This page was not yet optimized for use on mobile devices.
TCOS ID Version 3.0 Release 1/P71
CSV information ?
| Status | active |
|---|---|
| Valid from | 18.04.2023 |
| Valid until | 18.04.2028 |
| Scheme | 🇩🇪 DE |
| Manufacturer | Deutsche Telekom Security GmbH |
| Category | ICs, Smart Cards and Smart Card-Related Devices and Systems |
| Security level | ALC_DVS.2, AVA_VAN.5, EAL4+, ATE_DPT.2 |
| Protection profiles |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-1188-2023
Certificate ?
Extracted keywords
Security level
EAL 4, EAL 5, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_DVS.2, ATE_DPT.2, AVA_VAN.5Protection profiles
BSI-CC-PP-0087-V2-2016-MA-01, BSI-CC-PP-0090-2016Certificates
BSI-DSZ-CC-1188-2023Evaluation facilities
Deutsche Telekom SecurityStandards
ISO/IEC 15408, ISO/IEC 18045File metadata
| Title | Certificate BSI-DSZ-CC-1188-2023 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign |
| Keywords | "Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Pages | 1 |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, AES-256, CMACAsymmetric Algorithms
ECDH, ECDSA, ECC, Diffie-HellmanHash functions
SHA-512, SHA-256Schemes
MAC, Key AgreementProtocols
PACERandomness
RNGElliptic Curves
brainpoolP512t1Block cipher modes
CBC, OFBVendor
NXP Semiconductors, NXPSecurity level
EAL 4, EAL 5, EAL 2, EAL 1, EAL5+, EAL6, EAL 5+, EAL 6, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ADV_ARC, ALC_DVS.2, ALC_FLR, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, AVA_VAN.5Security Functional Requirements (SFR)
FCS_COP, FCS_CKM, FCS_RND, FIA_API, FIA_UAU, FTP_ITCProtection profiles
BSI-CC-PP-0087-V2-2016-MA-01, BSI-CC-PP-0090-2016, BSI-CC-PP-0056-V2-2012-MA-02, BSI-CC-PP-0086-2015, BSI-CC-PP-0068-V2-2011-MA-01, BSI-CC-PP-0087-V2-, BSI-CC-PP-0059-2009-MA-02, BSI-CC-PP-0068-V2-Certificates
BSI-DSZ-CC-1188-2023, BSI-DSZ-CC-1149-2022, BSI-DSZ-CC-1149-2022-MA-01, BSI-DSZ-CC-1188, BSI-DSZ-CC-S-0208-2022Evaluation facilities
TÃœV Informationstechnik, Deutsche Telekom Security, SRC Security Research & ConsultingCertification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, ID Version 3.0 Release 1/P71, Version 1.1, 05 April 2023, SRC Security Research & Consulting GmbH (confidential document) [14] Configuration List BSI-DSZ-CC-1188, Konfigurationsliste von TCOS ID Version 3.0 Release 1, P71D600, Version 1.0, 28 March 2023, Deutsche Telekom Security GmbH (confidential document) [15] TCOS ID card Version 3.0 Release 1, Guidance Document – Common Part, Guidance Documentation, Evaluation (ETR COMP), BSI-DSZ-CC- 1149, Version 3, 10 May 2022, TÜV Informationstechnik GmbH (confidential document) [23] Certification Report BSI-DSZ-CC-S-0208-2022 for Bundesdruckerei GmbH manufacturing site for, Zufallszahlengenerierung in TCOS, Version 1.4, 13 January 2023, Deutsche Telekom Security GmbH (confidential document) [UiF] Spezifikation ‘Update im Feld’ aus Applikationssicht, Version 0.12, 04 August 2022, Deutsche, Security GmbH (confidential document) Note: End of report 38 / 38Side-channel analysis
side channel, malfunction, fault injection, deep learning, JILCertification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, ID Version 3.0 Release 1/P71, Version 1.1, 05 April 2023, SRC Security Research & Consulting GmbH (confidential document) [14] Configuration List BSI-DSZ-CC-1188, Konfigurationsliste von TCOS ID Version 3.0 Release 1, P71D600, Version 1.0, 28 March 2023, Deutsche Telekom Security GmbH (confidential document) [15] TCOS ID card Version 3.0 Release 1, Guidance Document – Common Part, Guidance Documentation, Evaluation (ETR COMP), BSI-DSZ-CC- 1149, Version 3, 10 May 2022, TÜV Informationstechnik GmbH (confidential document) [23] Certification Report BSI-DSZ-CC-S-0208-2022 for Bundesdruckerei GmbH manufacturing site for, Zufallszahlengenerierung in TCOS, Version 1.4, 13 January 2023, Deutsche Telekom Security GmbH (confidential document) [UiF] Spezifikation ‘Update im Feld’ aus Applikationssicht, Version 0.12, 04 August 2022, Deutsche, Security GmbH (confidential document) Note: End of report 38 / 38Standards
FIPS186, FIPS197, FIPS180, FIPS PUB 180-4, AIS 34, AIS 36, AIS 37, AIS 26, AIS 25, AIS 20, AIS 31, AIS 46, AIS 1, AIS 14, AIS 19, AIS 23, AIS 32, AIS 38, AIS31, AIS20, RFC 5639, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ICAOTechnical reports
BSI TR-03110, BSI TR-03116-2, BSI TR-02102-1, BSI TR-03116, BSI 7148File metadata
| Title | Certification Report BSI-DSZ-CC-1188-2023 |
|---|---|
| Subject | Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign |
| Keywords | "Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Pages | 38 |
Frontpage
| Certificate ID | BSI-DSZ-CC-1188-2023 |
|---|---|
| Certified item | TCOS ID Version 3.0 Release 1/P71 |
| Certification lab | BSI |
| Developer | Deutsche Telekom Security GmbH |
References
Outgoing- BSI-DSZ-CC-1149-2022 - active - NXP Secure Smart Card Controller N7122 with IC Dedicated Software and Crypto Library (R1)
Security target ?
