NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option

CSV information ?

Status active
Valid from 18.05.2018
Valid until 18.05.2023
Scheme 🇩🇪 DE
Manufacturer NXP Semiconductors Germany GmbH Business Line Identification
Category ICs, Smart Cards and Smart Card-Related Devices and Systems
Security level EAL4+, ALC_DVS.2
Maintenance updates Reassessment - NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option (07.01.2019) Certification report

Heuristics summary ?

Certificate ID: BSI-DSZ-CC-1023-2018

Certification report ?

Extracted keywords

Symmetric Algorithms
AES, DES, TDES, CMAC
Asymmetric Algorithms
Diffie-Hellman, DSA
Hash functions
SHA-1
Schemes
MAC, Key Exchange
Protocols
PACE
Randomness
RNG
Block cipher modes
CBC

Operating System name
JCOP 3
Vendor
NXP, NXP Semiconductors

Security level
EAL 4, EAL 2, EAL 1, EAL 2+, EAL 5+, EAL 6, EAL5+, EAL 4 augmented
Claims
OE.APPLET, OE.VERIFICATION, OE.CODE-EVIDENCE, OE.APPS-PROVIDE, OE.VERIFICATION-AUTHORITY, OE.KEY-CHANGE, OE.SECURITY-DOMAINS, OE.USE_DIAG, OE.USE_KEYS, OE.PROCESS_SEC_IC
Security Assurance Requirements (SAR)
ADV_FSP, AGD_OPE, AGD_PRE, ALC_DVS.2, ALC_FLR, ALC_CMC.4, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_TAT.1, ALC_COMP.1, ATE_FUN, ATE_IND, AVA_VAN
Security Functional Requirements (SFR)
FCS_COP, FCS_CKM.1, FCS_COP.1.1, FCS_RND.1, FIA_UAU.4
Protection profiles
BSI-CC-PP-0055-2009, BSI-CC-PP-0055-
Certificates
BSI-DSZ-CC-1023-2018, BSI-DSZ-CC-1022-2018, BSI-DSZ-CC-0973-V2-2016, NSCIB-CC-67206-CR2, NSCIB-CC-98209-CR2
Evaluation facilities
Brightsight, TÜV Informationstechnik, TÜViT
Certification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, based on BSI TR-03110 for Official Use with BAC option, Security Target, cv cryptovision GmbH (confidential document) [7] Evaluation Technical Report BSI-DSZ-CC-1023, Version 2, 16 March 2018, ETR Summary – NXP eDoc, for Official Use with BAC option, TÜV Informationstechnik GmbH – Evaluation Body for IT Security (confidential document) [8] Machine Readable Travel Document with "ICAO Application" Basic Access Control, Version 1.10, based on BSI TR-03110 for Official Use with BAC option, Security Target Lite, cv cryptovision GmbH (confidential document) [10] Configuration list for the TOE, Revision 13027, 22 Februar 2018, File 2018-02-, xlsx, cv cryptovision GmbH (confidential document) [11] Guidance Document for the TOE: NXP eDoc Suite v3.0 – cryptovision ePasslet Suite – Java Card, Composition NXP JCOP 3 SECID P60 CS (OSB) – EAL5+, version 3.0, 04 December 2017, Brightsight B.V. (confidential document) [16] Certification Report Crypto Library V3.1.x on P6022y VB, Certificate number CC-17- 67206, V3.1.x on P6022y VB EAL6+/5+, Reference 17-RPT-421, version 3.0, 24 October 2017, Brightsight B.V. (confidential document) [18] Certification report BSI-DSZ-CC-0973-V2-2016 for NXP Secure Smart Card Controller P6022y VB, Report for Composite Evaluation P6022y VB, version 1, 25 August 2016, TÜV Informationstechnik GmbH (confidential document) [20] Guidance Document for the platform: JCOP 3 SECID P60 CS User Guidance and Administration, SAC) Functional Specification ADV_FSP. Version 3.0.5, 29 September 2017, cv cryptovision GmbH (confidential document) 23 / 28 Certification Report BSI-DSZ-CC-1023-2018 C. Excerpts from the Criteria For the meaning

Side-channel analysis
JIL
Certification process
being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, based on BSI TR-03110 for Official Use with BAC option, Security Target, cv cryptovision GmbH (confidential document) [7] Evaluation Technical Report BSI-DSZ-CC-1023, Version 2, 16 March 2018, ETR Summary – NXP eDoc, for Official Use with BAC option, TÜV Informationstechnik GmbH – Evaluation Body for IT Security (confidential document) [8] Machine Readable Travel Document with "ICAO Application" Basic Access Control, Version 1.10, based on BSI TR-03110 for Official Use with BAC option, Security Target Lite, cv cryptovision GmbH (confidential document) [10] Configuration list for the TOE, Revision 13027, 22 Februar 2018, File 2018-02-, xlsx, cv cryptovision GmbH (confidential document) [11] Guidance Document for the TOE: NXP eDoc Suite v3.0 – cryptovision ePasslet Suite – Java Card, Composition NXP JCOP 3 SECID P60 CS (OSB) – EAL5+, version 3.0, 04 December 2017, Brightsight B.V. (confidential document) [16] Certification Report Crypto Library V3.1.x on P6022y VB, Certificate number CC-17- 67206, V3.1.x on P6022y VB EAL6+/5+, Reference 17-RPT-421, version 3.0, 24 October 2017, Brightsight B.V. (confidential document) [18] Certification report BSI-DSZ-CC-0973-V2-2016 for NXP Secure Smart Card Controller P6022y VB, Report for Composite Evaluation P6022y VB, version 1, 25 August 2016, TÜV Informationstechnik GmbH (confidential document) [20] Guidance Document for the platform: JCOP 3 SECID P60 CS User Guidance and Administration, SAC) Functional Specification ADV_FSP. Version 3.0.5, 29 September 2017, cv cryptovision GmbH (confidential document) 23 / 28 Certification Report BSI-DSZ-CC-1023-2018 C. Excerpts from the Criteria For the meaning

Standards
FIPS46-3, FIPS197, FIPS180-4, AIS 34, AIS 36, AIS 20, AIS36, AIS35, AIS 35, AIS 26, AIS 32, AIS 46, AIS20, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ICAO
Technical reports
BSI TR-03110, BSI 7148

File metadata

Title: Certification Report BSI-DSZ-CC-1023-2018
Subject: NXP eDoc Suite - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option
Keywords: "Common Criteria, Certification, Zertifizierung, TR-03110, BAC, MRED, MRTD, PP-0055"
Author: Bundesamt für Sicherheit in der Informationstechnik
Creation date: D:20180523092802+02'00'
Modification date: D:20190109074654+01'00'
Pages: 28
Creator: Writer
Producer: LibreOffice 5.2

Frontpage

Certificate ID: BSI-DSZ-CC-1023-2018
Certified item: NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option
Certification lab: BSI
Developer: NXP Semiconductors Germany GmbH

References

Outgoing
  • BSI-DSZ-CC-0973-V2-2016 - NXP Secure Smart Card Controller P6022y VB including IC Dedicated Software --- The certificate comprises four major configurations with two different EAL levels. For details see the ST. P6022P/X VB: EAL6 augmented by ALC_FLR.1, ASE_TSS.2 P6022M/D/J VB: EAL 5 augmented by AVA_VAN.5, ALC_DVS.2, ASE_TSS.2
  • BSI-DSZ-CC-1022-2018 - NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine Readable Travel Document with "ICAO Application", Extended Access Control with PACE

Security target ?

Extracted keywords

Symmetric Algorithms
AES, AES-, DES, Triple-DES, TDES, TripleDES, 3DES, Lucifer, KMAC, CMAC
Asymmetric Algorithms
ECC
Hash functions
SHA-1, SHA-256, SHA-224, MD5, RIPEMD-160
Schemes
MAC, Key exchange
Protocols
PACE
Randomness
RNG, RND
Block cipher modes
CBC, CCM

Operating System name
JCOP 3
IC data groups
EF.DG1, EF.DG2, EF.DG3, EF.DG4, EF.DG5, EF.DG16, EF.DG13, EF.DG14, EF.DG15, EF.COM, EF.SOD
Vendor
NXP, NXP Semiconductors

Security level
EAL 4+, EAL 5+, EAL4, EAL4 augmented
Claims
T.CONFID-APPLI-DATA, T.CONFID-JCS-CODE, T.CONFID-JCS-DATA, T.INTEG-APPLI-CODE, T.INTEG-APPLI-DATA, T.INTEG-JCS-CODE, T.INTEG-JCS-DATA, T.SID, T.EXE-CODE, T.NATIVE, T.RESOURCES, T.UNAUTHORIZED_CARD_MNGT, T.COM_EXPLOIT, T.LIFE_CYCLE, T.OBJ-DELETION, T.PHYSICAL, T.OS_OPERATE, T.RND, T.CONFIG, A.APPLET, A.VERIFICATION, A.USE_DIAG, A.USE_KEYS, A.PPROCESS-SEC-IC, A.APPS-PROVIDER, A.VERIFICATION-AUTHORITY, OT.IDENTIFICATION, OT.RND, OT.SID, OT.FIREWALL, OT.GLOBAL_ARRAYS_CONFID, OT.GLOBAL_ARRAYS_INTEG, OT.NATIVE, OT.OPERATE, OT.REALLOCATION, OT.RESOURCES, OT.ALARM, OT.CIPHER, OT.KEY-MNGT, OT.PIN-MNGT, OT.TRANSACTION, OT.OBJ-DELETION, OT.APPLI-AUTH, OT.DOMAIN-RIGHTS, OT.COMM_AUTH, OT.COMM_INTEGRITY, OT.COMM_CONFIDENTIALITY, OT.EXT-MEM, OT.CARD-MANAGEMENT, OT.SCP, OT.SEC_BOX_FW, OT.CONFIG-LIMIT, OE.APPLET, OE.VERIFICATION, OE.CODE-EVIDENCE, OE.APPS-PROVIDER, OE.VERIFICATION-AUTHORITY, OE.KEY-CHANGE, OE.SECURITY-DOMAINS, OE.USE_DIAG, OE.USE_KEYS, OE.PROCESS_SEC_IC, OE.MRTD_
Security Assurance Requirements (SAR)
ADV_ARC.1, ALC_DVS.2, ALC_DVS
Security Functional Requirements (SFR)
FAU_SAS, FAU_ARP.1, FAU_SAS.1, FAU_GEN, FAU_SAS.1.1, FCO_NRO.2, FCS_RND, FCS_CKM.1, FCS_CKM.2, FCS_CKM.3, FCS_CKM.4, FCS_COP.1, FCS_COP.1.1, FCS_COP, FCS_RNG.1, FCS_RND.1, FCS_RND.1.1, FCS_LIM, FCS_CKM.1.1, FCS_CKM.4.1, FCS_CKM, FDP_ACC.2, FDP_ACF.1, FDP_IFC.1, FDP_IFF.1, FDP_RIP.1, FDP_ROL.1, FDP_SDI.2, FDP_UIT.1, FDP_ITC.2, FDP_ACC.1, FDP_IFC.2, FDP_ACF, FDP_ITC.1, FDP_ACC.1.1, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_UCT.1, FDP_UCT.1.1, FDP_UIT.1.1, FDP_UIT.1.2, FDP_ITC, FDP_ACC, FDP_UCT, FDP_UIT, FIA_ATD.1, FIA_UID.2, FIA_USB.1, FIA_UID.1, FIA_UAU.1, FIA_UAU.4, FIA_AFL.1, FIA_SOS.2, FIA_UAU.5.2, FIA_UAU.6, FIA_UID.1.1, FIA_UID.1.2, FIA_UAU.1.1, FIA_UAU.1.2, FIA_UAU.4.1, FIA_UAU.5, FIA_UAU.5.1, FIA_UAU.6.1, FIA_AFL.1.1, FIA_AFL.1.2, FIA_UAU, FIA_UID, FIA_AFL, FMT_LIM, FMT_MSA.1, FMT_MSA.2, FMT_MSA.3, FMT_SMF.1, FMT_SMR.1, FMT_MTD.1, FMT_MTD.3, FMT_LIM.1, FMT_LIM.2, FMT_LIM.1.1, FMT_LIM.2.1, FMT_MTD, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_SMR, FMT_SMF, FPR_UNO.1, FPT_FLS.1, FPT_PHP.3, FPT_TDC.1, FPT_RCV.3, FPT_TST.1, FPT_FLS.1.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FPT_PHP.3.1, FPT_RVM.1, FPT_SEP.1, FPT_FLS, FTP_ITC.1, FTP_TRP.1
Protection profiles
BSI-CC-PP0055, BSI-PP-0002-2001, BSI-CC-PP-0084-, BSI-CC-PP-0055-2009, BSI-PP-0056, BSI-CC-PP-0056-
Certificates
BSI-DSZ-CC-0973-2016, BSI-DSZ-CC-0973-V2-2016, NSCIB-CC-98209-CR2
Certification process
out of scope, Out of scope, chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall, internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine, internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out of scope (internal Java Card Fire- wall, No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No correspondence Out of scope (internal Java Card Fire- wall, internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of scope (internal Java Card Fire- wall, chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm, managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP, internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No correspondence. Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No correspondence. Out of scope (internal Java Card func- tionality, No contradiction to this ST. FDP_ROL.1[FIREWALL] No correspondence. Out of scope (internal Java Card Fire- wall, chapter 7.1.1.4 in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FPT_FLS.1[Installer] No correspondence Out of scope (internal Java Card func- tionality, ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FDP_ACF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_MSA.3[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality, chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_MSA.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality, chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, MIFARE functionality or a banking application in ROM; please note that this functionality is out of scope of the TOE’s security functionality claimed by this security target. The correctness of the chip, platform ST) Firewall Policy (chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of the TOE. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of the TOE. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out, internal Java Virtual Machine). No contradiction to this ST. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out, internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No, Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of the TOE. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MSA.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of, internal Java Card Fire- wall). No contradiction to this ST. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. Application Programming Interface, 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm. FCS_CKM.2 No, Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.4 FCS_CKM.4 The Java Card platform, of 81 Platform SFR Correspondence in this ST References/Remarks FDP_RIP.1[ABORT] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[bArray] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[TRANSIENT] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[FIREWALL] No, vio- lations complement JCOP mecha- nisms. No contradiction to this ST. FPT_TDC.1 No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Aid Management (chapter 7.1.1.4, platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.2[AID] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -, of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MTD.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. INSTG Security Functional, which addresses security aspects outside the runtime. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[Installer] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_RCV.3[Installer] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. ADELG Security Functional, manager (ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. RMIG Security Functional, that owns the deleted objects by invoking a specific API method. FDP_RIP.1[ODEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ODEL] FPT_FLS.1 The, verified, or that has been modified after bytecode verification. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FDP_ITC.2[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FDP_ACC.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence, 19 of 81 Platform SFR Correspondence in this ST References/Remarks FIA_UAU.4[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence, group includes requirements for managing the external memory. FDP_ACC.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. Further Functional Requirements, numbers with a defined quality metric that can be used directly. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport). No contradic- tion to this ST. FPT_EMSEC.1 FPT_EMSEC.1, Functional Requirements (chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SecureBox] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SecureBox] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SecureBox] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -, 81 Platform SFR Correspondence in this ST References/Remarks FMT_SMF.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Configuration Security, Requirements (chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. Table 4: Assessment of the, but no corresponding objectives for the TOE of this ST. No contradictions. OT.SID No correspondence Out of scope. No contradiction to this ST. OT.FIREWALL No correspondence Out of scope. No contradiction to this, OT.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST. OT.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No, to this ST. OT.NATIVE No correspondence Out of scope. No contradiction to this ST. OT.OPERATE No correspondence Out of scope. No contradiction to this, Platform Objective Correspondence in this ST References/Remarks OT.REALLOCATION No correspondence Out of scope. No contradiction to this ST. OT.RESOURCES No correspondence Out of scope. No contradiction to this, OT.ALARM No correspondence Out of scope. No contradiction to this ST. OT.CIPHER No correspondence Indirectly relevant for the correct, corresponding objectives for the TOE of this ST. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST. OT.PIN-MNGT No correspondence Out of scope. No contradiction to this, OT.TRANSACTION No correspondence Out of scope. No contradiction to this ST. OT.OBJ-DELETION No correspondence Out of scope. No contradiction to, ST. OT.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST. OT.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to, ST. OT.COMM_AUTH No correspondence Out of scope. No contradiction to this ST. OT.COMM_INTEGRITY No correspondence Out of scope. No contradiction to, ST. OT.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST. OT.EXT-MEM No correspondence Out of scope. No contradiction to this, OT.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST. OT.SCP.IC OT.Prot_Phys-Tamper The objectives are related. No con-, The objectives are related. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST. OT.SEC_BOX_FW No correspondence Out of scope. No contradiction to, ST. OT.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST. Table 5: Assessment of the platform objectives. NXP eDoc Suite v3.0, Platform Threat Correspondence in this ST References/Remarks T.CONFID-APPLI-DATA No correspondence Out of scope. No contradiction to this ST. T.CONFID-JCS-CODE No correspondence Out of scope. No contradiction to, T.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST. T.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No, REFINED] T.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST. T.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to, ST. T.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST. T.SID.1 No correspondence Out of scope. No contradiction to this ST, SID.2 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.2 No correspondence Out of scope. No contradiction to this, T.NATIVE No correspondence Out of scope. No contradiction to this ST. T.RESOURCES No correspondence Out of scope. No contradiction to this, T.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST. T.COM_EXPLOIT No correspondence Out of scope. No contradiction to, ST. T.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST. T.OBJ-DELETION No correspondence Out of scope. No contradiction to, of 81 Platform Threat Correspondence in this ST References/Remarks T.OS_OPERATE No correspondence Out of scope. No contradiction to this ST. T.RND No correspondence Out of scope. No contradiction to this ST. T, No correspondence Out of scope. No contradiction to this ST. Table 6: Threats of the platform ST. 2.3.5 Assessment of Platform

