IC chip for the reader / writer RC-S940 (CXD9768GG), version 4
CSV information ?
Status | archived |
---|---|
Valid from | 30.07.2009 |
Valid until | 01.09.2019 |
Scheme | 🇩🇪 DE |
Manufacturer | Sony Corporation |
Category | ICs, Smart Cards and Smart Card-Related Devices and Systems |
Security level | EAL4 |
Heuristics summary ?
Certificate ?
Certification report ?
Extracted keywords
Hash functions
SHA-1Protocols
SSLSecurity level
EAL 4, EAL 1, EAL 7, EAL4, EAL1, EAL3, EAL5, EAL7, EAL2, EAL6, EAL 4 augmented, EAL4 augmentedClaims
OE.DIR_CONTROL, OE.COM_PROT, OE.CLIENT_AP, OE.DBV_INSTALLSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_FSP.1, ADV_FSP.2, ADV_FSP.3, ADV_FSP.4, ADV_FSP.5, ADV_FSP.6, ADV_IMP.1, ADV_IMP.2, ADV_INT.1, ADV_INT.2, ADV_INT.3, ADV_SPM.1, ADV_TDS.1, ADV_TDS.2, ADV_TDS.3, ADV_TDS.4, ADV_TDS.5, ADV_TDS.6, ADV_ARC, ADV_FSP, ADV_IMP, ADV_INT, ADV_SPM, ADV_TDS, AGD_OPE.1, AGD_PRE.1, AGD_OPE, AGD_PRE, ALC_FLR.3, ALC_CMC.1, ALC_CMC.2, ALC_CMC.3, ALC_CMC.4, ALC_CMC.5, ALC_CMS.1, ALC_CMS.2, ALC_CMS.3, ALC_CMS.4, ALC_CMS.5, ALC_DEL.1, ALC_DVS.1, ALC_DVS.2, ALC_FLR.1, ALC_FLR.2, ALC_LCD.1, ALC_LCD.2, ALC_TAT.1, ALC_TAT.2, ALC_TAT.3, ALC_CMC, ALC_CMS, ALC_DEL, ALC_DVS, ALC_FLR, ALC_TAT, ATE_COV.1, ATE_COV.2, ATE_COV.3, ATE_DPT.1, ATE_DPT.2, ATE_DPT.3, ATE_DPT.4, ATE_FUN.1, ATE_FUN.2, ATE_IND.1, ATE_IND.2, ATE_IND.3, ATE_COV, ATE_DPT, ATE_FUN, ATE_IND, AVA_VAN.1, AVA_VAN.2, AVA_VAN.3, AVA_VAN.4, AVA_VAN.5, AVA_VAN, APE_INT.1, APE_CCL.1, APE_SPD.1, APE_OBJ.1, APE_OBJ.2, APE_ECD.1, APE_REQ.1, APE_REQ.2, ASE_INT.1, ASE_CCL.1, ASE_SPD.1, ASE_OBJ.1, ASE_OBJ.2, ASE_ECD.1, ASE_REQ.1, ASE_REQ.2, ASE_TSS.1, ASE_TSS.2, ASE_CCL, ASE_ECD, ASE_INT, ASE_OBJ, ASE_SPD, ASE_TSSCertificates
BSI-DSZ-CC-0588-2009, BSI-DSZ-CC-0403-2008, BSI-DSZ-CC-0588Evaluation facilities
atsecCertification process
Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness, 1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part numberCertification process
Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness, 1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part numberStandards
AIS 38Technical reports
BSI 7125, BSI 7148, BSI 7149File metadata
Title: | Certification Report BSI-DSZ-CC-0588-2009 |
---|---|
Subject: | Common Criteria, Certification |
Keywords: | "Common Criteria, Certification, Zertifizierung, Oracle Coporation" |
Author: | Bundesamt für Sicherheit in der Informationstechnik |
Creation date: | D:20091030082805+01'00' |
Modification date: | D:20091030093623+01'00' |
Pages: | 34 |
Creator: | Writer |
Producer: | StarOffice 9 |
Frontpage
Certificate ID: | BSI-DSZ-CC-0588-2009 |
---|---|
Certified item: | Oracle Database 11g Enterprise Edition with Oracle Database Vault Release 11.1.0.7 with Critical Patch Updates up to and including July 2009 |
Certification lab: | BSI |
Developer: | Oracle Corporation |
References
No references.
Security target ?
Extracted keywords
Symmetric Algorithms
DES, Triple-DESRandomness
RNGBlock cipher modes
CBCSecurity level
EAL4Security Assurance Requirements (SAR)
ACM_AUT.1, ACM_CAP.4, ACM_SCP.2, ACM_SCP.1, ACM_CAP.3, ADO_DEL.2, ADO_IGS.1, ADV_FSP.2, ADV_HLD.2, ADV_IMP.1, ADV_LLD.1, ADV_RCR.1, ADV_SPM.1, ADV_FSP.1, ADV_HLD.1, AGD_ADM.1, AGD_USR.1, ALC_DVS.1, ALC_LCD.1, ALC_TAT.1, ATE_COV.2, ATE_DPT.1, ATE_FUN.1, ATE_IND.2, AVA_MSU.2, AVA_SOF.1, AVA_VLA.2Security Functional Requirements (SFR)
FCS_COP.1, FCS_CKM.1, FCS_CKM.4, FCS_COP.1.1, FCS_CKM.1.1, FCS_CKM.4.1, FDP_IFC.1, FDP_IFF.1, FDP_ITT.1, FDP_SDI.1, FDP_UIT.1, FDP_UCT.1, FDP_ACC.1, FDP_ACF.1, FDP_IFC.1.1, FDP_IFF.1.1, FDP_IFF.1.2, FDP_IFF.1.3, FDP_IFF.1.4, FDP_IFF.1.5, FDP_IFF.1.6, FDP_ITT.1.1, FDP_SDI.1.1, FDP_UIT.1.1, FDP_UIT.1.2, FDP_UCT.1.1, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_ITC.1, FDP_ACC, FIA_UID.1, FIA_UAU.2, FIA_AFL.1, FIA_UID.1.1, FIA_UID.1.2, FIA_UAU.2.1, FIA_AFL.1.1, FIA_AFL.1.2, FIA_ALF.1, FIA_UAU, FIA_AFL, FMT_SMR.1, FMT_MTD.1, FMT_MSA.2, FMT_MSA.3, FMT_MSA.1, FMT_SMF.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MSA.2.1, FMT_MTD.1.1, FMT_MSA.3.1, FMT_MSA.3.2, FMT_MSA.1.1, FMT_SMF.1.1, FMT_MSA, FPT_FLS.1, FPT_PHP.3, FPT_ITT.1, FPT_RCV.4, FPT_TST.1, FPT_FLS.1.1, FPT_TST.1.1, FPT_TST, FPT_TST.1.2, FPT_TST.1.3, FPT_PHP.3.1, FPT_ITT.1.1, FPT_RCV.4.1, FPT_SDI.1, FPT_AMT.1, FTP_ITC.1, FTP_ITC.1.1, FTP_ITC.1.2, FTP_ITC.1.3, FTP_TRP.1Evaluation facilities
TÜV InformationstechnikCertification process
out of scope, Out of scope, i.e. TOE is operating in Normal Mode) is out of scope of this evaluation, Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE, of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious, 2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of, mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer, up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the, that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The, utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the, level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the, results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data, processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE, of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip, Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information, parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04Side-channel analysis
Physical Probing, physical probing, DPA, Malfunction, DFA, reverse engineeringCertification process
out of scope, Out of scope, i.e. TOE is operating in Normal Mode) is out of scope of this evaluation, Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE, of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious, 2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of, mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer, up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the, that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The, utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the, level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the, results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data, processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE, of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip, Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information, parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04Standards
AIS20, AIS 20, ISO/IEC 18092, ISO/IEC 15408, CCIMB-99-031, CCIMB-99-032, CCIMB-99-033File metadata
Title: | MDPU2 ST Ver1.11 |
---|---|
Subject: | 英文(K.H.) |
Author: | EbisawaHiroki |
Creation date: | D:20050819223433+09'00' |
Modification date: | D:20050819223926+09'00' |
Pages: | 70 |
Creator: | Word 用 Acrobat PDFMaker 7.0 |
Producer: | Acrobat Distiller 7.0 (Windows) |
References
No references.