Extracted keywords
Symmetric Algorithms
AES, AES-256, 3DES, Triple-DES, TDES, KMAC, CMACAsymmetric Algorithms
ECDH, ECDSA, ECC, Diffie-Hellman, DH, DSAHash functions
SHA-1, SHA-224, SHA-256, SHA-384, SHA-512Schemes
MAC, Key AgreementProtocols
PACERandomness
RND, RNGElliptic Curves
P-256, P-192, P-384, NIST P-256, brainpoolP192r1, brainpoolP192t1, brainpoolP224r1, brainpoolP224t1, brainpoolP256r1, brainpoolP256t1, brainpoolP320r1, brainpoolP320t1, brainpoolP384r1, brainpoolP384t1, brainpoolP512r1, brainpoolP512t1Block cipher modes
CBC, CTR, OFBIC data groups
EF.DG3, EF.DG4, EF.DG14, EF.DG1, EF.DG16, EF.DG2, EF.SOD, EF.ChipSecurityVendor
NXP, NXP SemiconductorsSecurity level
EAL4, EAL 6+, EAL 4, EAL 6, EAL4 augmented, EAL 4 augmented, EAL 6 augmentedClaims
O.RND, O.AES, O.TDES, O.PUF, O.RSA, O.ECC, T.RND, A.CGA, A.SCA, OE.HID_VADSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_TDS.3, ADV_FUN.1, ADV_FSP.4, ADV_IMP.1, ADV_ARC, ADV_FSP, AGD_PRE.1, AGD_OPE.1, AGD_OPE, ALC_DVS.2, ALC_DEL.1, ALC_DEL, ALC_DVS, ALC_CMS, ALC_CMC, ALC_FLR.1, ALC_CMC.4, ALC_CMS.4, ALC_LCD.1, ALC_TAT.1, ATE_DPT.2, ATE_DPT.1, ATE_COV, ATE_FUN, ATE_IND, ATE_DPT.3, ATE_COV.2, ATE_FUN.1, AVA_VAN.5, AVA_VAN, ASE_TSS.2Security Functional Requirements (SFR)
FAU_SAS, FAU_SAS.1, FAU_SAS.1.1, FCS_RND, FCS_RND.1, FCS_RND.1.1, FCS_CKM, FCS_COP, FCS_CKM.1, FCS_CKM.2, FCS_COP.1, FCS_CKM.4, FCS_RNG, FDP_ACF, FDP_ACF.1, FDP_RIP, FDP_SDI, FDP_ITC.1, FDP_ITC.2, FDP_RIP.1, FDP_ACC, FDP_UCT, FDP_UIT, FDP_IFC, FDP_IFF, FDP_ACC.1, FDP_IFC.1, FDP_UCT.1, FDP_UIT.1, FDP_IFF.1, FDP_SDI.1, FDP_SDI.2, FDP_SDC.1, FDP_ITT.1, FIA_API, FIA_UAU, FIA_API.1, FIA_API.1.1, FIA_AFL, FIA_UID, FIA_UIA, FIA_UAU.1, FIA_AFL.1, FIA_UID.1, FIA_UAU.4, FIA_UAU.5, FIA_UAU.6, FMT_LIM, FMT_SMR.1, FMT_LIM.1, FMT_LIM.2, FMT_LIM.1.1, FMT_LIM.2.1, FMT_SMR, FMT_MTD, FMT_MTD.3, FMT_MSA.3, FMT_MSA.1, FMT_SMF.1.1, FMT_MSA, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMF, FMT_MOF, FMT_SMF.1, FMT_MTD.1, FMT_MOF.1, FMT_MSA.4, FPT_EMS, FPT_EMS.1, FPT_EMS.1.1, FPT_EMS.1.2, FPT_FLS.1, FPT_TST, FPT_TST.1, FPT_FLS, FPT_PHP, FPT_PHP.3, FPT_PHP.1, FPT_ITT.1, FRU_FLT.2, FTP_ITC, FTP_ITC.1, FTP_TRP.1Protection profiles
BSI-CC-PP-0087-V2-2016-MA-01, BSI-CC-PP-0090-, BSI-CC-PP-0056-V2-, BSI-CC-PP- 0086-2015, BSI-CC-PP-0068-V2-2011-MA-01, BSI-CC-PP-0059-2009-MA-02, BSI-CC-PP0084, BSI-CC-PP0087, BSI-CC-PP-0084-2014, BSI-PP-0087, BSI-PP-0055-2009, BSI-PP-0056-V2-2012-MA02, BSI-CC-PP-0086-2015, BSI-CC-PP-0090-2016, BSI-CC-PP-0068-V2-2011-MA01Certificates
BSI-DSZ-CC-1188, BSI-DSZ-CC-1149-2022, BSI-DSZ-CC-1149-2022-MA-01Evaluation facilities
Deutsche Telekom SecurityCertification process
out of scope, For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf, For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf. [EACTR Part 3, B.7]). 13 For the ePass Application, the, by these terminals was given already in chapter 1.3.3. 71 Others than above listed terminals are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are not supported by the TOESide-channel analysis
Leak-Inherent, physical probing, DPA, Physical Tampering, Physical tampering, physical tampering, Malfunction, malfunction, fault injection, reverse engineeringCertification process
out of scope, For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf, For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf. [EACTR Part 3, B.7]). 13 For the ePass Application, the, by these terminals was given already in chapter 1.3.3. 71 Others than above listed terminals are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are not supported by the TOEStandards
FIPS186, FIPS 180-4, FIPS180, FIPS197, FIPS PUB 180-4, FIPS PUB 186-4, PKCS#3, AIS36, AIS31, AIS 31, AIS 36, RFC5639, RFC 2631, RFC 5639, ICAO, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2012-09-004, CCMB-2017-04-004Technical reports
BSI TR-03110File metadata
| Title | TCOS ID Version 3.0 Release 1 (NXP) |
|---|---|
| Subject | TCOS ID Version 3.0 Release 1 |
| Keywords | Electronic Identity Card, Residence Permit Card, eID, eIDAS, Passport |
| Author | Markus Blick, Ernst-G. Giessman |
| Pages | 152 |
References
Outgoing- BSI-DSZ-CC-1149-2022 - active - NXP Secure Smart Card Controller N7122 with IC Dedicated Software and Crypto Library (R1)
Heuristics ?
Certificate ID: BSI-DSZ-CC-1188-2023
Extracted SARs
ATE_DPT.2, ALC_TAT.1, ADV_TDS.3, ALC_DVS.2, ALC_FLR.1, ALC_CMC.4, ALC_LCD.1, ATE_COV.2, ATE_FUN.1, ALC_CMS.4, AGD_OPE.1, ALC_DEL.1, ADV_IMP.1, ADV_ARC.1, AGD_PRE.1, ADV_FUN.1, AVA_VAN.5, ASE_TSS.2, ADV_FSP.4Similar certificates
| Name | Certificate ID | |
|---|---|---|
| TCOS Passport Version 1.0 Release 2 / P5CD072V0Q and TCOS Passport Version 1.0 Release 3 / SLE66CLX641P/m1522-a14 | BSI-DSZ-CC-0445-2007 | Compare |
| TCOS Passport Version 1.0 Release 2 / P5CD072V0Q and TCOS Passport Version 1.0 Release 2 / SLE66CLX641P/m1522-a12 | BSI-DSZ-CC-0362-2006 | Compare |
Scheme data ?