Side-channel analysis
physical probing, DPA, SPA, timing attacks, Physical Tampering, physical tampering, Physical tampering, Malfunction, malfunction, fault injection, reverse engineering
Certification process
out of scope, Out of scope, chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall, internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine, internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out of scope (internal Java Card Fire- wall, No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No correspondence Out of scope (internal Java Card Fire- wall, internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of scope (internal Java Card Fire- wall, chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm, managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP, internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No correspondence. Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No correspondence. Out of scope (internal Java Card func- tionality, No contradiction to this ST. FDP_ROL.1[FIREWALL] No correspondence. Out of scope (internal Java Card Fire- wall, chapter 7.1.1.4 in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FPT_FLS.1[Installer] No correspondence Out of scope (internal Java Card func- tionality, ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence Out of scope (internal Java Card func- tionality, internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FDP_ACF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_MSA.3[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality, chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_MSA.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality, chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality, MIFARE functionality or a banking application in ROM; please note that this functionality is out of scope of the TOE’s security functionality claimed by this security target. The correctness of the chip, platform ST) Firewall Policy (chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of the TOE. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of the TOE. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out, internal Java Virtual Machine). No contradiction to this ST. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out, internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No, Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of the TOE. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User, of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MSA.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of, internal Java Card Fire- wall). No contradiction to this ST. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. Application Programming Interface, 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm. FCS_CKM.2 No, Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.4 FCS_CKM.4 The Java Card platform, of 81 Platform SFR Correspondence in this ST References/Remarks FDP_RIP.1[ABORT] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[bArray] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[TRANSIENT] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[FIREWALL] No, vio- lations complement JCOP mecha- nisms. No contradiction to this ST. FPT_TDC.1 No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Aid Management (chapter 7.1.1.4, platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.2[AID] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -, of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MTD.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. INSTG Security Functional, which addresses security aspects outside the runtime. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[Installer] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_RCV.3[Installer] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. ADELG Security Functional, manager (ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ADEL] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. RMIG Security Functional, that owns the deleted objects by invoking a specific API method. FDP_RIP.1[ODEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ODEL] FPT_FLS.1 The, verified, or that has been modified after bytecode verification. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FDP_ITC.2[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FDP_ACC.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence, internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence, 19 of 81 Platform SFR Correspondence in this ST References/Remarks FIA_UAU.4[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence, group includes requirements for managing the external memory. FDP_ACC.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[EXT-MEM] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. Further Functional Requirements, numbers with a defined quality metric that can be used directly. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport). No contradic- tion to this ST. FPT_EMSEC.1 FPT_EMSEC.1, Functional Requirements (chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SecureBox] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SecureBox] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SecureBox] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -, 81 Platform SFR Correspondence in this ST References/Remarks FMT_SMF.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Configuration Security, Requirements (chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[CONFIG-SERVICE] No, Out of scope (internal Java Card func- tionality). No contradiction to this ST. Table 4: Assessment of the, but no corresponding objectives for the TOE of this ST. No contradictions. OT.SID No correspondence Out of scope. No contradiction to this ST. OT.FIREWALL No correspondence Out of scope. No contradiction to this, OT.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST. OT.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No, to this ST. OT.NATIVE No correspondence Out of scope. No contradiction to this ST. OT.OPERATE No correspondence Out of scope. No contradiction to this, Platform Objective Correspondence in this ST References/Remarks OT.REALLOCATION No correspondence Out of scope. No contradiction to this ST. OT.RESOURCES No correspondence Out of scope. No contradiction to this, OT.ALARM No correspondence Out of scope. No contradiction to this ST. OT.CIPHER No correspondence Indirectly relevant for the correct, corresponding objectives for the TOE of this ST. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST. OT.PIN-MNGT No correspondence Out of scope. No contradiction to this, OT.TRANSACTION No correspondence Out of scope. No contradiction to this ST. OT.OBJ-DELETION No correspondence Out of scope. No contradiction to, ST. OT.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST. OT.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to, ST. OT.COMM_AUTH No correspondence Out of scope. No contradiction to this ST. OT.COMM_INTEGRITY No correspondence Out of scope. No contradiction to, ST. OT.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST. OT.EXT-MEM No correspondence Out of scope. No contradiction to this, OT.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST. OT.SCP.IC OT.Prot_Phys-Tamper The objectives are related. No con-, The objectives are related. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST. OT.SEC_BOX_FW No correspondence Out of scope. No contradiction to, ST. OT.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST. Table 5: Assessment of the platform objectives. NXP eDoc Suite v3.0, Platform Threat Correspondence in this ST References/Remarks T.CONFID-APPLI-DATA No correspondence Out of scope. No contradiction to this ST. T.CONFID-JCS-CODE No correspondence Out of scope. No contradiction to, T.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST. T.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No, REFINED] T.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST. T.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to, ST. T.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST. T.SID.1 No correspondence Out of scope. No contradiction to this ST, SID.2 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.2 No correspondence Out of scope. No contradiction to this, T.NATIVE No correspondence Out of scope. No contradiction to this ST. T.RESOURCES No correspondence Out of scope. No contradiction to this, T.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST. T.COM_EXPLOIT No correspondence Out of scope. No contradiction to, ST. T.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST. T.OBJ-DELETION No correspondence Out of scope. No contradiction to, of 81 Platform Threat Correspondence in this ST References/Remarks T.OS_OPERATE No correspondence Out of scope. No contradiction to this ST. T.RND No correspondence Out of scope. No contradiction to this ST. T, No correspondence Out of scope. No contradiction to this ST. Table 6: Threats of the platform ST. 2.3.5 Assessment of Platform

Standards
FIPS 46-3, FIPS 180-412, FIPS46-3, FIPS 197, FIPS197, FIPS 180-2, FIPS 180-4, FIPS PUB 46-3, FIPS180-2, FIPS180-4, PKCS#15, AIS20, AIS 20, AIS31, RFC3369, ISO/IEC 7816-2, ISO/IEC 7816-4, ICAO, X.509, CCMB-2012-09-001, CCMB-2012-09-002, CCMB-2012-09-003, CCMB-2012-09-004
Technical reports
BSI TR-03110

File metadata

Title: cv act ePasslet/MRTD-BAC Security Target
Subject: deutsch
Keywords: Security Target, ePasslet Suite, ICAO LDS, BAC
Author: bdrisch
Creation date: D:20180222105939+01'00'
Modification date: D:20180222105939+01'00'
Pages: 81
Creator: Microsoft® Word 2013
Producer: Microsoft® Word 2013

References

Outgoing
  • BSI-DSZ-CC-0973-V2-2016 - NXP Secure Smart Card Controller P6022y VB including IC Dedicated Software --- The certificate comprises four major configurations with two different EAL levels. For details see the ST. P6022P/X VB: EAL6 augmented by ALC_FLR.1, ASE_TSS.2 P6022M/D/J VB: EAL 5 augmented by AVA_VAN.5, ALC_DVS.2, ASE_TSS.2
  • BSI-DSZ-CC-0973-2016 - NXP Secure Smart Card Controller P6022y VB including IC Dedicated Software --- The certificate comprises four major configurations with two different EAL levels. For details see the ST. P6022P/X VB: EAL6 augmented by ALC_FLR.1, ASE_TSS.2 P6022M/D/J VB: EAL 5 augmented by AVA_VAN.5, ALC_DVS.2, ASE_TSS.2

Heuristics ?

Certificate ID: BSI-DSZ-CC-1023-2018

Extracted SARs

ALC_DVS.2, ALC_TAT.1, ALC_COMP.1, ADV_ARC.1, ALC_CMS.4, ALC_DEL.1, ALC_LCD.1, ALC_CMC.4

References ?

Updates ?

  • 28.01.2022 The certificate was first processed.
    New certificate

    A new Common Criteria certificate with the product name NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option was processed.

  • 18.02.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_frontpage property was updated, with the {'nscib': {}, 'niap': {}, 'canada': {}} values inserted.
    • The st_frontpage property was updated, with the {'nscib': {}, 'niap': {}, 'canada': {}} values inserted.

    The computed heuristics were updated.

    • The extracted_versions property was set to {'_type': 'Set', 'elements': ['3.0']}.
  • 08.03.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'st_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0973-V2-2016', 'NSCIB-CC-98209-CR2', 'BSI-DSZ-CC-0973-2016']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0973-V2', 'BSI-DSZ-CC-0973-V2-2016', 'NSCIB-CC-98209-CR2', 'BSI-DSZ-CC-0973-2016']}}, 'report_references': {'_type': 'References', 'directly_referenced_by': None, 'indirectly_referenced_by': None, 'directly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0973-V2-2016', 'NSCIB-CC-98209-CR2', 'NSCIB-CC-67206-CR2', 'BSI-DSZ-CC-1022-2018']}, 'indirectly_referencing': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0973-V2-2016', 'BSI-DSZ-CC-0973-2016', 'NSCIB-CC-98209-CR2', 'NSCIB-CC-67206-CR2', 'BSI-DSZ-CC-1022-2018']}}}.
    • The following properties were deleted: ['directly_affected_by', 'indirectly_affected_by', 'directly_affecting', 'indirectly_affecting'].
  • 24.04.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'direct_dependency_cves': None, 'indirect_dependency_cves': None}.
  • 13.05.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The following values were inserted: {'extracted_sars': {'_type': 'Set', 'elements': [{'_type': 'SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_DVS', 'level': 2}, {'_type': 'SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_COMP', 'level': 1}, {'_type': 'SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'SAR', 'family': 'ALC_CMC', 'level': 4}, {'_type': 'SAR', 'family': 'ALC_DEL', 'level': 1}]}}.
  • 14.06.2022 The certificate data changed.
    Certificate changed

    The state of the certificate object was updated.

    • The following values were inserted: {'report_pdf_hash': '3acfb259663d04c4c2aecba94785e70be7dc3bc9d9071acba69209308d300a8d', 'st_pdf_hash': '21afd28d97849621a8196d50f830587afc1e4ebecbd72e47e36287dbb5e5a9ff', 'report_txt_hash': 'e8b9d4be095688b9c3a37a8168c9526bf56996721bef40fe8a0bd1203574484b', 'st_txt_hash': '7bddf5cd0fd7f243651444f70f764f9863ebdf0a764ff44829f820eed19845a9'}.

    The PDF extraction data was updated.

