archived - Infineon Security Controller IFX_CCI_000003h, 000005h, 000008h, 00000Ch, 000013h, 000014h, 000015h, 00001Ch, 00001Dh, 000021h, 000022h in the design step H13 and including optional software libraries and dedicated firmware in several versions
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.Certificate ID
BSI-DSZ-CC-1261-2025Extracted SARs
ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, AGD_OPE.1, AGD_PRE.1, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_DVS.2, ALC_FLR.1, ALC_LCD.1, ALC_TAT.1, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1, ATE_COV.2, ATE_DPT.2, ATE_FUN.1, ATE_IND.2, AVA_VAN.5Scheme data
| Cert Id | BSI-DSZ-CC-1261-2025 | |
|---|---|---|
| Product | IDEMIA_HC_Germany_NEO_G2.1_COS, V3 | |
| Vendor | IDEMIA Germany GmbH | |
| Certification Date | 06.08.2025 | |
| Category | eHealth | |
| Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/1261.html | |
| Enhanced | ||
| Product | IDEMIA_HC_Germany_NEO_G2.1_COS, V3 | |
| Applicant | IDEMIA Germany GmbH Konrad-Zuse-Ring 1 24220 Flintbek | |
| Evaluation Facility | SRC Security Research & Consulting GmbH | |
| Assurance Level | EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5 | |
| Protection Profile | Card Operating System Generation 2 (PP COS G2), Version 1.9, 18 November 2014, BSI-CC-PP-0082-V2-2014 | |
| Certification Date | 06.08.2025 | |
| Expiration Date | 05.08.2030 | |
| Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261a_pdf.pdf?__blob=publicationFile&v=2 | |
| Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261b_pdf.pdf?__blob=publicationFile&v=2 | |
| Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261c_pdf.pdf?__blob=publicationFile&v=2 | |
| Description | The Target of Evaluation (TOE) is the product IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3 developed by IDEMIA Germany GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for specific card types and applications of the card generation G2 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional packages "RSA Key Generation", "Contactless Interface" and "Logical Channels". The TOE uses from the Protection Profile PP-0082-V4 the base part together with the corresponding optional packages. The present certification procedure is a re-certification on base of the certificate BSI-DSZ-CC-1098-2020 and the two maintenance procedures BSI-DSZ-CC-1098-2020-MA-01 and BSI-DSZ-CC-1098-2020-MA-02 with focus on: the update of the CC certificate of the TOE’s underlying IC, the improvement of the TOE’s cryptographic implementation, the renewal of the vulnerability analysis and valuation, the integration of patch code into the operating system code, the changes in the life-cycle model, the renewal of site audits and site certificates for development and production, and the corresponding update of the Security Target and user guidance documentation. | |
| Subcategory | Smartcards | |
References
Loading...
Updates Feed
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1261c_pdf.pdf",
"dgst": "b5d38444a9575bd5",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1261-2025",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"eal": "EAL4+",
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 2
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"2.1"
]
},
"indirect_transitive_cves": null,
"next_certificates": null,
"prev_certificates": null,
"protection_profiles": {
"_type": "Set",
"elements": [
"af9c3335f79dec6f"
]
},
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1098-2020",
"BSI-DSZ-CC-1110-V7-2024"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1110-2019",
"BSI-DSZ-CC-0891-2015",
"BSI-DSZ-CC-1098-2020",
"BSI-DSZ-CC-0891-V2-2016",
"BSI-DSZ-CC-0945-2017",
"BSI-DSZ-CC-1110-V4-2021",
"BSI-DSZ-CC-0782-2012",