| Cert Id | BSI-DSZ-CC-1188-2023 | |
|---|---|---|
| Product | TCOS ID Version 3.0 Release 1/P71 | |
| Vendor | Deutsche Telekom Security GmbH | |
| Certification Date | 18.04.2023 | |
| Category | Electronic ID documents | |
| Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1188.html | |
| Enhanced | ||
| Product | TCOS ID Version 3.0 Release 1/P71 | |
| Applicant | Deutsche Telekom Security GmbH Untere Industriestraße 20 57250 Netphen | |
| Evaluation Facility | SRC Security Research & Consulting GmbH | |
| Assurance Level | EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5 | |
| Protection Profile | Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP), Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016 | |
| Certification Date | 18.04.2023 | |
| Expiration Date | 17.04.2028 | |
| Entries | [frozendict({'id': 'Machine-Readable'}), frozendict({'id': 'Common'})] | |
| Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188c_pdf.pdf?__blob=publicationFile&v=2 | |
| Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188a_pdf.pdf?__blob=publicationFile&v=2 | |
| Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188b_pdf.pdf?__blob=publicationFile&v=2 | |
| Description | The Target of Evaluation (TOE) is the product TCOS ID Version 3.0 Release 1/P71 provided by Deutsche Telekom Security GmbH, based on the hardware platform P71 (N7122) by NXP Semiconductors GmbH. It is an electronic Identity Card representing a smart card with contactless interface programmed according to the Technical Guideline BSI TR-03110 and the ICAO specifications. The evaluation of the product is based on the Protection Profiles BSI-CC-PP-0087-V2-2016-MA-01 and BSI-CC-PP-0090-2016 (including further referenced Protections Profiles). Additionally, the TOE meets the requirements of the Technical Guideline BSI TR-03116-2 as part of the qualification for the use within electronic ID card projects of the Federal Republic of Germany. The smart card provides the following authentication mechanisms: Passive Authentication, Password Authenticated Connection Establishment (PACE), Chip Authentication version 1, 2 and 3, Terminal Authentication version 1 and 2. The smart card contains at least one of the following applications that are all subject of the TOE’s evaluation: • ePassport Application • eID Application • eSign Application Two different major configurations of the TOE exist that only differ in the installed file system or applications respectively: • Passport • ID Document Furthermore, the TOE provides the so-called Update-in-Field mechanism. This secure update mechanism allows to install code-signed updates of the TOE Embedded Software (operating system part) by authorized staff during operational use. The TOE’s evaluation only covers the Update-in-Field mechanism itself, but does not cover any update packages. | |
| Subcategory | IC with applications | |
References ?
Updates ?
-
17.10.2024 The certificate data changed.
Certificate changed
The Protection Profiles of the certificate were updated.
- The following values were removed:
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use', 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0087V2b_pdf.pdf', 'pp_ids': None}]}. - The following values were added:
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use', 'pp_eal': 'EAL4+', 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/pp0087V2b_pdf.pdf', 'pp_ids': {'_type': 'Set', 'elements': ['MR.ED-PP_V2.2']}}]}.
- The following values were removed:
-
22.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'e958d128c6ea4ff389776cd5ca44bd7b9fd7f035f77e1ebe257303e4444c1661', 'txt_hash': 'dffdb6df92784ae39505d3806f654a63c7f07e0a83ea334085a1f9f9d8540e4f'}data. - The cert property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'b3a7eb6449b872c88f1177d1eec4c8550b5483c77f0adfe0352851a38d24d914', 'txt_hash': 'a90e8e6b59c13bbbb836d570af2be0bec7a32560ba45a9b00f02410575f9f4af'}data.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 2069185, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 152, '/Author': 'Markus Blick, Ernst-G. Giessman', '/Keywords': 'Electronic Identity Card, Residence Permit Card, eID, eIDAS, Passport', '/Subject': 'TCOS ID Version 3.0 Release 1', '/Title': 'TCOS ID Version 3.0 Release 1 (NXP)', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}. - The cert_metadata property was set to
{'pdf_file_size_bytes': 232861, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign"', '/Subject': 'Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign', '/Title': 'Certificate BSI-DSZ-CC-1188-2023', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}. - The st_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1188': 1, 'BSI-DSZ-CC-1149-2022': 1, 'BSI-DSZ-CC-1149-2022-MA-01': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0087-V2-2016-MA-01': 2, 'BSI-CC-PP-0090-': 1, 'BSI-CC-PP-0056-V2-': 1, 'BSI-CC-PP- 0086-2015': 1, 'BSI-CC-PP-0068-V2-2011-MA-01': 1, 'BSI-CC-PP-0059-2009-MA-02': 2, 'BSI-CC-PP0084': 1, 'BSI-CC-PP0087': 1, 'BSI-CC-PP-0084-2014': 1, 'BSI-PP-0087': 1, 'BSI-PP-0055-2009': 1, 'BSI-PP-0056-V2-2012-MA02': 1, 'BSI-CC-PP-0086-2015': 1, 'BSI-CC-PP-0090-2016': 1, 'BSI-CC-PP-0068-V2-2011-MA01': 1}}, 'cc_security_level': {'EAL': {'EAL4': 10, 'EAL 6+': 1, 'EAL 4': 1, 'EAL 6': 1, 'EAL4 augmented': 3, 'EAL 4 augmented': 1, 'EAL 6 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 4, 'ADV_TDS.3': 3, 'ADV_FUN.1': 1, 'ADV_FSP.4': 2, 'ADV_IMP.1': 2, 'ADV_ARC': 1, 'ADV_FSP': 1}, 'AGD': {'AGD_PRE.1': 3, 'AGD_OPE.1': 2, 'AGD_OPE': 1}, 'ALC': {'ALC_DVS.2': 7, 'ALC_DEL.1': 2, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_CMS': 1, 'ALC_CMC': 1, 'ALC_FLR.1': 1, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_DPT.2': 5, 'ATE_DPT.1': 1, 