    • The report_keywords property was updated, with the {'rules_symmetric_crypto': {'AES': 10, 'TDES': 2, 'DES': 5}, 'rules_asymmetric_crypto': {'Diffie-Hellman': 1, 'DSA': 1}, 'rules_pq_crypto': {}, 'rules_hashes': {'SHA-1': 1}, 'rules_crypto_schemes': {'PACE': 1, 'MAC': 9, 'Key Exchange': 1}, 'rules_randomness': {'RNG': 2}, 'rules_tee': {'SE': 2}, 'rules_side_channels': {}} values inserted.
    • The st_keywords property was updated, with the {'rules_block_cipher_modes': {'__insert__': {'CCM': 4}}} data.
  • 17.07.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The report_metadata property was updated, with the {'pdf_hyperlinks': {'_type': 'Set', 'elements': ['https://www.bsi.bund.de/zertifizierungsreporte', 'http://www.commoncriteriaportal.org/cc/', 'https://www.bsi.bund.de/AIS', 'http://www.commoncriteriaportal.org/', 'http://www.sogisportal.eu/', 'https://www.bsi.bund.de/zertifizierung', 'https://www.bsi.bund.de/']}} values inserted.
    • The st_metadata property was updated, with the {'pdf_hyperlinks': {'_type': 'Set', 'elements': ['file:///C:/tzeggel/Desktop/glossar.htm%23aes']}} values inserted.
    • The report_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1023-2018': 62, 'BSI-DSZ-CC-1022-2018': 4, 'BSI-DSZ-CC-0973-V2-2016': 4}, 'NL': {'NSCIB-CC-67206-CR2': 4, 'NSCIB-CC-98209-CR2': 2}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP-0055-2009': 3, 'BSI-CC-PP-0055-': 1}}, 'cc_security_level': {'EAL': {'EAL 4': 4, 'EAL 2': 2, 'EAL 1': 1, 'EAL 2+': 1, 'EAL 5+': 1, 'EAL 6': 1, 'EAL5+': 1, 'EAL 4 augmented': 3}}, 'cc_sar': {'AGD': {'AGD_OPE': 1, 'AGD_PRE': 1}, 'ALC': {'ALC_DVS.2': 4, 'ALC_FLR': 3, 'ALC_CMC.4': 1, 'ALC_CMS.4': 1, 'ALC_DEL.1': 1, 'ALC_LCD.1': 1, 'ALC_TAT.1': 1, 'ALC_COMP.1': 1}, 'ATE': {'ATE_FUN': 1, 'ATE_IND': 1}, 'AVA': {'AVA_VAN': 1}}, 'cc_sfr': {'FCS': {'FCS_CKM.1': 1, 'FCS_COP.1.1': 1, 'FCS_RND.1': 1}, 'FIA': {'FIA_UAU.4': 1}}, 'cc_claims': {'OE': {'OE.APPLET': 1, 'OE.VERIFICATION': 1, 'OE.CODE-EVIDENCE': 1, 'OE.APPS-PROVIDE': 1, 'OE.VERIFICATION-AUTHORITY': 1, 'OE.KEY-CHANGE': 1, 'OE.SECURITY-DOMAINS': 1, 'OE.USE_DIAG': 1, 'OE.USE_KEYS': 1, 'OE.PROCESS_SEC_IC': 1}}, 'vendor': {'NXP': {'NXP': 33, 'NXP Semiconductors': 3}}, 'eval_facility': {'BrightSight': {'Brightsight': 2}, 'TUV': {'TÜV Informationstechnik': 4, 'TÜViT': 1}}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 10}}, 'DES': {'DES': {'DES': 7}, '3DES': {'TDES': 2}}, 'constructions': {'MAC': {'CMAC': 3}}}, 'asymmetric_crypto': {'FF': {'DH': {'Diffie-Hellman': 1}, 'DSA': {'DSA': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 1}}}, 'crypto_scheme': {'MAC': {'MAC': 9}, 'KEX': {'Key Exchange': 1}}, 'crypto_protocol': {'PACE': {'PACE': 1}}, 'randomness': {'RNG': {'RNG': 2}}, 'cipher_mode': {'CBC': {'CBC': 6}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'other': {'JIL': 3}}, 'technical_report_id': {'BSI': {'BSI TR-03110': 12, 'BSI 7148': 1}}, 'device_model': {}, 'tee_name': {'IBM': {'SE': 2}}, 'os_name': {'JCOP': {'JCOP 3': 8}}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'FIPS': {'FIPS46-3': 3, 'FIPS197': 3, 'FIPS180-4': 1}, 'BSI': {'AIS 34': 2, 'AIS 36': 2, 'AIS 20': 2, 'AIS36': 1, 'AIS35': 1, 'AIS 35': 2, 'AIS 26': 1, 'AIS 32': 1, 'AIS 46': 1, 'AIS20': 1}, 'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 17065': 2}, 'ICAO': {'ICAO': 9}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'ConfidentialDocument': {'identiality being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, 'ents based on BSI TR-03110 for Official Use with BAC option, Security Target, cv cryptovision GmbH (confidential document) [7] Evaluation Technical Report BSI-DSZ-CC-1023, Version 2, 16 March 2018, ETR Summary – NXP eDoc': 1, '0 for Official Use with BAC option, TÜV Informationstechnik GmbH – Evaluation Body for IT Security (confidential document) [8] Machine Readable Travel Document with "ICAO Application" Basic Access Control, Version 1.10': 1, 'based on BSI TR-03110 for Official Use with BAC option, Security Target Lite, cv cryptovision GmbH (confidential document) [10] Configuration list for the TOE, Revision 13027, 22 Februar 2018, File 2018-02-': 1, '22_conflist-JCOP3_rev13027.xlsx, cv cryptovision GmbH (confidential document) [11] Guidance Document for the TOE: NXP eDoc Suite v3.0 – cryptovision ePasslet Suite – Java Card': 1, 'Composition NXP JCOP 3 SECID P60 CS (OSB) – EAL5+, version 3.0, 04 December 2017, Brightsight B.V. (confidential document) [16] Certification Report Crypto Library V3.1.x on P6022y VB, Certificate number CC-17- 67206': 1, 'V3.1.x on P6022y VB EAL6+/5+, Reference 17-RPT-421, version 3.0, 24 October 2017, Brightsight B.V. (confidential document) [18] Certification report BSI-DSZ-CC-0973-V2-2016 for NXP Secure Smart Card Controller P6022y VB': 1, 'Report for Composite Evaluation P6022y VB, version 1, 25 August 2016, TÜV Informationstechnik GmbH (confidential document) [20] Guidance Document for the platform: JCOP 3 SECID P60 CS User Guidance and Administration': 1, 'rol (SAC) Functional Specification ADV_FSP. Version 3.0.5, 29 September 2017, cv cryptovision GmbH (confidential document) 23 / 28 Certification Report BSI-DSZ-CC-1023-2018 C. Excerpts from the Criteria For the meaning': 1}}}.
    • The st_keywords property was set to {'cc_cert_id': {'DE': {'BSI-DSZ-CC-0973-2016': 2, 'BSI-DSZ-CC-0973-V2-2016': 2}, 'NL': {'NSCIB-CC-98209-CR2': 4}}, 'cc_protection_profile_id': {'BSI': {'BSI-CC-PP0055': 3, 'BSI-PP-0002-2001': 1, 'BSI-CC-PP-0084-': 1, 'BSI-CC-PP-0055-2009': 1, 'BSI-PP-0056': 1, 'BSI-CC-PP-0056-': 1}}, 'cc_security_level': {'EAL': {'EAL 4+': 1, 'EAL 5+': 2, 'EAL4': 8, 'EAL4 augmented': 2}}, 'cc_sar': {'ADV': {'ADV_ARC.1': 1}, 'ALC': {'ALC_DVS.2': 2}}, 'cc_sfr': {'FAU': {'FAU_ARP.1': 1, 'FAU_SAS.1': 11, 'FAU_SAS': 5, 'FAU_GEN': 1, 'FAU_SAS.1.1': 2}, 'FCS': {'FCS_RND': 7, 'FCS_CKM.1': 27, 'FCS_CKM.2': 3, 'FCS_CKM.3': 1, 'FCS_CKM.4': 24, 'FCS_COP.1': 5, 'FCS_RNG.1': 2, 'FCS_RND.1': 15, 'FCS_RND.1.1': 3, 'FCS_LIM': 1, 'FCS_CKM.1.1': 2, 'FCS_CKM.4.1': 4}, 'FDP': {'FDP_SDI.2': 1, 'FDP_ACF': 1, 'FDP_ITC.1': 10, 'FDP_ITC.2': 10, 'FDP_ACC.1': 18, 'FDP_ACF.1': 12, 'FDP_ACC.1.1': 3, 'FDP_ACF.1.1': 3, 'FDP_ACF.1.2': 4, 'FDP_ACF.1.3': 3, 'FDP_ACF.1.4': 4, 'FDP_UCT.1': 11, 'FDP_UIT.1': 10, 'FDP_IFC.1': 4, 'FDP_UCT.1.1': 3, 'FDP_UIT.1.1': 3, 'FDP_UIT.1.2': 2}, 'FIA': {'FIA_SOS.2': 1, 'FIA_UAU.4': 13, 'FIA_UAU.6': 12, 'FIA_UID.1': 14, 'FIA_UID.1.1': 2, 'FIA_UID.1.2': 1, 'FIA_UAU.1': 11, 'FIA_UAU.1.1': 2, 'FIA_UAU.1.2': 2, 'FIA_UAU.4.1': 2, 'FIA_UAU.5': 8, 'FIA_UAU.5.1': 4, 'FIA_UAU.5.2': 4, 'FIA_UAU.6.1': 2, 'FIA_AFL.1': 8, 'FIA_AFL.1.1': 2, 'FIA_AFL.1.2': 2}, 'FMT': {'FMT_SMF.1': 22, 'FMT_SMR.1': 22, 'FMT_LIM': 5, 'FMT_LIM.1': 25, 'FMT_LIM.2': 24, 'FMT_LIM.1.1': 6, 'FMT_LIM.2.1': 7, 'FMT_MSA.3': 3, 'FMT_SMF.1.1': 2, 'FMT_SMR.1.1': 4, 'FMT_SMR.1.2': 4, 'FMT_MTD.1': 3, 'FMT_MSA.1': 1}, 'FPR': {'FPR_UNO.1': 1}, 'FPT': {'FPT_FLS.1': 16, 'FPT_PHP.3': 12, 'FPT_TDC.1': 1, 'FPT_TST.1': 8, 'FPT_FLS.1.1': 3, 'FPT_TST.1.1': 2, 'FPT_TST.1.2': 2, 'FPT_TST.1.3': 2, 'FPT_PHP.3.1': 2, 'FPT_RVM.1': 1, 'FPT_SEP.1': 1}, 'FTP': {'FTP_ITC.1': 5, 'FTP_TRP.1': 5}}, 'cc_claims': {'D': {'D.ICC': 1}, 'T': {'T.IDENTIFICATION': 1, 'T.RND': 2, 'T.SID': 1, 'T.FIREWALL': 1, 'T.GLOBAL_ARRAYS_CONFID': 1, 'T.GLOBAL_ARRAYS_INTEG': 1, 'T.NATIVE': 2, 'T.OPERATE': 1, 'T.REALLOCATION': 1, 'T.RESOURCES': 2, 'T.ALARM': 1, 'T.CIPHER': 1, 'T.KEY-MNGT': 1, 'T.PIN-MNGT': 1, 'T.TRANSACTION': 1, 'T.OBJ-DELETION': 2, 'T.APPLI-AUTH': 1, 'T.DOMAIN-RIGHTS': 1, 'T.COMM_AUTH': 1, 'T.COMM_INTEGRITY': 1, 'T.COMM_CONFIDENTIALITY': 1, 'T.EXT-MEM': 1, 'T.CARD-MANAGEMENT': 1, 'T.SCP.IC': 1, 'T.SCP.RECOVERY': 1, 'T.SCP.SUPPORT': 1, 'T.SEC_BOX_FW': 1, 'T.CONFIG-LIMIT': 1, 'T.CONFID-APPLI-DATA': 1, 'T.CONFID-JCS-CODE': 1, 'T.CONFID-JCS-DATA': 1, 'T.INTEG-APPLI-CODE': 1, 'T.INTEG-APPLI-CODE.LOAD': 1, 'T.INTEG-APPLI-DATA.LOAD': 1, 'T.INTEG-JCS-CODE': 1, 'T.INTEG-JCS-DATA': 1, 'T.UNAUTHORIZED_CARD_MNGT': 1, 'T.COM_EXPLOIT': 1, 'T.LIFE_CYCLE': 1, 'T.PHYSICAL': 1, 'T.OS_OPERATE': 1, 'T.CONFIG': 1}, 'A': {'A.LOAD': 1, 'A.APPLET': 2, 'A.VERIFICATION': 1, 'A.USE_DIAG': 2, 'A.USE_KEYS': 2, 'A.PPROCESS-SEC-IC': 3, 'A.APPS-PROVIDER': 1, 'A.VERIFICATION-AUTHORITY': 1}, 'OT': {'OT.IDENTIFICATION': 1, 'OT.RND': 1, 'OT.SID': 1, 'OT.FIREWALL': 1, 'OT.GLOBAL_ARRAYS_CONFID': 1, 'OT.GLOBAL_ARRAYS_INTEG': 1, 'OT.NATIVE': 1, 'OT.OPERATE': 1, 'OT.REALLOCATION': 1, 'OT.RESOURCES': 1, 'OT.ALARM': 1, 'OT.CIPHER': 1, 'OT.KEY-MNGT': 1, 'OT.PIN-MNGT': 1, 'OT.TRANSACTION': 1, 'OT.OBJ-DELETION': 1, 'OT.APPLI-AUTH': 1, 'OT.DOMAIN-RIGHTS': 1, 'OT.COMM_AUTH': 1, 'OT.COMM_INTEGRITY': 1, 'OT.COMM_CONFIDENTIALITY': 1, 'OT.EXT-MEM': 1, 'OT.CARD-MANAGEMENT': 1, 'OT.SCP.IC': 1, 'OT.SCP.RECOVERY': 1, 'OT.SCP.SUPPORT': 1, 'OT.SEC_BOX_FW': 1, 'OT.CONFIG-LIMIT': 1}, 'OE': {'OE.APPLET': 1, 'OE.VERIFICATION': 1, 'OE.CODE-EVIDENCE': 1, 'OE.APPS-PROVIDER': 1, 'OE.VERIFICATION-AUTHORITY': 1, 'OE.KEY-CHANGE': 1, 'OE.SECURITY-DOMAINS': 1, 'OE.USE_DIAG': 1, 'OE.USE_KEYS': 1, 'OE.PROCESS_SEC_IC': 2, 'OE.MRTD_': 2}, 'OSP': {'OSP.PROCESS-TOE': 1, 'OSP.VERIFICATION': 1, 'OSP.KEY-CHANGE': 1, 'OSP.SECURITY-DOMAINS': 1, 'OSP.SECURE-BOX': 1}}, 'vendor': {'NXP': {'NXP': 111}}, 'eval_facility': {}, 'symmetric_crypto': {'AES_competition': {'AES': {'AES': 22, 'AES-': 1}}, 'DES': {'DES': {'DES': 28}, '3DES': {'Triple-DES': 16, 'TDES': 2, 'TripleDES': 2, '3DES': 2}, 'Lucifer': {'Lucifer': 1}}, 'constructions': {'MAC': {'KMAC': 1, 'CMAC': 6}}}, 'asymmetric_crypto': {'ECC': {'ECC': {'ECC': 1}}}, 'pq_crypto': {}, 'hash_function': {'SHA': {'SHA1': {'SHA-1': 6}, 'SHA2': {'SHA-256': 2, 'SHA-224': 1}}, 'MD': {'MD5': {'MD5': 1}}, 'RIPEMD': {'RIPEMD-160': 1}}, 'crypto_scheme': {'MAC': {'MAC': 42}, 'KEX': {'Key exchange': 1}}, 'crypto_protocol': {'PACE': {'PACE': 1}}, 'randomness': {'TRNG': {'TRNG': 2}, 'RNG': {'RND': 9, 'RNG': 9}}, 'cipher_mode': {'CBC': {'CBC': 7}, 'CCM': {'CCM': 4}}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {'SCA': {'physical probing': 4, 'DPA': 2, 'SPA': 1, 'timing attacks': 1}, 'FI': {'Physical Tampering': 6, 'physical tampering': 1, 'Physical tampering': 1, 'Malfunction': 10, 'malfunction': 7, 'fault injection': 1}, 'other': {'reverse engineering': 1}}, 'technical_report_id': {'BSI': {'BSI TR-03110': 3}}, 'device_model': {}, 'tee_name': {}, 'os_name': {'JCOP': {'JCOP 3': 10}}, 'cplc_data': {}, 'ic_data_group': {'EF': {'EF.DG1': 32, 'EF.DG2': 9, 'EF.DG3': 9, 'EF.DG4': 6, 'EF.DG5': 8, 'EF.DG16': 30, 'EF.DG13': 3, 'EF.DG14': 3, 'EF.DG15': 1, 'EF.COM': 11, 'EF.SOD': 13}}, 'standard_id': {'FIPS': {'FIPS 46-3': 3, 'FIPS 180-412': 1, 'FIPS46-3': 2, 'FIPS 197': 2, 'FIPS197': 2, 'FIPS 180-2': 1, 'FIPS PUB 46-3': 1, 'FIPS180-2': 1, 'FIPS180-4': 1}, 'PKCS': {'PKCS#15': 1}, 'BSI': {'AIS20': 5, 'AIS 20': 3, 'AIS31': 3}, 'RFC': {'RFC3369': 1}, 'ISO': {'ISO/IEC 7816-2': 1}, 'ICAO': {'ICAO': 29}, 'X509': {'X.509': 1}, 'CC': {'CCMB-2012-09-001': 1, 'CCMB-2012-09-002': 1, 'CCMB-2012-09-003': 1, 'CCMB-2012-09-004': 1}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {'OutOfScope': {'out of scope': 1, 'Out of scope': 77, '(chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall': 1, '. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall': 1, '. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine': 1, '. FDP_IFF.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine': 1, '. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall': 1, '. FMT_MSA.1[JCRE] No correspondence Out of scope (internal Java Card Fire- wall': 1, '. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall': 1, '. FMT_MSA.2[FIREWALL-JCVM] No correspondence Out of scope (internal Java Card Fire- wall': 1, '. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall': 1, '.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall': 1, '. FMT_SMF.1 No correspondence Out of scope (internal Java Card Fire- wall': 1, '. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall': 1, '. Application Programming Interface (chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm': 1, '.2 No correspondence Out of scope (managed within JCOP': 1, '. FCS_CKM.3 No correspondence Out of scope (managed within JCOP': 1, '.1[ABORT] No correspondence. Out of scope (internal Java Card func- tionality': 1, '. FDP_RIP.1[APDU] No correspondence. Out of scope (internal Java Card func- tionality': 1, '. FDP_RIP.1[bArray] No correspondence. Out of scope (internal Java Card func- tionality': 1, '. FDP_RIP.1[KEYS] No correspondence. Out of scope (internal Java Card func- tionality': 1, '. FDP_RIP.1[TRANSIENT] No correspondence. Out of scope (internal Java Card func- tionality': 1, '. FDP_ROL.1[FIREWALL] No correspondence. Out of scope (internal Java Card Fire- wall': 1, '. No contradiction to this ST. FPT_TDC.1 No correspondence Out of scope (internal Java Card func- tionality': 1, '. Aid Management (chapter 7.1.1.4 in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality': 1, '. FIA_UID.2[AID] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality': 1, '.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MTD.3[JCRE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FPT_FLS.1[Installer] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FPT_RCV.3[Installer] No correspondence Out of scope (internal Java Card func- tionality': 1, '(ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ACF.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_RIP.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.3[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMF.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMR.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FPT_FLS.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_RIP.1[ODEL] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ROL.1[CCM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ITC.2[CCM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FPT_FLS.1[CCM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ACC.1[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ACF.1[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.1[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.3[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMF.1[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMR.1[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FCO_NRO.2[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_IFC.2[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_IFF.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.3[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMF.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FIA_UID.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FIA_UAU.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '.4[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FTP_ITC.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ACC.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ACF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.3[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport': 1, '(chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ACF.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.3[SecureBox] No correspondence Out of scope (internal Java Card func- tionality': 1, '.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality': 1, '(chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FDP_ACF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_MSA.3[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FMT_SMR.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FIA_UID.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. FIA_UAU.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, '. No contradictions. OT.SID No correspondence Out of scope. No contradiction to this ST': 1, '.FIREWALL No correspondence Out of scope. No contradiction to this ST': 1, '.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST': 1, '.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No contradiction to this ST': 1, '.NATIVE No correspondence Out of scope. No contradiction to this ST': 2, '.OPERATE No correspondence Out of scope. No contradiction to this ST': 1, '.REALLOCATION No correspondence Out of scope. No contradiction to this ST': 1, '.RESOURCES No correspondence Out of scope. No contradiction to this ST': 2, '.ALARM No correspondence Out of scope. No contradiction to this ST': 1, '. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST': 1, '.PIN-MNGT No correspondence Out of scope. No contradiction to this ST': 1, '.TRANSACTION No correspondence Out of scope. No contradiction to this ST': 1, '.OBJ-DELETION No correspondence Out of scope. No contradiction to this ST': 2, '.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST': 1, '.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to this ST': 1, '.COMM_AUTH No correspondence Out of scope. No contradiction to this ST': 1, '.COMM_INTEGRITY No correspondence Out of scope. No contradiction to this ST': 1, '.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST': 1, '.EXT-MEM No correspondence Out of scope. No contradiction to this ST': 1, '.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST': 1, '. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST': 1, '.SEC_BOX_FW No correspondence Out of scope. No contradiction to this ST': 1, '.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST': 1, '. Platform Threat Correspondence in this ST References/Remarks T.CONFID-APPLI-DATA No correspondence Out of scope. No contradiction to this ST': 1, '.CONFID-JCS-CODE No correspondence Out of scope. No contradiction to this ST': 1, '.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST': 1, '.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No contradiction to this ST': 1, '.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST': 1, '.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to this ST': 1, '.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST': 1, '.SID.1 No correspondence Out of scope. No contradiction to this ST': 1, '.SID.2 No correspondence Out of scope. No contradiction to this ST': 1, '.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST': 1, '.EXE-CODE.2 No correspondence Out of scope. No contradiction to this ST': 1, '.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST': 1, '.COM_EXPLOIT No correspondence Out of scope. No contradiction to this ST': 1, '.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST': 1, '.OS_OPERATE No correspondence Out of scope. No contradiction to this ST': 1, '.RND No correspondence Out of scope. No contradiction to this ST': 1, '.CONFIG No correspondence Out of scope. No contradiction to this ST': 1, 'rovide MIFARE functionality or a banking application in ROM; please note that this functionality is out of scope of the TOE’s security functionality claimed by this security target. The correctness of the chip': 1, 'platform ST) Firewall Policy (chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 1, 'Guidance of the TOE. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 1, 'Guidance of the TOE. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out': 1, '(internal Java Virtual Machine). No contradiction to this ST. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out': 1, 'ope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No': 1, 'correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 1, 'Guidance of the TOE. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 1, '5 of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MSA.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of': 1, 'scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. Application Programming Interface ': 1, 'chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm. FCS_CKM.2 No': 1, 'correspondence Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope ': 1, 'of 81 Platform SFR Correspondence in this ST References/Remarks FDP_RIP.1[ABORT] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No': 1, 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[bArray] No': 1, 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No': 1, 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[TRANSIENT] No': 1, 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[FIREWALL] No': 1, 'correspondence. Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 1, 'vio- lations complement JCOP mecha- nisms. No contradiction to this ST. FPT_TDC.1 No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Aid Management (chapter 7.1.1.4': 1, 'in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.2[AID] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -': 2, '7 of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MTD.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. INSTG Security Functional': 1, 'plets, which addresses security aspects outside the runtime. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[Installer] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_RCV.3[Installer] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. ADELG Security Functional': 1, 'on manager (ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[ADEL] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[ADEL] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[ADEL] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ADEL] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. RMIG Security Functional': 1, 'that owns the deleted objects by invoking a specific API method. FDP_RIP.1[ODEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ODEL] FPT_FLS.1 The': 1, 'e verified, or that has been modified after bytecode verification. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ITC.2[CCM] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACC.1[SD] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SD] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence': 1, '19 of 81 Platform SFR Correspondence in this ST References/Remarks FIA_UAU.4[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. EMG Security Functional': 1, 'group includes requirements for managing the external memory. FDP_ACC.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[EXT-MEM] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[EXT-MEM] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[EXT-MEM] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[EXT-MEM] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Further Functional Requirements ': 1, 'm numbers with a defined quality metric that can be used directly. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport). No contradic- tion to this ST. FPT_EMSEC.1 FPT_EMSEC.1': 1, 'ity Functional Requirements (chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SecureBox] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SecureBox] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SecureBox] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -': 1, '81 Platform SFR Correspondence in this ST References/Remarks FMT_SMF.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Configuration Security': 1, 'Functional Requirements (chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[CONFIG-SERVICE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[CONFIG-SERVICE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[CONFIG-SERVICE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[CONFIG-SERVICE] No': 1, 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Table 4: Assessment of the': 1, 'but no corresponding objectives for the TOE of this ST. No contradictions. OT.SID No correspondence Out of scope. No contradiction to this ST. OT.FIREWALL No correspondence Out of scope. No contradiction to this': 1, 'ST. OT.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST. OT.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No': 1, 'contradiction to this ST. OT.NATIVE No correspondence Out of scope. No contradiction to this ST. OT.OPERATE No correspondence Out of scope. No contradiction to this': 1, '1 Platform Objective Correspondence in this ST References/Remarks OT.REALLOCATION No correspondence Out of scope. No contradiction to this ST. OT.RESOURCES No correspondence Out of scope. No contradiction to this': 1, 'ST. OT.ALARM No correspondence Out of scope. No contradiction to this ST. OT.CIPHER No correspondence Indirectly relevant for the correct': 1, 'o corresponding objectives for the TOE of this ST. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST. OT.PIN-MNGT No correspondence Out of scope. No contradiction to this': 1, 'ST. OT.TRANSACTION No correspondence Out of scope. No contradiction to this ST. OT.OBJ-DELETION No correspondence Out of scope. No contradiction to': 1, 'this ST. OT.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST. OT.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to': 1, 'this ST. OT.COMM_AUTH No correspondence Out of scope. No contradiction to this ST. OT.COMM_INTEGRITY No correspondence Out of scope. No contradiction to': 1, 'this ST. OT.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST. OT.EXT-MEM No correspondence Out of scope. No contradiction to this': 1, 'ST. OT.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST. OT.SCP.IC OT.Prot_Phys-Tamper The objectives are related. No con-': 1, 'unction The objectives are related. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST. OT.SEC_BOX_FW No correspondence Out of scope. No contradiction to': 1, 'this ST. OT.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST. Table 5: Assessment of the platform objectives. NXP eDoc Suite v3.0': 1, 'Platform Threat Correspondence in this ST References/Remarks T.CONFID-APPLI-DATA No correspondence Out of scope. No contradiction to this ST. T.CONFID-JCS-CODE No correspondence Out of scope. No contradiction to': 1, 'ID-JCS-DATA T.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST. T.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No': 1, 'PPLI-DATA[REFINED] T.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST. T.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to': 1, 'this ST. T.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST. T.SID.1 No correspondence Out of scope. No contradiction to this ST': 1, 'T.SID.2 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.2 No correspondence Out of scope. No contradiction to this': 1, 'ST. T.NATIVE No correspondence Out of scope. No contradiction to this ST. T.RESOURCES No correspondence Out of scope. No contradiction to this': 1, 'ST. T.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST. T.COM_EXPLOIT No correspondence Out of scope. No contradiction to': 1, 'this ST. T.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST. T.OBJ-DELETION No correspondence Out of scope. No contradiction to': 1, '3 of 81 Platform Threat Correspondence in this ST References/Remarks T.OS_OPERATE No correspondence Out of scope. No contradiction to this ST. T.RND No correspondence Out of scope. No contradiction to this ST': 1, 'T.CONFIG No correspondence Out of scope. No contradiction to this ST. Table 6: Threats of the platform ST. 2.3.5 Assessment of Platform': 1}}}.

