This page was not yet optimized for use on mobile devices.

nCipher nShield Solo XC Hardware Security Module v12.50.7

CSV information ?

Status	active
Valid from	19.11.2019
Valid until	19.11.2024
Scheme	🇳🇱 NL
Manufacturer	nCipher Security Ltd.
Category	Products for Digital Signatures
Security level	AVA_VAN.5, EAL4+, ALC_FLR.2

Certificate PDF TXT

Heuristics summary ?

Certificate ID: NSCIB-CC-163968-CR

Certificate ?

Certificate PDF TXT

Extracted keywords

Security level

EAL2, EAL4, EAL4 augmented

Security Assurance Requirements (SAR)

ALC_FLR.2, AVA_VAN.5

Protection profiles

ANSSI-CC-PP-2016/5

Certificates

CC-19-163968

Evaluation facilities

Brightsight

Standards

ISO/IEC 15408, ISO/IEC 18045

File metadata

Title:	C458-M&S19111914310
Creation date:	D:20191119143204+01'00'
Modification date:	D:20191119143204+01'00'
Pages:	1
Creator:	C458-M&S
Producer:	KONICA MINOLTA bizhub C458

Certification report ?

Certification report PDF TXT

Extracted keywords

Symmetric Algorithms

AES

Asymmetric Algorithms

ECDSA, ECC

Randomness

TRNG, RNG

Libraries

OpenSSL

Security level

EAL4, EAL 4, EAL4 augmented, EAL 4 augmented

Security Assurance Requirements (SAR)

ALC_FLR.2, ATE_IND.2, AVA_VAN.5

Security Functional Requirements (SFR)

FAU_GEN, FCS_COP, FTP_TRP

Protection profiles

ANSSI-CC-PP-2016/5

Certificates

NSCIB-CC-163968-CR

Evaluation facilities

Brightsight

Side-channel analysis

physical tampering, JIL

Standards

SP 800-90A, AIS 31, ISO/IEC 19790:2012

File metadata

Title:	Certification Report NSCIB-CC-163968-CR.docx
Author:	p647
Creation date:	D:20191121082858+01'00'
Pages:	13
Creator:	pdfFactory Pro www.pdffactory.com
Producer:	pdfFactory Pro 5.32 (Windows 7 Ultimate x64 Dutch)

Frontpage

Certificate ID:	NSCIB-CC-163968-CR
Certified item:	nShield Solo XC Hardware Security Module v12.50.7
Certification lab:	Brightsight
Developer:	nCipher Security Limited

References

No references.

Security target ?

Security target PDF TXT

Extracted keywords

Symmetric Algorithms

AES, Triple-DES, TDEA, HMAC, HMAC-SHA-224, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512, CMAC, CBC-MAC

Asymmetric Algorithms

ECDH, ECDSA, Diffie-Hellman, DH, DSA

Hash functions

SHA-1, SHA-224, SHA-384, SHA-512

Randomness

DRBG, RNG

Elliptic Curves

P-192, P-224, P-256, P-384, P-521, NIST P-192, NIST K-163, K-233, K-283, K-409, NIST B-163, B-233, B-283, B-409, NIST P-224, NIST K-233, K-571, NIST B-233, B-571, brainpoolP160r1, brainpoolP192r1, brainpoolP224r1, brainpoolP256r1, brainpoolP320r1, brainpoolP384r1, brainpoolP512r1, brainpoolP160t1, brainpoolP192t1, brainpoolP224t1, brainpoolP256t1, brainpoolP320t1, brainpoolP384t1, brainpoolP512t1

Block cipher modes

ECB, CBC, CTR, GCM, CCM

Security level

EAL4, EAL4 augmented

Claims

R.RAD, OT.RNG, OT.B, OT.A, OT.R, OE.U

Security Assurance Requirements (SAR)

ALC_FLR.2, AVA_VAN.5

Security Functional Requirements (SFR)

FAU_GEN.1, FAU_GEN.1.1, FAU_GEN.1.2, FAU_GEN.2, FAU_GEN.2.1, FAU_STG.2, FAU_STG.1, FAU_STG.2.1, FAU_STG.2.2, FAU_STG.2.3, FCS_CKM.1, FCS_COP.1, FCS_CKM.4, FCS_CKM.1.1, FCS_RNG, FCS_CKM.4.1, FCS_COP.1.1, FCS_RNG.1, FCS_CKM.2, FDP_IFC, FDP_IFF.1, FDP_IFC.1, FDP_IFF, FDP_ACC, FDP_ACF.1, FDP_ACC.1, FDP_ACF, FDP_SDI.2, FDP_SDI.1, FDP_SDI.2.1, FDP_SDI.2.2, FDP_RIP.1, FDP_RIP.1.1, FDP_ITC.1, FDP_ITC.2, FIA_UID.1, FIA_UID.1.1, FIA_UAU.1, FIA_UID.1.2, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU, FIA_UAU.6, FIA_AFL.1, FIA_AFL.1.1, FIA_AFL.1.2, FMT_MSA.3, FMT_MTD, FMT_SMR.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMF.1, FMT_SMF.1.1, FMT_MTD.1, FMT_MSA, FMT_MSA.1, FPT_TST_EXT.1, FPT_STM.1, FPT_STM.1.1, FPT_TST_EXT.1.1, FPT_PHP.1, FPT_PHP.1.1, FPT_PHP.1.2, FPT_PHP.3, FPT_PHP.3.1, FPT_FLS.1, FPT_FLS.1.1, FTP_TRP, FTP_TRP.1

Certification process

out of scope, Impath, out of scope) with a remote Hardserver (typically on an application server or PC, for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries, support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 1 Configuration 1: TOE in Connect XC Page 8 of 66 nShield Solo XC HSM Security, support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 2 Configuration 2: TOE in host server nShield Solo XC HSM Security Target Page

Side-channel analysis

side-channels, physical tampering, Malfunction

Certification process

Standards

FIPS 186-4, FIPS 140-2, FIPS 197, FIPS 180-4, FIPS 198-1, SP 800-90A, NIST SP 800-90A, SP 800-56A, NIST SP 800-22, SP 800-38A, SP 800-38B, SP 800-38C, SP 800-38D, SP 800-67, SP 800-38F, SP 800-108, PKCS#11, PKCS#1, PKCS #1, AIS 31, AIS 20, AIS31, RFC 8017, ISO/IEC 19790:2012, CCMB-2017-04-001, CCMB-2017-04-002, CCMB-2017-04-003

File metadata

Title:	$scroll.title
Author:	Foster, Mark
Creation date:	D:20190925154920+02'00'
Modification date:	D:20190925154920+02'00'
Pages:	66
Creator:	Microsoft® Word 2013
Producer:	Microsoft® Word 2013

References

No references.

Heuristics ?

Certificate ID: NSCIB-CC-163968-CR

Extracted SARs

AVA_VAN.5, ATE_IND.2, ALC_FLR.2

Scheme data ?