Heuristics ?
Extracted SARs
AVA_SOF.1, ALC_DVS.1, AGD_PRE.1, ADV_INT.3, APE_REQ.2, AGD_ADM.1, ASE_TSS.2, ASE_REQ.2, ASE_OBJ.2, ALC_FLR.3, AGD_OPE.1, APE_INT.1, ASE_CCL.1, ALC_CMC.5, ASE_INT.1, AVA_VAN.5, AVA_MSU.2, ALC_DEL.1, APE_CCL.1, ASE_ECD.1, ALC_LCD.1, ALC_TAT.1, ATE_FUN.1, ATE_DPT.1, APE_SPD.1, APE_OBJ.2, ALC_CMS.5, APE_ECD.1, ADV_SPM.1, ASE_SPD.1, ADV_TDS.6, ATE_COV.2, ADV_RCR.1, ATE_IND.2, ADV_IMP.1, ADV_FSP.2, ADV_ARC.1, AGD_USR.1, ADV_HLD.2, AVA_VLA.2, ADV_LLD.1References ?
No references are available for this certificate.
Updates ?
-
15.02.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'report': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '30010ed4e1b294c92f22a16304bfdedfa1c88716601449e96d49cd6a22fcfb84', 'txt_hash': '610b9a864af5c2168b9838a8a2b252d1f17701b9f9554e472ea62eac6b5816c3'}, 'st': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'e9e1220e48d91026af3d57651c2d4aafc383d7e462d61de9efc9a0f5fddd44b4', 'txt_hash': '06f0047ce2d6262bd013e6c87868a2b41c26a9c06801a15179fafef22c05fe3c'}, 'cert': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': False, 'convert_garbage': False, 'convert_ok': False, 'extract_ok': False, 'pdf_hash': None, 'txt_hash': None}}
. - The following properties were deleted:
['st_download_ok', 'report_download_ok', 'st_convert_garbage', 'report_convert_garbage', 'st_convert_ok', 'report_convert_ok', 'st_extract_ok', 'report_extract_ok', 'st_pdf_hash', 'report_pdf_hash', 'st_txt_hash', 'report_txt_hash']
.
The PDF extraction data was updated.
- The following values were inserted:
{'cert_metadata': None, 'cert_frontpage': None, 'cert_keywords': None, 'cert_filename': None}
. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-0588-2009', 'cert_item': 'Oracle Database 11g Enterprise Edition with Oracle Database Vault Release 11.1.0.7 with Critical Patch Updates up to and including July 2009', 'developer': 'Oracle Corporation', 'cert_lab': 'BSI'}}
. - The st_frontpage property was set to
None
. - The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__insert__': {'BSI-DSZ-CC-0588': 1}, '__update__': {'BSI-DSZ-CC-0588-2009': 15, 'BSI-DSZ-CC-0403-2008': 3}}}}}
data.
- The following values were inserted:
-
13.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-0588-2009': 30, 'BSI-DSZ-CC-0403-2008': 6}, '__delete__': ['BSI-DSZ-CC-0588']}}}}
data.
- The report_keywords property was updated, with the
-
07.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'cc_cert_id': {'__delete__': ['CA']}}
data.
- The report_keywords property was updated, with the
-
07.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'cc_cert_id': {'__insert__': {'CA': {'1 1 1': 18, '1 2 3': 6, '5 5 6': 1, '1 1 2': 1, '2 3 3': 1, '4 5 5': 2, '5 5 5': 1, '1 2 2': 5, '2 2 2': 2, '2 2 3': 1}}, '__update__': {'DE': {'__insert__': {'BSI-DSZ-CC-0588': 1}, '__update__': {'BSI-DSZ-CC-0588-2009': 15, 'BSI-DSZ-CC-0403-2008': 3}}}}}
data.
- The report_keywords property was updated, with the
-
04.01.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'annotated_references': None}
.
- The following values were inserted:
-
26.04.2023 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'scheme_data': None}
.
- The following values were inserted:
-
11.02.2023 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.cc.CCCertificate
.
The state of the certificate object was updated.
- The _type property was set to
sec_certs.sample.cc.CCCertificate.InternalState
. - The following properties were deleted:
['errors']
.
The PDF extraction data was updated.
- The _type property was set to
sec_certs.sample.cc.CCCertificate.PdfData
.
The computed heuristics were updated.
- The following values were inserted:
{'direct_transitive_cves': None, 'indirect_transitive_cves': None}
. - The _type property was set to
sec_certs.sample.cc.CCCertificate.Heuristics
. - The following properties were deleted:
['direct_dependency_cves', 'indirect_dependency_cves']
.