'ATE_COV': 1, 'ATE_FUN': 1, 'ATE_IND': 1, 'ATE_DPT.3': 1, 'ATE_COV.2': 1, 'ATE_FUN.1': 1}, 'AVA': {'AVA_VAN.5': 8, 'AVA_VAN': 1}, 'ASE': {'ASE_TSS.2': 1}}, 'cc_sfr': {'FAU': {'FAU_SAS': 21, 'FAU_SAS.1': 7, 'FAU_SAS.1.1': 1}, 'FCS': {'FCS_RND': 13, 'FCS_RND.1': 10, 'FCS_RND.1.1': 1, 'FCS_CKM': 73, 'FCS_COP': 97, 'FCS_CKM.1': 29, 'FCS_CKM.2': 9, 'FCS_COP.1': 29, 'FCS_CKM.4': 31, 'FCS_RNG': 3}, 'FDP': {'FDP_ACF': 59, 'FDP_ACF.1': 51, 'FDP_RIP': 19, 'FDP_SDI': 12, 'FDP_ITC.1': 18, 'FDP_ITC.2': 19, 'FDP_RIP.1': 12, 'FDP_ACC': 44, 'FDP_UCT': 7, 'FDP_UIT': 7, 'FDP_IFC': 5, 'FDP_IFF': 8, 'FDP_ACC.1': 21, 'FDP_IFC.1': 8, 'FDP_UCT.1': 3, 'FDP_UIT.1': 4, 'FDP_IFF.1': 5, 'FDP_SDI.1': 3, 'FDP_SDI.2': 5, 'FDP_SDC.1': 1, 'FDP_ITT.1': 1}, 'FIA': {'FIA_API': 34, 'FIA_UAU': 83, 'FIA_API.1': 10, 'FIA_API.1.1': 1, 'FIA_AFL': 37, 'FIA_UID': 37, 'FIA_UIA': 1, 'FIA_UAU.1': 16, 'FIA_AFL.1': 11, 'FIA_UID.1': 17, 'FIA_UAU.4': 3, 'FIA_UAU.5': 7, 'FIA_UAU.6': 5}, 'FMT': {'FMT_LIM': 31, 'FMT_SMR.1': 39, 'FMT_LIM.1': 21, 'FMT_LIM.2': 17, 'FMT_LIM.1.1': 1, 'FMT_LIM.2.1': 1, 'FMT_SMR': 12, 'FMT_MTD': 123, 'FMT_MTD.3': 5, 'FMT_MSA.3': 8, 'FMT_MSA.1': 6, 'FMT_SMF.1.1': 1, 'FMT_MSA': 34, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_SMF': 28, 'FMT_MOF': 6, 'FMT_SMF.1': 36, 'FMT_MTD.1': 18, 'FMT_MOF.1': 1, 'FMT_MSA.4': 1}, 'FPT': {'FPT_EMS': 23, 'FPT_EMS.1': 17, 'FPT_EMS.1.1': 3, 'FPT_EMS.1.2': 4, 'FPT_FLS.1': 7, 'FPT_TST': 17, 'FPT_TST.1': 12, 'FPT_FLS': 16, 'FPT_PHP': 17, 'FPT_PHP.3': 5, 'FPT_PHP.1': 2, 'FPT_ITT.1': 1}, 'FRU': {'FRU_FLT.2': 1}, 'FTP': {'FTP_ITC': 34, 'FTP_ITC.1': 20, 'FTP_TRP.1': 4}}, 'cc_claims': {'O': {'O.RND': 3, 'O.AES': 1, 'O.TDES': 1, 'O.PUF': 1, 'O.RSA': 1, 'O.ECC': 1}, 'T': {'T.RND': 1}, 'A': {'A.CGA': 2, 'A.SCA': 2}, 'OE': {'OE.HID_VAD': 4}}, 'vendor': {'NXP': {'NXP': 4, 'NXP Semiconductors': 2}}, 'eval_facility': {'DeutscheTelekom': {'Deutsche Telekom Security': 158}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 19, 'AES-256': 1}}, 'DES': {'3DES': {'3DES': 1, 'Triple-DES': 3, 'TDES': 4}}, 'constructions': {'MAC': {'KMAC': 4, 'CMAC': 6}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 15}, 'ECDSA': {'ECDSA': 2}, 'ECC': {'ECC': 6}}, 'FF': {'DH': {'Diffie-Hellman': 9, 'DH': 4}, 'DSA': {'DSA': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 1}, 'SHA2': {'SHA-224': 1, 'SHA-256': 1, 'SHA-384': 1, 'SHA-512': 1}}}, 'crypto_scheme': {'MAC': {'MAC': 9}, 'KA': {'Key Agreement': 2}}, 'crypto_protocol': {'PACE': {'PACE': 167}}, 'randomness': {'RNG': {'RND': 4, 'RNG': 7}}, 'cipher_mode': {'CBC': {'CBC': 3}, 'CTR': {'CTR': 1}, 'OFB': {'OFB': 1}}, 'ecc_curve': {'NIST': {'P-256': 3, 'P-192': 2, 'P-384': 2, 'NIST P-256': 1}, 'Brainpool': {'brainpoolP192r1': 1, 'brainpoolP192t1': 1, 'brainpoolP224r1': 1, 'brainpoolP224t1': 1, 'brainpoolP256r1': 2, 'brainpoolP256t1': 1, 'brainpoolP320r1': 1, 'brainpoolP320t1': 1, 'brainpoolP384r1': 2, 'brainpoolP384t1': 1, 'brainpoolP512r1': 2, 'brainpoolP512t1': 1}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'Leak-Inherent': 6, 'physical probing': 3, 'DPA': 1}, 'FI': {'Physical Tampering': 2, 'Physical tampering': 2, 'physical tampering': 5, 'Malfunction': 6, 'malfunction': 5, 'fault injection': 1}, 'other': {'reverse engineering': 1}}, 'technical_report_id': {'BSI': {'BSI TR-03110': 4}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {'EF': {'EF.DG3': 5, 'EF.DG4': 5, 'EF.DG14': 3, 'EF.DG1': 3, 'EF.DG16': 2, 'EF.DG2': 1, 'EF.SOD': 2, 'EF.ChipSecurity': 1}}, 'standard_id': {'FIPS': {'FIPS186': 7, 'FIPS 180-4': 1, 'FIPS180': 2, 'FIPS197': 3, 'FIPS PUB 180-4': 1, 'FIPS PUB 186-4': 1}, 'PKCS': {'PKCS#3': 8}, 'BSI': {'AIS36': 2, 'AIS31': 2, 'AIS 31': 1, 'AIS 36': 1}, 'RFC': {'RFC5639': 27, 'RFC 2631': 1, 'RFC 5639': 1}, 'ICAO': {'ICAO': 6}, 'CC': {'CCMB-2017-04-001': 2, 'CCMB-2017-04-002': 2, 'CCMB-2017-04-003': 2, 'CCMB-2012-09-004': 1, 'CCMB-2017-04-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 2, ' For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf': 1, ' For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf. [EACTR Part 3, B.7]). 13 For the ePass Application, the': 1, 'by these terminals was given already in chapter 1.3.3. 71 Others than above listed terminals are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are not supported by the TOE': 1}}}. - The cert_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1188-2023': 1}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0087-V2-2016-MA-01': 1, 'BSI-CC-PP-0090-2016': 1}}, 'cc_security_level': {'EAL': {'EAL 4': 1, 'EAL 5': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_DVS.2': 1}, 'ATE': {'ATE_DPT.2': 1}, 'AVA': {'AVA_VAN.5': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'DeutscheTelekom': {'Deutsche Telekom Security': 1}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}. - The st_filename property was set to
1188b_pdf.pdf. - The cert_filename property was set to
1188c_pdf.pdf.
The computed heuristics were updated.
- The st_references property was updated, with the
{'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}}data. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}]}values added.
- The st property was updated, with the
-
17.08.2024 The certificate data changed.
Certificate changed
The report_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188a_pdf.pdf.
The st_link was updated.
- The new value is
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188b_pdf.pdf.
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'd26e49683426ad60c72ac2be876546a30dddd9f8b9212da1ea368b71bf2a88cb', 'txt_hash': 'cfceadfe083c4d884bb0e7b94b4da9bbf4a7c09468d27d96ee4f621e15acaf39'}data. - The st property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data. - The cert property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data.