Manufacturer	nCipher Security Limited
Product	nShield Solo XC Hardware Security Module v12.50.7
Scheme	elDAS
Cert Id	CC-163968
Manufacturer Link	www.ncipher.com
Level	EAL4 augmented with AVA_VAN.5 and ALC_FLR.2
Report Link	https://www.tuv-nederland.nl/assets/files/cerfiticaten/2020/09/certification-report-nscib-cc-163968-cr1.1eidascert2020-07-23.pdf
Target Link	https://www.tuv-nederland.nl/assets/files/cerfiticaten/2020/01/nshield-solo-xc-hsm-security-target-v1.0.pdf

References ?

No references are available for this certificate.

Updates ?

15.02.2024 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The following values were inserted: {'report': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '2a270a36f267fcf60bcad10efae689b56da216051cf4bd6d38faa5fcbf3cc0e3', 'txt_hash': 'a80f2c50c12a9036c1184fc315915267421ac60646a3b872be3007915f22db41'}, 'st': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': 'f6985e3ec99e0922cb456cfddc01010467ebab5680524d87aec2bd5e72807e3d', 'txt_hash': 'd61d1514f630581f9ea2ec56cfda2d41b10f5a4e6c10802faa1a17d37f86b68e'}, 'cert': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': True, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '8ee0e2d7bd33fe05454998840d50d2a00907ae1a90c793837919327ca921e043', 'txt_hash': 'b51be9ed4a318cdb3af095aea8f7122c7e49466721ebc90b270f376f2dbccfae'}}.
- The following properties were deleted: ['st_download_ok', 'report_download_ok', 'st_convert_garbage', 'report_convert_garbage', 'st_convert_ok', 'report_convert_ok', 'st_extract_ok', 'report_extract_ok', 'st_pdf_hash', 'report_pdf_hash', 'st_txt_hash', 'report_txt_hash'].
The PDF extraction data was updated.
- The following values were inserted: {'cert_metadata': {'pdf_file_size_bytes': 187387, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Title': 'C458-M&S19111914310', '/Creator': 'C458-M&S', '/Producer': 'KONICA MINOLTA bizhub C458', '/CreationDate': "D:20191119143204+01'00'", '/ModDate': "D:20191119143204+01'00'", 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}, 'cert_frontpage': None, 'cert_keywords': {'cc_cert_id': {'NL': {'CC-19-163968': 1}}, 'cc_protection_profile_id': {'ANSSI': {'ANSSI-CC-PP-2016/5': 1}}, 'cc_security_level': {'EAL': {'EAL2': 1, 'EAL4': 1, 'EAL4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 1}, 'AVA': {'AVA_VAN.5': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'BrightSight': {'Brightsight': 1}}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}, 'cert_filename': 'Signed certificate CC-19-163968.pdf'}.
- The report_frontpage property was set to {'NL': {'cert_id': 'NSCIB-CC-163968-CR', 'cert_item': 'nShield Solo XC Hardware Security Module v12.50.7', 'developer': 'nCipher Security Limited', 'cert_lab': ' Brightsight'}}.
- The st_frontpage property was set to None.
- The report_keywords property was updated, with the {'cc_cert_id': {'__update__': {'NL': {'__update__': {'NSCIB-CC-163968-CR': 12}}}}} data.
13.02.2024 The certificate data changed.
Certificate changed

The PDF extraction data was updated.
- The report_keywords property was updated, with the {'cc_cert_id': {'__update__': {'NL': {'__update__': {'NSCIB-CC-163968-CR': 36}}}}} data.
07.02.2024 The certificate data changed.
Certificate changed

The PDF extraction data was updated.
- The report_keywords property was updated, with the {'cc_cert_id': {'__delete__': ['CA']}} data.
07.02.2024 The certificate data changed.
Certificate changed

The PDF extraction data was updated.
- The report_keywords property was updated, with the {'cc_cert_id': {'__insert__': {'CA': {'888 7 888': 1, '888 7 879': 1}}, '__update__': {'NL': {'__update__': {'NSCIB-CC-163968-CR': 12}}}}} data.
04.01.2024 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The following values were inserted: {'annotated_references': None}.
21.09.2023 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The scheme_data property was updated, with the {'scheme': 'elDAS', 'cert_id': 'CC-163968', 'report_link': 'https://www.tuv-nederland.nl/assets/files/cerfiticaten/2020/09/certification-report-nscib-cc-163968-cr1.1eidascert2020-07-23.pdf', 'target_link': 'https://www.tuv-nederland.nl/assets/files/cerfiticaten/2020/01/nshield-solo-xc-hsm-security-target-v1.0.pdf'} data.
26.04.2023 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The following values were inserted: {'scheme_data': {'manufacturer': 'nCipher Security Limited', 'product': 'nShield Solo XC Hardware Security Module v12.50.7', 'scheme': 'NSCIB', 'cert_id': 'CC-19-163968', 'manufacturer_link': 'www.ncipher.com', 'level': 'EAL4 augmented with AVA_VAN.5 and ALC_FLR.2', 'cert_link': 'https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/06/signed-certificate-cc-19-163968.pdf', 'report_link': 'https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/06/certification_report_nscib-cc-163968-cr.pdf', 'target_link': 'https://www.tuv-nederland.nl/assets/files/cerfiticaten/2021/07/nscib-cc-163968-st-1.0.pdf'}}.
11.02.2023 The certificate data changed.
Certificate changed