    The computed heuristics were updated.

    • The _type property was set to Heuristics.
  • 18.07.2022 The certificate data changed.
    Certificate changed

    The _type was updated.

    • The new value is sec_certs.sample.common_criteria.CommonCriteriaCert.

    The Protection profiles of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': "Protection Profile for Machine Readable Travel Document with 'ICAO Application', Basic Acce...", 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/pp0055b.pdf', 'pp_ids': None}]}.

    The Maintenance Updates of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.common_criteria.CommonCriteriaCert.MaintenanceReport', 'maintenance_date': '2019-01-07', 'maintenance_title': 'Reassessment - NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option', 'maintenance_report_link': 'https://www.commoncriteriaportal.org/files/epfiles/1023ra01a_pdf.pdf', 'maintenance_st_link': None}]}.

    The state of the certificate object was updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState.

    The PDF extraction data was updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData.

    The computed heuristics were updated.

    • The _type property was set to sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics.
    • The st_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
    • The report_references property was updated, with the {'_type': 'sec_certs.sample.certificate.References'} data.
    • The extracted_sars property was set to {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DVS', 'level': 2}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_TAT', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_COMP', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ADV_ARC', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMS', 'level': 4}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_DEL', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_LCD', 'level': 1}, {'_type': 'sec_certs.sample.sar.SAR', 'family': 'ALC_CMC', 'level': 4}]}.
  • 24.09.2022 The certificate data changed.
    Certificate changed

    The PDF extraction data was updated.