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 561710, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 38, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/Keywords': '"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign"', '/Subject': 'Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign', '/Title': 'Certification Report BSI-DSZ-CC-1188-2023', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.bsi.bund.de/zertifizierung', 'https://www.commoncriteriaportal.org/', 'https://www.bsi.bund.de/AIS', 'https://www.bsi.bund.de/', 'https://www.sogis.eu/', 'http://www.commoncriteriaportal.org/', 'http://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/zertifizierungsreporte']}}. - The st_metadata property was set to
None. - The cert_metadata property was set to
None. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-1188-2023', 'cert_item': 'TCOS ID Version 3.0 Release 1/P71', 'developer': 'Deutsche Telekom Security GmbH', 'cert_lab': 'BSI', 'ref_protection_profiles': 'Common Criteria Protection Profile Machine- Readable Electronic Documents based on BSI TR- 03110 for Official Use [MR.ED-PP], Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01 Common Criteria PP Configuration Machine Readable Electronic Documents – Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016', 'cc_version': 'PP conformant Common Criteria Part 2 extended', 'cc_security_level': 'Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2, AVA_VAN.5'}}. - The report_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-1188-2023': 21, 'BSI-DSZ-CC-1149-2022': 6, 'BSI-DSZ-CC-1149-2022-MA-01': 5, 'BSI-DSZ-CC-1188': 3, 'BSI-DSZ-CC-S-0208-2022': 2}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0087-V2-2016-MA-01': 1, 'BSI-CC-PP-0090-2016': 4, 'BSI-CC-PP-0056-V2-2012-MA-02': 2, 'BSI-CC-PP-0086-2015': 3, 'BSI-CC-PP-0068-V2-2011-MA-01': 2, 'BSI-CC-PP-0087-V2-': 1, 'BSI-CC-PP-0059-2009-MA-02': 1, 'BSI-CC-PP-0068-V2-': 1}}, 'cc_security_level': {'EAL': {'EAL 4': 5, 'EAL 5': 4, 'EAL 2': 3, 'EAL 1': 1, 'EAL5+': 1, 'EAL6': 1, 'EAL 5+': 1, 'EAL 6': 1, 'EAL 4 augmented': 3}}, 'cc_sar': {'ADV': {'ADV_ARC': 1}, 'ALC': {'ALC_DVS.2': 5, 'ALC_FLR': 2, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1}, 'ATE': {'ATE_DPT.2': 4}, 'AVA': {'AVA_VAN.5': 4}}, 'cc_sfr': {'FCS': {'FCS_COP': 23, 'FCS_CKM': 22, 'FCS_RND': 1}, 'FIA': {'FIA_API': 1, 'FIA_UAU': 6}, 'FTP': {'FTP_ITC': 6}}, 'cc_claims': {}, 'vendor': {'NXP': {'NXP Semiconductors': 10, 'NXP': 11}}, 'eval_facility': {'TUV': {'TÜV Informationstechnik': 1}, 'DeutscheTelekom': {'Deutsche Telekom Security': 19}, 'SRC': {'SRC Security Research & Consulting': 3}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 12, 'AES-256': 1}}, 'constructions': {'MAC': {'CMAC': 4}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 8}, 'ECDSA': {'ECDSA': 4}, 'ECC': {'ECC': 5}}, 'FF': {'DH': {'Diffie-Hellman': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA2': {'SHA-512': 1, 'SHA-256': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 1}, 'KA': {'Key Agreement': 4}}, 'crypto_protocol': {'PACE': {'PACE': 18}}, 'randomness': {'RNG': {'RNG': 6}}, 'cipher_mode': {'CBC': {'CBC': 2}, 'OFB': {'OFB': 2}}, 'ecc_curve': {'Brainpool': {'brainpoolP512t1': 2}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'side channel': 2}, 'FI': {'malfunction': 1, 'fault injection': 1}, 'other': {'deep learning': 1, 'JIL': 5}}, 'technical_report_id': {'BSI': {'BSI TR-03110': 8, 'BSI TR-03116-2': 2, 'BSI TR-02102-1': 1, 'BSI TR-03116': 3, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS186': 12, 'FIPS197': 4, 'FIPS180': 3, 'FIPS PUB 180-4': 1}, 'BSI': {'AIS 34': 4, 'AIS 36': 4, 'AIS 37': 2, 'AIS 26': 4, 'AIS 25': 4, 'AIS 20': 3, 'AIS 31': 3, 'AIS 46': 2, 'AIS 1': 1, 'AIS 14': 1, 'AIS 19': 1, 'AIS 23': 1, 'AIS 32': 1, 'AIS 38': 1, 'AIS31': 2, 'AIS20': 2}, 'RFC': {'RFC 5639': 15}, 'ISO': {'ISO/IEC 15408': 4, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}, 'ICAO': {'ICAO': 15}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, 'ID Version 3.0 Release 1/P71, Version 1.1, 05 April 2023, SRC Security Research & Consulting GmbH (confidential document) [14] Configuration List BSI-DSZ-CC-1188, Konfigurationsliste von TCOS ID Version 3.0 Release 1': 1, 'P71D600, Version 1.0, 28 March 2023, Deutsche Telekom Security GmbH (confidential document) [15] TCOS ID card Version 3.0 Release 1, Guidance Document – Common Part, Guidance Documentation': 1, 'Evaluation (ETR COMP), BSI-DSZ-CC- 1149, Version 3, 10 May 2022, TÜV Informationstechnik GmbH (confidential document) [23] Certification Report BSI-DSZ-CC-S-0208-2022 for Bundesdruckerei GmbH manufacturing site for': 1, 'Zufallszahlengenerierung in TCOS, Version 1.4, 13 January 2023, Deutsche Telekom Security GmbH (confidential document) [UiF] Spezifikation ‘Update im Feld’ aus Applikationssicht, Version 0.12, 04 August 2022, Deutsche': 1, 'Security GmbH (confidential document) Note: End of report 38 / 38': 1}}}. - The st_keywords property was set to
None. - The cert_keywords property was set to
None. - The report_filename property was set to
1188a_pdf.pdf. - The st_filename property was set to
None. - The cert_filename property was set to
None.
The computed heuristics were updated.
- The cert_lab property was set to
['BSI']. - The report_references property was updated, with the
{'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-1149-2022']}}data. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}]}values discarded.
- The new value is
-
12.08.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The report property was updated, with the
{'download_ok': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}data.
The PDF extraction data was updated.
- The report_metadata property was set to
None. - The report_frontpage property was set to
None. - The report_keywords property was set to
None. - The report_filename property was set to
None.
The computed heuristics were updated.
- The cert_lab property was set to
None. - The st_references property was updated, with the
{'directly_referencing': None, 'indirectly_referencing': None}data. - The report_references property was updated, with the
{'directly_referencing': None, 'indirectly_referencing': None}data.