The _type was updated.
- The new value is sec_certs.sample.cc.CCCertificate.
The state of the certificate object was updated.
- The _type property was set to sec_certs.sample.cc.CCCertificate.InternalState.
- The following properties were deleted: ['errors'].
The PDF extraction data was updated.
- The _type property was set to sec_certs.sample.cc.CCCertificate.PdfData.
The computed heuristics were updated.
- The following values were inserted: {'direct_transitive_cves': None, 'indirect_transitive_cves': None}.
- The _type property was set to sec_certs.sample.cc.CCCertificate.Heuristics.
- The following properties were deleted: ['direct_dependency_cves', 'indirect_dependency_cves'].
26.12.2022 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The errors property was set to [].
25.12.2022 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The errors property was set to ['failed to download report from https://www.commoncriteriaportal.org/files/epfiles/Certification_Report_NSCIB-CC-163968-CR.pdf, code: nok'].
25.12.2022 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The st_download_ok property was set to True.
- The st_convert_ok property was set to True.
- The st_extract_ok property was set to True.
- The errors property was set to [].
- The st_pdf_hash property was set to f6985e3ec99e0922cb456cfddc01010467ebab5680524d87aec2bd5e72807e3d.
- The st_txt_hash property was set to d61d1514f630581f9ea2ec56cfda2d41b10f5a4e6c10802faa1a17d37f86b68e.
The PDF extraction data was updated.
- The st_metadata property was set to {'pdf_file_size_bytes': 1472092, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 66, '/Title': '$scroll.title', '/Author': 'Foster, Mark', '/Creator': 'Microsoft® Word 2013', '/CreationDate': "D:20190925154920+02'00'", '/ModDate': "D:20190925154920+02'00'", '/Producer': 'Microsoft® Word 2013', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.ncipher.com/', 'mailto:support@ncipher.com', 'http://www.ncipher.com/', 'https://ncipher.zendesk.com/hc/en-us/categories/360001306412-Customer-Service']}}.
- The st_frontpage property was set to {'anssi': {}, 'bsi': {}, 'nscib': {}, 'niap': {}, 'canada': {}}.
- The st_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 7, 'EAL4 augmented': 3}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 7}, 'AVA': {'AVA_VAN.5': 9}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 10, 'FAU_GEN.1.1': 2, 'FAU_GEN.1.2': 1, 'FAU_GEN.2': 5, 'FAU_GEN.2.1': 1, 'FAU_STG.2': 5, 'FAU_STG.1': 1, 'FAU_STG.2.1': 1, 'FAU_STG.2.2': 1, 'FAU_STG.2.3': 1}, 'FCS': {'FCS_CKM.1': 11, 'FCS_COP.1': 10, 'FCS_CKM.4': 11, 'FCS_CKM.1.1': 1, 'FCS_RNG': 12, 'FCS_CKM.4.1': 1, 'FCS_COP.1.1': 1, 'FCS_RNG.1': 5, 'FCS_CKM.2': 1}, 'FDP': {'FDP_IFC': 10, 'FDP_IFF.1': 10, 'FDP_IFC.1': 7, 'FDP_IFF': 9, 'FDP_ACC': 15, 'FDP_ACF.1': 12, 'FDP_ACC.1': 10, 'FDP_ACF': 14, 'FDP_SDI.2': 6, 'FDP_SDI.1': 1, 'FDP_SDI.2.1': 1, 'FDP_SDI.2.2': 1, 'FDP_RIP.1': 6, 'FDP_RIP.1.1': 1, 'FDP_ITC.1': 2, 'FDP_ITC.2': 2}, 'FIA': {'FIA_UID.1': 14, 'FIA_UID.1.1': 1, 'FIA_UAU.1': 9, 'FIA_UID.1.2': 1, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1, 'FIA_UAU': 13, 'FIA_UAU.6': 2, 'FIA_AFL.1': 6, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 1}, 'FMT': {'FMT_MSA.3': 9, 'FMT_MTD': 12, 'FMT_SMR.1': 19, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_SMF.1': 10, 'FMT_SMF.1.1': 1, 'FMT_MTD.1': 2, 'FMT_MSA': 22, 'FMT_MSA.1': 5}, 'FPT': {'FPT_TST_EXT.1': 9, 'FPT_STM.1': 7, 'FPT_STM.1.1': 1, 'FPT_TST_EXT.1.1': 1, 'FPT_PHP.1': 4, 'FPT_PHP.1.1': 1, 'FPT_PHP.1.2': 1, 'FPT_PHP.3': 4, 'FPT_PHP.3.1': 1, 'FPT_FLS.1': 6, 'FPT_FLS.1.1': 1}, 'FTP': {'FTP_TRP': 15, 'FTP_TRP.1': 3}}, 'cc_claims': {'R': {'R.RAD': 1}, 'OT': {'OT.RNG': 3, 'OT.B': 1, 'OT.A': 1, 'OT.R': 1}, 'OE': {'OE.U': 1}}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 7}}, 'DES': {'3DES': {'Triple-DES': 4, 'TDEA': 1}}, 'constructions': {'MAC': {'HMAC': 2, 'HMAC-SHA-224': 1, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1, 'CMAC': 3, 'CBC-MAC': 2}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 1}, 'ECDSA': {'ECDSA': 2}}, 'FF': {'DH': {'Diffie-Hellman': 3, 'DH': 1}, 'DSA': {'DSA': 2}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 2}, 'SHA2': {'SHA-224': 1, 'SHA-384': 1, 'SHA-512': 1}}}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {'PRNG': {'DRBG': 3}, 'RNG': {'RNG': 30}}, 'cipher_mode': {'ECB': {'ECB': 2}, 'CBC': {'CBC': 2}, 'CTR': {'CTR': 1}, 'GCM': {'GCM': 2}, 'CCM': {'CCM': 1}}, 'ecc_curve': {'NIST': {'P-192': 1, 'P-224': 4, 'P-256': 6, 'P-384': 6, 'P-521': 4, 'NIST P-192': 1, 'NIST K-163': 1, 'K-233': 1, 'K-283': 3, 'K-409': 3, 'NIST B-163': 1, 'B-233': 1, 'B-283': 3, 'B-409': 3, 'NIST P-224': 2, 'NIST K-233': 2, 'K-571': 2, 'NIST B-233': 2, 'B-571': 2}, 'Brainpool': {'brainpoolP160r1': 1, 'brainpoolP192r1': 1, 'brainpoolP224r1': 3, 'brainpoolP256r1': 3, 'brainpoolP320r1': 3, 'brainpoolP384r1': 3, 'brainpoolP512r1': 3, 'brainpoolP160t1': 1, 'brainpoolP192t1': 1, 'brainpoolP224t1': 3, 'brainpoolP256t1': 3, 'brainpoolP320t1': 3, 'brainpoolP384t1': 3, 'brainpoolP512t1': 3}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'side-channels': 1}, 'FI': {'physical tampering': 2, 'Malfunction': 2}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS 186-4': 2, 'FIPS 140-2': 6, 'FIPS 197': 2, 'FIPS 180-4': 1, 'FIPS 198-1': 1}, 'NIST': {'SP 800-90A': 3, 'NIST SP 800-90A': 3, 'SP 800-56A': 2, 'NIST SP 800-22': 1, 'SP 800-38A': 1, 'SP 800-38B': 1, 'SP 800-38C': 1, 'SP 800-38D': 1, 'SP 800-67': 1, 'SP 800-38F': 1, 'SP 800-108': 1}, 'PKCS': {'PKCS#11': 2, 'PKCS#1': 2, 'PKCS #1': 1}, 'BSI': {'AIS 31': 9, 'AIS 20': 1, 'AIS31': 2}, 'RFC': {'RFC 8017': 1}, 'ISO': {'ISO/IEC 19790:2012': 1}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 3, 'Impath, out of scope) with a remote Hardserver (typically on an application server or PC': 1, 'for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries': 1, 'support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 1 Configuration 1: TOE in Connect XC Page 8 of 66 nShield Solo XC HSM Security': 1, 'support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 2 Configuration 2: TOE in host server nShield Solo XC HSM Security Target Page': 1}}}.
- The st_filename property was set to NSCIB-CC-163968-ST-1.0.pdf.
24.12.2022 The certificate data changed.
Certificate changed

The cert_link was updated.
- The new value is https://www.commoncriteriaportal.org/files/epfiles/Signed%20certificate%20CC-19-163968.pdf.
The manufacturer_web was updated.
- The new value is https://www.ncipher.com/.
The Protection profiles of the certificate were updated.
- The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Protection profiles for TSP Cryptographic modules - Part 5- Cryptographic Module for Trust Services &...', 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/ANSSI-CC-PP-2016_05%20PP.pdf', 'pp_ids': None}]}.
The state of the certificate object was updated.
- The st_download_ok property was set to False.
- The st_convert_ok property was set to False.
- The st_extract_ok property was set to False.
- The errors property was set to ['failed to download ST from https://www.commoncriteriaportal.org/files/epfiles/NSCIB-CC-163968-ST-1.0.pdf, code: nok'].
- The st_pdf_hash property was set to None.
- The st_txt_hash property was set to None.
The PDF extraction data was updated.
- The st_metadata property was set to None.
- The st_frontpage property was set to None.
- The st_keywords property was set to None.
- The st_filename property was set to None.
23.12.2022 The certificate data changed.
Certificate changed