- The new value is
-
25.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_download_ok property was set to
True
. - The st_convert_ok property was set to
True
. - The st_extract_ok property was set to
True
. - The errors property was set to
[]
. - The st_pdf_hash property was set to
e9e1220e48d91026af3d57651c2d4aafc383d7e462d61de9efc9a0f5fddd44b4
. - The st_txt_hash property was set to
06f0047ce2d6262bd013e6c87868a2b41c26a9c06801a15179fafef22c05fe3c
.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 309061, 'pdf_is_encrypted': True, 'pdf_number_of_pages': 70, '/Author': 'EbisawaHiroki', '/Comments': '英文校正 by H.Hamada', '/Company': 'Sony Corporation', '/CreationDate': "D:20050819223433+09'00'", '/Creator': 'Word 用 Acrobat PDFMaker 7.0', '/ModDate': "D:20050819223926+09'00'", '/Producer': 'Acrobat Distiller 7.0 (Windows)', '/Subject': '英文(K.H.)', '/Title': 'MDPU2 ST Ver1.11', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}
. - The st_frontpage property was set to
{'anssi': {}, 'bsi': {}, 'nscib': {}, 'niap': {}, 'canada': {}}
. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 10}}, 'cc_sar': {'ACM': {'ACM_AUT.1': 3, 'ACM_CAP.4': 3, 'ACM_SCP.2': 3, 'ACM_SCP.1': 1, 'ACM_CAP.3': 1}, 'ADO': {'ADO_DEL.2': 3, 'ADO_IGS.1': 4}, 'ADV': {'ADV_FSP.2': 3, 'ADV_HLD.2': 5, 'ADV_IMP.1': 4, 'ADV_LLD.1': 5, 'ADV_RCR.1': 4, 'ADV_SPM.1': 6, 'ADV_FSP.1': 7, 'ADV_HLD.1': 2}, 'AGD': {'AGD_ADM.1': 7, 'AGD_USR.1': 3}, 'ALC': {'ALC_DVS.1': 4, 'ALC_LCD.1': 3, 'ALC_TAT.1': 4}, 'ATE': {'ATE_COV.2': 3, 'ATE_DPT.1': 3, 'ATE_FUN.1': 3, 'ATE_IND.2': 3}, 'AVA': {'AVA_MSU.2': 3, 'AVA_SOF.1': 3, 'AVA_VLA.2': 3}}, 'cc_sfr': {'FCS': {'FCS_COP.1': 22, 'FCS_CKM.1': 20, 'FCS_CKM.4': 16, 'FCS_COP.1.1': 2, 'FCS_CKM.1.1': 2, 'FCS_CKM.4.1': 2}, 'FDP': {'FDP_IFC.1': 20, 'FDP_IFF.1': 15, 'FDP_ITT.1': 12, 'FDP_SDI.1': 14, 'FDP_UIT.1': 11, 'FDP_UCT.1': 11, 'FDP_ACC.1': 13, 'FDP_ACF.1': 10, 'FDP_IFC.1.1': 1, 'FDP_IFF.1.1': 1, 'FDP_IFF.1.2': 1, 'FDP_IFF.1.3': 1, 'FDP_IFF.1.4': 1, 'FDP_IFF.1.5': 1, 'FDP_IFF.1.6': 1, 'FDP_ITT.1.1': 1, 'FDP_SDI.1.1': 1, 'FDP_UIT.1.1': 1, 'FDP_UIT.1.2': 1, 'FDP_UCT.1.1': 1, 'FDP_ACC.1.1': 1, 'FDP_ACF.1.1': 1, 'FDP_ACF.1.2': 1, 'FDP_ACF.1.3': 1, 'FDP_ACF.1.4': 1, 'FDP_ITC.1': 2, 'FDP_ACC': 3}, 'FIA': {'FIA_UID.1': 11, 'FIA_UAU.2': 10, 'FIA_AFL.1': 7, 'FIA_UID.1.1': 1, 'FIA_UID.1.2': 1, 'FIA_UAU.2.1': 1, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 2, 'FIA_ALF.1': 2, 'FIA_UAU': 1, 'FIA_AFL': 1}, 'FMT': {'FMT_SMR.1': 15, 'FMT_MTD.1': 10, 'FMT_MSA.2': 11, 'FMT_MSA.3': 12, 'FMT_MSA.1': 22, 'FMT_SMF.1': 11, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_MSA.2.1': 1, 'FMT_MTD.1.1': 1, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_MSA.1.1': 2, 'FMT_SMF.1.1': 1, 'FMT_MSA': 1}, 'FPT': {'FPT_FLS.1': 19, 'FPT_PHP.3': 14, 'FPT_ITT.1': 12, 'FPT_RCV.4': 20, 'FPT_TST.1': 11, 'FPT_FLS.1.1': 1, 'FPT_TST.1.1': 1, 'FPT_TST': 1, 'FPT_TST.1.2': 1, 'FPT_TST.1.3': 1, 'FPT_PHP.3.1': 1, 'FPT_ITT.1.1': 1, 'FPT_RCV.4.1': 1, 'FPT_SDI.1': 1, 'FPT_AMT.1': 3}, 'FTP': {'FTP_ITC.1': 22, 'FTP_ITC.1.1': 2, 'FTP_ITC.1.2': 2, 'FTP_ITC.1.3': 2, 'FTP_TRP.1': 2}}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'TUV': {'TÜV Informationstechnik': 1}}, 'symmetric_crypto': {'DES': {'DES': {'DES': 17}, '3DES': {'Triple-DES': 4}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {'RNG': {'RNG': 1}}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'Physical Probing': 5, 'physical probing': 3, 'DPA': 1}, 'FI': {'Malfunction': 26, 'DFA': 1}, 'other': {'reverse engineering': 1}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'BSI': {'AIS20': 2, 'AIS 20': 1}, 'ISO': {'ISO/IEC 18092': 2, 'ISO/IEC 15408': 6}, 'CC': {'CCIMB-99-031': 1, 'CCIMB-99-032': 1, 'CCIMB-99-033': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 10, 'Out of scope': 1, 'i.e. TOE is operating in Normal Mode) is out of scope of this evaluation': 1, 'Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE': 1, 'of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious': 1, '2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of': 1, 'mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer': 1, 'up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the': 1, 'that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The': 1, 'utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the': 1, 'level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the': 1, 'results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data': 1, 'processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE': 1, 'of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip': 1, 'Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information': 1, 'parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04': 1}}}
. - The st_filename property was set to
0308b_pdf.pdf
.
The computed heuristics were updated.
- The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_SOF', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_RCR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_MSU', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_LLD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_ADM', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_USR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_HLD', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VLA', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 2}]}
values added.
- The st_download_ok property was set to
-
24.12.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_download_ok property was set to
False
. - The st_convert_ok property was set to
False
. - The st_extract_ok property was set to
False
. - The errors property was set to
['failed to download ST from https://www.commoncriteriaportal.org/files/epfiles/0308b_pdf.pdf, code: nok']
. - The st_pdf_hash property was set to
None
. - The st_txt_hash property was set to
None
.
The PDF extraction data was updated.
- The st_metadata property was set to
None
. - The st_frontpage property was set to
None
. - The st_keywords property was set to
None
. - The st_filename property was set to
None
.
The computed heuristics were updated.
- The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 6}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 2}]}
values added.
- The st_download_ok property was set to
-
05.10.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'st_convert_garbage': False, 'report_convert_garbage': False}
.
- The following values were inserted:
-
26.09.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The st_references property was updated, with the
{'directly_referencing': None, 'indirectly_referencing': None}
data. - The report_references property was updated, with the
{'directly_referencing': None, 'indirectly_referencing': None}
data.