- The report property was updated, with the
-
23.07.2024 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name TCOS ID Version 3.0 Release 1/P71 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188c_pdf.pdf",
"dgst": "cfe95a153cff5649",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1188-2023",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 2
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"3.0"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1149-2022"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1149-2022"
]
}
},
"scheme_data": {
"category": "Electronic ID documents",
"cert_id": "BSI-DSZ-CC-1188-2023",
"certification_date": "18.04.2023",
"enhanced": {
"applicant": "Deutsche Telekom Security GmbH\nUntere Industriestra\u00dfe 20\n57250 Netphen",
"assurance_level": "EAL4+,ALC_DVS.2,ATE_DPT.2,AVA_VAN.5",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188c_pdf.pdf?__blob=publicationFile\u0026v=2",
"certification_date": "18.04.2023",
"description": "The Target of Evaluation (TOE) is the product TCOS ID Version 3.0 Release 1/P71 provided by Deutsche Telekom Security GmbH, based on the hardware platform P71 (N7122) by NXP Semiconductors GmbH. It is an electronic Identity Card representing a smart card with contactless interface programmed according to the Technical Guideline BSI TR-03110 and the ICAO specifications. \n \nThe evaluation of the product is based on the Protection Profiles BSI-CC-PP-0087-V2-2016-MA-01 and BSI-CC-PP-0090-2016 (including further referenced Protections Profiles). Additionally, the TOE meets the requirements of the Technical Guideline BSI TR-03116-2 as part of the qualification for the use within electronic ID card projects of the Federal Republic of Germany.\n \nThe smart card provides the following authentication mechanisms: Passive Authentication, Password Authenticated Connection Establishment (PACE), Chip Authentication version 1, 2 and 3, Terminal Authentication version 1 and 2. \n \nThe smart card contains at least one of the following applications that are all subject of the TOE\u2019s evaluation:\n\u2022 ePassport Application\n\u2022 eID Application\n\u2022 eSign Application\n \nTwo different major configurations of the TOE exist that only differ in the installed file system or applications respectively:\n\u2022 Passport\n\u2022 ID Document\n \nFurthermore, the TOE provides the so-called Update-in-Field mechanism. This secure update mechanism allows to install code-signed updates of the TOE Embedded Software (operating system part) by authorized staff during operational use. The TOE\u2019s evaluation only covers the Update-in-Field mechanism itself, but does not cover any update packages.",
"entries": [
{
"id": "Machine-Readable"
},
{
"id": "Common"
}
],
"evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
"expiration_date": "17.04.2028",
"product": "TCOS ID Version 3.0 Release 1/P71",
"protection_profile": "Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use (MR.ED-PP), Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188a_pdf.pdf?__blob=publicationFile\u0026v=2",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1100/1188b_pdf.pdf?__blob=publicationFile\u0026v=2"
},
"product": "TCOS ID Version 3.0 Release 1/P71",
"subcategory": "IC with applications",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/Hoheitliche_Dokumente-IC_mit_Anwendung/1188.html",
"vendor": "Deutsche Telekom Security GmbH"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1149-2022"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1149-2022"
]
}
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Deutsche Telekom Security GmbH",
"manufacturer_web": "https://www.telekom.de/security",
"name": "TCOS ID Version 3.0 Release 1/P71",
"not_valid_after": "2028-04-18",
"not_valid_before": "2023-04-18",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1188c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1188-2023": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0087-V2-2016-MA-01": 1,
"BSI-CC-PP-0090-2016": 1
}
},
"cc_sar": {
"ALC": {
"ALC_DVS.2": 1
},
"ATE": {
"ATE_DPT.2": 1
},
"AVA": {
"AVA_VAN.5": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 1,
"EAL 4 augmented": 1,
"EAL 5": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"DeutscheTelekom": {
"Deutsche Telekom Security": 1
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign",
"/Title": "Certificate BSI-DSZ-CC-1188-2023",
"pdf_file_size_bytes": 232861,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1188a_pdf.pdf",
"report_frontpage": {
"DE": {
"cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2, ATE_DPT.2, AVA_VAN.5",
"cc_version": "PP conformant Common Criteria Part 2 extended",
"cert_id": "BSI-DSZ-CC-1188-2023",
"cert_item": "TCOS ID Version 3.0 Release 1/P71",
"cert_lab": "BSI",
"developer": "Deutsche Telekom Security GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
],
"ref_protection_profiles": "Common Criteria Protection Profile Machine- Readable Electronic Documents based on BSI TR- 03110 for Official Use [MR.ED-PP], Version 2.0.3, 18 July 2016, BSI-CC-PP-0087-V2-2016-MA-01 Common Criteria PP Configuration Machine Readable Electronic Documents \u2013 Optionales Nachladen (Optional Post-Emission Updates) [MR.ED-ON-PP], Version 0.9.2, 18 August 2016, BSI-CC-PP-0090-2016"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 5
},
"ECDH": {
"ECDH": 8
},
"ECDSA": {
"ECDSA": 4
}
},
"FF": {
"DH": {
"Diffie-Hellman": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1149-2022": 6,
"BSI-DSZ-CC-1149-2022-MA-01": 5,
"BSI-DSZ-CC-1188": 3,
"BSI-DSZ-CC-1188-2023": 21,
"BSI-DSZ-CC-S-0208-2022": 2