"BSI-DSZ-CC-1110-V6-2023",
"BSI-DSZ-CC-1110-V3-2020",
"BSI-DSZ-CC-0945-V3-2018",
"BSI-DSZ-CC-0945-V2-2018",
"BSI-DSZ-CC-1110-V5-2022",
"BSI-DSZ-CC-1110-V2-2019",
"BSI-DSZ-CC-1110-V7-2024"
]
}
},
"scheme_data": {
"category": "eHealth",
"cert_id": "BSI-DSZ-CC-1261-2025",
"certification_date": "2025-08-06",
"enhanced": {
"applicant": "IDEMIA Germany GmbH Konrad-Zuse-Ring 1 24220 Flintbek",
"assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261c_pdf.pdf?__blob=publicationFile\u0026v=2",
"certification_date": "2025-08-06",
"description": "The Target of Evaluation (TOE) is the product IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3 developed by IDEMIA Germany GmbH. The TOE is a smart card product according to the G2 Card Operating System (G2-COS) specification from gematik. The TOE is intended to be used as a card operating system platform for specific card types and applications of the card generation G2 in the framework of the German health care system, and therefore implements the mandatory part of the G2-COS specification with the base functionality of the operating system platform and additionally the functional packages \"RSA Key Generation\", \"Contactless Interface\" and \"Logical Channels\". The TOE uses from the Protection Profile PP-0082-V4 the base part together with the corresponding optional packages. The present certification procedure is a re-certification on base of the certificate BSI-DSZ-CC-1098-2020 and the two maintenance procedures BSI-DSZ-CC-1098-2020-MA-01 and BSI-DSZ-CC-1098-2020-MA-02 with focus on: the update of the CC certificate of the TOE\u2019s underlying IC, the improvement of the TOE\u2019s cryptographic implementation, the renewal of the vulnerability analysis and valuation, the integration of patch code into the operating system code, the changes in the life-cycle model, the renewal of site audits and site certificates for development and production, and the corresponding update of the Security Target and user guidance documentation.",
"evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
"expiration_date": "2030-08-05",
"product": "IDEMIA_HC_Germany_NEO_G2.1_COS, V3",
"protection_profile": "Card Operating System Generation 2 (PP COS G2), Version 1.9, 18 November 2014, BSI-CC-PP-0082-V2-2014",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261a_pdf.pdf?__blob=publicationFile\u0026v=2",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1200/1261b_pdf.pdf?__blob=publicationFile\u0026v=2"
},
"product": "IDEMIA_HC_Germany_NEO_G2.1_COS, V3",
"subcategory": "Smartcards",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Gesundheitswesen_SmartCards/1261.html",
"vendor": "IDEMIA Germany GmbH"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1110-V3-2020",
"BSI-DSZ-CC-1110-V7-2024"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1110-V3-2020",
"BSI-DSZ-CC-1110-V7-2024"
]
}
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "IDEMIA Germany GmbH",
"manufacturer_web": "https://www.idemia.com",
"name": "IDEMIA_HC_Germany_NEO_G2.1_COS, V3",
"not_valid_after": "2030-08-05",
"not_valid_before": "2025-08-06",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1261c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1261-2025": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0082-V4-": 1
}
},
"cc_sar": {
"ALC": {
"ALC_DVS.2": 1
},
"ATE": {
"ATE_DPT.2": 1
},
"AVA": {
"AVA_VAN.5": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 1,
"EAL 4 augmented": 1,
"EAL 5": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Idemia": {
"IDEMIA": 1
}
},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH",
"/Title": "Certificate BSI-DSZ-CC-1261-2025",
"pdf_file_size_bytes": 237961,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1261a_pdf.pdf",
"report_frontpage": {
