This page was not yet optimized for use on mobile devices.
Secure Smart Grid Hub (SGH-S), V1.00
CSV information ?
| Status | active |
|---|---|
| Valid from | 11.09.2023 |
| Valid until | 10.09.2031 |
| Scheme | 🇩🇪 DE |
| Manufacturer | EFR GmbH |
| Category | Other Devices and Systems |
| Security level | AVA_VAN.5, EAL4+, ALC_FLR.2 |
| Protection profiles | |
| Maintenance updates | Secure Smart Grid Hub (SGH-S) in the variants SGH-S-AL1-B-100 & SGH-S-AM1-B-100, V1.01 (16.01.2024) Certification report Security target |
Heuristics summary ?
Certificate ID: BSI-DSZ-CC-1000-2023
Certificate ?
Extracted keywords
Security level
EAL 4, EAL 5, EAL 2, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLR, AVA_VAN.5Certificates
BSI-DSZ-CC-1000-2023Standards
ISO/IEC 15408, ISO/IEC 18045File metadata
| Title: | Certification Report BSI-DSZ-CC-1000-2023 |
|---|---|
| Subject: | Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR |
| Keywords: | "Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR" |
| Author: | Federal Office for Information Security |
| Pages: | 1 |
Certification report ?
Extracted keywords
Symmetric Algorithms
AES, AES-, HMAC, CMACAsymmetric Algorithms
ECCHash functions
SHA256, SHA-256, SHA-384, SHA-512Schemes
MAC, Key AgreementProtocols
SSH, TLSRandomness
TRNGBlock cipher modes
CBC, GCMSecurity level
EAL 4, EAL 5, EAL 2, EAL 1, EAL 5+, EAL 6, EAL 4 augmentedSecurity Assurance Requirements (SAR)
ALC_FLR.2, ALC_FLR, ALC_CMS, ATE_COV, ATE_DPT, ATE_IND, AVA_VAN.5Security Functional Requirements (SFR)
FCS_CKM.1, FMT_SMR.1Protection profiles
BSI-CC-PP-0073-2014, BSI-CC-PP-0077-V2-2015, BSI-CC-PP-0073Certificates
BSI-DSZ-CC-1000-2023Evaluation facilities
SRC Security Research & ConsultingCertification process
out of scope, 2. Multiple Communication Modules for LTE exist, however these are non-TOE components and as such out of scope for this certification. 9. Results of the Evaluation 9.1. CC specific results The Evaluation, being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, ID BSI- DSZ-CC-1000, Version 1.3.2, 06.09.2023, SRC Security Research & Consulting GmbH (confidential document) [8] Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, ALC_CMS “Konfigurations-Management-Scope Kon- figurationsliste”, v1.13, 30.08.2023, EFR GmbH (confidential document) [11] Servicetechniker Handbuch für das Smart-Meter-Gateway (SMGW) Secure Smart Grid Hub EFR SGH-SSide-channel analysis
side channel, physical tampering, malfunctionCertification process
out of scope, 2. Multiple Communication Modules for LTE exist, however these are non-TOE components and as such out of scope for this certification. 9. Results of the Evaluation 9.1. CC specific results The Evaluation, being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification, ID BSI- DSZ-CC-1000, Version 1.3.2, 06.09.2023, SRC Security Research & Consulting GmbH (confidential document) [8] Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, ALC_CMS “Konfigurations-Management-Scope Kon- figurationsliste”, v1.13, 30.08.2023, EFR GmbH (confidential document) [11] Servicetechniker Handbuch für das Smart-Meter-Gateway (SMGW) Secure Smart Grid Hub EFR SGH-SStandards
FIPS 197, FIPS 180-4, AIS 34, AIS 46, AIS 48, AIS 32, RFC 5289, RFC-2104, RFC-3394, RFC 5084, RFC 5652, RFC 4493, RFC4493, RFC 2104, RFC 3394, RFC5246, RFC 5246, ISO/IEC 15408, ISO/IEC 18045, ISO/IEC 17065, ISO/IEC 18033-Technical reports
BSI TR-03116, BSI TR-02102-1, BSI TR-03111, BSI 7148File metadata
| Title: | Certification Report BSI-DSZ-CC-1000-2023 |
|---|---|
| Subject: | Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR |
| Keywords: | "Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR" |
| Author: | Federal Office for Information Security |
| Pages: | 26 |
Frontpage
| Certificate ID: | BSI-DSZ-CC-1000-2023 |
|---|---|
| Certified item: | Secure Smart Grid Hub (SGH-S) V1.00 |
| Certification lab: | BSI |
| Developer: | EFR GmbH |
References
OutgoingSecurity target ?
