This page was not yet optimized for use on mobile devices.
Card Operating System Generation 2 (PP COS G2)
Web information
Status: activeCertification date: 2019-07-30
Scheme: 🇩🇪
Category: ICs, Smart Cards and Smart Card-Related Devices and Systems
Security level: AVA_VAN.5, EAL4+
Certification report
Extracted keywords
Symmetric Algorithms
HPC, DESProtocols
PACESecurity level
EAL 4, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_DVS.2, ALC_FLR, ATE_DPT.2, AVA_VAN.5, APE_INT.1, APE_CCL.1, APE_SPD.1, APE_OBJ.2, APE_ECD.1, APE_REQ.2Protection profiles
BSI-CC-PP-0082-V4-2019, BSI-CC-PP-0082-V3-, BSI-CC-PP-0082-V3-2018, BSI-CC-PP-0084-2014Evaluation facilities
SRC Security Research & ConsultingCertification process
Profile Card Operating System Generation 2 (PP COS G2), SRC Security Research & Consulting GmbH (confidential document) [7] Common Criteria Protection Profile Card Operating System Generation 2 (PP COS G2Standards
PKCS#1, AIS 14, AIS 32, AIS 38, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065Technical reports
BSI 7148File metadata
| Title | Certification Report BSI-CC-PP-0082-V4-2019 |
|---|---|
| Subject | Common Criteria Certification |
| Keywords | "Common Criteria, Certification, Zertifizierung, Protection Profile, Schutzprofil, PP COS G2, gematik, eHealth" |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Creation date | D:20190808075420+02'00' |
| Modification date | D:20190808081625+02'00' |
| Pages | 16 |
| Creator | Writer |
| Producer | LibreOffice 6.1 |
Profile
Extracted keywords
Symmetric Algorithms
AES, AES-128, AES-, AES-256, DES, CMACAsymmetric Algorithms
RSA 3072, ECDH, ECDSA, ECC, Diffie-Hellman, DHHash functions
SHA-1, SHA-256, SHA-384, SHA-512Schemes
MAC, Key agreement, Key AgreementProtocols
SSL, TLS, PACERandomness
RND, RNGElliptic Curves
brainpoolP256r1, brainpoolP384r1, brainpoolP512r1Block cipher modes
CBCVendor
NXP Semiconductors, Infineon Technologies AG, STMicroelectronicsSecurity level
EAL4, EAL4 augmentedClaims
O.RND, O.PACE_CHIP, T.RND, OE.TC_PINSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.4, ADV_IMP.1, ADV_TDS.3, ADV_ARC, ADV_FSP, ADV_IMP, AGD_OPE.1, AGD_PRE.1, AGD_OPE, AGD_PRE, ALC_DVS.2, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ALC_DEL, ALC_DVS, ALC_CMS, ALC_CMC, ATE_FUN.1, ATE_IND.2, ATE_DPT.2, ATE_COV.2, ATE_COV, ATE_DPT.1, AVA_VAN.5, AVA_VAN, ASE_CCL.1, ASE_ECD.1, ASE_INT.1, ASE_OBJ.2, ASE_REQ.2, ASE_SPD.1, ASE_TSS.1Security Functional Requirements (SFR)