- The st_references property was updated, with the
-
24.09.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The following values were inserted:
{'report_filename': '0588a_pdf.pdf', 'st_filename': '0308b_pdf.pdf'}
. - The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-0588-2009': 30, 'BSI-DSZ-CC-0403-2008': 6}}}}, 'cc_security_level': {'__update__': {'EAL': {'__update__': {'EAL2': 3, 'EAL6': 3}}}}, 'cc_sar': {'__update__': {'ALC': {'__update__': {'ALC_FLR.3': 5}, '__delete__': ['ALC_LCD']}}}, 'tee_name': {}, 'certification_process': {'__update__': {'ConfidentialDocument': {'Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness': 1, '1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part number': 1}}}}
data. - The st_keywords property was updated, with the
{'cc_security_level': {'__update__': {'EAL': {'__update__': {'EAL4': 10}}}}, 'cc_sar': {'__update__': {'ACM': {'__update__': {'ACM_CAP.3': 1}}, 'ADV': {'__update__': {'ADV_FSP.2': 3, 'ADV_RCR.1': 4, 'ADV_FSP.1': 7}}, 'AGD': {'__update__': {'AGD_USR.1': 3}}, 'ATE': {'__update__': {'ATE_FUN.1': 3}}, 'AVA': {'__update__': {'AVA_VLA.2': 3}}}}, 'cc_sfr': {'__update__': {'FCS': {'__update__': {'FCS_COP.1': 22, 'FCS_CKM.1': 20, 'FCS_CKM.4': 16}, '__delete__': ['FCS_CKM.2']}, 'FDP': {'__update__': {'FDP_IFC.1': 20, 'FDP_UIT.1': 11, 'FDP_ACC.1': 13, 'FDP_ACF.1': 10, 'FDP_ACC': 3}}, 'FIA': {'__insert__': {'FIA_UAU': 1, 'FIA_AFL': 1}, '__update__': {'FIA_UID.1': 11}, '__delete__': ['FIA_UAU.1']}, 'FMT': {'__insert__': {'FMT_MSA.1': 22, 'FMT_MSA.1.1': 2, 'FMT_MSA': 1}, '__update__': {'FMT_SMF.1': 11}}, 'FPT': {'__insert__': {'FPT_TST': 1}, '__update__': {'FPT_ITT.1': 12, 'FPT_RCV.4': 20, 'FPT_AMT.1': 3}}, 'FTP': {'__update__': {'FTP_ITC.1': 22}}}}, 'symmetric_crypto': {'__update__': {'DES': {'__update__': {'DES': {'__update__': {'DES': 17}}}}}}, 'randomness': {'RNG': {'RNG': 1}}, 'side_channel_analysis': {'__update__': {'SCA': {'__insert__': {'DPA': 1}, '__delete__': ['SPA']}, 'FI': {'__update__': {'Malfunction': 26, 'DFA': 1}}}}, 'certification_process': {'__update__': {'OutOfScope': {'__insert__': {'i.e. TOE is operating in Normal Mode) is out of scope of this evaluation': 1, 'Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE': 1, '2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of': 1, 'mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer': 1, 'up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the': 1, 'that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The': 1, 'level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the': 1, 'results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data': 1, 'of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip': 1, 'Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information': 1, 'parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04': 1}, '__delete__': ['(i.e. TOE is operating in Normal Mode) is out of scope of this evaluation', '.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type', '. Normal Mode (Out of scope in this evaluation', '. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE', '. Be careful that, however, the firmware out of scopes the TOE', '. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation', 'n 2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of', 'ng mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer', 'ts up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the', 'reful that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The', 'y level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the', 's results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data', 'ent” of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip', 'nt Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of', 'ated parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04']}}}}
data.
- The following values were inserted:
-
28.07.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_extract_ok property was set to
True
. - The errors property was set to
[]
.
The PDF extraction data was updated.
- The st_metadata property was set to
{'pdf_file_size_bytes': 309061, 'pdf_is_encrypted': True, 'pdf_number_of_pages': 70, '/Author': 'EbisawaHiroki', '/Comments': '英文校正 by H.Hamada', '/Company': 'Sony Corporation', '/CreationDate': "D:20050819223433+09'00'", '/Creator': 'Word 用 Acrobat PDFMaker 7.0', '/ModDate': "D:20050819223926+09'00'", '/Producer': 'Acrobat Distiller 7.0 (Windows)', '/Subject': '英文(K.H.)', '/Title': 'MDPU2 ST Ver1.11', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}
.
- The st_extract_ok property was set to
-
18.07.2022 The certificate data changed.
Certificate changed
The _type was updated.
- The new value is
sec_certs.sample.common_criteria.CommonCriteriaCert
.
The state of the certificate object was updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState
.
The PDF extraction data was updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData
.
The computed heuristics were updated.
- The _type property was set to
sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics
. - The st_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}
data. - The report_references property was updated, with the
{'_type': 'sec_certs.sample.certificate.References'}
data. - The extracted_sars property was set to
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_SOF', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_ADM', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_INT', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 3}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 5}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 5}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_CCL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_MSU', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_OBJ', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 5}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'APE_ECD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_SPM', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_TDS', 'level': 6}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_RCR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_FSP', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AGD_USR', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_HLD', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VLA', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_LLD', 'level': 1}]}
.
- The new value is
-
17.07.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The st_extract_ok property was set to
False
. - The errors property was set to
['Failed to read metadata of certs/targets/pdf/03b4ff588fb88dae.pdf, error: can only concatenate list (not "IndirectObject") to list', 'Failed to read metadata of certs/targets/pdf/03b4ff588fb88dae.pdf, error: can only concatenate list (not "IndirectObject") to list']
.
The PDF extraction data was updated.