    • The following values were inserted: {'report_filename': '1023a_pdf.pdf', 'st_filename': '1023b_pdf.pdf'}.
    • The report_keywords property was updated, with the {'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1023-2018': 36, 'BSI-DSZ-CC-1022-2018': 6}}}}, 'cc_security_level': {'__update__': {'EAL': {'__update__': {'EAL 4': 5}}}}, 'cc_sar': {'__insert__': {'ADV': {'ADV_FSP': 1}}, '__update__': {'ALC': {'__update__': {'ALC_DVS.2': 5}}}}, 'cc_sfr': {'__update__': {'FCS': {'__insert__': {'FCS_COP': 2}}, 'FIA': {'__update__': {'FIA_UAU.4': 2}}}}, 'vendor': {'__update__': {'NXP': {'__update__': {'NXP': 34, 'NXP Semiconductors': 4}}}}, 'symmetric_crypto': {'__update__': {'DES': {'__update__': {'DES': {'__update__': {'DES': 5}}}}}}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 4}}}}, 'tee_name': {}, 'standard_id': {'__update__': {'ISO': {'__insert__': {'ISO/IEC 18045': 4}, '__update__': {'ISO/IEC 15408': 4}}}}, 'certification_process': {'__update__': {'ConfidentialDocument': {'__insert__': {'being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification': 1, 'based on BSI TR-03110 for Official Use with BAC option, Security Target, cv cryptovision GmbH (confidential document) [7] Evaluation Technical Report BSI-DSZ-CC-1023, Version 2, 16 March 2018, ETR Summary – NXP eDoc': 1, 'for Official Use with BAC option, TÜV Informationstechnik GmbH – Evaluation Body for IT Security (confidential document) [8] Machine Readable Travel Document with "ICAO Application" Basic Access Control, Version 1.10': 1, 'xlsx, cv cryptovision GmbH (confidential document) [11] Guidance Document for the TOE: NXP eDoc Suite v3.0 – cryptovision ePasslet Suite – Java Card': 1, 'SAC) Functional Specification ADV_FSP. Version 3.0.5, 29 September 2017, cv cryptovision GmbH (confidential document) 23 / 28 Certification Report BSI-DSZ-CC-1023-2018 C. Excerpts from the Criteria For the meaning': 1}, '__delete__': ['identiality being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification', 'ents based on BSI TR-03110 for Official Use with BAC option, Security Target, cv cryptovision GmbH (confidential document) [7] Evaluation Technical Report BSI-DSZ-CC-1023, Version 2, 16 March 2018, ETR Summary – NXP eDoc', '0 for Official Use with BAC option, TÜV Informationstechnik GmbH – Evaluation Body for IT Security (confidential document) [8] Machine Readable Travel Document with "ICAO Application" Basic Access Control, Version 1.10', '22_conflist-JCOP3_rev13027.xlsx, cv cryptovision GmbH (confidential document) [11] Guidance Document for the TOE: NXP eDoc Suite v3.0 – cryptovision ePasslet Suite – Java Card', 'rol (SAC) Functional Specification ADV_FSP. Version 3.0.5, 29 September 2017, cv cryptovision GmbH (confidential document) 23 / 28 Certification Report BSI-DSZ-CC-1023-2018 C. Excerpts from the Criteria For the meaning']}}}} data.
    • The st_keywords property was updated, with the {'cc_sar': {'__update__': {'ADV': {'__update__': {'ADV_ARC.1': 2}}, 'ALC': {'__insert__': {'ALC_DVS': 1}, '__update__': {'ALC_DVS.2': 5}}}}, 'cc_sfr': {'__insert__': {'FCO': {'FCO_NRO.2': 1}}, '__update__': {'FAU': {'__update__': {'FAU_SAS.1': 14, 'FAU_SAS': 7}}, 'FCS': {'__insert__': {'FCS_COP.1.1': 18, 'FCS_COP': 49, 'FCS_CKM': 3}, '__update__': {'FCS_CKM.1': 28, 'FCS_CKM.4': 22, 'FCS_COP.1': 25}}, 'FDP': {'__insert__': {'FDP_ACC.2': 3, 'FDP_IFF.1': 2, 'FDP_RIP.1': 8, 'FDP_ROL.1': 2, 'FDP_IFC.2': 1, 'FDP_ITC': 2, 'FDP_ACC': 2, 'FDP_UCT': 2, 'FDP_UIT': 3}, '__update__': {'FDP_ACF': 3, 'FDP_ITC.2': 11, 'FDP_ACC.1': 21, 'FDP_ACF.1': 17, 'FDP_IFC.1': 5}}, 'FIA': {'__insert__': {'FIA_ATD.1': 1, 'FIA_UID.2': 1, 'FIA_USB.1': 1, 'FIA_UAU': 6, 'FIA_UID': 1, 'FIA_AFL': 1}, '__update__': {'FIA_UAU.4': 16, 'FIA_UAU.1': 12, 'FIA_UAU.5': 9, 'FIA_UAU.5.2': 6, 'FIA_AFL.1': 9}}, 'FMT': {'__insert__': {'FMT_MSA.2': 1, 'FMT_MTD.3': 1, 'FMT_MTD': 25, 'FMT_SMR': 3, 'FMT_SMF': 1}, '__update__': {'FMT_SMF.1': 28, 'FMT_SMR.1': 26, 'FMT_LIM': 12, 'FMT_LIM.2': 22, 'FMT_MSA.3': 11, 'FMT_MTD.1': 15, 'FMT_MSA.1': 9}}, 'FPT': {'__insert__': {'FPT_RCV.3': 1, 'FPT_FLS': 1}, '__update__': {'FPT_FLS.1': 19, 'FPT_PHP.3': 15, 'FPT_TST.1': 11}}, 'FTP': {'__update__': {'FTP_ITC.1': 6}}}}, 'cc_claims': {'__update__': {'T': {'__insert__': {'T.INTEG-APPLI-DATA': 2, 'T.EXE-CODE': 2}, '__update__': {'T.RND': 1, 'T.SID': 2, 'T.NATIVE': 1, 'T.RESOURCES': 1, 'T.OBJ-DELETION': 1, 'T.INTEG-APPLI-CODE': 2}, '__delete__': ['T.IDENTIFICATION', 'T.FIREWALL', 'T.GLOBAL_ARRAYS_CONFID', 'T.GLOBAL_ARRAYS_INTEG', 'T.OPERATE', 'T.REALLOCATION', 'T.ALARM', 'T.CIPHER', 'T.KEY-MNGT', 'T.PIN-MNGT', 'T.TRANSACTION', 'T.APPLI-AUTH', 'T.DOMAIN-RIGHTS', 'T.COMM_AUTH', 'T.COMM_INTEGRITY', 'T.COMM_CONFIDENTIALITY', 'T.EXT-MEM', 'T.CARD-MANAGEMENT', 'T.SCP.IC', 'T.SCP.RECOVERY', 'T.SCP.SUPPORT', 'T.SEC_BOX_FW', 'T.CONFIG-LIMIT', 'T.INTEG-APPLI-CODE.LOAD', 'T.INTEG-APPLI-DATA.LOAD']}, 'A': {'__update__': {'A.APPLET': 1, 'A.USE_DIAG': 1, 'A.USE_KEYS': 1}, '__delete__': ['A.LOAD']}, 'OT': {'__insert__': {'OT.SCP': 3}, '__delete__': ['OT.SCP.IC', 'OT.SCP.RECOVERY', 'OT.SCP.SUPPORT']}}, '__delete__': ['D', 'OSP']}, 'vendor': {'__update__': {'NXP': {'__insert__': {'NXP Semiconductors': 1}, '__update__': {'NXP': 30}}}}, 'symmetric_crypto': {'__update__': {'AES_competition': {'__update__': {'AES': {'__update__': {'AES': 23}}}}, 'DES': {'__update__': {'DES': {'__update__': {'DES': 6}}, '3DES': {'__update__': {'Triple-DES': 15}}}}, 'constructions': {'__update__': {'MAC': {'__update__': {'CMAC': 5}}}}}}, 'crypto_scheme': {'__update__': {'MAC': {'__update__': {'MAC': 9}}}}, 'randomness': {'__update__': {'RNG': {'__update__': {'RND': 3, 'RNG': 8}}}, '__delete__': ['TRNG']}, 'side_channel_analysis': {'__update__': {'SCA': {'__update__': {'physical probing': 5}}, 'FI': {'__update__': {'Physical Tampering': 5, 'Malfunction': 3, 'malfunction': 8}}}}, 'ic_data_group': {'__update__': {'EF': {'__update__': {'EF.DG4': 8, 'EF.DG16': 32, 'EF.COM': 12}}}}, 'standard_id': {'__update__': {'FIPS': {'__insert__': {'FIPS 180-4': 1}, '__update__': {'FIPS 46-3': 5, 'FIPS 197': 4}}, 'ISO': {'__insert__': {'ISO/IEC 7816-4': 1}}, 'ICAO': {'__update__': {'ICAO': 14}}, 'CC': {'__update__': {'CCMB-2012-09-004': 2}}}}, 'certification_process': {'__update__': {'OutOfScope': {'__insert__': {'chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall': 1, 'internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine': 1, 'internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out of scope (internal Java Card Fire- wall': 1, ' No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No correspondence Out of scope (internal Java Card Fire- wall': 1, 'internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of scope (internal Java Card Fire- wall': 1, 'chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm': 1, 'managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No correspondence. Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No correspondence. Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FDP_ROL.1[FIREWALL] No correspondence. Out of scope (internal Java Card Fire- wall': 1, 'chapter 7.1.1.4 in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No correspondence Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FPT_FLS.1[Installer] No correspondence Out of scope (internal Java Card func- tionality': 1, 'ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, 'internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FDP_ACF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FMT_MSA.3[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality': 1, 'chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FMT_MSA.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality': 1, 'chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, ' No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality': 1, 'MIFARE functionality or a banking application in ROM; please note that this functionality is out of scope of the TOE’s security functionality claimed by this security target. The correctness of the chip': 1, 'of the TOE. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 1, 'of the TOE. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out': 1, 'internal Java Virtual Machine). No contradiction to this ST. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out': 1, 'internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No': 1, 'Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 2, 'of the TOE. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User': 1, 'of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MSA.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of': 1, 'internal Java Card Fire- wall). No contradiction to this ST. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. Application Programming Interface': 1, '7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm. FCS_CKM.2 No': 1, 'Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.4 FCS_CKM.4 The Java Card platform': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[bArray] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[TRANSIENT] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[FIREWALL] No': 1, 'platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.2[AID] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -': 1, 'of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MTD.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. INSTG Security Functional': 1, 'which addresses security aspects outside the runtime. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[Installer] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_RCV.3[Installer] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. ADELG Security Functional': 1, 'manager (ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[ADEL] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[ADEL] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[ADEL] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ADEL] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. RMIG Security Functional': 1, 'verified, or that has been modified after bytecode verification. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_ITC.2[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_ACC.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence': 1, 'internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[EXT-MEM] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[EXT-MEM] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[EXT-MEM] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. Further Functional Requirements': 1, 'numbers with a defined quality metric that can be used directly. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport). No contradic- tion to this ST. FPT_EMSEC.1 FPT_EMSEC.1': 1, 'Functional Requirements (chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SecureBox] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SecureBox] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SecureBox] No': 1, 'Requirements (chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[CONFIG-SERVICE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[CONFIG-SERVICE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[CONFIG-SERVICE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[CONFIG-SERVICE] No': 1, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. Table 4: Assessment of the': 1, 'OT.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST. OT.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No': 1, 'to this ST. OT.NATIVE No correspondence Out of scope. No contradiction to this ST. OT.OPERATE No correspondence Out of scope. No contradiction to this': 1, 'Platform Objective Correspondence in this ST References/Remarks OT.REALLOCATION No correspondence Out of scope. No contradiction to this ST. OT.RESOURCES No correspondence Out of scope. No contradiction to this': 1, 'OT.ALARM No correspondence Out of scope. No contradiction to this ST. OT.CIPHER No correspondence Indirectly relevant for the correct': 1, 'corresponding objectives for the TOE of this ST. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST. OT.PIN-MNGT No correspondence Out of scope. No contradiction to this': 1, 'OT.TRANSACTION No correspondence Out of scope. No contradiction to this ST. OT.OBJ-DELETION No correspondence Out of scope. No contradiction to': 1, 'ST. OT.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST. OT.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to': 1, 'ST. OT.COMM_AUTH No correspondence Out of scope. No contradiction to this ST. OT.COMM_INTEGRITY No correspondence Out of scope. No contradiction to': 1, 'ST. OT.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST. OT.EXT-MEM No correspondence Out of scope. No contradiction to this': 1, 'OT.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST. OT.SCP.IC OT.Prot_Phys-Tamper The objectives are related. No con-': 1, 'The objectives are related. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST. OT.SEC_BOX_FW No correspondence Out of scope. No contradiction to': 1, 'ST. OT.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST. Table 5: Assessment of the platform objectives. NXP eDoc Suite v3.0': 1, 'T.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST. T.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No': 1, 'REFINED] T.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST. T.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to': 1, 'ST. T.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST. T.SID.1 No correspondence Out of scope. No contradiction to this ST': 1, 'SID.2 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.2 No correspondence Out of scope. No contradiction to this': 1, 'T.NATIVE No correspondence Out of scope. No contradiction to this ST. T.RESOURCES No correspondence Out of scope. No contradiction to this': 1, 'T.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST. T.COM_EXPLOIT No correspondence Out of scope. No contradiction to': 1, 'ST. T.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST. T.OBJ-DELETION No correspondence Out of scope. No contradiction to': 1, 'of 81 Platform Threat Correspondence in this ST References/Remarks T.OS_OPERATE No correspondence Out of scope. No contradiction to this ST. T.RND No correspondence Out of scope. No contradiction to this ST. T': 1, 'No correspondence Out of scope. No contradiction to this ST. Table 6: Threats of the platform ST. 2.3.5 Assessment of Platform': 1}, '__update__': {'Out of scope': 121, 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -': 1}, '__delete__': ['(chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall', '. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall', '. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine', '. FDP_IFF.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine', '. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall', '. FMT_MSA.1[JCRE] No correspondence Out of scope (internal Java Card Fire- wall', '. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall', '. FMT_MSA.2[FIREWALL-JCVM] No correspondence Out of scope (internal Java Card Fire- wall', '. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall', '.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall', '. FMT_SMF.1 No correspondence Out of scope (internal Java Card Fire- wall', '. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall', '. Application Programming Interface (chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm', '.2 No correspondence Out of scope (managed within JCOP', '. FCS_CKM.3 No correspondence Out of scope (managed within JCOP', '.1[ABORT] No correspondence. Out of scope (internal Java Card func- tionality', '. FDP_RIP.1[APDU] No correspondence. Out of scope (internal Java Card func- tionality', '. FDP_RIP.1[bArray] No correspondence. Out of scope (internal Java Card func- tionality', '. FDP_RIP.1[KEYS] No correspondence. Out of scope (internal Java Card func- tionality', '. FDP_RIP.1[TRANSIENT] No correspondence. Out of scope (internal Java Card func- tionality', '. FDP_ROL.1[FIREWALL] No correspondence. Out of scope (internal Java Card Fire- wall', '. No contradiction to this ST. FPT_TDC.1 No correspondence Out of scope (internal Java Card func- tionality', '. Aid Management (chapter 7.1.1.4 in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality', '. FIA_UID.2[AID] No correspondence Out of scope (internal Java Card func- tionality', '. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality', '.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MTD.3[JCRE] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality', '. FPT_FLS.1[Installer] No correspondence Out of scope (internal Java Card func- tionality', '. FPT_RCV.3[Installer] No correspondence Out of scope (internal Java Card func- tionality', '(ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ACF.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_RIP.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.3[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMF.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMR.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FPT_FLS.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_RIP.1[ODEL] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ROL.1[CCM] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ITC.2[CCM] No correspondence Out of scope (internal Java Card func- tionality', '. FPT_FLS.1[CCM] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ACC.1[SD] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ACF.1[SD] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.1[SD] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.3[SD] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMF.1[SD] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMR.1[SD] No correspondence Out of scope (internal Java Card func- tionality', '. FCO_NRO.2[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_IFC.2[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_IFF.1[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.1[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.3[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMF.1[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FIA_UID.1[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FIA_UAU.1[SC] No correspondence Out of scope (internal Java Card func- tionality', '.4[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FTP_ITC.1[SC] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ACC.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ACF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.3[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality', '. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport', '(chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ACF.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.3[SecureBox] No correspondence Out of scope (internal Java Card func- tionality', '.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality', '(chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. FDP_ACF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_MSA.3[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. FMT_SMR.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. FIA_UID.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. FIA_UAU.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality', '. No contradictions. OT.SID No correspondence Out of scope. No contradiction to this ST', '.FIREWALL No correspondence Out of scope. No contradiction to this ST', '.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST', '.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No contradiction to this ST', '.NATIVE No correspondence Out of scope. No contradiction to this ST', '.OPERATE No correspondence Out of scope. No contradiction to this ST', '.REALLOCATION No correspondence Out of scope. No contradiction to this ST', '.RESOURCES No correspondence Out of scope. No contradiction to this ST', '.ALARM No correspondence Out of scope. No contradiction to this ST', '. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST', '.PIN-MNGT No correspondence Out of scope. No contradiction to this ST', '.TRANSACTION No correspondence Out of scope. No contradiction to this ST', '.OBJ-DELETION No correspondence Out of scope. No contradiction to this ST', '.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST', '.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to this ST', '.COMM_AUTH No correspondence Out of scope. No contradiction to this ST', '.COMM_INTEGRITY No correspondence Out of scope. No contradiction to this ST', '.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST', '.EXT-MEM No correspondence Out of scope. No contradiction to this ST', '.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST', '. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST', '.SEC_BOX_FW No correspondence Out of scope. No contradiction to this ST', '.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST', '. Platform Threat Correspondence in this ST References/Remarks T.CONFID-APPLI-DATA No correspondence Out of scope. No contradiction to this ST', '.CONFID-JCS-CODE No correspondence Out of scope. No contradiction to this ST', '.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST', '.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No contradiction to this ST', '.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST', '.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to this ST', '.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST', '.SID.1 No correspondence Out of scope. No contradiction to this ST', '.SID.2 No correspondence Out of scope. No contradiction to this ST', '.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST', '.EXE-CODE.2 No correspondence Out of scope. No contradiction to this ST', '.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST', '.COM_EXPLOIT No correspondence Out of scope. No contradiction to this ST', '.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST', '.OS_OPERATE No correspondence Out of scope. No contradiction to this ST', '.RND No correspondence Out of scope. No contradiction to this ST', '.CONFIG No correspondence Out of scope. No contradiction to this ST', 'rovide MIFARE functionality or a banking application in ROM; please note that this functionality is out of scope of the TOE’s security functionality claimed by this security target. The correctness of the chip', 'Guidance of the TOE. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User', 'Guidance of the TOE. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out', '(internal Java Virtual Machine). No contradiction to this ST. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out', 'ope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No', 'correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User', 'Guidance of the TOE. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User', '5 of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MSA.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of', 'scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. Application Programming Interface ', 'chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm. FCS_CKM.2 No', 'correspondence Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope ', 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[bArray] No', 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No', 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[TRANSIENT] No', 'correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[FIREWALL] No', 'correspondence. Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User', 'in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.2[AID] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence', '7 of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MTD.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. INSTG Security Functional', 'plets, which addresses security aspects outside the runtime. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[Installer] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_RCV.3[Installer] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. ADELG Security Functional', 'on manager (ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[ADEL] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[ADEL] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[ADEL] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ADEL] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. RMIG Security Functional', 'e verified, or that has been modified after bytecode verification. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ITC.2[CCM] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACC.1[SD] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SD] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence', 'Out of scope (internal Java Card func- tionality). No contradiction to this ST. EMG Security Functional', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[EXT-MEM] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[EXT-MEM] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[EXT-MEM] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Further Functional Requirements ', 'm numbers with a defined quality metric that can be used directly. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport). No contradic- tion to this ST. FPT_EMSEC.1 FPT_EMSEC.1', 'ity Functional Requirements (chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SecureBox] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SecureBox] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SecureBox] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -', 'Functional Requirements (chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[CONFIG-SERVICE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[CONFIG-SERVICE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[CONFIG-SERVICE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[CONFIG-SERVICE] No', 'correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Table 4: Assessment of the', 'ST. OT.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST. OT.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No', 'contradiction to this ST. OT.NATIVE No correspondence Out of scope. No contradiction to this ST. OT.OPERATE No correspondence Out of scope. No contradiction to this', '1 Platform Objective Correspondence in this ST References/Remarks OT.REALLOCATION No correspondence Out of scope. No contradiction to this ST. OT.RESOURCES No correspondence Out of scope. No contradiction to this', 'ST. OT.ALARM No correspondence Out of scope. No contradiction to this ST. OT.CIPHER No correspondence Indirectly relevant for the correct', 'o corresponding objectives for the TOE of this ST. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST. OT.PIN-MNGT No correspondence Out of scope. No contradiction to this', 'ST. OT.TRANSACTION No correspondence Out of scope. No contradiction to this ST. OT.OBJ-DELETION No correspondence Out of scope. No contradiction to', 'this ST. OT.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST. OT.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to', 'this ST. OT.COMM_AUTH No correspondence Out of scope. No contradiction to this ST. OT.COMM_INTEGRITY No correspondence Out of scope. No contradiction to', 'this ST. OT.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST. OT.EXT-MEM No correspondence Out of scope. No contradiction to this', 'ST. OT.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST. OT.SCP.IC OT.Prot_Phys-Tamper The objectives are related. No con-', 'unction The objectives are related. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST. OT.SEC_BOX_FW No correspondence Out of scope. No contradiction to', 'this ST. OT.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST. Table 5: Assessment of the platform objectives. NXP eDoc Suite v3.0', 'ID-JCS-DATA T.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST. T.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No', 'PPLI-DATA[REFINED] T.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST. T.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to', 'this ST. T.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST. T.SID.1 No correspondence Out of scope. No contradiction to this ST', 'T.SID.2 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.2 No correspondence Out of scope. No contradiction to this', 'ST. T.NATIVE No correspondence Out of scope. No contradiction to this ST. T.RESOURCES No correspondence Out of scope. No contradiction to this', 'ST. T.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST. T.COM_EXPLOIT No correspondence Out of scope. No contradiction to', 'this ST. T.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST. T.OBJ-DELETION No correspondence Out of scope. No contradiction to', '3 of 81 Platform Threat Correspondence in this ST References/Remarks T.OS_OPERATE No correspondence Out of scope. No contradiction to this ST. T.RND No correspondence Out of scope. No contradiction to this ST', 'T.CONFIG No correspondence Out of scope. No contradiction to this ST. Table 6: Threats of the platform ST. 2.3.5 Assessment of Platform']}}}} data.
  • 28.09.2022 The certificate data changed.
    Certificate changed

