StarSign PIV Applet V 1.0 on Giesecke+Devrient Sm@rtCafé Expert 7.0

Certificate #4510

Webpage information ?

Status historical
Historical reason Moved to historical list due to sunsetting
Validation dates 05.05.2023
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Single Chip
Caveat When operated with module Sm@rtCafé Expert 7.0 validated to FIPS 140-2 under Cert. #2327 operating in FIPS mode.
Exceptions
  • Cryptographic Module Specification: Level 3
  • Roles, Services, and Authentication: Level 3
  • Physical Security: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Description StarSign PIV Applet V 1.0 on Giesecke+Devrient Sm@rtCafé Expert 7.0 provides authentication, encryption, and digital signature cryptographic services and is intended for general use. Sm@rtCafé Expert 7.0 is a Smart Card based on Java Card and GlobalPlatform Technology. Sm@rtCafé Expert 7.0 conforms to Java Card Classic Platform Specification 3.0.4 and GlobalPlatform Card Specification Version 2.2.1 supporting Secure Channel Protocol 03, Card Specification V2.2 Amendment D. The product is suitable for government and corporate identification, payment and banking, health care and authentication.
Version (Hardware) SLE78CLFX4000P (M7892)
Version (Firmware) Sm@rtCafé Expert 7.0, StarSign PIV Applet V1.0
Vendor Giesecke+Devrient Mobile Security GmbH
References

This certificate's webpage directly references 1 certificates, transitively this expands into 1 certificates.

Security policy ?

Symmetric Algorithms
AES, AES-128, AES-256, AES-192, AES-, DES, TDEA, Triple-DES, 3DES, CMAC
Asymmetric Algorithms
RSA 2048, RSA-2048, ECDSA, ECC
Hash functions
SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, SHA-2
Schemes
MAC, Key Agreement
Randomness
DRBG, RNG
Elliptic Curves
P-256, P-384, P-521, curve P-224, curve P-521, P-224
Block cipher modes
ECB, CBC

Vendor
Giesecke+Devrient, G+D

Security level
Level 2
Side-channel analysis
Side-channel, DPA, SPA, DFA

Standards
FIPS 140-2, FIPS140-2, FIPS113, FIPS197, FIPS 186-4, FIPS 180-4, FIPS PUB 140-2, FIPS201-2, FIPS 197, FIPS 201-2, SP 800-67, SP 800-56A, SP 800-56B, SP 800-90A, SP 800-108, PKCS#1, PKCS #1

File metadata

Title StarSign PIV Applet V 1.0 on Giesecke+Devrient Sm@rtCafé Expert 7.0
Subject FIPS 140-2 Cryptographic Module Non-Proprietary Security Policy
Author G+D MS
Creation date D:20220621155608-07'00'
Modification date D:20220621155901-07'00'
Pages 24
Creator Acrobat PDFMaker 22 for Word
Producer Adobe PDF Library 22.1.174

References

Outgoing
  • 43 - historical - Turbo Crypto Card (TCC), v09, 14.04

Heuristics ?

No heuristics are available for this certificate.

References ?

Updates ?

  • 01.11.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The status property was set to historical.
    • The historical_reason property was set to Moved to historical list due to sunsetting.
    • The date_sunset property was set to None.
  • 26.06.2023 The certificate data changed.
    Certificate changed

    The web extraction data was updated.