FAU_SAS, FAU_SAS.1, FCS_COP, FCS_RNG, FCS_RNG.1, FCS_CKM, FCS_CKM.4, FCS_RNG.1.1, FCS_RNG.1.2, FCS_CKM.1, FCS_COP.1, FCS_CKM.2, FCS_CKM.4.1, FDP_SDI.2, FDP_ACF, FDP_ITT, FDP_IFC, FDP_SDC, FDP_SDI, FDP_RIP.1, FDP_ACC, FDP_SDC.1, FDP_ITT.1, FDP_IFC.1, FDP_RIP.1.1, FDP_SDI.1, FDP_SDI.2.1, FDP_SDI.2.2, FDP_ACF.1, FDP_ACC.1, FDP_ITC.1, FDP_ITC.2, FDP_RIP, FDP_UCT, FDP_UCT.1, FDP_UIT, FDP_UIT.1, FIA_AFL, FIA_SOS.1, FIA_USB.1, FIA_API.1, FIA_API, FIA_API.1.1, FIA_ATD.1, FIA_UAU.1, FIA_UAU.4, FIA_UAU.5, FIA_UAU.6, FIA_USB, FIA_UAU, FIA_UID.1, FIA_SOS.1.1, FIA_AFL.1, FIA_ATD.1.1, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.4.1, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.6.1, FIA_UID.1.1, FIA_UID.1.2, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FIA_UID, FIA_ATD, FMT_MTD, FMT_SMF.1, FMT_MSA.1, FMT_LIM, FMT_SMR.1, FMT_MSA.3, FMT_MSA, FMT_LIM.1, FMT_LIM.2, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMF.1.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MTD.1, FMT_SMR, FPT_EMS, FPT_ITE, FPT_FLS, FPT_PHP, FPT_ITT, FPT_EMS.1, FPT_EMS.1.1, FPT_EMS.1.2, FPT_ITE.1, FPT_ITE.2, FPT_ITE.1.1, FPT_ITE.1.2, FPT_ITE.2.1, FPT_ITE.2.2, FPT_FLS.1, FPT_TDC.1, FPT_TST.1, FPT_PHP.3, FPT_ITT.1, FPT_FLS.1.1, FPT_TST, FPT_TDC.1.1, FPT_TDC.1.2, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FRU_FLT, FRU_FLT.2, FTP_ITC, FTP_ITC.1, FTP_TRP.1Protection profiles
BSI-CC-PP-0082-V4, BSI-CC-PP-0084, BSI-CC-PP-0082-V2, BSI-CC-PP-0082-V3, BSI-CC-PP-0084-2014, BSI-CC-PP- 0084-2014, BSI-CC-PP-0035-2007, BSI-CC-PP-0035-, BSI-CC-PP-0084-, BSI-CC-PP-0014-2014, BSI-CC-PP-0059-2009-MA-02, BSI-CC-PP-0075-2012-MA-01, BSI-CC-PP-0071-2012-MA-01, BSI-CC-PP-0072-2012-MA-01Side-channel analysis
Leak-Inherent, Physical Probing, side channel, SPA, DPA, timing attacks, Malfunction, malfunction, DFA, Bleichenbacher attack, JILStandards
FIPS180-4, FIPS 180-4, FIPS 197, FIPS PUB 197, FIPS PUB 180-4, NIST SP 800-38B, PKCS #1, PKCS#3, PKCS #3, RFC5639, RFC 5639, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003, CCMB-2017-04-004Technical reports
BSI TR-03143File metadata
| Title | Common Criteria Protection Profile BSI-CC-PP-0082-V4 |
|---|---|
| Subject | eHealth - Card Operating System Generation 2 |
| Keywords | eHealth, Card Operating System Generation 2, COS, COS PP, Gesundheitskarte |
| Author | Bundesamt für Sicherheit in der Informationstechnik |
| Creation date | D:20190905130822+02'00' |
| Modification date | D:20190906140233+02'00' |
| Pages | 194 |
| Creator | Microsoft® Word 2016 |
| Producer | Microsoft® Word 2016 |
References
- IDEMIA_HC_Germany_NEO_G2.1_COS, V1 active
- STARCOS 3.7 COS GKV C2 archived
- STARCOS 3.7 COS GKV C3 active
- TCOS FlexCert Version 2.0 Release 2/SLC52 active
Updates
-
22.04.2025 The protection profile data changed.
Protection Profile changed
The PDF extraction data was updated.