"DE": {
"cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2 and AVA_VAN.5 valid until: 5 August 2030 SOGIS Recognition Agreement",
"cc_version": "PP conformant Common Criteria Part 2 extended",
"cert_id": "BSI-DSZ-CC-1261-2025",
"cert_item": "IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3",
"cert_lab": "BSI",
"developer": "IDEMIA Germany GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
],
"ref_protection_profiles": "Card Operating System Generation 2 (PP COS G2), Version 2.1, 10 July 2019, BSI-CC-PP-0082-V4- 2019"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 5
},
"ECDH": {
"ECDH": 9
},
"ECDSA": {
"ECDSA": 23
}
},
"FF": {
"DH": {
"Diffie-Hellman": 1
}
},
"RSA": {
"RSA-OAEP": 1
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1098-2020": 3,
"BSI-DSZ-CC-1098-2020-MA-02": 2,
"BSI-DSZ-CC-1110-V7-2024": 6,
"BSI-DSZ-CC-1261-2025": 29
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0082-V4-": 1,
"BSI-CC-PP-0082-V4-2019": 3
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 1
},
"ALC": {
"ALC_CMC.4": 1,
"ALC_CMS.4": 1,
"ALC_DEL.1": 1,
"ALC_DVS.2": 5,
"ALC_FLR": 2,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ATE": {
"ATE_DPT.2": 4
},
"AVA": {
"AVA_VAN.5": 4
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 3,
"EAL 4": 5,
"EAL 4 augmented": 3,
"EAL 5": 4,
"EAL 5+": 1,
"EAL 6": 1,
"EAL5+": 1,
"EAL6": 1
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM": 6,
"FCS_COP": 49,
"FCS_RNG": 4,
"FCS_RNG.1": 1
},
"FPT": {
"FPT_ITE.1": 1
},
"FTP": {
"FTP_ITC": 3
}
},
"certification_process": {
"ConfidentialDocument": {
"1_COS, V3, Version 1.8, 30 July 2025, SRC Security Research \u0026 Consulting GmbH (confidential document) [10] Configuration List BSI-DSZ-CC-1261-2025, consisting of: Software Release Sheet HC_Germany_G2": 1,
"ETR-COMP) for BSI-DSZ- CC-1110-V6-2023, Version 3, 2023-12-01, T\u00dcV Informationstechnik GmbH (confidential document) Evaluation Technical Report for Composite Evaluation Addendum (ETR COMP_ADD) for": 1,
"H13, Revision 5.1, 11 September 2024, Infineon Technologies AG, BSI-DSZ- CC-1110-V7-2024 (confidential document) Security Target Lite of the underlying hardware platform, Common Criteria Public Security Target": 1,
"Security Target IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3, Version 1.29, 7 July 2025, IDEMIA Germany GmbH (confidential document) [7] Security Target Lite BSI-DSZ-CC-1261-2025, Security Target Lite IDEMIA_HC_GERMANY_NEO_G2.1_COS": 1,
"V3, Version 3.36, 29 July 2025, IDEMIA Germany GmbH (confidential document) IDEMIA_HC_GERMANY_NEO_G2.1_COS, V3 \u2013 External References Document, Version 1.8, 29 July 2025": 1,
"Version 3, 2024-09-20, T\u00dcV Informationstechnik GmbH (confidential document) [18] Einf\u00fchrung der Gesundheitskarte, Spezifikation des Card Operating System (COS), Elektrische": 1,
"being maintained is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 13
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 25
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
},
"MAC": {
"MAC": 3
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 9,
"brainpoolP384r1": 9,
"brainpoolP512r1": 9
}
},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 3
},
"TUV": {
"T\u00dcV Informationstechnik": 2
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 2,
"SHA1": 1
},
"SHA2": {
"SHA-256": 11,
"SHA-384": 4,
"SHA-512": 4,
"SHA2": 1,
"SHA256": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"PRNG": 1
},
"RNG": {
"RNG": 3
}
},
"side_channel_analysis": {
"FI": {
"DFA": 1,
"fault injection": 1,
"malfunction": 1
},
"SCA": {
"DPA": 1,
"SPA": 1,
"side channel": 1
},
"other": {
"JIL": 6
}
},
"standard_id": {
"BSI": {
"AIS 1": 1,
"AIS 14": 1,
"AIS 19": 1,
"AIS 20": 3,
"AIS 25": 4,
"AIS 26": 4,
"AIS 31": 3,
"AIS 32": 1,
"AIS 34": 4,