The cert_link was updated.
- The new value is None.
The manufacturer_web was updated.
- The new value is None.
The Protection profiles of the certificate were updated.
- The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'ANSSI-CC-PP-2016/05', 'pp_eal': None, 'pp_link': None, 'pp_ids': None}]}.
05.10.2022 The certificate data changed.
Certificate changed

The Protection profiles of the certificate were updated.
- The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Protection profiles for TSP Cryptographic modules - Part 5- Cryptographic Module for Trust Services &...', 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/ANSSI-CC-PP-2016_05%20PP.pdf', 'pp_ids': None}]}.
The state of the certificate object was updated.
- The following values were inserted: {'st_convert_garbage': False, 'report_convert_garbage': False}.
04.10.2022 The certificate data changed.
Certificate changed

The Protection profiles of the certificate were updated.
- The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Protection profiles for TSP Cryptographic modules - Part 5- Cryptographic Module for Trust Services &...', 'pp_eal': 'http://www.commoncriteriaportal.org/files/ppfiles/ANSSI-CC-PP-2016_05 PP.pdf', 'pp_link': None, 'pp_ids': None}]}.
24.09.2022 The certificate data changed.
Certificate changed

The PDF extraction data was updated.
- The following values were inserted: {'report_filename': 'Certification_Report_NSCIB-CC-163968-CR.pdf', 'st_filename': 'NSCIB-CC-163968-ST-1.0.pdf'}.
- The report_keywords property was updated, with the {'cc_sar': {'__update__': {'ALC': {'__update__': {'ALC_FLR.2': 2}}}}, 'cc_sfr': {'__insert__': {'FTP': {'FTP_TRP': 1}}}, 'asymmetric_crypto': {'__delete__': ['FF']}, 'crypto_protocol': {}, 'randomness': {'__update__': {'RNG': {'__update__': {'RNG': 2}}}}, 'tee_name': {}} data.
- The st_keywords property was updated, with the {'cc_sar': {'__update__': {'ALC': {'__update__': {'ALC_FLR.2': 7}}, 'AVA': {'__update__': {'AVA_VAN.5': 9}}}}, 'cc_sfr': {'__insert__': {'FTP': {'FTP_TRP': 15, 'FTP_TRP.1': 3}}, '__update__': {'FAU': {'__update__': {'FAU_GEN.1': 10, 'FAU_GEN.1.1': 2}}, 'FCS': {'__insert__': {'FCS_RNG': 12}, '__update__': {'FCS_COP.1': 10, 'FCS_CKM.4': 11, 'FCS_RNG.1': 5}}, 'FDP': {'__insert__': {'FDP_IFC': 10, 'FDP_IFF': 9, 'FDP_ACC': 15, 'FDP_ACF': 14}, '__update__': {'FDP_IFF.1': 10, 'FDP_IFC.1': 7, 'FDP_ACF.1': 12, 'FDP_ACC.1': 10}}, 'FIA': {'__insert__': {'FIA_UAU.6': 2}, '__update__': {'FIA_UID.1': 14, 'FIA_UAU': 13}}, 'FMT': {'__insert__': {'FMT_MTD': 12, 'FMT_MTD.1': 2, 'FMT_MSA': 22}, '__update__': {'FMT_MSA.3': 9, 'FMT_SMF.1': 10, 'FMT_MSA.1': 5}}, 'FPT': {'__update__': {'FPT_PHP.3': 4, 'FPT_FLS.1': 6}}}}, 'cc_claims': {'__delete__': ['T']}, 'vendor': {}, 'symmetric_crypto': {'__update__': {'DES': {'__delete__': ['DES']}}}, 'asymmetric_crypto': {'__update__': {'FF': {'__update__': {'DH': {'__update__': {'DH': 1}}, 'DSA': {'__update__': {'DSA': 2}}}}}}, 'hash_function': {'__update__': {'SHA': {'__update__': {'SHA1': {'__update__': {'SHA-1': 2}}, 'SHA2': {'__update__': {'SHA-224': 1, 'SHA-384': 1, 'SHA-512': 1}, '__delete__': ['SHA-256']}}}}}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {'__update__': {'PRNG': {'__update__': {'DRBG': 3}}, 'RNG': {'__update__': {'RNG': 30}, '__delete__': ['RBG']}}, '__delete__': ['TRNG']}, 'side_channel_analysis': {'__update__': {'FI': {'__update__': {'Malfunction': 2}}}}, 'certification_process': {'__update__': {'OutOfScope': {'__insert__': {'Impath, out of scope) with a remote Hardserver (typically on an application server or PC': 1, 'for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries': 1, 'support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 1 Configuration 1: TOE in Connect XC Page 8 of 66 nShield Solo XC HSM Security': 1, 'support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 2 Configuration 2: TOE in host server nShield Solo XC HSM Security Target Page': 1}, '__delete__': ['. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC', '. These are out of scope of the TOE', 'cation for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries', 'to support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 1 Configuration 1: TOE in Connect XC Page 8 of 66 nShield Solo XC HSM Security', 'o support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 2 Configuration 2: TOE in host server nShield Solo XC HSM Security Target Page']}}}} data.
28.07.2022 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The report_extract_ok property was set to True.
- The errors property was set to [].
The PDF extraction data was updated.
- The report_metadata property was set to {'pdf_file_size_bytes': 330028, 'pdf_is_encrypted': True, 'pdf_number_of_pages': 13, '/Author': 'p647', '/CreationDate': "D:20191121082858+01'00'", '/Creator': 'pdfFactory Pro www.pdffactory.com', '/Producer': 'pdfFactory Pro 5.32 (Windows 7 Ultimate x64 Dutch)', '/Title': 'Certification Report NSCIB-CC-163968-CR.docx', 'pdf_hyperlinks': {'_type': 'Set', 'elements': ['mailto:info@nl.tuv.com', 'http://www.tuv.com/nl', 'http://www.commoncriteriaportal.org', 'http://www.sogisportal.eu']}}.
The computed heuristics were updated.
- The cert_lab property was set to [''].
18.07.2022 The certificate data changed.
Certificate changed