    The computed heuristics were updated.

    • The st_references property was updated, with the {'directly_referencing': {'__discard__': {'_type': 'Set', 'elements': ['NSCIB-CC-98209-CR2']}}, 'indirectly_referencing': {'__discard__': {'_type': 'Set', 'elements': ['BSI-DSZ-CC-0973-V2', 'NSCIB-CC-98209-CR2']}}} data.
    • The report_references property was updated, with the {'directly_referencing': {'__discard__': {'_type': 'Set', 'elements': ['NSCIB-CC-98209-CR2', 'NSCIB-CC-67206-CR2']}}, 'indirectly_referencing': {'__discard__': {'_type': 'Set', 'elements': ['NSCIB-CC-98209-CR2', 'NSCIB-CC-67206-CR2']}}} data.
  • 04.10.2022 The certificate data changed.
    Certificate changed

    The Protection profiles of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': "Protection Profile for Machine Readable Travel Document with 'ICAO Application', Basic Acce...", 'pp_eal': 'http://www.commoncriteriaportal.org/files/ppfiles/pp0055b.pdf', 'pp_link': None, 'pp_ids': None}]}.
  • 05.10.2022 The certificate data changed.
    Certificate changed

    The Protection profiles of the certificate were updated.

    • The new value is {'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.protection_profile.ProtectionProfile', 'pp_name': "Protection Profile for Machine Readable Travel Document with 'ICAO Application', Basic Acce...", 'pp_eal': None, 'pp_link': 'https://www.commoncriteriaportal.org/files/ppfiles/pp0055b.pdf', 'pp_ids': None}]}.

    The state of the certificate object was updated.

    • The following values were inserted: {'st_convert_garbage': False, 'report_convert_garbage': False}.

