ePassport Protection Profile

 

ASSURANCE CONTINUITY MAINTENANCE REPORT

Certification No. : KECS-PP-0163a-2009

June 2010

 

National Intelligence Service IT Security Certification Center
1. Date of Activity

10 June 2010

2. Updated Protection Profile

ePassport Protection Profile V2.1, 10 June 2010

3. Assurance Continuity Maintenance Report

Changes were made to the certified ePassport Protection Profile V2.0 (Certification No.: KECS-
PP-0163-2009). These changes generated ePassport Protection Profile V2.1. The changes
reflected the Common Criteria V3.1 revision 3. The security functional and assurance
requirements were clearly defined. Furthermore, augmented component and dependencies
were changed. Terms were redefined and some functions were changed or removed. These
changes were reviewed by the IT Security Certification Center (ITSCC) and confirmed to be

appropriate as the revised Common Criteria.

4. Changes to PP

The following areas were changed in the new version of the Protection Profile:

1. Clearly defining the security functional and assurance requirements of the following
components : FDP_UCT.1, FDP_UIT.1, FPT_TST.1, ADV_TDS.3, ALC_DEL.1, ALC_DVS.1 and
ALC_TAT.1

2. Change of the augmented assurance component by adding ATE_DPT.2
3. Change of the dependencies of AVA_VAN.4 to ADV_FSP.4.
4. Change of the term ‘Biometric data’ to ‘Encoded Identification Features’ in [Table 4]

5. Change of the read-right of EF.CVCA from the ePassport access control policy

6. Removal of the integrity verifying function of data transmitted between Issuing organization

and TOE when issuing the ePassport

7. Change of the Developer name to Korea Internet & Security Agency

 

Maintenance Report Page 1