The _type was updated.
- The new value is sec_certs.sample.common_criteria.CommonCriteriaCert.
The Protection profiles of the certificate were updated.
- The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': 'Protection profiles for TSP Cryptographic modules - Part 5- Cryptographic Module for Trust Services &...', 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/ANSSI-CC-PP-2016_05%20PP.pdf', 'pp_ids': None}]}.
The state of the certificate object was updated.
- The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState.
The PDF extraction data was updated.
- The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData.
The computed heuristics were updated.
- The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics.
- The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
- The report_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
- The extracted_sars property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'AVA_VAN', 'level': 5}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_FLR', 'level': 2}]}.
17.07.2022 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The report_extract_ok property was set to False.
- The errors property was set to ["Failed to read metadata of certs/reports/pdf/59b9cb89cb961b42.pdf, error: unsupported operand type(s) for +: 'IndirectObject' and 'list'", "Failed to read metadata of certs/reports/pdf/59b9cb89cb961b42.pdf, error: unsupported operand type(s) for +: 'IndirectObject' and 'list'"].
The PDF extraction data was updated.
- The report_metadata property was set to None.
- The st_metadata property was updated, with the {'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.ncipher.com/', 'mailto:support@ncipher.com', 'http://www.ncipher.com/', 'https://ncipher.zendesk.com/hc/en-us/categories/360001306412-Customer-Service']}} values inserted.
- The report_keywords property was set to {'cc_cert_id': {'NL': {'NSCIB-CC-163968-CR': 36}}, 'cc_protection_profile_id': {'ANSSI': {'ANSSI-CC-PP-2016/5': 1}}, 'cc_security_level': {'EAL': {'EAL4': 3, 'EAL 4': 1, 'EAL4 augmented': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 1}, 'ATE': {'ATE_IND.2': 1}, 'AVA': {'AVA_VAN.5': 4}}, 'cc_sfr': {'FAU': {'FAU_GEN': 1}, 'FCS': {'FCS_COP': 1}}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {'BrightSight': {'Brightsight': 2}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 1}}}, 'asymmetric_crypto': {'ECC': {'ECDSA': {'ECDSA': 1}, 'ECC': {'ECC': 1}}, 'FF': {'DSA': {'DSA': 1}}}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {'TLS': {'SSL': {'SSL': 1}, 'TLS': {'TLS': 1}}}, 'randomness': {'TRNG': {'TRNG': 1}, 'RNG': {'RNG': 3}}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {'OpenSSL': {'OpenSSL': 1}}, 'vulnerability': {}, 'side_channel_analysis': {'FI': {'physical tampering': 1}, 'other': {'JIL': 1}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 2}}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'NIST': {'SP 800-90A': 3}, 'BSI': {'AIS 31': 2}, 'ISO': {'ISO/IEC 19790:2012': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}.
- The st_keywords property was set to {'cc_cert_id': {}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL4': 7, 'EAL4 augmented': 3}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 5}, 'AVA': {'AVA_VAN.5': 8}}, 'cc_sfr': {'FAU': {'FAU_GEN.1': 12, 'FAU_GEN.1.1': 1, 'FAU_GEN.1.2': 1, 'FAU_GEN.2': 5, 'FAU_GEN.2.1': 1, 'FAU_STG.2': 5, 'FAU_STG.1': 1, 'FAU_STG.2.1': 1, 'FAU_STG.2.2': 1, 'FAU_STG.2.3': 1}, 'FCS': {'FCS_CKM.1': 11, 'FCS_COP.1': 11, 'FCS_CKM.4': 12, 'FCS_CKM.1.1': 1, 'FCS_CKM.4.1': 1, 'FCS_COP.1.1': 1, 'FCS_RNG.1': 1, 'FCS_CKM.2': 1}, 'FDP': {'FDP_IFF.1': 2, 'FDP_IFC.1': 6, 'FDP_ACF.1': 4, 'FDP_ACC.1': 8, 'FDP_SDI.2': 6, 'FDP_SDI.1': 1, 'FDP_SDI.2.1': 1, 'FDP_SDI.2.2': 1, 'FDP_RIP.1': 6, 'FDP_RIP.1.1': 1, 'FDP_ITC.1': 2, 'FDP_ITC.2': 2}, 'FIA': {'FIA_UID.1': 16, 'FIA_UID.1.1': 1, 'FIA_UAU.1': 9, 'FIA_UID.1.2': 1, 'FIA_UAU.1.1': 1, 'FIA_UAU.1.2': 1, 'FIA_AFL.1': 6, 'FIA_AFL.1.1': 1, 'FIA_AFL.1.2': 1, 'FIA_UAU': 1}, 'FMT': {'FMT_MSA.3': 7, 'FMT_SMR.1': 19, 'FMT_SMR.1.1': 1, 'FMT_SMR.1.2': 1, 'FMT_SMF.1': 17, 'FMT_SMF.1.1': 1, 'FMT_MSA.1': 3}, 'FPT': {'FPT_TST_EXT.1': 9, 'FPT_STM.1': 7, 'FPT_STM.1.1': 1, 'FPT_TST_EXT.1.1': 1, 'FPT_PHP.1': 4, 'FPT_PHP.1.1': 1, 'FPT_PHP.1.2': 1, 'FPT_PHP.3': 3, 'FPT_PHP.3.1': 1, 'FPT_FLS.1': 5, 'FPT_FLS.1.1': 1}}, 'cc_claims': {'T': {'T.RNG': 3, 'T.B': 1, 'T.A': 1, 'T.R': 1}, 'R': {'R.RAD': 1}, 'OT': {'OT.RNG': 3, 'OT.B': 1, 'OT.A': 1, 'OT.R': 1}, 'OE': {'OE.U': 1}}, 'vendor': {'STMicroelectronics': {'STM': 9}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 7}}, 'DES': {'DES': {'DES': 4, 'DEA': 1}, '3DES': {'Triple-DES': 4, 'TDEA': 1}}, 'constructions': {'MAC': {'HMAC': 2, 'HMAC-SHA-224': 1, 'HMAC-SHA-256': 1, 'HMAC-SHA-384': 1, 'HMAC-SHA-512': 1, 'CMAC': 3, 'CBC-MAC': 2}}}, 'asymmetric_crypto': {'ECC': {'ECDH': {'ECDH': 1}, 'ECDSA': {'ECDSA': 2}}, 'FF': {'DH': {'Diffie-Hellman': 3, 'DH': 2}, 'DSA': {'DSA': 4}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 3}, 'SHA2': {'SHA-224': 2, 'SHA-384': 2, 'SHA-512': 2, 'SHA-256': 1}}}, 'crypto_scheme': {'MAC': {'MAC': 8}}, 'crypto_protocol': {'TLS': {'TLS': {'TLS': 1}}}, 'randomness': {'TRNG': {'TRNG': 8}, 'PRNG': {'DRBG': 11}, 'RNG': {'RNG': 34, 'RBG': 11}}, 'cipher_mode': {'ECB': {'ECB': 2}, 'CBC': {'CBC': 2}, 'CTR': {'CTR': 1}, 'GCM': {'GCM': 2}, 'CCM': {'CCM': 1}}, 'ecc_curve': {'NIST': {'P-192': 1, 'P-224': 4, 'P-256': 6, 'P-384': 6, 'P-521': 4, 'NIST P-192': 1, 'NIST K-163': 1, 'K-233': 1, 'K-283': 3, 'K-409': 3, 'NIST B-163': 1, 'B-233': 1, 'B-283': 3, 'B-409': 3, 'NIST P-224': 2, 'NIST K-233': 2, 'K-571': 2, 'NIST B-233': 2, 'B-571': 2}, 'Brainpool': {'brainpoolP160r1': 1, 'brainpoolP192r1': 1, 'brainpoolP224r1': 3, 'brainpoolP256r1': 3, 'brainpoolP320r1': 3, 'brainpoolP384r1': 3, 'brainpoolP512r1': 3, 'brainpoolP160t1': 1, 'brainpoolP192t1': 1, 'brainpoolP224t1': 3, 'brainpoolP256t1': 3, 'brainpoolP320t1': 3, 'brainpoolP384t1': 3, 'brainpoolP512t1': 3}}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'side-channels': 1}, 'FI': {'physical tampering': 2, 'Malfunction': 3}}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS 186-4': 2, 'FIPS 140-2': 6, 'FIPS 197': 2, 'FIPS 180-4': 1, 'FIPS 198-1': 1}, 'NIST': {'SP 800-90A': 3, 'NIST SP 800-90A': 3, 'SP 800-56A': 2, 'NIST SP 800-22': 1, 'SP 800-38A': 1, 'SP 800-38B': 1, 'SP 800-38C': 1, 'SP 800-38D': 1, 'SP 800-67': 1, 'SP 800-38F': 1, 'SP 800-108': 1}, 'PKCS': {'PKCS#11': 2, 'PKCS#1': 2, 'PKCS #1': 1}, 'BSI': {'AIS 31': 9, 'AIS 20': 1, 'AIS31': 2}, 'RFC': {'RFC 8017': 1}, 'ISO': {'ISO/IEC 19790:2012': 1}, 'CC': {'CCMB-2017-04-001': 1, 'CCMB-2017-04-002': 1, 'CCMB-2017-04-003': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 3, '. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC': 1, '. These are out of scope of the TOE': 2, 'cation for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries': 1, 'to support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 1 Configuration 1: TOE in Connect XC Page 8 of 66 nShield Solo XC HSM Security': 1, 'o support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 2 Configuration 2: TOE in host server nShield Solo XC HSM Security Target Page': 1}}}.
The computed heuristics were updated.
- The _type property was set to Heuristics.
- The cert_lab property was set to None.
14.06.2022 The certificate data changed.
Certificate changed