- The report_metadata property was set to
{'pdf_file_size_bytes': 868111, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 16, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20190808075420+02'00'", '/Creator': 'Writer', '/Keywords': '"Common Criteria, Certification, Zertifizierung, Protection Profile, Schutzprofil, PP COS G2, gematik, eHealth"', '/ModDate': "D:20190808081625+02'00'", '/Producer': 'LibreOffice 6.1', '/Subject': 'Common Criteria Certification', '/Title': 'Certification Report BSI-CC-PP-0082-V4-2019', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.sogisportal.eu/', 'https://www.bsi.bund.de/', 'http://www.commoncriteriaportal.org/']}}. - The pp_metadata property was set to
{'pdf_file_size_bytes': 4037361, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 194, '/Author': 'Bundesamt für Sicherheit in der Informationstechnik', '/CreationDate': "D:20190905130822+02'00'", '/Creator': 'Microsoft® Word 2016', '/Keywords': 'eHealth, Card Operating System Generation 2, COS, COS PP, Gesundheitskarte', '/ModDate': "D:20190906140233+02'00'", '/Producer': 'Microsoft® Word 2016', '/Subject': 'eHealth - Card Operating System Generation 2', '/Title': 'Common Criteria Protection Profile BSI-CC-PP-0082-V4', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}. - The report_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0082-V4-2019': 10, 'BSI-CC-PP-0082-V3-': 1, 'BSI-CC-PP-0082-V3-2018': 2, 'BSI-CC-PP-0084-2014': 2}}, 'cc_security_level': {'EAL': {'EAL 4': 3, 'EAL 2': 1, 'EAL 4 augmented': 2}}, 'cc_sar': {'ALC': {'ALC_DVS.2': 2, 'ALC_FLR': 1}, 'ATE': {'ATE_DPT.2': 2}, 'AVA': {'AVA_VAN.5': 2}, 'APE': {'APE_INT.1': 1, 'APE_CCL.1': 1, 'APE_SPD.1': 1, 'APE_OBJ.2': 1, 'APE_ECD.1': 1, 'APE_REQ.2': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'SRC': {'SRC Security Research & Consulting': 3}}, 'symmetric_crypto': {'AES_competition': {'HPC': {'HPC': 3}}, 'DES': {'DES': {'DES': 1}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'PACE': {'PACE': 2}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'PKCS': {'PKCS#1': 1}, 'BSI': {'AIS 14': 1, 'AIS 32': 1, 'AIS 38': 1}, 'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 4, 'ISO/IEC 17065': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'Profile Card Operating System Generation 2 (PP COS G2), SRC Security Research & Consulting GmbH (confidential document) [7] Common Criteria Protection Profile Card Operating System Generation 2 (PP COS G2': 1}}}. - The pp_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0082-V4': 196, 'BSI-CC-PP-0084': 1, 'BSI-CC-PP-0082-V2': 1, 'BSI-CC-PP-0082-V3': 1, 'BSI-CC-PP-0084-2014': 61, 'BSI-CC-PP- 0084-2014': 9, 'BSI-CC-PP-0035-2007': 4, 'BSI-CC-PP-0035-': 1, 'BSI-CC-PP-0084-': 9, 'BSI-CC-PP-0014-2014': 1, 'BSI-CC-PP-0059-2009-MA-02': 1, 'BSI-CC-PP-0075-2012-MA-01': 1, 'BSI-CC-PP-0071-2012-MA-01': 1, 'BSI-CC-PP-0072-2012-MA-01': 1}}, 'cc_security_level': {'EAL': {'EAL4': 14, 'EAL4 augmented': 