- The report_metadata property was updated, with the
{'pdf_hyperlinks': {'_type': 'Set', 'elements': ['http://www.bsi.bund.de/']}}
values inserted. - The st_metadata property was set to
None
. - The report_keywords property was set to
{'cc_cert_id': {'DE': {'BSI-DSZ-CC-0588-2009': 62, 'BSI-DSZ-CC-0403-2008': 4}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 3, 'EAL 1': 1, 'EAL 7': 1, 'EAL4': 7, 'EAL1': 6, 'EAL2': 4, 'EAL3': 4, 'EAL5': 6, 'EAL6': 4, 'EAL7': 4, 'EAL 4 augmented': 2, 'EAL4 augmented': 1}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 1, 'ADV_FSP.1': 1, 'ADV_FSP.2': 1, 'ADV_FSP.3': 1, 'ADV_FSP.4': 1, 'ADV_FSP.5': 1, 'ADV_FSP.6': 1, 'ADV_IMP.1': 1, 'ADV_IMP.2': 1, 'ADV_INT.1': 1, 'ADV_INT.2': 1, 'ADV_INT.3': 1, 'ADV_SPM.1': 1, 'ADV_TDS.1': 1, 'ADV_TDS.2': 1, 'ADV_TDS.3': 1, 'ADV_TDS.4': 1, 'ADV_TDS.5': 1, 'ADV_TDS.6': 1, 'ADV_ARC': 1, 'ADV_FSP': 1, 'ADV_IMP': 1, 'ADV_INT': 1, 'ADV_SPM': 1, 'ADV_TDS': 1}, 'AGD': {'AGD_OPE.1': 1, 'AGD_PRE.1': 1, 'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_FLR.3': 4, 'ALC_CMC.1': 1, 'ALC_CMC.2': 1, 'ALC_CMC.3': 1, 'ALC_CMC.4': 1, 'ALC_CMC.5': 1, 'ALC_CMS.1': 1, 'ALC_CMS.2': 1, 'ALC_CMS.3': 1, 'ALC_CMS.4': 1, 'ALC_CMS.5': 1, 'ALC_DEL.1': 1, 'ALC_DVS.1': 1, 'ALC_DVS.2': 1, 'ALC_FLR.1': 1, 'ALC_FLR.2': 1, 'ALC_LCD.1': 1, 'ALC_LCD.2': 1, 'ALC_TAT.1': 1, 'ALC_TAT.2': 1, 'ALC_TAT.3': 1, 'ALC_CMC': 1, 'ALC_CMS': 1, 'ALC_DEL': 1, 'ALC_DVS': 1, 'ALC_FLR': 1, 'ALC_LCD': 1, 'ALC_TAT': 1}, 'ATE': {'ATE_COV.1': 1, 'ATE_COV.2': 1, 'ATE_COV.3': 1, 'ATE_DPT.1': 1, 'ATE_DPT.2': 1, 'ATE_DPT.3': 1, 'ATE_DPT.4': 1, 'ATE_FUN.1': 1, 'ATE_FUN.2': 1, 'ATE_IND.1': 1, 'ATE_IND.2': 1, 'ATE_IND.3': 1, 'ATE_COV': 1, 'ATE_DPT': 1, 'ATE_FUN': 1, 'ATE_IND': 1}, 'AVA': {'AVA_VAN.1': 1, 'AVA_VAN.2': 1, 'AVA_VAN.3': 1, 'AVA_VAN.4': 1, 'AVA_VAN.5': 1, 'AVA_VAN': 2}, 'APE': {'APE_INT.1': 1, 'APE_CCL.1': 1, 'APE_SPD.1': 1, 'APE_OBJ.1': 1, 'APE_OBJ.2': 1, 'APE_ECD.1': 1, 'APE_REQ.1': 1, 'APE_REQ.2': 1}, 'ASE': {'ASE_INT.1': 1, 'ASE_CCL.1': 1, 'ASE_SPD.1': 1, 'ASE_OBJ.1': 1, 'ASE_OBJ.2': 1, 'ASE_ECD.1': 1, 'ASE_REQ.1': 1, 'ASE_REQ.2': 1, 'ASE_TSS.1': 1, 'ASE_TSS.2': 1, 'ASE_CCL': 1, 'ASE_ECD': 1, 'ASE_INT': 1, 'ASE_OBJ': 1, 'ASE_SPD': 1, 'ASE_TSS': 1}}, 'cc_sfr': {}, 'cc_claims': {'OE': {'OE.DIR_CONTROL': 1, 'OE.COM_PROT': 1, 'OE.CLIENT_AP': 1, 'OE.DBV_INSTALL': 1}}, 'vendor': {}, 'eval_facility': {'atsec': {'atsec': 3}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}}}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {'BSI': {'BSI 7125': 2, 'BSI 7148': 1, 'BSI 7149': 1}}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 6}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'BSI': {'AIS 38': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'valuation Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness': 1, '.1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part number': 1}}}
. - The st_keywords property was set to
{'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 4}}, 'cc_sar': {'ACM': {'ACM_AUT.1': 3, 'ACM_CAP.4': 3, 'ACM_SCP.2': 3, 'ACM_CAP.3': 3, 'ACM_SCP.1': 1}, 'ADO': {'ADO_DEL.2': 3, 'ADO_IGS.1': 4}, 'ADV': {'ADV_FSP.2': 4, 'ADV_HLD.2': 5, 'ADV_IMP.1': 4, 'ADV_LLD.1': 5, 'ADV_RCR.1': 7, 'ADV_SPM.1': 6, 'ADV_FSP.1': 9, 'ADV_HLD.1': 2}, 'AGD': {'AGD_ADM.1': 7, 'AGD_USR.1': 6}, 'ALC': {'ALC_DVS.1': 4, 'ALC_LCD.1': 3, 'ALC_TAT.1': 4}, 'ATE': {'ATE_COV.2': 3, 'ATE_DPT.1': 3, 'ATE_FUN.1': 6, 'ATE_IND.2': 3}, 'AVA': {'AVA_VLA.2': 5, 'AVA_MSU.2': 3, 'AVA_SOF.1': 3}}, 'cc_sfr': {'FCS': {'FCS_COP.1': 23, 'FCS_CKM.1': 21, 'FCS_CKM.4': 17, 'FCS_COP.1.1': 2, 'FCS_CKM.1.1': 2, 'FCS_CKM.4.1': 2, 'FCS_CKM.2': 1}, 'FDP': {'FDP_IFC.1': 21, 'FDP_IFF.1': 15, 'FDP_ITT.1': 12, 'FDP_SDI.1': 14, 'FDP_UIT.1': 10, 'FDP_UCT.1': 11, 'FDP_ACC.1': 14, 'FDP_ACF.1': 12, 'FDP_IFC.1.1': 1, 'FDP_IFF.1.1': 1, 'FDP_IFF.1.2': 1, 'FDP_IFF.1.3': 1, 'FDP_IFF.1.4': 1, 'FDP_IFF.1.5': 1, 'FDP_IFF.1.6': 1, 'FDP_ITT.1.1': 1, 'FDP_SDI.1.1': 1, 'FDP_UIT.1.1': 1, 'FDP_UIT.1.2': 1, 'FDP_UCT.1.1': 1, 'FDP_ACC.1.1': 1, 'FDP_ACF.1.1': 1, 'FDP_ACF.1.2': 1, 'FDP_ACF.1.3': 1, 'FDP_ACF.1.4': 1, 'FDP_ACC': 4, 'FDP_ITC.1': 2}, 'FIA': {'FIA_UID.1': 12, 'FIA_UAU.2': 10, 'FIA_AFL.1': 7, 'FIA_UID.1.1': 1, 'FIA_UID.1.2': 1, 'FIA_UAU.2.1': 1, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 2, 'FIA_ALF.1': 2, 'FIA_UAU.1': 1}, 'FMT': {'FMT_SMR.1': 15, 'FMT_MTD.1': 10, 'FMT_MSA.2': 11, 'FMT_MSA.3': 12, 'FMT_SMF.1': 10, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_MSA.2.1': 1, 'FMT_MTD.1.1': 1, 'FMT_MSA.3.1': 1, 'FMT_MSA.3.2': 1, 'FMT_SMF.1.1': 1}, 'FPT': {'FPT_FLS.1': 19, 'FPT_PHP.3': 14, 'FPT_ITT.1': 10, 'FPT_RCV.4': 14, 'FPT_TST.1': 11, 'FPT_FLS.1.1': 1, 'FPT_TST.1.1': 1, 'FPT_TST.1.2': 1, 'FPT_TST.1.3': 1, 'FPT_PHP.3.1': 1, 'FPT_ITT.1.1': 1, 'FPT_RCV.4.1': 1, 'FPT_SDI.1': 1, 'FPT_AMT.1': 4}, 'FTP': {'FTP_ITC.1': 23, 'FTP_ITC.1.1': 2, 'FTP_ITC.1.2': 2, 'FTP_ITC.1.3': 2, 'FTP_TRP.1': 2}}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'TUV': {'TÜV Informationstechnik': 1}}, 'symmetric_crypto': {'DES': {'DES': {'DES': 23}, '3DES': {'Triple-DES': 4}}}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {'CBC': {'CBC': 1}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'Physical Probing': 5, 'physical probing': 3, 'SPA': 5}, 'FI': {'Malfunction': 28, 'DFA': 2}, 'other': {'reverse engineering': 1}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'BSI': {'AIS20': 2, 'AIS 20': 1}, 'ISO': {'ISO/IEC 18092': 2, 'ISO/IEC 15408': 6}, 'CC': {'CCIMB-99-031': 1, 'CCIMB-99-032': 1, 'CCIMB-99-033': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 10, 'Out of scope': 1, '(i.e. TOE is operating in Normal Mode) is out of scope of this evaluation': 1, '.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type': 1, '. Normal Mode (Out of scope in this evaluation': 1, '. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE': 1, '. Be careful that, however, the firmware out of scopes the TOE': 1, '. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation': 5, 'of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious': 1, 'n 2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the “2.1 Product Type”. Be careful that only a part of the IC-Chip components are scope of': 1, 'ng mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer': 1, 'ts up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the': 1, 'reful that the following paragraphs describe the TOE’s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The': 1, 'utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the': 1, 'y level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the': 1, 's results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data': 1, 'processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE': 1, 'ent” of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip': 1, 'nt Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of': 1, 'ated parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04': 1}}}
.