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0056-V2-2012-MA-02": 2,
"BSI-CC-PP-0059-2009-MA-02": 1,
"BSI-CC-PP-0068-V2-": 1,
"BSI-CC-PP-0068-V2-2011-MA-01": 2,
"BSI-CC-PP-0086-2015": 3,
"BSI-CC-PP-0087-V2-": 1,
"BSI-CC-PP-0087-V2-2016-MA-01": 1,
"BSI-CC-PP-0090-2016": 4
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 1
},
"ALC": {
"ALC_CMC.4": 1,
"ALC_CMS.4": 1,
"ALC_DEL.1": 1,
"ALC_DVS.2": 5,
"ALC_FLR": 2,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ATE": {
"ATE_DPT.2": 4
},
"AVA": {
"AVA_VAN.5": 4
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 3,
"EAL 4": 5,
"EAL 4 augmented": 3,
"EAL 5": 4,
"EAL 5+": 1,
"EAL 6": 1,
"EAL5+": 1,
"EAL6": 1
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM": 22,
"FCS_COP": 23,
"FCS_RND": 1
},
"FIA": {
"FIA_API": 1,
"FIA_UAU": 6
},
"FTP": {
"FTP_ITC": 6
}
},
"certification_process": {
"ConfidentialDocument": {
"Evaluation (ETR COMP), BSI-DSZ-CC- 1149, Version 3, 10 May 2022, T\u00dcV Informationstechnik GmbH (confidential document) [23] Certification Report BSI-DSZ-CC-S-0208-2022 for Bundesdruckerei GmbH manufacturing site for": 1,
"ID Version 3.0 Release 1/P71, Version 1.1, 05 April 2023, SRC Security Research \u0026 Consulting GmbH (confidential document) [14] Configuration List BSI-DSZ-CC-1188, Konfigurationsliste von TCOS ID Version 3.0 Release 1": 1,
"P71D600, Version 1.0, 28 March 2023, Deutsche Telekom Security GmbH (confidential document) [15] TCOS ID card Version 3.0 Release 1, Guidance Document \u2013 Common Part, Guidance Documentation": 1,
"Security GmbH (confidential document) Note: End of report 38 / 38": 1,
"Zufallszahlengenerierung in TCOS, Version 1.4, 13 January 2023, Deutsche Telekom Security GmbH (confidential document) [UiF] Spezifikation \u2018Update im Feld\u2019 aus Applikationssicht, Version 0.12, 04 August 2022, Deutsche": 1,
"being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 2
},
"OFB": {
"OFB": 2
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 18
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 4
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP512t1": 2
}
},
"eval_facility": {
"DeutscheTelekom": {
"Deutsche Telekom Security": 19
},
"SRC": {
"SRC Security Research \u0026 Consulting": 3
},
"TUV": {
"T\u00dcV Informationstechnik": 1
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 2,
"SHA-512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 6
}
},
"side_channel_analysis": {
"FI": {
"fault injection": 1,
"malfunction": 1
},
"SCA": {
"side channel": 2
},
"other": {
"JIL": 5,
"deep learning": 1
}
},
"standard_id": {
"BSI": {
"AIS 1": 1,
"AIS 14": 1,
"AIS 19": 1,
"AIS 20": 3,
"AIS 23": 1,
"AIS 25": 4,
"AIS 26": 4,
"AIS 31": 3,
"AIS 32": 1,
"AIS 34": 4,
"AIS 36": 4,
"AIS 37": 2,
"AIS 38": 1,
"AIS 46": 2,
"AIS20": 2,
"AIS31": 2
},
"FIPS": {
"FIPS PUB 180-4": 1,
"FIPS180": 3,
"FIPS186": 12,
"FIPS197": 4
},
"ICAO": {
"ICAO": 15
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18045": 4
},
"RFC": {
"RFC 5639": 15
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 12,
"AES-256": 1
}
},
"constructions": {
"MAC": {
"CMAC": 4
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-02102-1": 1,
"BSI TR-03110": 8,
"BSI TR-03116": 3,
"BSI TR-03116-2": 2
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"NXP": {
"NXP": 11,
"NXP Semiconductors": 10
}
},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, MRTD, ePass, eID, eSign",
"/Title": "Certification Report BSI-DSZ-CC-1188-2023",
"pdf_file_size_bytes": 561710,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/zertifizierung",
"https://www.sogis.eu/",
"http://www.commoncriteriaportal.org/cc/",
"https://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/AIS",
"https://www.bsi.bund.de/",
"https://www.bsi.bund.de/zertifizierungsreporte"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 38
},
"st_filename": "1188b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 6
},
"ECDH": {
"ECDH": 15
},
"ECDSA": {
"ECDSA": 2
}
},
"FF": {
"DH": {
"DH": 4,
"Diffie-Hellman": 9
},
"DSA": {
"DSA": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1149-2022": 1,
"BSI-DSZ-CC-1149-2022-MA-01": 1,
"BSI-DSZ-CC-1188": 1
}
},
"cc_claims": {
"A": {
"A.CGA": 2,
"A.SCA": 2
},
"O": {
"O.AES": 1,
"O.ECC": 1,
"O.PUF": 1,
"O.RND": 3,
"O.RSA": 1,
"O.TDES": 1
},
"OE": {
"OE.HID_VAD": 4
},
"T": {
"T.RND": 1
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP- 0086-2015": 1,
"BSI-CC-PP-0056-V2-": 1,
"BSI-CC-PP-0059-2009-MA-02": 2,
"BSI-CC-PP-0068-V2-2011-MA-01": 1,
"BSI-CC-PP-0068-V2-2011-MA01": 1,
"BSI-CC-PP-0084-2014": 1,
"BSI-CC-PP-0086-2015": 1,
"BSI-CC-PP-0087-V2-2016-MA-01": 2,
"BSI-CC-PP-0090-": 1,
"BSI-CC-PP-0090-2016": 1,
"BSI-CC-PP0084": 1,
"BSI-CC-PP0087": 1,
"BSI-PP-0055-2009": 1,
"BSI-PP-0056-V2-2012-MA02": 1,
"BSI-PP-0087": 1
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 1,
"ADV_ARC.1": 4,
"ADV_FSP": 1,
"ADV_FSP.4": 2,
"ADV_FUN.1": 1,
"ADV_IMP.1": 2,
"ADV_TDS.3": 3
},
"AGD": {
"AGD_OPE": 1,
"AGD_OPE.1": 2,
"AGD_PRE.1": 3
},
"ALC": {
"ALC_CMC": 1,
"ALC_CMC.4": 1,
"ALC_CMS": 1,
"ALC_CMS.4": 1,
"ALC_DEL": 1,
"ALC_DEL.1": 2,
"ALC_DVS": 1,
"ALC_DVS.2": 7,
"ALC_FLR.1": 1,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ASE": {
"ASE_TSS.2": 1
},
"ATE": {
"ATE_COV": 1,
"ATE_COV.2": 1,
"ATE_DPT.1": 1,
"ATE_DPT.2": 5,
"ATE_DPT.3": 1,
"ATE_FUN": 1,
"ATE_FUN.1": 1,
"ATE_IND": 1
},
"AVA": {
"AVA_VAN": 1,
"AVA_VAN.5": 8
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 1,
"EAL 4 augmented": 1,
"EAL 6": 1,
"EAL 6 augmented": 1,
"EAL 6+": 1,
"EAL4": 10,
"EAL4 augmented": 3
}
},
"cc_sfr": {
"FAU": {
"FAU_SAS": 21,
"FAU_SAS.1": 7,
"FAU_SAS.1.1": 1
},
"FCS": {
"FCS_CKM": 73,
"FCS_CKM.1": 29,
"FCS_CKM.2": 9,
"FCS_CKM.4": 31,