4}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 10, 'ADV_FSP.4': 6, 'ADV_IMP.1': 6, 'ADV_TDS.3': 3, 'ADV_ARC': 2, 'ADV_FSP': 2, 'ADV_IMP': 2}, 'AGD': {'AGD_OPE.1': 6, 'AGD_PRE.1': 2, 'AGD_OPE': 2, 'AGD_PRE': 2}, 'ALC': {'ALC_DVS.2': 11, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1, 'ALC_DEL': 2, 'ALC_DVS': 2, 'ALC_CMS': 2, 'ALC_CMC': 2}, 'ATE': {'ATE_FUN.1': 7, 'ATE_IND.2': 6, 'ATE_DPT.2': 10, 'ATE_COV.2': 1, 'ATE_COV': 2, 'ATE_DPT.1': 1}, 'AVA': {'AVA_VAN.5': 9, 'AVA_VAN': 2}, 'ASE': {'ASE_CCL.1': 1, 'ASE_ECD.1': 1, 'ASE_INT.1': 1, 'ASE_OBJ.2': 1, 'ASE_REQ.2': 1, 'ASE_SPD.1': 1, 'ASE_TSS.1': 1}}, 'cc_sfr': {'FAU': {'FAU_SAS': 6, 'FAU_SAS.1': 1}, 'FCS': {'FCS_COP': 164, 'FCS_RNG': 23, 'FCS_RNG.1': 16, 'FCS_CKM': 87, 'FCS_CKM.4': 72, 'FCS_RNG.1.1': 3, 'FCS_RNG.1.2': 2, 'FCS_CKM.1': 53, 'FCS_COP.1': 30, 'FCS_CKM.2': 12, 'FCS_CKM.4.1': 1}, 'FDP': {'FDP_SDI.2': 10, 'FDP_ACF': 100, 'FDP_ITT': 5, 'FDP_IFC': 5, 'FDP_SDC': 6, 'FDP_SDI': 5, 'FDP_RIP.1': 13, 'FDP_ACC': 105, 'FDP_SDC.1': 1, 'FDP_ITT.1': 1, 'FDP_IFC.1': 13, 'FDP_RIP.1.1': 1, 'FDP_SDI.1': 1, 'FDP_SDI.2.1': 1, 'FDP_SDI.2.2': 1, 'FDP_ACF.1': 46, 'FDP_ACC.1': 45, 'FDP_ITC.1': 48, 'FDP_ITC.2': 48, 'FDP_RIP': 13, 'FDP_UCT': 5, 'FDP_UCT.1': 1, 'FDP_UIT': 6, 'FDP_UIT.1': 2}, 'FIA': {'FIA_AFL': 19, 'FIA_SOS.1': 7, 'FIA_USB.1': 31, 'FIA_API.1': 18, 'FIA_API': 13, 'FIA_API.1.1': 2, 'FIA_ATD.1': 20, 'FIA_UAU.1': 18, 'FIA_UAU.4': 10, 'FIA_UAU.5': 18, 'FIA_UAU.6': 11, 'FIA_USB': 34, 'FIA_UAU': 53, 'FIA_UID.1': 20, 'FIA_SOS.1.1': 1, 'FIA_AFL.1': 4, 'FIA_ATD.1.1': 1, 'FIA_UAU.1.1': 2, 'FIA_UAU.1.2': 1, 'FIA_UAU.4.1': 1, 'FIA_UAU.5.1': 1, 'FIA_UAU.5.2': 1, 'FIA_UAU.6.1': 1, 'FIA_UID.1.1': 2, 'FIA_UID.1.2': 1, 'FIA_USB.1.1': 1, 'FIA_USB.1.2': 1, 'FIA_USB.1.3': 2, 'FIA_UID': 12, 'FIA_ATD': 9}, 'FMT': {'FMT_MTD': 38, 'FMT_SMF.1': 52, 'FMT_MSA.1': 10, 'FMT_LIM': 11, 'FMT_SMR.1': 44, 'FMT_MSA.3': 38, 'FMT_MSA': 58, 'FMT_LIM.1': 1, 'FMT_LIM.2': 1, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_SMF.1.1': 1, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_MTD.1': 5, 'FMT_SMR': 16}, 'FPT': {'FPT_EMS': 19, 'FPT_ITE': 16, 'FPT_FLS': 5, 'FPT_PHP': 5, 'FPT_ITT': 5, 'FPT_EMS.1': 17, 'FPT_EMS.1.1': 3, 'FPT_EMS.1.2': 3, 'FPT_ITE.1': 14, 'FPT_ITE.2': 13, 'FPT_ITE.1.1': 2, 'FPT_ITE.1.2': 2, 'FPT_ITE.2.1': 5, 'FPT_ITE.2.2': 2, 'FPT_FLS.1': 13, 'FPT_TDC.1': 7, 'FPT_TST.1': 9, 'FPT_PHP.3': 2, 'FPT_ITT.1': 1, 'FPT_FLS.1.1': 1, 'FPT_TST': 2, 'FPT_TDC.1.1': 1, 'FPT_TDC.1.2': 1, 'FPT_TST.1.1': 1, 'FPT_TST.1.2': 1, 'FPT_TST.1.3': 1}, 'FRU': {'FRU_FLT': 5, 'FRU_FLT.2': 1}, 'FTP': {'FTP_ITC': 28, 'FTP_ITC.1': 28, 'FTP_TRP.1': 4}}, 'cc_claims': {'O': {'O.RND': 4, 'O.PACE_CHIP': 2}, 'T': {'T.RND': 5}, 'OE': {'OE.TC_PIN': 1}}, 'vendor': {'NXP': {'NXP Semiconductors': 2}, 'Infineon': {'Infineon Technologies AG': 2}, 'STMicroelectronics': {'STMicroelectronics': 1}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 47, 'AES-128': 1, 'AES-': 1, 'AES-256': 1}}, 'DES': {'DES': {'DES': 2}}, 'constructions': {'MAC': {'CMAC': 