The computed heuristics were updated.
- The _type property was set to
Heuristics
. - The extracted_sars property was updated, with the
{'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'ADO_IGS', 'level': 1}, {'_type': 'SAR', 'family': 'ACM_SCP', 'level': 2}, {'_type': 'SAR', 'family': 'ACM_AUT', 'level': 1}, {'_type': 'SAR', 'family': 'ACM_CAP', 'level': 4}, {'_type': 'SAR', 'family': 'ADO_DEL', 'level': 2}]}
values discarded.
- The st_extract_ok property was set to
-
14.06.2022 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'report_pdf_hash': '30010ed4e1b294c92f22a16304bfdedfa1c88716601449e96d49cd6a22fcfb84', 'st_pdf_hash': 'e9e1220e48d91026af3d57651c2d4aafc383d7e462d61de9efc9a0f5fddd44b4', 'report_txt_hash': '610b9a864af5c2168b9838a8a2b252d1f17701b9f9554e472ea62eac6b5816c3', 'st_txt_hash': '06f0047ce2d6262bd013e6c87868a2b41c26a9c06801a15179fafef22c05fe3c'}
.
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'rules_symmetric_crypto': {}, 'rules_asymmetric_crypto': {}, 'rules_pq_crypto': {}, 'rules_hashes': {'SHA-1': 1}, 'rules_crypto_schemes': {'SSL': 1}, 'rules_randomness': {}, 'rules_tee': {'SE': 6}, 'rules_side_channels': {}}
values inserted. - The st_keywords property was updated, with the
{'rules_symmetric_crypto': {'DES': 23}, 'rules_asymmetric_crypto': {}, 'rules_pq_crypto': {}, 'rules_hashes': {}, 'rules_crypto_schemes': {}, 'rules_randomness': {}, 'rules_tee': {}, 'rules_side_channels': {'Malfunction': 28, 'Physical Probing': 5, 'physical probing': 3, 'DFA': 1, 'reverse engineering': 1}}
values inserted.
- The following values were inserted:
-
13.05.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'extracted_sars': {'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'ATE_FUN', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_FSP', 'level': 2}, {'_type': 'SAR', 'family': 'ADV_LLD', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_IMP', 'level': 1}, {'_type': 'SAR', 'family': 'AVA_VAN', 'level': 5}, {'_type': 'SAR', 'family': 'ADV_TDS', 'level': 6}, {'_type': 'SAR', 'family': 'ADV_HLD', 'level': 2}, {'_type': 'SAR', 'family': 'ACM_CAP', 'level': 4}, {'_type': 'SAR', 'family': 'ASE_INT', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMC', 'level': 5}, {'_type': 'SAR', 'family': 'APE_OBJ', 'level': 2}, {'_type': 'SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'SAR', 'family': 'ATE_DPT', 'level': 1}, {'_type': 'SAR', 'family': 'AVA_SOF', 'level': 1}, {'_type': 'SAR', 'family': 'ADO_IGS', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_SPD', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'SAR', 'family': 'APE_ECD', 'level': 1}, {'_type': 'SAR', 'family': 'AGD_USR', 'level': 1}, {'_type': 'SAR', 'family': 'AGD_OPE', 'level': 1}, {'_type': 'SAR', 'family': 'ADO_DEL', 'level': 2}, {'_type': 'SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'SAR', 'family': 'APE_CCL', 'level': 1}, {'_type': 'SAR', 'family': 'AVA_MSU', 'level': 2}, {'_type': 'SAR', 'family': 'ASE_TSS', 'level': 2}, {'_type': 'SAR', 'family': 'ACM_SCP', 'level': 2}, {'_type': 'SAR', 'family': 'ATE_COV', 'level': 2}, {'_type': 'SAR', 'family': 'APE_REQ', 'level': 2}, {'_type': 'SAR', 'family': 'AGD_PRE', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_INT', 'level': 3}, {'_type': 'SAR', 'family': 'AGD_ADM', 'level': 1}, {'_type': 'SAR', 'family': 'ACM_AUT', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_SPM', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMS', 'level': 5}, {'_type': 'SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_OBJ', 'level': 2}, {'_type': 'SAR', 'family': 'ALC_FLR', 'level': 3}, {'_type': 'SAR', 'family': 'ASE_ECD', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_RCR', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_CCL', 'level': 1}, {'_type': 'SAR', 'family': 'ASE_REQ', 'level': 2}, {'_type': 'SAR', 'family': 'APE_INT', 'level': 1}, {'_type': 'SAR', 'family': 'AVA_VLA', 'level': 2}, {'_type': 'SAR', 'family': 'ALC_DVS', 'level': 1}, {'_type': 'SAR', 'family': 'APE_SPD', 'level': 1}]}}
.
- The following values were inserted:
-
24.04.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'direct_dependency_cves': None, 'indirect_dependency_cves': None}
.
- The following values were inserted:
-
08.03.2022 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0486-2004', 'CCEVS-VR-VID10271-2007', 'CCEVS-VR-07-0054']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0486-2004', 'CCEVS-VR-VID10271-2007', 'CCEVS-VR-07-0054']}}, 'report_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0403-2008']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0403-2008']}}}
. - The following properties were deleted:
['directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting']
.
- The following values were inserted:
-
18.02.2022 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_frontpage property was updated, with the
{'nscib': {}, 'niap': {}, 'canada': {}}
values inserted. - The st_frontpage property was updated, with the
{'nscib': {}, 'niap': {}, 'canada': {}}
values inserted.
The computed heuristics were updated.
- The extracted_versions property was set to
{'_type': 'Set', 'elements': ['4']}
.