"AIS 35": 2,
"AIS 36": 5,
"AIS 37": 3,
"AIS 38": 1,
"AIS 46": 3
},
"FIPS": {
"FIPS PUB 180-4": 1,
"FIPS PUB 186-5": 1,
"FIPS PUB 197": 1
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18045": 4
},
"RFC": {
"RFC 5639": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 31
},
"HPC": {
"HPC": 3
}
},
"constructions": {
"MAC": {
"CMAC": 17
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-03116-1": 1,
"BSI TR-03143": 5,
"BSI TR-03144": 16
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Idemia": {
"IDEMIA": 26,
"Idemia": 1
},
"Infineon": {
"Infineon": 7,
"Infineon Technologies AG": 10
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, Smartcard, eHealth, Card Operating System G2.1, IDEMIA Germany GmbH",
"/Title": "Certification Report BSI-DSZ-CC-1261-2025",
"pdf_file_size_bytes": 478021,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 47
},
"st_filename": "1261b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 12
},
"ECDH": {
"ECDH": 11
},
"ECDSA": {
"ECDSA": 50
}
},
"FF": {
"DH": {
"DH": 8,
"Diffie-Hellman": 4
}
},
"RSA": {
"RSA2048": 1,
"RSA4096": 1
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1110-V3-2020": 1,
"BSI-DSZ-CC-1110-V7-2024": 1,
"BSI-DSZ-CC-1261": 2
}
},
"cc_claims": {
"O": {
"O.AES": 11,
"O.PACE_CHIP": 2,
"O.RND": 10,
"O.TDS": 1
},
"OE": {
"OE.TOE_AUTH": 5
},
"T": {
"T.RND": 8
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP- 0082-V4": 1,
"BSI-CC-PP- 0084-2014": 4,
"BSI-CC-PP-0035-2007": 2,
"BSI-CC-PP-0082-": 2,
"BSI-CC-PP-0082-V4": 4,
"BSI-CC-PP-0084-": 7,
"BSI-CC-PP-0084-2014": 56,
"BSI-PP-0084-2014": 1
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 4,
"ADV_ARC.1": 10,
"ADV_FSP": 2,
"ADV_FSP.4": 6,
"ADV_IMP": 2,
"ADV_IMP.1": 6,
"ADV_TDS.3": 3
},
"AGD": {
"AGD_OPE": 5,
"AGD_OPE.1": 6,
"AGD_PRE": 4,
"AGD_PRE.1": 2,
"AGD_WRP": 1
},
"ALC": {
"ALC_CMC": 2,
"ALC_CMC.4": 1,
"ALC_CMS": 2,
"ALC_CMS.4": 1,
"ALC_DEL": 2,
"ALC_DEL.1": 1,
"ALC_DVS": 2,
"ALC_DVS.2": 13,
"ALC_FLR.1": 1,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.2": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_COV": 2,
"ATE_COV.2": 1,
"ATE_DPT.1": 1,
"ATE_DPT.2": 12,
"ATE_FUN.1": 6,
"ATE_IND.2": 5
},
"AVA": {
"AVA_VAN": 2,
"AVA_VAN.5": 11
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 1,
"EAL 4 augmented": 1,
"EAL4": 15,
"EAL4 augmented": 5,
"EAL6": 1,
"EAL6 augmented": 1
}
},
"cc_sfr": {
"FAU": {
"FAU_SAS": 9,
"FAU_SAS.1": 2
},
"FCS": {
"FCS_CKM": 139,
"FCS_CKM.1": 31,
"FCS_CKM.2": 8,
"FCS_CKM.4": 49,
"FCS_CKM.4.1": 1,
"FCS_COP": 236,
"FCS_COP.1": 18,
"FCS_RNG": 44,
"FCS_RNG.1": 20,
"FCS_RNG.1.1": 3,
"FCS_RNG.1.2": 2
},
"FDP": {
"FDP_ACC": 142,
"FDP_ACC.1": 46,
"FDP_ACF": 132,
"FDP_ACF.1": 44,
"FDP_IFC": 8,
"FDP_IFC.1": 14,
"FDP_ITC.1": 27,
"FDP_ITC.2": 27,
"FDP_ITT": 8,
"FDP_ITT.1": 2,
"FDP_RIP": 11,
"FDP_RIP.1": 22,
"FDP_RIP.1.1": 1,
"FDP_SDC": 9,
"FDP_SDC.1": 2,
"FDP_SDI": 9,
"FDP_SDI.1": 1,
"FDP_SDI.2": 33,
"FDP_SDI.2.1": 1,
"FDP_SDI.2.2": 1,
"FDP_UCT": 9,
"FDP_UCT.1": 3,
"FDP_UIT": 9,
"FDP_UIT.1": 4
},
"FIA": {
"FIA_AFL": 25,
"FIA_AFL.1": 4,
"FIA_API": 16,
"FIA_API.1": 20,
"FIA_API.1.1": 2,
"FIA_ATD": 13,
"FIA_ATD.1": 29,
"FIA_ATD.1.1": 1,
"FIA_SOS.1": 10,
"FIA_SOS.1.1": 1,
"FIA_UAU": 49,
"FIA_UAU.1": 27,
"FIA_UAU.1.1": 3,
"FIA_UAU.1.2": 1,
"FIA_UAU.4": 14,
"FIA_UAU.5": 18,
"FIA_UAU.5.1": 1,
"FIA_UAU.5.2": 1,
"FIA_UAU.6": 13,
"FIA_UAU.6.1": 1,
"FIA_UID": 15,
"FIA_UID.1": 28,
"FIA_UID.1.1": 3,
"FIA_UID.1.2": 1,
"FIA_USB": 26,
"FIA_USB.1": 28,
"FIA_USB.1.1": 1,
"FIA_USB.1.2": 1,
"FIA_USB.1.3": 2
},
"FMT": {
"FMT_LIM": 21,
"FMT_LIM.1": 2,
"FMT_LIM.2": 2,
"FMT_MSA": 95,
"FMT_MSA.1": 12,
"FMT_MSA.3": 44,
"FMT_MSA.3.1": 1,
"FMT_MSA.3.2": 1,
"FMT_MTD": 49,
"FMT_MTD.1": 4,
"FMT_SMF": 8,
"FMT_SMF.1": 57,
"FMT_SMF.1.1": 1,
"FMT_SMR": 12,