37}}}, 'asymmetric_crypto': {'RSA': {'RSA 3072': 1}, 'ECC': {'ECDH': {'ECDH': 6}, 'ECDSA': {'ECDSA': 33}, 'ECC': {'ECC': 11}}, 'FF': {'DH': {'Diffie-Hellman': 2, 'DH': 16}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 1}, 'SHA2': {'SHA-256': 9, 'SHA-384': 5, 'SHA-512': 2}}}, 'crypto_scheme': {'MAC': {'MAC': 47}, 'KA': {'Key agreement': 1, 'Key Agreement': 1}}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}, 'TLS': {'TLS': 2}}, 'PACE': {'PACE': 284}}, 'randomness': {'RNG': {'RND': 9, 'RNG': 19}}, 'cipher_mode': {'CBC': {'CBC': 4}}, 'ecc_curve': {'Brainpool': {'brainpoolP256r1': 3, 'brainpoolP384r1': 3, 'brainpoolP512r1': 3}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'Leak-Inherent': 9, 'Physical Probing': 2, 'side channel': 1, 'SPA': 2, 'DPA': 2, 'timing attacks': 1}, 'FI': {'Malfunction': 10, 'malfunction': 1, 'DFA': 1}, 'other': {'Bleichenbacher attack': 1, 'JIL': 6}}, 'technical_report_id': {'BSI': {'BSI TR-03143': 6}}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS180-4': 1, 'FIPS 180-4': 1, 'FIPS 197': 4, 'FIPS PUB 197': 1, 'FIPS PUB 180-4': 1}, 'NIST': {'NIST SP 800-38B': 1}, 'PKCS': {'PKCS #1': 2, 'PKCS#3': 4, 'PKCS #3': 1}, 'RFC': {'RFC5639': 3, 'RFC 5639': 1}, 'CC': {'CCMB-2017-04-001': 2, 'CCMB-2017-04-002': 2, 'CCMB-2017-04-003': 2, 'CCMB-2017-04-004': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
The state of the protection profile object was updated.
- The pp property was updated, with the
{'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '896f9660d68280fa4a3105fffdc87d4d08999902440e8e1a599d76313f42de46', 'txt_hash': '5a711c9dfb32e7c93a6c28c40a720745e7aace3a2ae80066f357de263db6af10'}data. - The report property was updated, with the
{'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '13238d407b937fbed1c6660248a1756faa4ac6d7b80f9ce2219319781c09f4ad', 'txt_hash': 'd7e0a47e480b744a8ca353dfd453d77d08427c6b56c092460c890724e6b60675'}data.
- The report_metadata property was set to
-
14.04.2025 The protection profile data changed.
Protection Profile changed
The PDF extraction data was updated.
- The report_metadata property was set to
None. - The pp_metadata property was set to
None. - The report_keywords property was set to
None. - The pp_keywords property was set to
None.
The state of the protection profile object was updated.
- The pp property was updated, with the
{'convert_garbage': True, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': '6adef86c67e4bbbcbc8872bedf10c93c33839884a5cb1ca1d36f080444041ca7', 'txt_hash': None}data. - The report property was updated, with the
{'convert_garbage': True, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': '6adef86c67e4bbbcbc8872bedf10c93c33839884a5cb1ca1d36f080444041ca7', 'txt_hash': None}data.
- The report_metadata property was set to
-
04.02.2025 The protection profile was first processed.
New Protection Profile
A new Protection Profile with the name Card Operating System Generation 2 (PP COS G2) was processed.