Extracted keywords
Symmetric Algorithms
AES, AES-, HMAC, CMACAsymmetric Algorithms
ECDSA, ECC, Diffie-HellmanHash functions
SHA-256, SHA-384, SHA-512, SHA-2, JHSchemes
MAC, Key agreement, Key AgreementProtocols
TLS, TLSv1.2, PACE, VPNRandomness
TRNGBlock cipher modes
GCMTLS cipher suites
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384Security level
EAL4, EAL 4, EAL4 augmented, EAL 4 augmentedClaims
OE.SM, OSP.SMSecurity Assurance Requirements (SAR)
ADV_ARC.1, ADV_IMP.1, AGD_OPE.1, ALC_FLR.2, ALC_CMC.4, ALC_DEL.1, ALC_LCD.1, ATE_COV.2, ATE_FUN.1, AVA_VAN.5, ASE_CCL, ASE_SPD, ASE_OBJ, ASE_CCL.1, ASE_INT.1, ASE_OBJ.2, ASE_SPD.1Security Functional Requirements (SFR)
FAU_ARP, FAU_GEN, FAU_SAA, FAU_SAR, FAU_STG, FAU_GEN.2, FAU_STG.2, FAU_GEN.1, FAU_SAA.1, FAU_SAR.1, FAU_STG.4, FAU_STG.3, FAU_STG.1, FAU_GEN.2.1, FAU_STG.2.1, FAU_STG.2.2, FAU_STG.2.3, FAU_STG.4.1, FCO_NRO, FCO_NRO.2, FCO_NRO.2.1, FCO_NRO.2.2, FCO_NRO.2.3, FCO_NRO.1, FCS_CKM, FCS_COP, FCS_CKM.4, FCS_CKM.1, FCS_CKM.2, FCS_COP.1, FCS_CKM.4.1, FDP_IFC, FDP_ACC.2, FDP_ACF.1, FDP_IFF, FDP_RIP.2, FDP_SDI.2, FDP_ITC.1, FDP_ITC.2, FDP_ACC, FDP_ACC.2.1, FDP_ACC.2.2, FDP_ACC.1, FDP_ACF, FDP_ACF.1.1, FDP_ACF.1.2, FDP_ACF.1.3, FDP_ACF.1.4, FDP_IFC.2, FDP_IFC.1, FDP_IFF.1, FDP_IFF.1.3, FDP_RIP, FDP_RIP.2.1, FDP_RIP.1, FDP_SDI, FDP_SDI.2.1, FDP_SDI.2.2, FDP_SDI.1, FIA_ATD, FIA_AFL, FIA_UAU, FIA_UID, FIA_USB, FIA_ATD.1, FIA_AFL.1, FIA_UAU.2, FIA_UAU.5, FIA_UAU.6, FIA_UID.2, FIA_USB.1, FIA_UID.1, FIA_ATD.1.1, FIA_AFL.1.1, FIA_AFL.1.2, FIA_UAU.1, FIA_UAU.2.1, FIA_UAU.5.1, FIA_UAU.5.2, FIA_UAU.6.1, FIA_UID.2.1, FIA_USB.1.1, FIA_USB.1.2, FIA_USB.1.3, FMT_SMR, FMT_MOF.1, FMT_SMF.1, FMT_SMR.1, FMT_MSA, FMT_MSA.3, FMT_MOF, FMT_MOF.1.1, FMT_SMF, FMT_SMF.1.1, FMT_SMR.1.1, FMT_SMR.1.2, FMT_MSA.1, FPR_CON, FPR_CON.1, FPR_PSE, FPR_CON.1.2, FPR_CON.1.1, FPR_PSE.1, FPR_PSE.1.1, FPR_PSE.1.2, FPR_PSE.1.3, FPT_FLS, FPT_RPL, FPT_STM, FPT_TST, FPT_FLS.1, FPT_RPL.1, FPT_STM.1, FPT_TST.1, FPT_PHP.1, FPT_FLS.1.1, FPT_RPL.1.1, FPT_RPL.1.2, FPT_STM.1.1, FPT_TST.1.1, FPT_TST.1.2, FPT_TST.1.3, FPT_PHP, FPT_PHP.1.1, FPT_PHP.1.2, FTP_ITC, FTP_ITC.1Protection profiles
BSI-CC-PP-0077-2015, BSI-CC-PP-0073-2014, BSI-CC-PP-0073-, BSI-CC-PP-0077-, BSI-CC-PP-0077-V2-2015Certificates
BSI-DSZ-CC-1003-2018, BSI-DSZ-CC-1003-Side-channel analysis
physical tampering, malfunctionStandards