- The report_frontpage property was updated, with the
-
28.01.2022 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name IC chip for the reader / writer RC-S940 (CXD9768GG), version 4 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
"cert_link": null,
"dgst": "03b4ff588fb88dae",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-0588-2009",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_PRE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_INT",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DVS",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_RCR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_SPD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_USR",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_MSU",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_SPM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_LLD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 3
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_TSS",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_REQ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_ADM",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VLA",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "APE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_DPT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_TDS",
"level": 6
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_SOF",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_HLD",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_ECD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_FSP",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_TAT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_IND",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMS",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"4"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"scheme_data": null,
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": []
},
"manufacturer": "Sony Corporation",
"manufacturer_web": "https://www.sony.com/",
"name": "IC chip for the reader / writer RC-S940 (CXD9768GG), version 4",
"not_valid_after": "2019-09-01",
"not_valid_before": "2009-07-30",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": null,
"cert_frontpage": null,
"cert_keywords": null,
"cert_metadata": null,
"report_filename": "0588a_pdf.pdf",
"report_frontpage": {
"DE": {
"cert_id": "BSI-DSZ-CC-0588-2009",
"cert_item": "Oracle Database 11g Enterprise Edition with Oracle Database Vault Release 11.1.0.7 with Critical Patch Updates up to and including July 2009",
"cert_lab": "BSI",
"developer": "Oracle Corporation",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
]
}
},
"report_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-0403-2008": 3,
"BSI-DSZ-CC-0588": 1,
"BSI-DSZ-CC-0588-2009": 15
}
},
"cc_claims": {
"OE": {
"OE.CLIENT_AP": 1,
"OE.COM_PROT": 1,
"OE.DBV_INSTALL": 1,
"OE.DIR_CONTROL": 1
}
},
"cc_protection_profile_id": {},
"cc_sar": {
"ADV": {
"ADV_ARC": 1,
"ADV_ARC.1": 1,
"ADV_FSP": 1,
"ADV_FSP.1": 1,
"ADV_FSP.2": 1,
"ADV_FSP.3": 1,
"ADV_FSP.4": 1,
"ADV_FSP.5": 1,
"ADV_FSP.6": 1,
"ADV_IMP": 1,
"ADV_IMP.1": 1,
"ADV_IMP.2": 1,
"ADV_INT": 1,
"ADV_INT.1": 1,
"ADV_INT.2": 1,
"ADV_INT.3": 1,
"ADV_SPM": 1,
"ADV_SPM.1": 1,
"ADV_TDS": 1,
"ADV_TDS.1": 1,
"ADV_TDS.2": 1,
"ADV_TDS.3": 1,
"ADV_TDS.4": 1,
"ADV_TDS.5": 1,
"ADV_TDS.6": 1
},
"AGD": {
"AGD_OPE": 1,
"AGD_OPE.1": 1,
"AGD_PRE": 1,
"AGD_PRE.1": 1
},
"ALC": {
"ALC_CMC": 1,
"ALC_CMC.1": 1,
"ALC_CMC.2": 1,
"ALC_CMC.3": 1,
"ALC_CMC.4": 1,
"ALC_CMC.5": 1,
"ALC_CMS": 1,
"ALC_CMS.1": 1,
"ALC_CMS.2": 1,
"ALC_CMS.3": 1,
"ALC_CMS.4": 1,
"ALC_CMS.5": 1,
"ALC_DEL": 1,
"ALC_DEL.1": 1,
"ALC_DVS": 1,
"ALC_DVS.1": 1,
"ALC_DVS.2": 1,
"ALC_FLR": 1,
"ALC_FLR.1": 1,
"ALC_FLR.2": 1,
"ALC_FLR.3": 5,
"ALC_LCD.1": 1,
"ALC_LCD.2": 1,
"ALC_TAT": 1,
"ALC_TAT.1": 1,
"ALC_TAT.2": 1,
"ALC_TAT.3": 1
},
"APE": {
"APE_CCL.1": 1,
"APE_ECD.1": 1,
"APE_INT.1": 1,
"APE_OBJ.1": 1,
"APE_OBJ.2": 1,
"APE_REQ.1": 1,
"APE_REQ.2": 1,
"APE_SPD.1": 1
},
"ASE": {
"ASE_CCL": 1,
"ASE_CCL.1": 1,
"ASE_ECD": 1,
"ASE_ECD.1": 1,
"ASE_INT": 1,
"ASE_INT.1": 1,
"ASE_OBJ": 1,
"ASE_OBJ.1": 1,
"ASE_OBJ.2": 1,
"ASE_REQ.1": 1,
"ASE_REQ.2": 1,
"ASE_SPD": 1,
"ASE_SPD.1": 1,
"ASE_TSS": 1,
"ASE_TSS.1": 1,
"ASE_TSS.2": 1
},
"ATE": {
"ATE_COV": 1,
"ATE_COV.1": 1,
"ATE_COV.2": 1,
"ATE_COV.3": 1,
"ATE_DPT": 1,
"ATE_DPT.1": 1,
"ATE_DPT.2": 1,
"ATE_DPT.3": 1,
"ATE_DPT.4": 1,
"ATE_FUN": 1,
"ATE_FUN.1": 1,
"ATE_FUN.2": 1,
"ATE_IND": 1,
"ATE_IND.1": 1,
"ATE_IND.2": 1,
"ATE_IND.3": 1
},
"AVA": {
"AVA_VAN": 2,
"AVA_VAN.1": 1,
"AVA_VAN.2": 1,
"AVA_VAN.3": 1,
"AVA_VAN.4": 1,
"AVA_VAN.5": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 4": 3,
"EAL 4 augmented": 2,
"EAL 7": 1,
"EAL1": 6,
"EAL2": 3,
"EAL3": 4,
"EAL4": 7,
"EAL4 augmented": 1,
"EAL5": 6,
"EAL6": 3,
"EAL7": 4
}
},
"cc_sfr": {},
"certification_process": {
"ConfidentialDocument": {
"1.0), Issue 0.7, July 2009, Oracle Corporation [10] Configuration list for the TOE, July 28, 2009 (confidential document) [11] Oracle Database 11g Release 1 (11.1) Documentation, Version 11.1, Documentation part number": 1,
"Technical Report BSI-DSZ-CC-0588, Version 2, 2009-09-11, atsec information security GmbH (confidential document) [8] U.S. Government Protection Profile for Database Management Systems in Basic Robustness": 1
}
},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"TLS": {
"SSL": {
"SSL": 1
}
}
},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"atsec": {
"atsec": 3
}
},
"hash_function": {
"SHA": {
"SHA1": {
"SHA-1": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"BSI": {
"AIS 38": 1
}
},
"symmetric_crypto": {},
"technical_report_id": {
"BSI": {
"BSI 7125": 2,
"BSI 7148": 1,
"BSI 7149": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"/CreationDate": "D:20091030082805+01\u002700\u0027",
"/Creator": "Writer",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Oracle Coporation\"",
"/ModDate": "D:20091030093623+01\u002700\u0027",
"/Producer": "StarOffice 9",
"/Subject": "Common Criteria, Certification",
"/Title": "Certification Report BSI-DSZ-CC-0588-2009",
"pdf_file_size_bytes": 931333,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.bsi.bund.de/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 34
},
"st_filename": "0308b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"ACM": {
"ACM_AUT.1": 3,
"ACM_CAP.3": 1,
"ACM_CAP.4": 3,
"ACM_SCP.1": 1,
"ACM_SCP.2": 3