Raw data
{
"_id": "af9c3335f79dec6f",
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"dgst": "af9c3335f79dec6f",
"heuristics": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.Heuristics"
},
"pdf_data": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.PdfData",
"pp_filename": "pp0082V4b_pdf.pdf",
"pp_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 11
},
"ECDH": {
"ECDH": 6
},
"ECDSA": {
"ECDSA": 33
}
},
"FF": {
"DH": {
"DH": 16,
"Diffie-Hellman": 2
}
},
"RSA": {
"RSA 3072": 1
}
},
"cc_cert_id": {},
"cc_claims": {
"O": {
"O.PACE_CHIP": 2,
"O.RND": 4
},
"OE": {
"OE.TC_PIN": 1
},
"T": {
"T.RND": 5
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP- 0084-2014": 9,
"BSI-CC-PP-0014-2014": 1,
"BSI-CC-PP-0035-": 1,
"BSI-CC-PP-0035-2007": 4,
"BSI-CC-PP-0059-2009-MA-02": 1,
"BSI-CC-PP-0071-2012-MA-01": 1,
"BSI-CC-PP-0072-2012-MA-01": 1,
"BSI-CC-PP-0075-2012-MA-01": 1,
"BSI-CC-PP-0082-V2": 1,
"BSI-CC-PP-0082-V3": 1,
"BSI-CC-PP-0082-V4": 196,
"BSI-CC-PP-0084": 1,
"BSI-CC-PP-0084-": 9,
"BSI-CC-PP-0084-2014": 61
}
},
"cc_sar": {
"ADV": {
"ADV_ARC": 2,
"ADV_ARC.1": 10,
"ADV_FSP": 2,
"ADV_FSP.4": 6,
"ADV_IMP": 2,
"ADV_IMP.1": 6,
"ADV_TDS.3": 3
},
"AGD": {
"AGD_OPE": 2,
"AGD_OPE.1": 6,
"AGD_PRE": 2,
"AGD_PRE.1": 2
},
"ALC": {
"ALC_CMC": 2,
"ALC_CMC.4": 1,
"ALC_CMS": 2,
"ALC_CMS.4": 1,
"ALC_DEL": 2,
"ALC_DEL.1": 1,
"ALC_DVS": 2,
"ALC_DVS.2": 11,
"ALC_LCD.1": 1,
"ALC_TAT.1": 1
},
"ASE": {
"ASE_CCL.1": 1,
"ASE_ECD.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.2": 1,
"ASE_SPD.1": 1,
"ASE_TSS.1": 1
},
"ATE": {
"ATE_COV": 2,
"ATE_COV.2": 1,
"ATE_DPT.1": 1,
"ATE_DPT.2": 10,
"ATE_FUN.1": 7,
"ATE_IND.2": 6
},
"AVA": {
"AVA_VAN": 2,
"AVA_VAN.5": 9
}
},
"cc_security_level": {
"EAL": {
"EAL4": 14,
"EAL4 augmented": 4
}
},
"cc_sfr": {
"FAU": {
"FAU_SAS": 6,
"FAU_SAS.1": 1
},
"FCS": {
"FCS_CKM": 87,
"FCS_CKM.1": 53,
"FCS_CKM.2": 12,
"FCS_CKM.4": 72,
"FCS_CKM.4.1": 1,
"FCS_COP": 164,
"FCS_COP.1": 30,
"FCS_RNG": 23,
"FCS_RNG.1": 16,
"FCS_RNG.1.1": 3,
"FCS_RNG.1.2": 2
},
"FDP": {
"FDP_ACC": 105,
"FDP_ACC.1": 45,
"FDP_ACF": 100,
"FDP_ACF.1": 46,
"FDP_IFC": 5,
"FDP_IFC.1": 13,
"FDP_ITC.1": 48,
"FDP_ITC.2": 48,
"FDP_ITT": 5,
"FDP_ITT.1": 1,
"FDP_RIP": 13,
"FDP_RIP.1": 13,
"FDP_RIP.1.1": 1,
"FDP_SDC": 6,
"FDP_SDC.1": 1,
"FDP_SDI": 5,
"FDP_SDI.1": 1,
"FDP_SDI.2": 10,
"FDP_SDI.2.1": 1,
"FDP_SDI.2.2": 1,
"FDP_UCT": 5,
"FDP_UCT.1": 1,
"FDP_UIT": 6,
"FDP_UIT.1": 2
},
"FIA": {
"FIA_AFL": 19,
"FIA_AFL.1": 4,
"FIA_API": 13,
"FIA_API.1": 18,
"FIA_API.1.1": 2,
"FIA_ATD": 9,
"FIA_ATD.1": 20,
"FIA_ATD.1.1": 1,
"FIA_SOS.1": 7,
"FIA_SOS.1.1": 1,
"FIA_UAU": 53,
"FIA_UAU.1": 18,
"FIA_UAU.1.1": 2,
"FIA_UAU.1.2": 1,
"FIA_UAU.4": 10,
"FIA_UAU.4.1": 1,
"FIA_UAU.5": 18,
"FIA_UAU.5.1": 1,
"FIA_UAU.5.2": 1,
"FIA_UAU.6": 11,
"FIA_UAU.6.1": 1,
"FIA_UID": 12,
"FIA_UID.1": 20,
"FIA_UID.1.1": 2,
"FIA_UID.1.2": 1,
"FIA_USB": 34,
"FIA_USB.1": 31,
"FIA_USB.1.1": 1,
"FIA_USB.1.2": 1,
"FIA_USB.1.3": 2
},
"FMT": {
