R Federal Office for Information Security '® Common Criteria | CYBERSECURITY CERTIFICATION | £22855 2025120001 EUCC-3087-2025-12-0001(*) Administration ID BSt-D8z-C0-1079-V6-2025 Infineon Security Controller IFX_CCI_00000Fh, IFX_CCI_000010h, IFX_CCI_000026h, IFX_CCI_000027h, IFX_CCI_000028h, IFX_CCI_000029h, IFX_CCI_00002Ah, IFX_CCI_00002Bh, IFX_CCI_00002Ch in the design step G12 a, Holder of the Certificate: Infineon Technologies AG - | } ) Am Campeon 1-15 er 85579 Neubiberg NL . https:/Avww.infineon.com/product- ‘Common Criteria information/cybersecurity-information Recognition Arrangement Evaluation Facility: TUV Informationstechnik GmbH eo Te eer aie FA 2 Unternehmensgruppe TUV NORD = Am TUV 1 45307 Essen Assurance Level: EUCC High with component AVA_VAN.5 Assurance Package: EAL 5 ( DAKKs Assurance Augmentation: Global Assurance: ADV_IMP.2, ADV_INT.3, Akkreditierungsstelle ADV_TDS.5, ALC_CMC.5, ALC_DVS.2, P2E19645-01-00 ALC_FLR.3, ALC_TAT.3, ATE_FUN.2, ATE_COV.3, AVA_VAN.5 sub-TSF assurance level EAL6 augmented with ALC_FLR.3 PP Conformance: Security IC Platform Protection Profile with Augmentation Packages Version 1.0, 13 January 2014, BSI-CC-PP-0084-2014 valid until: 18 December 2030 The ICT Product identified in this certificate and its attached certification report has been evaluated at the above mentioned notified evaluation facility using the Common Methodology for IT Security Evaluation (CEM) in application of relevant state-of-the-art documents for the AVA_VAN components 4 and 5 as well as the application notes and interpretations on advice by the Certification Body in the versions published at the time the conformity assessment was carried out. The CC and CEM used for the evaluation of the above mentioned ICT product are published as ISO/IEC 15408 and ISO/IEC 18045 or as CC:2022 and CEM:2022. (*) This certificate applies only to the specific version and release of the ICT product in its evaluated configuration and in conjunction with the complete Certification Report and Notification. For details see Certification Report part A chapter 5. The evaluation has been conducted in accordance with the provisions of Commission implementing Regulation (EU) 2024/482 of 31 January 2024 laying down rules for the application of Regulation (EU) 2019/881 of the European Parliament and of the Council as regards the adoption of the European Common Criteria-based cybersecurity certification scheme (EUCC) and the conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence adduced. Bonn, 19 December 2025 For the Federal Office for Ipformatiet Security EA 7 vr Aral _ Fabian Hodouschek endola Head of Certification SE i {General Directorate General S ‚mt für Sicherheit in der Informationstechnik Godesberger Allee 87 - D-53175 Bonn - Postfach 20 03 63 - D-53133 Bonn Phone +49 (0)228 99 9582-0 - Fax +49 (0)228 9582-5477 - Infoline +49 (0)228 99 9582-111 This certificate is not an endorsement of the IT Product by the Federal Office for Information Security or any other organisation that recognises or gives effect to this certificate, and no warranty of the IT Product by the Federal Office for Information Security or any other organisation that recognises or gives effect to this certificate, is either expressed or implied. This certificate and its holder are both subject to obligations and monitoring activities as specified in Commission Implementing Regulation (EU) 2024/482. This certificate, its holder and its issuer are furthermore subject to compliance rules and supervision by the National Cybersecurity Certification Authority as established at Federal Office for Information Security, Division S 14, Freital, Email: ncca@bsi,bund.de. v10 EUCC-Zert-304 EUCC-V5.5