    • The certificate_pdf_url property was set to https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf.
  • 18.05.2023 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4510,
  "dgst": "d9d628292c7f805e",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "AES#2720",
        "KBKDF#18",
        "SHS#2290",
        "CVL#1192",
        "ECDSA#476",
        "CVL#1193",
        "AES#2721",
        "RSA#1506",
        "SHS#2288",
        "RSA#1507",
        "KTS#2720",
        "SHS#2289",
        "KTS#2721",
        "CVL#177",
        "DRBG#455",
        "Triple-DES#1637"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "7.0",
        "1.0"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "2327"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "2327"
        ]
      }
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": [
        "2327"
      ]
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "43"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "43"
        ]
      }
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": [
        "43"
      ]
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 5
          },
          "ECDSA": {
            "ECDSA": 14
          }
        },
        "RSA": {
          "RSA 2048": 8,
          "RSA-2048": 2
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "ECB": {
          "ECB": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        },
        "MAC": {
          "MAC": 4
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-224": 2,
          "P-256": 24,
          "P-384": 14,
          "P-521": 9,
          "curve P-224": 2,
          "curve P-521": 1
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1,
          "#1506": 1,
          "#2720": 3,
          "#2721": 1,
          "#43": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES CMAC Cert. #2720": 1,
          "AES CMAC, cert. #2720": 1,
          "AES Cert. #2721": 1,
          "AES- 256": 1,
          "AES-128": 13,
          "AES-128/192/256": 2,
          "AES-192": 11,
          "AES-256": 12,
          "Cert # AES": 1,
          "PKCS #1": 2,
          "PKCS#1": 2,
          "RSA 2048": 8,
          "SHA-1": 3,
          "SHA-2": 2,
          "SHA-224": 1,
          "SHA-256": 5,
          "SHA-384": 1,
          "SHA-512": 2
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 3
          },
          "SHA2": {
            "SHA-2": 2,
            "SHA-224": 1,
            "SHA-256": 5,
            "SHA-384": 1,
            "SHA-512": 2
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 6
        },
        "RNG": {
          "RNG": 3
        }
      },
      "side_channel_analysis": {
        "FI": {
          "DFA": 1
        },
        "SCA": {
          "DPA": 1,
          "SPA": 1,
          "Side-channel": 1
        }
      },
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 32,
          "FIPS 180-4": 4,
          "FIPS 186-4": 5,
          "FIPS 197": 1,
          "FIPS 201-2": 1,
          "FIPS PUB 140-2": 1,
          "FIPS113": 1,
          "FIPS140-2": 1,
          "FIPS197": 1,
          "FIPS201-2": 2
        },
        "NIST": {
          "SP 800-108": 3,
          "SP 800-56A": 4,
          "SP 800-56B": 2,
          "SP 800-67": 2,
          "SP 800-90A": 1
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 11,
            "AES-": 1,
            "AES-128": 13,
            "AES-192": 11,
            "AES-256": 12
          }
        },
        "DES": {
          "3DES": {
            "3DES": 2,
            "TDEA": 1,
            "Triple-DES": 4
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 5
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "GD": {
          "G+D": 3,
          "Giesecke+Devrient": 29
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "G+D MS",
      "/Company": "Giesecke \u0026 Devrient Mobile Security GmbH",
      "/CreationDate": "D:20220621155608-07\u002700\u0027",
      "/Creator": "Acrobat PDFMaker 22 for Word",
      "/Edition": "22.04.2022",
      "/ModDate": "D:20220621155901-07\u002700\u0027",
      "/Producer": "Adobe PDF Library 22.1.174",
      "/Rating": "Public",
      "/SourceModified": "D:20220621225601",
      "/Status": "Final",
      "/Subject": "FIPS 140-2 Cryptographic Module Non-Proprietary Security Policy",
      "/Title": "StarSign PIV Applet V 1.0 on Giesecke+Devrient Sm@rtCaf\u00e9 Expert 7.0",
      "/Version": "1.9",
      "pdf_file_size_bytes": 608003,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 24
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "d7be811e44bb64c153a4ed261bf7a5ed3214f833d9dc825472e41eee7d2aeb97",
    "policy_txt_hash": "b2b80a4364d51ec9963cec94026347dc13d3fc63d84b0ca79fedd6e2fca7612b"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated with module Sm@rtCaf\u00e9 Expert 7.0 validated to FIPS 140-2 under Cert. #2327 operating in FIPS mode.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/May 2023_010623_0642.pdf",
    "date_sunset": null,
    "description": "StarSign PIV Applet V 1.0 on Giesecke+Devrient Sm@rtCaf\u00e9 Expert 7.0 provides authentication, encryption, and digital signature cryptographic services and is intended for general use. Sm@rtCaf\u00e9 Expert 7.0 is a Smart Card based on Java Card and GlobalPlatform Technology. Sm@rtCaf\u00e9 Expert 7.0 conforms to Java Card Classic Platform Specification 3.0.4 and GlobalPlatform Card Specification Version 2.2.1 supporting Secure Channel Protocol 03, Card Specification V2.2 Amendment D. The product is suitable for government and corporate identification, payment and banking, health care and authentication.",
    "embodiment": "Single Chip",
    "exceptions": [
      "Cryptographic Module Specification: Level 3",
      "Roles, Services, and Authentication: Level 3",
      "Physical Security: Level 3",
      "EMI/EMC: Level 3",
      "Design Assurance: Level 3"
    ],
    "fw_versions": "Sm@rtCaf\u00e9 Expert 7.0, StarSign PIV Applet V1.0",
    "historical_reason": "Moved to historical list due to sunsetting",
    "hw_versions": "SLE78CLFX4000P (M7892)",
    "level": 2,
    "mentioned_certs": {
      "2327": 1
    },
    "module_name": "StarSign PIV Applet V 1.0 on Giesecke+Devrient Sm@rtCaf\u00e9 Expert 7.0",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-05-05",
        "lab": "UL VERIFICATION SERVICES INC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Giesecke+Devrient Mobile Security GmbH",
    "vendor_url": "http://www.gi-de.com/en/us/mobile-security/"
  }
}