FIPS 180-4, FIPS 197, NIST SP 800-38A, NIST SP 800-38D, RFC-5289, RFC-5246, RFC-2104, RFC-3394, RFC-5084, RFC-5652, RFC-4493, RFC 2104, RFC 3394, RFC 4493, RFC 5084, RFC 5246, RFC 5289, RFC 5652Technical reports
BSI TR-03109-1, BSI TR-03111, BSI TR-03116-3File metadata
| Title: | Security Target EFR SGH-S |
|---|---|
| Subject: | Common Criteria Evaluation |
| Author: | EFR GmbH |
| Pages: | 94 |
References
Outgoing- BSI-DSZ-CC-1003-2018 - Smart Meter Gateway Security Module Application on MultiApp V4 Revision A
Heuristics ?
Certificate ID: BSI-DSZ-CC-1000-2023
Extracted SARs
ASE_INT.1, ASE_CCL.1, ATE_COV.2, ASE_SPD.1, ASE_OBJ.2, ALC_CMC.4, ALC_DEL.1, ATE_FUN.1, AGD_OPE.1, ALC_FLR.2, ADV_ARC.1, ALC_LCD.1, AVA_VAN.5, ADV_IMP.1Scheme data ?
| Cert Id | BSI-DSZ-CC-1000-2023 | |
|---|---|---|
| Product | Secure Smart Grid Hub (SGH-S), V1.00 | |
| Vendor | EFR GmbH | |
| Certification Date | 11.09.2023 | |
| Category | Intelligent measuring systems | |
| Url | https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/1000.html | |
| Enhanced | ||
| Product | Secure Smart Grid Hub (SGH-S), V1.00 | |
| Applicant | EFR GmbH Nymphenburger Straße 20b 80335 München | |
| Evaluation Facility | SRC Security Research & Consulting GmbH | |
| Assurance Level | EAL4+,ALC_FLR.2,AVA_VAN.5 | |
| Protection Profile | Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014 | |
| Certification Date | 11.09.2023 | |
| Expiration Date | 10.09.2031 | |
| Entries | [frozendict({'id': 'BSI-DSZ-CC-1000-2023-MA-01', 'description': '(National Metrology Institute) requirements.'})] | |
| Target Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000b_pdf.pdf?__blob=publicationFile&v=2 | |
| Report Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000a_pdf.pdf?__blob=publicationFile&v=2 | |
| Cert Link | https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000c_pdf.pdf?__blob=publicationFile&v=2 | |
| Description | The TOE is the security functionality of a Smart Meter Gateway that serves as the communi-cation unit between devices of private and commercial consumers and commodity industry service providers (e.g., electricity, gas, water, etc.). It also collects, processes and stores Meter Data and is responsible for the distribution of this data to external entities | |
| Subcategory | (Smart Meter Gateway) | |
References ?
Updates ?
-
15.02.2024 The certificate data changed.
Certificate changed
The state of the certificate object was updated.