The state of the certificate object was updated.
- The following values were inserted: {'report_pdf_hash': '2a270a36f267fcf60bcad10efae689b56da216051cf4bd6d38faa5fcbf3cc0e3', 'st_pdf_hash': 'f6985e3ec99e0922cb456cfddc01010467ebab5680524d87aec2bd5e72807e3d', 'report_txt_hash': 'a80f2c50c12a9036c1184fc315915267421ac60646a3b872be3007915f22db41', 'st_txt_hash': 'd61d1514f630581f9ea2ec56cfda2d41b10f5a4e6c10802faa1a17d37f86b68e'}.
The PDF extraction data was updated.
- The report_keywords property was updated, with the {'rules_symmetric_crypto': {'AES': 1}, 'rules_asymmetric_crypto': {'ECDSA': 1, 'ECC': 1, 'DSA': 1}, 'rules_pq_crypto': {}, 'rules_hashes': {}, 'rules_crypto_schemes': {'TLS': 1, 'SSL': 1}, 'rules_randomness': {'TRNG': 1, 'RNG': 3}, 'rules_tee': {'SE': 2}, 'rules_side_channels': {'physical tampering': 1}} values inserted.
- The st_keywords property was updated, with the {'rules_block_cipher_modes': {'__insert__': {'CCM': 1}}, 'rules_ecc_curves': {'__insert__': {'NIST P-192': 1, 'NIST K-163': 1, 'K-233': 1, 'K-283': 3, 'K-409': 3, 'NIST B-163': 1, 'B-233': 1, 'B-283': 3, 'B-409': 3, 'NIST P-224': 2, 'NIST K-233': 2, 'K-571': 2, 'NIST B-233': 2, 'B-571': 2}, '__update__': {'P-224': 1}}} data.
13.05.2022 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The following values were inserted: {'extracted_sars': {'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'ALC_FLR', 'level': 2}, {'_type': 'SAR', 'family': 'ATE_IND', 'level': 2}, {'_type': 'SAR', 'family': 'AVA_VAN', 'level': 5}]}}.
24.04.2022 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The following values were inserted: {'direct_dependency_cves': None, 'indirect_dependency_cves': None}.
08.03.2022 The certificate data changed.
Certificate changed

The computed heuristics were updated.
- The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}, 'report_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': None, 'indirectly_referencing': None}}.
- The cert_lab property was set to [''].
- The following properties were deleted: ['directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
18.02.2022 The certificate data changed.
Certificate changed

The PDF extraction data was updated.
- The report_frontpage property was updated, with the {'nscib': {'cert_id': 'NSCIB-CC-163968-CR', 'cert_item': 'nShield Solo XC Hardware Security Module v12.50.7', 'developer': 'nCipher Security Limited', 'cert_lab': ' Brightsight'}, 'niap': {}, 'canada': {}} values inserted.
- The st_frontpage property was updated, with the {'nscib': {}, 'niap': {}, 'canada': {}} values inserted.
The computed heuristics were updated.
- The extracted_versions property was set to {'_type': 'Set', 'elements': ['12.50.7']}.
28.01.2022 The certificate was first processed.

New certificate

A new Common Criteria certificate with the product name nCipher nShield Solo XC Hardware Security Module v12.50.7 was processed.