"FCS_COP": 97,
"FCS_COP.1": 29,
"FCS_RND": 13,
"FCS_RND.1": 10,
"FCS_RND.1.1": 1,
"FCS_RNG": 3
},
"FDP": {
"FDP_ACC": 44,
"FDP_ACC.1": 21,
"FDP_ACF": 59,
"FDP_ACF.1": 51,
"FDP_IFC": 5,
"FDP_IFC.1": 8,
"FDP_IFF": 8,
"FDP_IFF.1": 5,
"FDP_ITC.1": 18,
"FDP_ITC.2": 19,
"FDP_ITT.1": 1,
"FDP_RIP": 19,
"FDP_RIP.1": 12,
"FDP_SDC.1": 1,
"FDP_SDI": 12,
"FDP_SDI.1": 3,
"FDP_SDI.2": 5,
"FDP_UCT": 7,
"FDP_UCT.1": 3,
"FDP_UIT": 7,
"FDP_UIT.1": 4
},
"FIA": {
"FIA_AFL": 37,
"FIA_AFL.1": 11,
"FIA_API": 34,
"FIA_API.1": 10,
"FIA_API.1.1": 1,
"FIA_UAU": 83,
"FIA_UAU.1": 16,
"FIA_UAU.4": 3,
"FIA_UAU.5": 7,
"FIA_UAU.6": 5,
"FIA_UIA": 1,
"FIA_UID": 37,
"FIA_UID.1": 17
},
"FMT": {
"FMT_LIM": 31,
"FMT_LIM.1": 21,
"FMT_LIM.1.1": 1,
"FMT_LIM.2": 17,
"FMT_LIM.2.1": 1,
"FMT_MOF": 6,
"FMT_MOF.1": 1,
"FMT_MSA": 34,
"FMT_MSA.1": 6,
"FMT_MSA.3": 8,
"FMT_MSA.4": 1,
"FMT_MTD": 123,
"FMT_MTD.1": 18,
"FMT_MTD.3": 5,
"FMT_SMF": 28,
"FMT_SMF.1": 36,
"FMT_SMF.1.1": 1,
"FMT_SMR": 12,
"FMT_SMR.1": 39,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_EMS": 23,
"FPT_EMS.1": 17,
"FPT_EMS.1.1": 3,
"FPT_EMS.1.2": 4,
"FPT_FLS": 16,
"FPT_FLS.1": 7,
"FPT_ITT.1": 1,
"FPT_PHP": 17,
"FPT_PHP.1": 2,
"FPT_PHP.3": 5,
"FPT_TST": 17,
"FPT_TST.1": 12
},
"FRU": {
"FRU_FLT.2": 1
},
"FTP": {
"FTP_ITC": 34,
"FTP_ITC.1": 20,
"FTP_TRP.1": 4
}
},
"certification_process": {
"OutOfScope": {
" For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf": 1,
" For the eSign Application the interface is not specified in the SSCD PP ([SSCDPP]) and it is out of scope of the Technical Guideline TR-03110 (cf. [EACTR Part 3, B.7]). 13 For the ePass Application, the": 1,
"by these terminals was given already in chapter 1.3.3. 71 Others than above listed terminals are out of scope of this ST. In particular, terminals using Basic Access Control (BAC) are not supported by the TOE": 1,
"out of scope": 2
}
},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"CTR": {
"CTR": 1
},
"OFB": {
"OFB": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 167
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 2
},
"MAC": {
"MAC": 9
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP192r1": 1,
"brainpoolP192t1": 1,
"brainpoolP224r1": 1,
"brainpoolP224t1": 1,
"brainpoolP256r1": 2,
"brainpoolP256t1": 1,
"brainpoolP320r1": 1,
"brainpoolP320t1": 1,
"brainpoolP384r1": 2,
"brainpoolP384t1": 1,
"brainpoolP512r1": 2,
"brainpoolP512t1": 1
},
"NIST": {
"NIST P-256": 1,
"P-192": 2,
"P-256": 3,
"P-384": 2
}
},
"eval_facility": {
"DeutscheTelekom": {
"Deutsche Telekom Security": 158
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 1
},
"SHA2": {
"SHA-224": 1,
"SHA-256": 1,
"SHA-384": 1,
"SHA-512": 1
}
}
},
"ic_data_group": {
"EF": {
"EF.ChipSecurity": 1,
"EF.DG1": 3,
"EF.DG14": 3,
"EF.DG16": 2,
"EF.DG2": 1,
"EF.DG3": 5,
"EF.DG4": 5,
"EF.SOD": 2
}
},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RND": 4,
"RNG": 7
}
},
"side_channel_analysis": {
"FI": {
"Malfunction": 6,
"Physical Tampering": 2,
"Physical tampering": 2,
"fault injection": 1,
"malfunction": 5,
"physical tampering": 5
},
"SCA": {
"DPA": 1,
"Leak-Inherent": 6,
"physical probing": 3
},
"other": {
"reverse engineering": 1
}
},
"standard_id": {
"BSI": {
"AIS 31": 1,
"AIS 36": 1,
"AIS31": 2,
"AIS36": 2
},
"CC": {
"CCMB-2012-09-004": 1,
"CCMB-2017-04-001": 2,
"CCMB-2017-04-002": 2,
"CCMB-2017-04-003": 2,
"CCMB-2017-04-004": 1
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS PUB 180-4": 1,
"FIPS PUB 186-4": 1,
"FIPS180": 2,
"FIPS186": 7,
"FIPS197": 3
},
"ICAO": {
"ICAO": 6
},
"PKCS": {
"PKCS#3": 8
},
"RFC": {
"RFC 2631": 1,
"RFC 5639": 1,
"RFC5639": 27
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 19,
"AES-256": 1
}
},
"DES": {
"3DES": {
"3DES": 1,
"TDES": 4,
"Triple-DES": 3
}
},
"constructions": {
"MAC": {
"CMAC": 6,
"KMAC": 4
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03110": 4
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"NXP": {
"NXP": 4,
"NXP Semiconductors": 2
}
},
"vulnerability": {}
},
"st_metadata": {
"/Author": "Markus Blick, Ernst-G. Giessman",
"/Keywords": "Electronic Identity Card, Residence Permit Card, eID, eIDAS, Passport",
"/Subject": "TCOS ID Version 3.0 Release 1",
"/Title": "TCOS ID Version 3.0 Release 1 (NXP)",
"pdf_file_size_bytes": 2069185,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 152
}
},
"protection_profiles": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"pp_eal": null,
"pp_ids": null,
"pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0090b_pdf.pdf",
"pp_name": "Common Criteria PP Configuration Machine Readable Electronic Documents - Optionales Nachladen (O..."
},
{
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"pp_eal": "EAL4+",
"pp_ids": {
"_type": "Set",
"elements": [
"MR.ED-PP_V2.2"
]
},
"pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/pp0087V2b_pdf.pdf",
"pp_name": "Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use"
}
]
},
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"ATE_DPT.2",
"AVA_VAN.5",
"EAL4+",
"ALC_DVS.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/1188b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "b3a7eb6449b872c88f1177d1eec4c8550b5483c77f0adfe0352851a38d24d914",
"txt_hash": "a90e8e6b59c13bbbb836d570af2be0bec7a32560ba45a9b00f02410575f9f4af"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "d26e49683426ad60c72ac2be876546a30dddd9f8b9212da1ea368b71bf2a88cb",
"txt_hash": "cfceadfe083c4d884bb0e7b94b4da9bbf4a7c09468d27d96ee4f621e15acaf39"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "e958d128c6ea4ff389776cd5ca44bd7b9fd7f035f77e1ebe257303e4444c1661",
"txt_hash": "dffdb6df92784ae39505d3806f654a63c7f07e0a83ea334085a1f9f9d8540e4f"
}
},
"status": "active"
}