- The following values were inserted:
{'report': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '57b155fe20efc25f3836337c59ac1164724520abc30588f29866132b703456c3', 'txt_hash': 'a2a510aa6f2651e8e8beacd81fc6f74c7242df981100703e46b7aa7d98db895a'}, 'st': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '0a5f42e988f683a33db28884db26fbb433663de623f9554b8736c38e7c8bf9bf', 'txt_hash': '6ecf1f3fa8acc96b7591606fc90abf6f2f24928f242723d43e8172528186fd10'}, 'cert': {'_type': 'sec_certs.sample.cc.CCCertificate.DocumentState', 'download_ok': True, 'convert_garbage': False, 'convert_ok': True, 'extract_ok': True, 'pdf_hash': '0415a2a4135ec0c104c98563d2bb53128b4f325793b309521286778102fd8f1a', 'txt_hash': '6f21749fdb90fe818f593cea73c31b4b5e4ad0a855413b23edf4a65b00a347bb'}}. - The following properties were deleted:
['st_download_ok', 'report_download_ok', 'st_convert_garbage', 'report_convert_garbage', 'st_convert_ok', 'report_convert_ok', 'st_extract_ok', 'report_extract_ok', 'st_pdf_hash', 'report_pdf_hash', 'st_txt_hash', 'report_txt_hash'].
The PDF extraction data was updated.
- The following values were inserted:
{'cert_metadata': {'pdf_file_size_bytes': 339208, 'pdf_is_encrypted': False, 'pdf_number_of_pages': 1, '/Author': 'Federal Office for Information Security', '/Keywords': '"Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR"', '/Subject': 'Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR', '/Title': 'Certification Report BSI-DSZ-CC-1000-2023', 'pdf_hyperlinks': {'_type': 'Set', 'elements': []}}, 'cert_frontpage': None, 'cert_keywords': {'cc_cert_id': {'DE': {'BSI-DSZ-CC-1000-2023': 1}}, 'cc_protection_profile_id': {}, 'cc_security_level': {'EAL': {'EAL 4': 2, 'EAL 5': 1, 'EAL 2': 1, 'EAL 4 augmented': 1}}, 'cc_sar': {'ALC': {'ALC_FLR.2': 1, 'ALC_FLR': 1}, 'AVA': {'AVA_VAN.5': 1}}, 'cc_sfr': {}, 'cc_claims': {}, 'vendor': {}, 'eval_facility': {}, 'symmetric_crypto': {}, 'asymmetric_crypto': {}, 'pq_crypto': {}, 'hash_function': {}, 'crypto_scheme': {}, 'crypto_protocol': {}, 'randomness': {}, 'cipher_mode': {}, 'ecc_curve': {}, 'crypto_engine': {}, 'tls_cipher_suite': {}, 'crypto_library': {}, 'vulnerability': {}, 'side_channel_analysis': {}, 'technical_report_id': {}, 'device_model': {}, 'tee_name': {}, 'os_name': {}, 'cplc_data': {}, 'ic_data_group': {}, 'standard_id': {'ISO': {'ISO/IEC 15408': 2, 'ISO/IEC 18045': 2}}, 'javacard_version': {}, 'javacard_api_const': {}, 'javacard_packages': {}, 'certification_process': {}}, 'cert_filename': '1000c_pdf.pdf'}. - The report_frontpage property was set to
{'DE': {'match_rules': ['(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)'], 'cert_id': 'BSI-DSZ-CC-1000-2023', 'cert_item': 'Secure Smart Grid Hub (SGH-S) V1.00', 'developer': 'EFR GmbH', 'cert_lab': 'BSI', 'ref_protection_profiles': 'Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI- CC-PP-0073-2014', 'cc_version': 'PP conformant Common Criteria Part 2 extended', 'cc_security_level': 'Common Criteria Part 3 conformant EAL 4 augmented by AVA_VAN.5 and ALC_FLR.2 valid until: 10 September 2031'}}. - The st_frontpage property was set to
None. - The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1000-2023': 13}}}}}data. - The st_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__insert__': {'BSI-DSZ-CC-1003-': 1}, '__update__': {'BSI-DSZ-CC-1003-2018': 2}}}}}data.
- The following values were inserted:
-
13.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1000-2023': 26}}}}}data. - The st_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1003-2018': 4}, '__delete__': ['BSI-DSZ-CC-1003-']}}}}data.
- The report_keywords property was updated, with the
-
07.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The st_keywords property was updated, with the
{'cc_cert_id': {'__delete__': ['CA']}}data.