Raw data

{
  "_type": "sec_certs.sample.cc.CCCertificate",
  "category": "Products for Digital Signatures",
  "cert_link": "https://www.commoncriteriaportal.org/files/epfiles/Signed%20certificate%20CC-19-163968.pdf",
  "dgst": "59b9cb89cb961b42",
  "heuristics": {
    "_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
    "annotated_references": null,
    "cert_id": "NSCIB-CC-163968-CR",
    "cert_lab": [
      ""
    ],
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_FLR",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ATE_IND",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "AVA_VAN",
          "level": 5
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "12.50.7"
      ]
    },
    "indirect_transitive_cves": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "scheme_data": {
      "cert_id": "CC-163968",
      "level": "EAL4 augmented with AVA_VAN.5 and ALC_FLR.2",
      "manufacturer": "nCipher Security Limited",
      "manufacturer_link": "www.ncipher.com",
      "product": "nShield Solo XC Hardware Security Module v12.50.7",
      "report_link": "https://www.tuv-nederland.nl/assets/files/cerfiticaten/2020/09/certification-report-nscib-cc-163968-cr1.1eidascert2020-07-23.pdf",
      "scheme": "elDAS",
      "target_link": "https://www.tuv-nederland.nl/assets/files/cerfiticaten/2020/01/nshield-solo-xc-hsm-security-target-v1.0.pdf"
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": []
  },
  "manufacturer": "nCipher Security Ltd.",
  "manufacturer_web": "https://www.ncipher.com/",
  "name": "nCipher nShield Solo XC Hardware Security Module v12.50.7",
  "not_valid_after": "2024-11-19",
  "not_valid_before": "2019-11-19",
  "pdf_data": {
    "_type": "sec_certs.sample.cc.CCCertificate.PdfData",
    "cert_filename": "Signed certificate CC-19-163968.pdf",
    "cert_frontpage": null,
    "cert_keywords": {
      "asymmetric_crypto": {},
      "cc_cert_id": {
        "NL": {
          "CC-19-163968": 1
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "ANSSI": {
          "ANSSI-CC-PP-2016/5": 1
        }
      },
      "cc_sar": {
        "ALC": {
          "ALC_FLR.2": 1
        },
        "AVA": {
          "AVA_VAN.5": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL2": 1,
          "EAL4": 1,
          "EAL4 augmented": 1
        }
      },
      "cc_sfr": {},
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "BrightSight": {
          "Brightsight": 1
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {},
      "side_channel_analysis": {},
      "standard_id": {
        "ISO": {
          "ISO/IEC 15408": 2,
          "ISO/IEC 18045": 2
        }
      },
      "symmetric_crypto": {},
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "cert_metadata": {
      "/CreationDate": "D:20191119143204+01\u002700\u0027",
      "/Creator": "C458-M\u0026S",
      "/ModDate": "D:20191119143204+01\u002700\u0027",
      "/Producer": "KONICA MINOLTA bizhub C458",
      "/Title": "C458-M\u0026S19111914310",
      "pdf_file_size_bytes": 187387,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 1
    },
    "report_filename": "Certification_Report_NSCIB-CC-163968-CR.pdf",
    "report_frontpage": {
      "NL": {
        "cert_id": "NSCIB-CC-163968-CR",
        "cert_item": "nShield Solo XC Hardware Security Module v12.50.7",
        "cert_lab": " Brightsight",
        "developer": "nCipher Security Limited"
      }
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDSA": {
            "ECDSA": 1
          }
        }
      },
      "cc_cert_id": {
        "NL": {
          "NSCIB-CC-163968-CR": 12
        }
      },
      "cc_claims": {},
      "cc_protection_profile_id": {
        "ANSSI": {
          "ANSSI-CC-PP-2016/5": 1
        }
      },
      "cc_sar": {
        "ALC": {
          "ALC_FLR.2": 2
        },
        "ATE": {
          "ATE_IND.2": 1
        },
        "AVA": {
          "AVA_VAN.5": 4
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 4": 1,
          "EAL 4 augmented": 1,
          "EAL4": 3,
          "EAL4 augmented": 1
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN": 1
        },
        "FCS": {
          "FCS_COP": 1
        },
        "FTP": {
          "FTP_TRP": 1
        }
      },
      "certification_process": {},
      "cipher_mode": {},
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 1
        }
      },
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "BrightSight": {
          "Brightsight": 2
        }
      },
      "hash_function": {},
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 2
        },
        "TRNG": {
          "TRNG": 1
        }
      },
      "side_channel_analysis": {
        "FI": {
          "physical tampering": 1
        },
        "other": {
          "JIL": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 31": 2
        },
        "ISO": {
          "ISO/IEC 19790:2012": 1
        },
        "NIST": {
          "SP 800-90A": 3
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "p647",
      "/CreationDate": "D:20191121082858+01\u002700\u0027",
      "/Creator": "pdfFactory Pro www.pdffactory.com",
      "/Producer": "pdfFactory Pro 5.32 (Windows 7 Ultimate x64 Dutch)",
      "/Title": "Certification Report NSCIB-CC-163968-CR.docx",
      "pdf_file_size_bytes": 330028,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.tuv.com/nl",
          "http://www.sogisportal.eu",
          "http://www.commoncriteriaportal.org",
          "mailto:info@nl.tuv.com"
        ]
      },
      "pdf_is_encrypted": true,
      "pdf_number_of_pages": 13
    },
    "st_filename": "NSCIB-CC-163968-ST-1.0.pdf",
    "st_frontpage": null,
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECDH": {
            "ECDH": 1
          },
          "ECDSA": {
            "ECDSA": 2
          }
        },
        "FF": {
          "DH": {
            "DH": 1,
            "Diffie-Hellman": 3
          },
          "DSA": {
            "DSA": 2
          }
        }
      },
      "cc_cert_id": {},
      "cc_claims": {
        "OE": {
          "OE.U": 1
        },
        "OT": {
          "OT.A": 1,
          "OT.B": 1,
          "OT.R": 1,
          "OT.RNG": 3
        },
        "R": {
          "R.RAD": 1
        }
      },
      "cc_protection_profile_id": {},
      "cc_sar": {
        "ALC": {
          "ALC_FLR.2": 7
        },
        "AVA": {
          "AVA_VAN.5": 9
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL4": 7,
          "EAL4 augmented": 3
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_GEN.1": 10,
          "FAU_GEN.1.1": 2,
          "FAU_GEN.1.2": 1,
          "FAU_GEN.2": 5,
          "FAU_GEN.2.1": 1,
          "FAU_STG.1": 1,
          "FAU_STG.2": 5,
          "FAU_STG.2.1": 1,
          "FAU_STG.2.2": 1,
          "FAU_STG.2.3": 1
        },
        "FCS": {
          "FCS_CKM.1": 11,
          "FCS_CKM.1.1": 1,
          "FCS_CKM.2": 1,
          "FCS_CKM.4": 11,
          "FCS_CKM.4.1": 1,
          "FCS_COP.1": 10,
          "FCS_COP.1.1": 1,
          "FCS_RNG": 12,
          "FCS_RNG.1": 5
        },
        "FDP": {
          "FDP_ACC": 15,
          "FDP_ACC.1": 10,
          "FDP_ACF": 14,
          "FDP_ACF.1": 12,
          "FDP_IFC": 10,
          "FDP_IFC.1": 7,
          "FDP_IFF": 9,
          "FDP_IFF.1": 10,
          "FDP_ITC.1": 2,
          "FDP_ITC.2": 2,
          "FDP_RIP.1": 6,
          "FDP_RIP.1.1": 1,
          "FDP_SDI.1": 1,
          "FDP_SDI.2": 6,
          "FDP_SDI.2.1": 1,
          "FDP_SDI.2.2": 1
        },
        "FIA": {
          "FIA_AFL.1": 6,
          "FIA_AFL.1.1": 1,
          "FIA_AFL.1.2": 1,
          "FIA_UAU": 13,
          "FIA_UAU.1": 9,
          "FIA_UAU.1.1": 1,
          "FIA_UAU.1.2": 1,
          "FIA_UAU.6": 2,
          "FIA_UID.1": 14,
          "FIA_UID.1.1": 1,
          "FIA_UID.1.2": 1
        },
        "FMT": {
          "FMT_MSA": 22,
          "FMT_MSA.1": 5,
          "FMT_MSA.3": 9,
          "FMT_MTD": 12,
          "FMT_MTD.1": 2,
          "FMT_SMF.1": 10,