Raw data

{
  "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert",
  "category": "ICs, Smart Cards and Smart Card-Related Devices and Systems",
  "cert_link": "https://www.commoncriteriaportal.org/files/epfiles/1023c_pdf.pdf",
  "dgst": "623dee827372d496",
  "heuristics": {
    "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert.Heuristics",
    "cert_id": "BSI-DSZ-CC-1023-2018",
    "cert_lab": [
      "BSI"
    ],
    "cpe_matches": null,
    "direct_dependency_cves": null,
    "extracted_sars": {
      "_type": "Set",
      "elements": [
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_COMP",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMC",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DVS",
          "level": 2
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_LCD",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_TAT",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_DEL",
          "level": 1
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ALC_CMS",
          "level": 4
        },
        {
          "_type": "sec_certs.sample.sar.SAR",
          "family": "ADV_ARC",
          "level": 1
        }
      ]
    },
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "3.0"
      ]
    },
    "indirect_dependency_cves": null,
    "related_cves": null,
    "report_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-0973-V2-2016",
          "BSI-DSZ-CC-1022-2018"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-0973-V2-2016",
          "BSI-DSZ-CC-0973-2016",
          "BSI-DSZ-CC-1022-2018"
        ]
      }
    },
    "st_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-0973-V2-2016",
          "BSI-DSZ-CC-0973-2016"
        ]
      },
      "indirectly_referenced_by": null,
      "indirectly_referencing": {
        "_type": "Set",
        "elements": [
          "BSI-DSZ-CC-0973-V2-2016",
          "BSI-DSZ-CC-0973-2016"
        ]
      }
    },
    "verified_cpe_matches": null
  },
  "maintenance_updates": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert.MaintenanceReport",
        "maintenance_date": "2019-01-07",
        "maintenance_report_link": "https://www.commoncriteriaportal.org/files/epfiles/1023ra01a_pdf.pdf",
        "maintenance_st_link": null,
        "maintenance_title": "Reassessment - NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option"
      }
    ]
  },
  "manufacturer": "NXP Semiconductors Germany GmbH Business Line Identification",
  "manufacturer_web": "https://www.nxp.com",
  "name": "NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option",
  "not_valid_after": "2023-05-18",
  "not_valid_before": "2018-05-18",
  "pdf_data": {
    "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert.PdfData",
    "report_filename": "1023a_pdf.pdf",
    "report_frontpage": {
      "anssi": {},
      "bsi": {
        "cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by ALC_DVS.2",
        "cc_version": "PP conformant Common Criteria Part 2 extended",
        "cert_id": "BSI-DSZ-CC-1023-2018",
        "cert_item": "NXP eDoc Suite v3.0 - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option",
        "cert_lab": "BSI",
        "developer": "NXP Semiconductors Germany GmbH",
        "match_rules": [
          "(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
        ],
        "ref_protection_profiles": "Machine Readable Travel Document with \"ICAO Application\" Basic Access Control, Version 1.10, 25 March 2009, BSI-CC-PP-0055-2009"
      },
      "canada": {},
      "niap": {},
      "nscib": {}
    },
    "report_keywords": {
      "asymmetric_crypto": {
        "FF": {
          "DH": {
            "Diffie-Hellman": 1
          },
          "DSA": {
            "DSA": 1
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-0973-V2-2016": 4,
          "BSI-DSZ-CC-1022-2018": 6,
          "BSI-DSZ-CC-1023-2018": 36
        },
        "NL": {
          "NSCIB-CC-67206-CR2": 4,
          "NSCIB-CC-98209-CR2": 2
        }
      },
      "cc_claims": {
        "OE": {
          "OE.APPLET": 1,
          "OE.APPS-PROVIDE": 1,
          "OE.CODE-EVIDENCE": 1,
          "OE.KEY-CHANGE": 1,
          "OE.PROCESS_SEC_IC": 1,
          "OE.SECURITY-DOMAINS": 1,
          "OE.USE_DIAG": 1,
          "OE.USE_KEYS": 1,
          "OE.VERIFICATION": 1,
          "OE.VERIFICATION-AUTHORITY": 1
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0055-": 1,
          "BSI-CC-PP-0055-2009": 3
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_FSP": 1
        },
        "AGD": {
          "AGD_OPE": 1,
          "AGD_PRE": 1
        },
        "ALC": {
          "ALC_CMC.4": 1,
          "ALC_CMS.4": 1,
          "ALC_COMP.1": 1,
          "ALC_DEL.1": 1,
          "ALC_DVS.2": 5,
          "ALC_FLR": 3,
          "ALC_LCD.1": 1,
          "ALC_TAT.1": 1
        },
        "ATE": {
          "ATE_FUN": 1,
          "ATE_IND": 1
        },
        "AVA": {
          "AVA_VAN": 1
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 1": 1,
          "EAL 2": 2,
          "EAL 2+": 1,
          "EAL 4": 5,
          "EAL 4 augmented": 3,
          "EAL 5+": 1,
          "EAL 6": 1,
          "EAL5+": 1
        }
      },
      "cc_sfr": {
        "FCS": {
          "FCS_CKM.1": 1,
          "FCS_COP": 2,
          "FCS_COP.1.1": 1,
          "FCS_RND.1": 1
        },
        "FIA": {
          "FIA_UAU.4": 2
        }
      },
      "certification_process": {
        "ConfidentialDocument": {
          "Composition NXP JCOP 3 SECID P60 CS (OSB) \u2013 EAL5+, version 3.0, 04 December 2017, Brightsight B.V. (confidential document) [16] Certification Report Crypto Library V3.1.x on P6022y VB, Certificate number CC-17- 67206": 1,
          "Report for Composite Evaluation P6022y VB, version 1, 25 August 2016, T\u00dcV Informationstechnik GmbH (confidential document) [20] Guidance Document for the platform: JCOP 3 SECID P60 CS User Guidance and Administration": 1,
          "SAC) Functional Specification ADV_FSP. Version 3.0.5, 29 September 2017, cv cryptovision GmbH (confidential document) 23 / 28 Certification Report BSI-DSZ-CC-1023-2018 C. Excerpts from the Criteria For the meaning": 1,
          "V3.1.x on P6022y VB EAL6+/5+, Reference 17-RPT-421, version 3.0, 24 October 2017, Brightsight B.V. (confidential document) [18] Certification report BSI-DSZ-CC-0973-V2-2016 for NXP Secure Smart Card Controller P6022y VB": 1,
          "based on BSI TR-03110 for Official Use with BAC option, Security Target Lite, cv cryptovision GmbH (confidential document) [10] Configuration list for the TOE, Revision 13027, 22 Februar 2018, File 2018-02-": 1,
          "based on BSI TR-03110 for Official Use with BAC option, Security Target, cv cryptovision GmbH (confidential document) [7] Evaluation Technical Report BSI-DSZ-CC-1023, Version 2, 16 March 2018, ETR Summary \u2013 NXP eDoc": 1,
          "being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1,
          "for Official Use with BAC option, T\u00dcV Informationstechnik GmbH \u2013 Evaluation Body for IT Security (confidential document) [8] Machine Readable Travel Document with \"ICAO Application\" Basic Access Control, Version 1.10": 1,
          "xlsx, cv cryptovision GmbH (confidential document) [11] Guidance Document for the TOE: NXP eDoc Suite v3.0 \u2013 cryptovision ePasslet Suite \u2013 Java Card": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 6
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "PACE": {
          "PACE": 1
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key Exchange": 1
        },
        "MAC": {
          "MAC": 4
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {
        "BrightSight": {
          "Brightsight": 2
        },
        "TUV": {
          "T\u00dcV Informationstechnik": 4,
          "T\u00dcViT": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {
        "JCOP": {
          "JCOP 3": 8
        }
      },
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 2
        }
      },
      "side_channel_analysis": {
        "other": {
          "JIL": 3
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 20": 2,
          "AIS 26": 1,
          "AIS 32": 1,
          "AIS 34": 2,
          "AIS 35": 2,
          "AIS 36": 2,
          "AIS 46": 1,
          "AIS20": 1,
          "AIS35": 1,
          "AIS36": 1
        },
        "FIPS": {
          "FIPS180-4": 1,
          "FIPS197": 3,
          "FIPS46-3": 3
        },
        "ICAO": {
          "ICAO": 9
        },
        "ISO": {
          "ISO/IEC 15408": 4,
          "ISO/IEC 17065": 2,
          "ISO/IEC 18045": 4
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 10
          }
        },
        "DES": {
          "3DES": {
            "TDES": 2
          },
          "DES": {
            "DES": 5
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 3
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI 7148": 1,
          "BSI TR-03110": 12
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "NXP": {
          "NXP": 34,
          "NXP Semiconductors": 4
        }
      },
      "vulnerability": {}
    },
    "report_metadata": {
      "/Author": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "/CreationDate": "D:20180523092802+02\u002700\u0027",
      "/Creator": "Writer",
      "/Keywords": "\"Common Criteria, Certification, Zertifizierung, TR-03110, BAC, MRED, MRTD, PP-0055\"",
      "/ModDate": "D:20190109074654+01\u002700\u0027",
      "/Producer": "LibreOffice 5.2",
      "/Subject": "NXP eDoc Suite - cryptovision ePasslet Suite - Java Card applet configuration providing Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use with BAC option",
      "/Title": "Certification Report BSI-DSZ-CC-1023-2018",
      "pdf_file_size_bytes": 819269,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://www.bsi.bund.de/AIS",
          "http://www.commoncriteriaportal.org/",
          "http://www.sogisportal.eu/",
          "http://www.commoncriteriaportal.org/cc/",
          "https://www.bsi.bund.de/zertifizierungsreporte",
          "https://www.bsi.bund.de/",
          "https://www.bsi.bund.de/zertifizierung"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 28
    },
    "st_filename": "1023b_pdf.pdf",
    "st_frontpage": {
      "anssi": {},
      "bsi": {},
      "canada": {},
      "niap": {},
      "nscib": {}
    },
    "st_keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          }
        }
      },
      "cc_cert_id": {
        "DE": {
          "BSI-DSZ-CC-0973-2016": 2,
          "BSI-DSZ-CC-0973-V2-2016": 2
        },
        "NL": {
          "NSCIB-CC-98209-CR2": 4
        }
      },
      "cc_claims": {
        "A": {
          "A.APPLET": 1,
          "A.APPS-PROVIDER": 1,
          "A.PPROCESS-SEC-IC": 3,
          "A.USE_DIAG": 1,
          "A.USE_KEYS": 1,
          "A.VERIFICATION": 1,
          "A.VERIFICATION-AUTHORITY": 1
        },
        "OE": {
          "OE.APPLET": 1,
          "OE.APPS-PROVIDER": 1,
          "OE.CODE-EVIDENCE": 1,
          "OE.KEY-CHANGE": 1,
          "OE.MRTD_": 2,
          "OE.PROCESS_SEC_IC": 2,
          "OE.SECURITY-DOMAINS": 1,
          "OE.USE_DIAG": 1,
          "OE.USE_KEYS": 1,
          "OE.VERIFICATION": 1,
          "OE.VERIFICATION-AUTHORITY": 1
        },
        "OT": {
          "OT.ALARM": 1,
          "OT.APPLI-AUTH": 1,
          "OT.CARD-MANAGEMENT": 1,
          "OT.CIPHER": 1,
          "OT.COMM_AUTH": 1,
          "OT.COMM_CONFIDENTIALITY": 1,
          "OT.COMM_INTEGRITY": 1,
          "OT.CONFIG-LIMIT": 1,
          "OT.DOMAIN-RIGHTS": 1,
          "OT.EXT-MEM": 1,
          "OT.FIREWALL": 1,
          "OT.GLOBAL_ARRAYS_CONFID": 1,
          "OT.GLOBAL_ARRAYS_INTEG": 1,
          "OT.IDENTIFICATION": 1,
          "OT.KEY-MNGT": 1,
          "OT.NATIVE": 1,
          "OT.OBJ-DELETION": 1,
          "OT.OPERATE": 1,
          "OT.PIN-MNGT": 1,
          "OT.REALLOCATION": 1,
          "OT.RESOURCES": 1,
          "OT.RND": 1,
          "OT.SCP": 3,
          "OT.SEC_BOX_FW": 1,
          "OT.SID": 1,
          "OT.TRANSACTION": 1
        },
        "T": {
          "T.COM_EXPLOIT": 1,
          "T.CONFID-APPLI-DATA": 1,
          "T.CONFID-JCS-CODE": 1,
          "T.CONFID-JCS-DATA": 1,
          "T.CONFIG": 1,
          "T.EXE-CODE": 2,
          "T.INTEG-APPLI-CODE": 2,
          "T.INTEG-APPLI-DATA": 2,
          "T.INTEG-JCS-CODE": 1,
          "T.INTEG-JCS-DATA": 1,
          "T.LIFE_CYCLE": 1,
          "T.NATIVE": 1,
          "T.OBJ-DELETION": 1,
          "T.OS_OPERATE": 1,
          "T.PHYSICAL": 1,
          "T.RESOURCES": 1,
          "T.RND": 1,
          "T.SID": 2,
          "T.UNAUTHORIZED_CARD_MNGT": 1
        }
      },
      "cc_protection_profile_id": {
        "BSI": {
          "BSI-CC-PP-0055-2009": 1,
          "BSI-CC-PP-0056-": 1,
          "BSI-CC-PP-0084-": 1,
          "BSI-CC-PP0055": 3,
          "BSI-PP-0002-2001": 1,
          "BSI-PP-0056": 1
        }
      },
      "cc_sar": {
        "ADV": {
          "ADV_ARC.1": 2
        },
        "ALC": {
          "ALC_DVS": 1,
          "ALC_DVS.2": 5
        }
      },
      "cc_security_level": {
        "EAL": {
          "EAL 4+": 1,
          "EAL 5+": 2,
          "EAL4": 8,
          "EAL4 augmented": 2
        }
      },
      "cc_sfr": {
        "FAU": {
          "FAU_ARP.1": 1,
          "FAU_GEN": 1,
          "FAU_SAS": 7,
          "FAU_SAS.1": 14,
          "FAU_SAS.1.1": 2
        },
        "FCO": {
          "FCO_NRO.2": 1
        },
        "FCS": {
          "FCS_CKM": 3,
          "FCS_CKM.1": 28,
          "FCS_CKM.1.1": 2,
          "FCS_CKM.2": 3,
          "FCS_CKM.3": 1,
          "FCS_CKM.4": 22,
          "FCS_CKM.4.1": 4,
          "FCS_COP": 49,
          "FCS_COP.1": 25,
          "FCS_COP.1.1": 18,
          "FCS_LIM": 1,
          "FCS_RND": 7,
          "FCS_RND.1": 15,
          "FCS_RND.1.1": 3,
          "FCS_RNG.1": 2
        },
        "FDP": {
          "FDP_ACC": 2,
          "FDP_ACC.1": 21,
          "FDP_ACC.1.1": 3,
          "FDP_ACC.2": 3,
          "FDP_ACF": 3,
          "FDP_ACF.1": 17,
          "FDP_ACF.1.1": 3,
          "FDP_ACF.1.2": 4,
          "FDP_ACF.1.3": 3,
          "FDP_ACF.1.4": 4,
          "FDP_IFC.1": 5,
          "FDP_IFC.2": 1,
          "FDP_IFF.1": 2,
          "FDP_ITC": 2,
          "FDP_ITC.1": 10,
          "FDP_ITC.2": 11,
          "FDP_RIP.1": 8,
          "FDP_ROL.1": 2,
          "FDP_SDI.2": 1,
          "FDP_UCT": 2,
          "FDP_UCT.1": 11,
          "FDP_UCT.1.1": 3,
          "FDP_UIT": 3,
          "FDP_UIT.1": 10,
          "FDP_UIT.1.1": 3,
          "FDP_UIT.1.2": 2
        },
        "FIA": {
          "FIA_AFL": 1,
          "FIA_AFL.1": 9,
          "FIA_AFL.1.1": 2,
          "FIA_AFL.1.2": 2,
          "FIA_ATD.1": 1,
          "FIA_SOS.2": 1,
          "FIA_UAU": 6,
          "FIA_UAU.1": 12,
          "FIA_UAU.1.1": 2,
          "FIA_UAU.1.2": 2,
          "FIA_UAU.4": 16,
          "FIA_UAU.4.1": 2,
          "FIA_UAU.5": 9,
          "FIA_UAU.5.1": 4,
          "FIA_UAU.5.2": 6,
          "FIA_UAU.6": 12,
          "FIA_UAU.6.1": 2,
          "FIA_UID": 1,
          "FIA_UID.1": 14,
          "FIA_UID.1.1": 2,
          "FIA_UID.1.2": 1,
          "FIA_UID.2": 1,
          "FIA_USB.1": 1
        },
        "FMT": {
          "FMT_LIM": 12,
          "FMT_LIM.1": 25,
          "FMT_LIM.1.1": 6,
          "FMT_LIM.2": 22,
          "FMT_LIM.2.1": 7,
          "FMT_MSA.1": 9,
          "FMT_MSA.2": 1,
          "FMT_MSA.3": 11,
          "FMT_MTD": 25,
          "FMT_MTD.1": 15,
          "FMT_MTD.3": 1,
          "FMT_SMF": 1,
          "FMT_SMF.1": 28,
          "FMT_SMF.1.1": 2,
          "FMT_SMR": 3,
          "FMT_SMR.1": 26,
          "FMT_SMR.1.1": 4,
          "FMT_SMR.1.2": 4
        },
        "FPR": {
          "FPR_UNO.1": 1
        },
        "FPT": {
          "FPT_FLS": 1,
          "FPT_FLS.1": 19,
          "FPT_FLS.1.1": 3,
          "FPT_PHP.3": 15,
          "FPT_PHP.3.1": 2,
          "FPT_RCV.3": 1,
          "FPT_RVM.1": 1,
          "FPT_SEP.1": 1,
          "FPT_TDC.1": 1,
          "FPT_TST.1": 11,
          "FPT_TST.1.1": 2,
          "FPT_TST.1.2": 2,
          "FPT_TST.1.3": 2
        },
        "FTP": {
          "FTP_ITC.1": 6,
          "FTP_TRP.1": 5
        }
      },
      "certification_process": {
        "OutOfScope": {
          " No contradiction to this ST. FDP_ACF.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality": 1,
          " No contradiction to this ST. FDP_ROL.1[FIREWALL] No correspondence. Out of scope (internal Java Card Fire- wall": 1,
          " No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality": 1,
          " No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality": 1,
          " No contradiction to this ST. FMT_MSA.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality": 1,
          " No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No correspondence Out of scope (internal Java Card Fire- wall": 1,
          " No contradiction to this ST. FMT_MSA.3[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality": 1,
          " No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality": 1,
          " No contradiction to this ST. FPT_FLS.1[Installer] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "19 of 81 Platform SFR Correspondence in this ST References/Remarks FIA_UAU.4[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence": 1,
          "7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm. FCS_CKM.2 No": 1,