"FMT_LIM": 11,
"FMT_LIM.1": 1,
"FMT_LIM.2": 1,
"FMT_MSA": 58,
"FMT_MSA.1": 10,
"FMT_MSA.3": 38,
"FMT_MSA.3.1": 1,
"FMT_MSA.3.2": 1,
"FMT_MTD": 38,
"FMT_MTD.1": 5,
"FMT_SMF.1": 52,
"FMT_SMF.1.1": 1,
"FMT_SMR": 16,
"FMT_SMR.1": 44,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_EMS": 19,
"FPT_EMS.1": 17,
"FPT_EMS.1.1": 3,
"FPT_EMS.1.2": 3,
"FPT_FLS": 5,
"FPT_FLS.1": 13,
"FPT_FLS.1.1": 1,
"FPT_ITE": 16,
"FPT_ITE.1": 14,
"FPT_ITE.1.1": 2,
"FPT_ITE.1.2": 2,
"FPT_ITE.2": 13,
"FPT_ITE.2.1": 5,
"FPT_ITE.2.2": 2,
"FPT_ITT": 5,
"FPT_ITT.1": 1,
"FPT_PHP": 5,
"FPT_PHP.3": 2,
"FPT_TDC.1": 7,
"FPT_TDC.1.1": 1,
"FPT_TDC.1.2": 1,
"FPT_TST": 2,
"FPT_TST.1": 9,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1
},
"FRU": {
"FRU_FLT": 5,
"FRU_FLT.2": 1
},
"FTP": {
"FTP_ITC": 28,
"FTP_ITC.1": 28,
"FTP_TRP.1": 4
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 4
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 284
},
"TLS": {
"SSL": {
"SSL": 1
},
"TLS": {
"TLS": 2
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1,
"Key agreement": 1
},
"MAC": {
"MAC": 47
}
},
"device_model": {},
"ecc_curve": {
"Brainpool": {
"brainpoolP256r1": 3,
"brainpoolP384r1": 3,
"brainpoolP512r1": 3
}
},
"eval_facility": {},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 1
},
"SHA2": {
"SHA-256": 9,
"SHA-384": 5,
"SHA-512": 2
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RND": 9,
"RNG": 19
}
},
"side_channel_analysis": {
"FI": {
"DFA": 1,
"Malfunction": 10,
"malfunction": 1
},
"SCA": {
"DPA": 2,
"Leak-Inherent": 9,
"Physical Probing": 2,
"SPA": 2,
"side channel": 1,
"timing attacks": 1
},
"other": {
"Bleichenbacher attack": 1,
"JIL": 6
}
},
"standard_id": {
"CC": {
"CCMB-2017-04-001": 2,
"CCMB-2017-04-002": 2,
"CCMB-2017-04-003": 2,
"CCMB-2017-04-004": 2
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 4,
"FIPS PUB 180-4": 1,
"FIPS PUB 197": 1,
"FIPS180-4": 1
},
"NIST": {
"NIST SP 800-38B": 1
},
"PKCS": {
"PKCS #1": 2,
"PKCS #3": 1,
"PKCS#3": 4
},
"RFC": {
"RFC 5639": 1,
"RFC5639": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 47,
"AES-": 1,
"AES-128": 1,
"AES-256": 1
}
},
"DES": {
"DES": {
"DES": 2
}
},
"constructions": {
"MAC": {
"CMAC": 37
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03143": 6
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Infineon": {
"Infineon Technologies AG": 2
},
"NXP": {
"NXP Semiconductors": 2
},
"STMicroelectronics": {
"STMicroelectronics": 1
}
},
"vulnerability": {}
},
"pp_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20190905130822+02\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2016",
"/Keywords": "eHealth, Card Operating System Generation 2, COS, COS PP, Gesundheitskarte",
"/ModDate": "D:20190906140233+02\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2016",
"/Subject": "eHealth - Card Operating System Generation 2",
"/Title": "Common Criteria Protection Profile BSI-CC-PP-0082-V4",