},
"ADO": {
"ADO_DEL.2": 3,
"ADO_IGS.1": 4
},
"ADV": {
"ADV_FSP.1": 7,
"ADV_FSP.2": 3,
"ADV_HLD.1": 2,
"ADV_HLD.2": 5,
"ADV_IMP.1": 4,
"ADV_LLD.1": 5,
"ADV_RCR.1": 4,
"ADV_SPM.1": 6
},
"AGD": {
"AGD_ADM.1": 7,
"AGD_USR.1": 3
},
"ALC": {
"ALC_DVS.1": 4,
"ALC_LCD.1": 3,
"ALC_TAT.1": 4
},
"ATE": {
"ATE_COV.2": 3,
"ATE_DPT.1": 3,
"ATE_FUN.1": 3,
"ATE_IND.2": 3
},
"AVA": {
"AVA_MSU.2": 3,
"AVA_SOF.1": 3,
"AVA_VLA.2": 3
}
},
"cc_security_level": {
"EAL": {
"EAL4": 10
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM.1": 20,
"FCS_CKM.1.1": 2,
"FCS_CKM.4": 16,
"FCS_CKM.4.1": 2,
"FCS_COP.1": 22,
"FCS_COP.1.1": 2
},
"FDP": {
"FDP_ACC": 3,
"FDP_ACC.1": 13,
"FDP_ACC.1.1": 1,
"FDP_ACF.1": 10,
"FDP_ACF.1.1": 1,
"FDP_ACF.1.2": 1,
"FDP_ACF.1.3": 1,
"FDP_ACF.1.4": 1,
"FDP_IFC.1": 20,
"FDP_IFC.1.1": 1,
"FDP_IFF.1": 15,
"FDP_IFF.1.1": 1,
"FDP_IFF.1.2": 1,
"FDP_IFF.1.3": 1,
"FDP_IFF.1.4": 1,
"FDP_IFF.1.5": 1,
"FDP_IFF.1.6": 1,
"FDP_ITC.1": 2,
"FDP_ITT.1": 12,
"FDP_ITT.1.1": 1,
"FDP_SDI.1": 14,
"FDP_SDI.1.1": 1,
"FDP_UCT.1": 11,
"FDP_UCT.1.1": 1,
"FDP_UIT.1": 11,
"FDP_UIT.1.1": 1,
"FDP_UIT.1.2": 1
},
"FIA": {
"FIA_AFL": 1,
"FIA_AFL.1": 7,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 2,
"FIA_ALF.1": 2,
"FIA_UAU": 1,
"FIA_UAU.2": 10,
"FIA_UAU.2.1": 1,
"FIA_UID.1": 11,
"FIA_UID.1.1": 1,
"FIA_UID.1.2": 1
},
"FMT": {
"FMT_MSA": 1,
"FMT_MSA.1": 22,
"FMT_MSA.1.1": 2,
"FMT_MSA.2": 11,
"FMT_MSA.2.1": 1,
"FMT_MSA.3": 12,
"FMT_MSA.3.1": 1,
"FMT_MSA.3.2": 1,
"FMT_MTD.1": 10,
"FMT_MTD.1.1": 1,
"FMT_SMF.1": 11,
"FMT_SMF.1.1": 1,
"FMT_SMR.1": 15,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPT": {
"FPT_AMT.1": 3,
"FPT_FLS.1": 19,
"FPT_FLS.1.1": 1,
"FPT_ITT.1": 12,
"FPT_ITT.1.1": 1,
"FPT_PHP.3": 14,
"FPT_PHP.3.1": 1,
"FPT_RCV.4": 20,
"FPT_RCV.4.1": 1,
"FPT_SDI.1": 1,
"FPT_TST": 1,
"FPT_TST.1": 11,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1
},
"FTP": {
"FTP_ITC.1": 22,
"FTP_ITC.1.1": 2,
"FTP_ITC.1.2": 2,
"FTP_ITC.1.3": 2,
"FTP_TRP.1": 2
}
},
"certification_process": {
"OutOfScope": {
"2.2. Scope of TOE This section describes which IC-chip components are scopes of TOE and which are out of scope based on the \u201c2.1 Product Type\u201d. Be careful that only a part of the IC-Chip components are scope of": 1,
"Information Leakage Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. TOE shall provide protection to the data in the TOE from leakage of information": 1,
"Out of scope": 1,
"Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE": 1,
"i.e. TOE is operating in Normal Mode) is out of scope of this evaluation": 1,
"level is sufficient. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 3.1.Assets Assets that must be protected by TOE are defined as the": 1,
"mode to enter if any problems were detected that interferes RC-S940 from operating. Normal Mode (Out of scope in this evaluation) Normal Mode is the operating mode in which the downloaded reader / writer": 1,
"of the TOE, the operation with firmware loaded in the TOE (i.e. TOE is operating in Normal Mode) is out of scope of this evaluation. Nevertheless, the assumption A.Priv is necessary to ensure, that no malicious": 1,
"of this document. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. 4.1. Security Objectives for the TOE 4.1.1. Security Objectives for the IC-Chip": 1,
"out of scope": 10,
"parts of the TOE. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. Threats: T.Power_Down RC-S940 Security Target (Public Version) Version.2.04": 1,
"processes) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Phys_Prob Physical Probing Attackers may disclose the data in the TOE": 1,
"results) is assumed. Note: The reader is reminded that the operation of the TOE in Normal Mode is out of scope of this evaluation. T.Leak_Inherent Inherent Information Leakage Attackers may disclose the data": 1,
"that the following paragraphs describe the TOE\u2019s usage where the components are included that out of scope the TOE. Customers are able to create the firmware to be downloaded to EEPROM of the IC-Chip. The": 1,
"up. Firmware of IC-Chip (Out scope of the TOE) The firmware downloaded to EEPROM during IPL Mode out of scope the TOE. Only the administrator who is privileged by the Controller is able to download the": 1,
"utilizing mutual authentication as well as data encryption. Be careful that, however, the firmware out of scopes the TOE. The list below shows an example of operation as a system or a unit provided by the": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"TUV": {
"T\u00dcV Informationstechnik": 1
}
},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {
"FI": {
"DFA": 1,
"Malfunction": 26
},
"SCA": {
"DPA": 1,
"Physical Probing": 5,
"physical probing": 3
},
"other": {
"reverse engineering": 1
}
},
"standard_id": {
"BSI": {
"AIS 20": 1,
"AIS20": 2
},
"CC": {
"CCIMB-99-031": 1,
"CCIMB-99-032": 1,
"CCIMB-99-033": 1
},
"ISO": {
"ISO/IEC 15408": 6,
"ISO/IEC 18092": 2
}
},
"symmetric_crypto": {
"DES": {
"3DES": {
"Triple-DES": 4
},
"DES": {
"DES": 17
}
}
},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"/Author": "EbisawaHiroki",
"/Comments": "\u82f1\u6587\u6821\u6b63 by H.Hamada",
"/Company": "Sony Corporation",
"/CreationDate": "D:20050819223433+09\u002700\u0027",
"/Creator": "Word \u7528 Acrobat PDFMaker 7.0",
"/ModDate": "D:20050819223926+09\u002700\u0027",
"/Producer": "Acrobat Distiller 7.0 (Windows)",
"/Subject": "\u82f1\u6587(K.H.)",
"/Title": "MDPU2 ST Ver1.11",
"pdf_file_size_bytes": 309061,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": true,
"pdf_number_of_pages": 70
}
},
"protection_profiles": {
"_type": "Set",
"elements": []
},
"report_link": "https://www.commoncriteriaportal.org/files/epfiles/0588a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL4"
]
},
"st_link": "https://www.commoncriteriaportal.org/files/epfiles/0308b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": false,
"download_ok": false,
"extract_ok": false,
"pdf_hash": null,
"txt_hash": null
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "30010ed4e1b294c92f22a16304bfdedfa1c88716601449e96d49cd6a22fcfb84",
"txt_hash": "610b9a864af5c2168b9838a8a2b252d1f17701b9f9554e472ea62eac6b5816c3"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "e9e1220e48d91026af3d57651c2d4aafc383d7e462d61de9efc9a0f5fddd44b4",
"txt_hash": "06f0047ce2d6262bd013e6c87868a2b41c26a9c06801a15179fafef22c05fe3c"
}
},
"status": "archived"
}