          "81 Platform SFR Correspondence in this ST References/Remarks FMT_SMF.1[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Configuration Security": 1,
          "ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "Functional Requirements (chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SecureBox] No": 1,
          "MIFARE functionality or a banking application in ROM; please note that this functionality is out of scope of the TOE\u2019s security functionality claimed by this security target. The correctness of the chip": 1,
          "No correspondence Out of scope. No contradiction to this ST. Table 6: Threats of the platform ST. 2.3.5 Assessment of Platform": 1,
          "OT.ALARM No correspondence Out of scope. No contradiction to this ST. OT.CIPHER No correspondence Indirectly relevant for the correct": 1,
          "OT.CARD-MANAGEMENT No correspondence Out of scope. No contradiction to this ST. OT.SCP.IC OT.Prot_Phys-Tamper The objectives are related. No con-": 1,
          "OT.GLOBAL_ARRAYS_CONFID No correspondence Out of scope. No contradiction to this ST. OT.GLOBAL_ARRAYS_INTEG No correspondence Out of scope. No": 1,
          "OT.TRANSACTION No correspondence Out of scope. No contradiction to this ST. OT.OBJ-DELETION No correspondence Out of scope. No contradiction to": 1,
          "Out of scope": 121,
          "Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User": 2,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. ADELG Security Functional": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[TRANSIENT] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[bArray] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[FIREWALL] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[CONFIG-SERVICE] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[CONFIG-SERVICE] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[ADEL] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[CONFIG-SERVICE] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[EXT-MEM] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SecureBox] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[CONFIG-SERVICE] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[EXT-MEM] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SecureBox] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[ADEL] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[CONFIG-SERVICE] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[EXT-MEM] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[CONFIG-SERVICE] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ADEL] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_RCV.3[Installer] No": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. Further Functional Requirements": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. INSTG Security Functional": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. RMIG Security Functional": 1,
          "Out of scope (internal Java Card func- tionality). No contradiction to this ST. Table 4: Assessment of the": 1,
          "Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP). No contradiction to this ST. FCS_CKM.4 FCS_CKM.4 The Java Card platform": 1,
          "Platform Objective Correspondence in this ST References/Remarks OT.REALLOCATION No correspondence Out of scope. No contradiction to this ST. OT.RESOURCES No correspondence Out of scope. No contradiction to this": 1,
          "Platform Threat Correspondence in this ST References/Remarks T.CONFID-APPLI-DATA No correspondence Out of scope. No contradiction to this ST. T.CONFID-JCS-CODE No correspondence Out of scope. No contradiction to": 1,
          "REFINED] T.Forgery No contradiction to this ST. T.INTEG-APPLI-DATA.LOAD No correspondence Out of scope. No contradiction to this ST. T.INTEG-JCS-CODE No correspondence Out of scope. No contradiction to": 1,
          "Requirements (chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[CONFIG-SERVICE] No": 1,
          "SID.2 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.1 No correspondence Out of scope. No contradiction to this ST. T.EXE-CODE.2 No correspondence Out of scope. No contradiction to this": 1,
          "ST. OT.APPLI-AUTH No correspondence Out of scope. No contradiction to this ST. OT.DOMAIN-RIGHTS No correspondence Out of scope. No contradiction to": 1,
          "ST. OT.COMM_AUTH No correspondence Out of scope. No contradiction to this ST. OT.COMM_INTEGRITY No correspondence Out of scope. No contradiction to": 1,
          "ST. OT.COMM_CONFIDENTIALITY No correspondence Out of scope. No contradiction to this ST. OT.EXT-MEM No correspondence Out of scope. No contradiction to this": 1,
          "ST. OT.CONFIG-LIMIT No correspondence Out of scope. No contradiction to this ST. Table 5: Assessment of the platform objectives. NXP eDoc Suite v3.0": 1,
          "ST. T.INTEG-JCS-DATA No correspondence Out of scope. No contradiction to this ST. T.SID.1 No correspondence Out of scope. No contradiction to this ST": 1,
          "ST. T.LIFE_CYCLE No correspondence Out of scope. No contradiction to this ST. T.OBJ-DELETION No correspondence Out of scope. No contradiction to": 1,
          "T.Information_Leakage No contradiction to this ST. T.INTEG-APPLI-CODE No correspondence Out of scope. No contradiction to this ST. T.INTEG-APPLI-CODE.LOAD No correspondence Out of scope. No": 1,
          "T.NATIVE No correspondence Out of scope. No contradiction to this ST. T.RESOURCES No correspondence Out of scope. No contradiction to this": 1,
          "T.UNAUTHORIZED_CARD_MNGT No correspondence Out of scope. No contradiction to this ST. T.COM_EXPLOIT No correspondence Out of scope. No contradiction to": 1,
          "The objectives are related. No con- tradiction to this ST. OT.SCP.SUPPORT No correspondence Out of scope. No contradiction to this ST. OT.SEC_BOX_FW No correspondence Out of scope. No contradiction to": 1,
          "but no corresponding objectives for the TOE of this ST. No contradictions. OT.SID No correspondence Out of scope. No contradiction to this ST. OT.FIREWALL No correspondence Out of scope. No contradiction to this": 1,
          "chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall": 1,
          "chapter 7.1.1.2 in platform ST) FCS_CKM.1 No correspondence Out of scope. The TOE uses the spe- cific Document Basic Access Key Der- ivation Algorithm": 1,
          "chapter 7.1.1.4 in platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality": 1,
          "chapter 7.1.8.1 in platform ST) FDP_ACC.2[SecureBox] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "chapter 7.1.9 in platform ST) FDP_ACC.1[CONFIG-SERVICE] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "corresponding objectives for the TOE of this ST. No contradictions. OT.KEY-MNGT No correspondence Out of scope. No contradiction to this ST. OT.PIN-MNGT No correspondence Out of scope. No contradiction to this": 1,
          "group includes requirements for managing the external memory. FDP_ACC.1[EXT-MEM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[EXT-MEM] No": 1,
          "internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out of scope (internal Java Card Fire- wall": 1,
          "internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.2[FIREWALL-JCVM] No": 1,
          "internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of scope (internal Java Card Fire- wall": 1,
          "internal Java Card Fire- wall). No contradiction to this ST. FMT_SMR.1 No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. Application Programming Interface": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FCO_NRO.2[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_ACC.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[SD] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_IFC.2[SC] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_IFF.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_ITC.2[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No correspondence. Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[KEYS] No correspondence. Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FIA_UID.1[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UAU.1[SC] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FIA_USB.1[AID] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. NXP eDoc Suite v3.0 -": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SC] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[ADEL] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SC] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_MSA.3[SD] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SC] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_SMF.1[SD] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[ADEL] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FMT_SMR.1[SD] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[CCM] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Card func- tionality). No contradiction to this ST. FTP_ITC.1[SC] No correspondence Out of scope (internal Java Card func- tionality": 1,
          "internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine": 1,
          "internal Java Virtual Machine). No contradiction to this ST. FDP_RIP.1[OBJECTS] No correspondence. Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_MSA.1[JCRE] No correspondence Out": 1,
          "managed within JCOP). No contradiction to this ST. FCS_CKM.3 No correspondence Out of scope (managed within JCOP": 1,
          "manager (ADEL) policy on security aspects outside the runtime. FDP_ACC.2[ADEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ACF.1[ADEL] No": 1,
          "numbers with a defined quality metric that can be used directly. FIA_AFL.1[PIN] No correspondence Out of scope (PINs are not used within a BAC passport). No contradic- tion to this ST. FPT_EMSEC.1 FPT_EMSEC.1": 1,
          "of 81 Platform SFR Correspondence in this ST References/Remarks FDP_RIP.1[ABORT] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_RIP.1[APDU] No": 1,
          "of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MSA.3[JCVM] No correspondence Out of scope (internal Java Card Fire- wall). No contradiction to this ST. FMT_SMF.1 No correspondence Out of": 1,
          "of 81 Platform SFR Correspondence in this ST References/Remarks FMT_MTD.1[JCRE] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FMT_MTD.3[JCRE] No": 1,
          "of 81 Platform Threat Correspondence in this ST References/Remarks T.OS_OPERATE No correspondence Out of scope. No contradiction to this ST. T.RND No correspondence Out of scope. No contradiction to this ST. T": 1,
          "of the TOE. No contradic- tion to this ST. FDP_ACF.1[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User": 1,
          "of the TOE. No contradic- tion to this ST. FDP_IFC.1[JCVM] No correspondence Out of scope (internal Java Virtual Machine). No contradiction to this ST. FDP_IFF.1[JCVM] No correspondence Out": 1,
          "of the TOE. No contradic- tion to this ST. FMT_MSA.3[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User": 1,
          "out of scope": 1,
          "platform ST) FIA_ATD.1[AID] No correspondence. Out of scope (internal Java Card func- tionality). No contradiction to this ST. FIA_UID.2[AID] No correspondence": 1,
          "platform ST) Firewall Policy (chapter 7.1.1.1 in platform ST) FDP_ACC.2[FIREWALL] No correspondence Out of scope (internal Java Card Fire- wall). The resulting requirements for applets are reflected in the User": 1,
          "that owns the deleted objects by invoking a specific API method. FDP_RIP.1[ODEL] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[ODEL] FPT_FLS.1 The": 1,
          "to this ST. OT.NATIVE No correspondence Out of scope. No contradiction to this ST. OT.OPERATE No correspondence Out of scope. No contradiction to this": 1,
          "verified, or that has been modified after bytecode verification. FDP_UIT.1[CCM] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FDP_ROL.1[CCM] No correspondence": 1,
          "vio- lations complement JCOP mecha- nisms. No contradiction to this ST. FPT_TDC.1 No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. Aid Management (chapter 7.1.1.4": 1,
          "which addresses security aspects outside the runtime. FMT_SMR.1[Installer] No correspondence Out of scope (internal Java Card func- tionality). No contradiction to this ST. FPT_FLS.1[Installer] No": 1
        }
      },
      "cipher_mode": {
        "CBC": {
          "CBC": 7
        },
        "CCM": {
          "CCM": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "PACE": {
          "PACE": 1
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key exchange": 1
        },
        "MAC": {
          "MAC": 9
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 1
          }
        },
        "RIPEMD": {
          "RIPEMD-160": 1
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 6
          },
          "SHA2": {
            "SHA-224": 1,
            "SHA-256": 2
          }
        }
      },
      "ic_data_group": {
        "EF": {
          "EF.COM": 12,
          "EF.DG1": 32,
          "EF.DG13": 3,
          "EF.DG14": 3,
          "EF.DG15": 1,
          "EF.DG16": 32,
          "EF.DG2": 9,
          "EF.DG3": 9,
          "EF.DG4": 8,
          "EF.DG5": 8,
          "EF.SOD": 13
        }
      },
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {
        "JCOP": {
          "JCOP 3": 10
        }
      },
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RND": 3,
          "RNG": 8
        }
      },
      "side_channel_analysis": {
        "FI": {
          "Malfunction": 3,
          "Physical Tampering": 5,
          "Physical tampering": 1,
          "fault injection": 1,
          "malfunction": 8,
          "physical tampering": 1
        },
        "SCA": {
          "DPA": 2,
          "SPA": 1,
          "physical probing": 5,
          "timing attacks": 1
        },
        "other": {
          "reverse engineering": 1
        }
      },
      "standard_id": {
        "BSI": {
          "AIS 20": 3,
          "AIS20": 5,
          "AIS31": 3
        },
        "CC": {
          "CCMB-2012-09-001": 1,
          "CCMB-2012-09-002": 1,
          "CCMB-2012-09-003": 1,
          "CCMB-2012-09-004": 2
        },
        "FIPS": {
          "FIPS 180-2": 1,
          "FIPS 180-4": 1,
          "FIPS 180-412": 1,
          "FIPS 197": 4,
          "FIPS 46-3": 5,
          "FIPS PUB 46-3": 1,
          "FIPS180-2": 1,
          "FIPS180-4": 1,
          "FIPS197": 2,
          "FIPS46-3": 2
        },
        "ICAO": {
          "ICAO": 14
        },
        "ISO": {
          "ISO/IEC 7816-2": 1,
          "ISO/IEC 7816-4": 1
        },
        "PKCS": {
          "PKCS#15": 1
        },
        "RFC": {
          "RFC3369": 1
        },
        "X509": {
          "X.509": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 23,
            "AES-": 1
          }
        },
        "DES": {
          "3DES": {
            "3DES": 2,
            "TDES": 2,
            "Triple-DES": 15,
            "TripleDES": 2
          },
          "DES": {
            "DES": 6
          },
          "Lucifer": {
            "Lucifer": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 5,
            "KMAC": 1
          }
        }
      },
      "technical_report_id": {
        "BSI": {
          "BSI TR-03110": 3
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {
        "NXP": {
          "NXP": 30,
          "NXP Semiconductors": 1
        }
      },
      "vulnerability": {}
    },
    "st_metadata": {
      "/Author": "bdrisch",
      "/CreationDate": "D:20180222105939+01\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2013",
      "/Keywords": "Security Target, ePasslet Suite, ICAO LDS, BAC",
      "/ModDate": "D:20180222105939+01\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2013",
      "/Subject": "deutsch",
      "/Title": "cv act ePasslet/MRTD-BAC Security Target",
      "pdf_file_size_bytes": 1942376,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "file:///C:/tzeggel/Desktop/glossar.htm%23aes"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 81
    }
  },
  "protection_profiles": {
    "_type": "Set",
    "elements": [
      {
        "_type": "sec_certs.sample.protection_profile.ProtectionProfile",
        "pp_eal": null,
        "pp_ids": null,
        "pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/pp0055b.pdf",
        "pp_name": "Protection Profile for Machine Readable Travel Document with \u0027ICAO Application\u0027, Basic Acce..."
      }
    ]
  },
  "report_link": "https://www.commoncriteriaportal.org/files/epfiles/1023a_pdf.pdf",
  "scheme": "DE",
  "security_level": {
    "_type": "Set",
    "elements": [
      "EAL4+",
      "ALC_DVS.2"
    ]
  },
  "st_link": "https://www.commoncriteriaportal.org/files/epfiles/1023b_pdf.pdf",
  "state": {
    "_type": "sec_certs.sample.common_criteria.CommonCriteriaCert.InternalState",
    "errors": [],
    "report_convert_garbage": false,
    "report_convert_ok": true,
    "report_download_ok": true,
    "report_extract_ok": true,
    "report_pdf_hash": "3acfb259663d04c4c2aecba94785e70be7dc3bc9d9071acba69209308d300a8d",
    "report_txt_hash": "e8b9d4be095688b9c3a37a8168c9526bf56996721bef40fe8a0bd1203574484b",
    "st_convert_garbage": false,
    "st_convert_ok": true,
    "st_download_ok": true,
    "st_extract_ok": true,
    "st_pdf_hash": "21afd28d97849621a8196d50f830587afc1e4ebecbd72e47e36287dbb5e5a9ff",
    "st_txt_hash": "7bddf5cd0fd7f243651444f70f764f9863ebdf0a764ff44829f820eed19845a9"
  },
  "status": "active"
}