          "FMT_SMF.1.1": 1,
          "FMT_SMR.1": 19,
          "FMT_SMR.1.1": 1,
          "FMT_SMR.1.2": 1
        },
        "FPT": {
          "FPT_FLS.1": 6,
          "FPT_FLS.1.1": 1,
          "FPT_PHP.1": 4,
          "FPT_PHP.1.1": 1,
          "FPT_PHP.1.2": 1,
          "FPT_PHP.3": 4,
          "FPT_PHP.3.1": 1,
          "FPT_STM.1": 7,
          "FPT_STM.1.1": 1,
          "FPT_TST_EXT.1": 9,
          "FPT_TST_EXT.1.1": 1
        },
        "FTP": {
          "FTP_TRP": 15,
          "FTP_TRP.1": 3
        }
      },
      "certification_process": {
        "OutOfScope": {
          "Impath, out of scope) with a remote Hardserver (typically on an application server or PC": 1,
          "for the TOE. The Hardserver instance in the Connect XC establishes a secure channel (Impath, out of scope) with a remote Hardserver (typically on an application server or PC), which also includes libraries": 1,
          "out of scope": 3,
          "support higher level APIs, for example, but not limited to NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 1 Configuration 1: TOE in Connect XC Page 8 of 66 nShield Solo XC HSM Security": 1,
          "support higher level APIs, for example, but not limited to, NFKM, PKCS#11, MSCAPI, etc. These are out of scope of the TOE. Figure 2 Configuration 2: TOE in host server nShield Solo XC HSM Security Target Page": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 2
        },
        "CCM": {
          "CCM": 1
        },
        "CTR": {
          "CTR": 1
        },
        "ECB": {
          "ECB": 2
        },
        "GCM": {
          "GCM": 2
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {},
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {
        "Brainpool": {
          "brainpoolP160r1": 1,
          "brainpoolP160t1": 1,
          "brainpoolP192r1": 1,
          "brainpoolP192t1": 1,
          "brainpoolP224r1": 3,
          "brainpoolP224t1": 3,
          "brainpoolP256r1": 3,
          "brainpoolP256t1": 3,
          "brainpoolP320r1": 3,
          "brainpoolP320t1": 3,
          "brainpoolP384r1": 3,
          "brainpoolP384t1": 3,
          "brainpoolP512r1": 3,
          "brainpoolP512t1": 3
        },
        "NIST": {
          "B-233": 1,
          "B-283": 3,
          "B-409": 3,
          "B-571": 2,
          "K-233": 1,
          "K-283": 3,
          "K-409": 3,
          "K-571": 2,
          "NIST B-163": 1,
          "NIST B-233": 2,
          "NIST K-163": 1,
          "NIST K-233": 2,
          "NIST P-192": 1,
          "NIST P-224": 2,
          "P-192": 1,
          "P-224": 4,
          "P-256": 6,
          "P-384": 6,
          "P-521": 4
        }
      },
      "eval_facility": {},
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 2
          },
          "SHA2": {
            "SHA-224": 1,
            "SHA-384": 1,
            "SHA-512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 3
        },
        "RNG": {
          "RNG": 30
        }
      },
      "side_channel_analysis": {
        "FI": {
          "Malfunction": 2,
          "physical tampering": 2
        },
        "SCA": {
          "side-channels": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 20": 1,
          "AIS 31": 9,
          "AIS31": 2
        },
        "CC": {
          "CCMB-2017-04-001": 1,
          "CCMB-2017-04-002": 1,
          "CCMB-2017-04-003": 1
        },
        "FIPS": {
          "FIPS 140-2": 6,
          "FIPS 180-4": 1,
          "FIPS 186-4": 2,
          "FIPS 197": 2,
          "FIPS 198-1": 1
        },
        "ISO": {
          "ISO/IEC 19790:2012": 1
        },
        "NIST": {
          "NIST SP 800-22": 1,
          "NIST SP 800-90A": 3,
          "SP 800-108": 1,
          "SP 800-38A": 1,
          "SP 800-38B": 1,
          "SP 800-38C": 1,
          "SP 800-38D": 1,
          "SP 800-38F": 1,
          "SP 800-56A": 2,
          "SP 800-67": 1,
          "SP 800-90A": 3
        },
        "PKCS": {
          "PKCS #1": 1,
          "PKCS#1": 2,
          "PKCS#11": 2
        },
        "RFC": {
          "RFC 8017": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 7
          }
        },
        "DES": {
          "3DES": {
            "TDEA": 1,
            "Triple-DES": 4
          }
        },
        "constructions": {
          "MAC": {
            "CBC-MAC": 2,
            "CMAC": 3,
            "HMAC": 2,
            "HMAC-SHA-224": 1,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "technical_report_id": {},
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "Foster, Mark",
      "/CreationDate": "D:20190925154920+02\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2013",
      "/ModDate": "D:20190925154920+02\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2013",
      "/Title": "$scroll.title",
      "pdf_file_size_bytes": 1472092,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "http://www.ncipher.com/",
          "mailto:support@ncipher.com",
          "https://ncipher.zendesk.com/hc/en-us/categories/360001306412-Customer-Service",
          "https://www.ncipher.com/"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 66
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": null,
        "pp_ids": null,
        "pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/ANSSI-CC-PP-2016_05%20PP.pdf",
        "pp_name": "Protection profiles for TSP Cryptographic modules - Part 5- Cryptographic Module for Trust Services \u0026..."
      }
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/files/epfiles/Certification_Report_NSCIB-CC-163968-CR.pdf",
  "scheme": "NL",
  "security_level": {
    "_type": "Set",
    "elements": [
      "EAL4+",
      "AVA_VAN.5",
      "ALC_FLR.2"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/files/epfiles/NSCIB-CC-163968-ST-1.0.pdf",
  "state": {
    "_type": "sec_certs.sample.cc.CCCertificate.InternalState",
    "cert": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": true,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "8ee0e2d7bd33fe05454998840d50d2a00907ae1a90c793837919327ca921e043",
      "txt_hash": "b51be9ed4a318cdb3af095aea8f7122c7e49466721ebc90b270f376f2dbccfae"
    },
    "report": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "2a270a36f267fcf60bcad10efae689b56da216051cf4bd6d38faa5fcbf3cc0e3",
      "txt_hash": "a80f2c50c12a9036c1184fc315915267421ac60646a3b872be3007915f22db41"
    },
    "st": {
      "_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
      "convert_garbage": false,
      "convert_ok": true,
      "download_ok": true,
      "extract_ok": true,
      "pdf_hash": "f6985e3ec99e0922cb456cfddc01010467ebab5680524d87aec2bd5e72807e3d",
      "txt_hash": "d61d1514f630581f9ea2ec56cfda2d41b10f5a4e6c10802faa1a17d37f86b68e"
    }
  },
  "status": "active"
}

nCipher nShield Solo XC Hardware Security Module v12.50.7

CSV information ?

Heuristics summary ?

Certificate ?

Extracted keywords

Common Criteria

Security level

Security Assurance Requirements (SAR)

Protection profiles

Certificates

Evaluation facilities

Other

Standards

File metadata

Certification report ?

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Randomness

Libraries

Common Criteria

Security level

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Protection profiles

Certificates

Evaluation facilities

Security

Side-channel analysis

Other

Standards

File metadata

Frontpage

References

Security target ?

Extracted keywords

Cryptography

Symmetric Algorithms

Asymmetric Algorithms

Hash functions

Randomness

Elliptic Curves

Block cipher modes

Common Criteria

Security level

Claims

Security Assurance Requirements (SAR)

Security Functional Requirements (SFR)

Certification process

Security

Side-channel analysis

Certification process

Other

Standards

File metadata

References

Heuristics ?

Extracted SARs

Scheme data ?

References ?

Updates ?

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed

Certificate changed