"FMT_SMR.1": 42,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_EMS": 15,
"FPT_EMS.1": 16,
"FPT_EMS.1.1": 3,
"FPT_EMS.1.2": 3,
"FPT_FLS": 9,
"FPT_FLS.1": 17,
"FPT_FLS.1.1": 1,
"FPT_ITE": 22,
"FPT_ITE.1": 17,
"FPT_ITE.1.1": 2,
"FPT_ITE.1.2": 2,
"FPT_ITE.2": 20,
"FPT_ITE.2.1": 5,
"FPT_ITE.2.2": 2,
"FPT_ITT": 8,
"FPT_ITT.1": 2,
"FPT_PHP": 8,
"FPT_PHP.3": 3,
"FPT_TDC.1": 11,
"FPT_TDC.1.1": 1,
"FPT_TDC.1.2": 1,
"FPT_TST": 9,
"FPT_TST.1": 14,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1,
"FPT_TST.2": 3
},
"FRU": {
"FRU_FLT": 8,
"FRU_FLT.2": 2
},
"FTP": {
"FTP_ITC": 22,
"FTP_ITC.1": 13,
"FTP_TRP.1": 4
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 5
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 173
},
"TLS": {
"SSL": {
"SSL": 1
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1,
"Key agreement": 1
},
"MAC": {
"MAC": 34
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 3,
"brainpoolP384r1": 3,
"brainpoolP512r1": 2
}
},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 1
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 2,
"SHA1": 1
},
"SHA2": {
"SHA-256": 11,
"SHA-384": 5,
"SHA-512": 3,
"SHA2": 1
}
}
},
"ic_data_group": {
"EF": {
"EF.CardAccess": 1
}
},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RND": 18,
"RNG": 37
},
"TRNG": {
"TRNG": 4
}
},
"side_channel_analysis": {
"FI": {
"DFA": 2,
"Malfunction": 19,
"malfunction": 1
},
"SCA": {
"DPA": 3,
"Leak-Inherent": 21,
"Physical Probing": 2,
"SPA": 3,
"side channel": 1,
"timing attacks": 1
},
"other": {
"Bleichenbacher attack": 1,
"JIL": 5
}
},
"standard_id": {
"BSI": {
"AIS31": 4
},
"CC": {
"CCMB-2017-04-001": 3,
"CCMB-2017-04-002": 2,
"CCMB-2017-04-003": 2,
"CCMB-2017-04-004": 2
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 3,
"FIPS PUB 180-4": 1,
"FIPS PUB 197": 1,
"FIPS180-4": 1
},
"ISO": {
"ISO/IEC 14443": 6,
"ISO/IEC 14888-3": 1,
"ISO/IEC 7816": 4,
"ISO/IEC 7816-3": 2
},
"NIST": {
"NIST SP 800-38B": 1
},
"PKCS": {
"PKCS #1": 1,
"PKCS #3": 1,
"PKCS#1": 1,
"PKCS#3": 3
},
"RFC": {
"RFC 5639": 1,
"RFC5639": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 78,
"AES-": 1,
"AES-192": 1,
"AES-256": 1
},
"HPC": {
"HPC": 1
}
},
"DES": {
"3DES": {
"TDES": 17
},
"DES": {
"DES": 4
}
},
"constructions": {
"MAC": {
"CMAC": 41
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03116-1": 1,
"BSI TR-03143": 3,
"BSI TR-3106": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Idemia": {
"IDEMIA": 10,
"Idemia": 24
},
"Infineon": {
"Infineon": 4,
"Infineon Technologies AG": 15
},
"Morpho": {
"Morpho": 1
},
"NXP": {
"NXP Semiconductors": 1
},
"Oberthur": {
"Oberthur Technologies": 1
}
},
"vulnerability": {}
},
"st_metadata": null
},
"protection_profile_links": {
"_type": "Set",
"elements": [
"https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0082V4b_pdf.pdf"
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1261a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"ALC_DVS.2",
"ATE_DPT.2",
"EAL4+",
"AVA_VAN.5"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1261b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"json_hash": null,
"pdf_hash": "2961ebe6b98acf0cb199f3a624c0ed8a42762a5188c1b67a622a4a115983ea18",
"txt_hash": "0ccd218e0b93911796b0747381b0428c11c0f3ebb95d1ed0777707ff5a55a73c"
},
"report": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"json_hash": null,
"pdf_hash": "520678cee9f1010125adc836dec54cfae3bb95279f7cea9aedd618035051c95b",
"txt_hash": "076209a7aad9f870ad958211e57af14f8aa82d6611340fa805f99eb52c606e4a"
},
"st": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_ok": true,
"download_ok": true,
"extract_ok": false,
"json_hash": null,
"pdf_hash": "0c13b457b281dfffc40b783122cfab20ae49c14d9cbb6f448d802960ed33a869",
"txt_hash": "fb55543019451b1b898b868c03a2bf193f249e5f06b5333873bb005662412a96"
}
},
"status": "active"
}