"pdf_file_size_bytes": 4037361,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 194
},
"report_filename": "pp0082V4a_pdf.pdf",
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0082-V3-": 1,
"BSI-CC-PP-0082-V3-2018": 2,
"BSI-CC-PP-0082-V4-2019": 10,
"BSI-CC-PP-0084-2014": 2
}
},
"cc_sar": {
"ALC": {
"ALC_DVS.2": 2,
"ALC_FLR": 1
},
"APE": {
"APE_CCL.1": 1,
"APE_ECD.1": 1,
"APE_INT.1": 1,
"APE_OBJ.2": 1,
"APE_REQ.2": 1,
"APE_SPD.1": 1
},
"ATE": {
"ATE_DPT.2": 2
},
"AVA": {
"AVA_VAN.5": 2
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 3,
"EAL 4 augmented": 2
}
},
"cc_sfr": {},
"certification_process": {
"ConfidentialDocument": {
"Profile Card Operating System Generation 2 (PP COS G2), SRC Security Research \u0026 Consulting GmbH (confidential document) [7] Common Criteria Protection Profile Card Operating System Generation 2 (PP COS G2": 1
}
},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 2
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 3
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 14": 1,
"AIS 32": 1,
"AIS 38": 1
},
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 17065": 2,
"ISO/IEC 18045": 4
},
"PKCS": {
"PKCS#1": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"HPC": {
"HPC": 3
}
},
"DES": {
"DES": {
"DES": 1
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20190808075420+02\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Protection Profile, Schutzprofil, PP COS G2, gematik, eHealth\"",
"/ModDate": "D:20190808081625+02\u002700\u0027",
"/Producer": "LibreOffice 6.1",
"/Subject": "Common Criteria Certification",
"/Title": "Certification Report BSI-CC-PP-0082-V4-2019",
"pdf_file_size_bytes": 868111,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.sogisportal.eu/",
"http://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 16
}
},
"state": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.InternalState",
"pp": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "896f9660d68280fa4a3105fffdc87d4d08999902440e8e1a599d76313f42de46",
"txt_hash": "5a711c9dfb32e7c93a6c28c40a720745e7aace3a2ae80066f357de263db6af10"
},
"report": {
"_type": "sec_certs.sample.document_state.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "13238d407b937fbed1c6660248a1756faa4ac6d7b80f9ce2219319781c09f4ad",
"txt_hash": "d7e0a47e480b744a8ca353dfd453d77d08427c6b56c092460c890724e6b60675"
}
},
"web_data": {
"_type": "sec_certs.sample.protection_profile.ProtectionProfile.WebData",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"is_collaborative": false,
"maintenances": [],
"name": "Card Operating System Generation 2 (PP COS G2)",
"not_valid_after": null,
"not_valid_before": "2019-07-30",
"pp_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0082V4b_pdf.pdf",
"report_link": "https://www.commoncriteriaportal.org/nfs/ccpfiles/files/ppfiles/pp0082V4a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"AVA_VAN.5",
"EAL4+"
]
},
"status": "active",
"version": "Version 2.1"
}
}