- The st_keywords property was updated, with the
-
07.02.2024 The certificate data changed.
Certificate changed
The PDF extraction data was updated.
- The report_keywords property was updated, with the
{'cc_cert_id': {'__update__': {'DE': {'__update__': {'BSI-DSZ-CC-1000-2023': 13}}}}}data. - The st_keywords property was updated, with the
{'cc_cert_id': {'__insert__': {'CA': {'1 0 0': 1}}, '__update__': {'DE': {'__insert__': {'BSI-DSZ-CC-1003-': 1}, '__update__': {'BSI-DSZ-CC-1003-2018': 2}}}}}data.
- The report_keywords property was updated, with the
-
05.02.2024 The certificate data changed.
Certificate changed
The Maintenance Updates of the certificate were updated.
- The new value is
{'_type': 'Set', 'elements': [{'_type': 'sec_certs.sample.cc.CCCertificate.MaintenanceReport', 'maintenance_date': '2024-01-16', 'maintenance_title': 'Secure Smart Grid Hub (SGH-S) in the variants SGH-S-AL1-B-100 & SGH-S-AM1-B-100, V1.01', 'maintenance_report_link': 'https://www.commoncriteriaportal.org/files/epfiles/1000ma1a_pdf.pdf', 'maintenance_st_link': 'https://www.commoncriteriaportal.org/files/epfiles/1000ma1b_pdf.pdf'}]}.
The computed heuristics were updated.
- The scheme_data property was updated, with the
{'enhanced': {'__insert__': {'entries': [{'id': 'BSI-DSZ-CC-1000-2023-MA-01', 'description': '(National Metrology Institute) requirements.'}]}}}data.
- The new value is
-
04.01.2024 The certificate data changed.
Certificate changed
The computed heuristics were updated.
- The following values were inserted:
{'annotated_references': None}.
- The following values were inserted:
-
21.09.2023 The certificate was first processed.
New certificate
A new Common Criteria certificate with the product name Secure Smart Grid Hub (SGH-S), V1.00 was processed.
Raw data
{
"_type": "sec_certs.sample.cc.CCCertificate",
"category": "Other Devices and Systems",
"cert_link": "https://www.commoncriteriaportal.org/files/epfiles/1000c_pdf.pdf",
"dgst": "bacc41d79afbe711",
"heuristics": {
"_type": "sec_certs.sample.cc.CCCertificate.Heuristics",
"annotated_references": null,
"cert_id": "BSI-DSZ-CC-1000-2023",
"cert_lab": [
"BSI"
],
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_sars": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_LCD",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_CCL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_IMP",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ADV_ARC",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_FLR",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_FUN",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_OBJ",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ATE_COV",
"level": 2
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_INT",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AVA_VAN",
"level": 5
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_CMC",
"level": 4
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ALC_DEL",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "AGD_OPE",
"level": 1
},
{
"_type": "sec_certs.sample.sar.SAR",
"family": "ASE_SPD",
"level": 1
}
]
},
"extracted_versions": {
"_type": "Set",
"elements": [
"1.00"
]
},
"indirect_transitive_cves": null,
"related_cves": null,
"report_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"scheme_data": {
"category": "Intelligent measuring systems",
"cert_id": "BSI-DSZ-CC-1000-2023",
"certification_date": "11.09.2023",
"enhanced": {
"applicant": "EFR GmbH\nNymphenburger Stra\u00dfe 20b\n80335 M\u00fcnchen",
"assurance_level": "EAL4+,ALC_FLR.2,AVA_VAN.5",
"cert_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000c_pdf.pdf?__blob=publicationFile\u0026v=2",
"certification_date": "11.09.2023",
"description": "The TOE is the security functionality of a Smart Meter Gateway that serves as the communi-cation unit between devices of private and commercial consumers and commodity industry service providers (e.g., electricity, gas, water, etc.). It also collects, processes and stores Meter Data and is responsible for the distribution of this data to external entities",
"entries": [
{
"description": "(National Metrology Institute) requirements.",
"id": "BSI-DSZ-CC-1000-2023-MA-01"
}
],
"evaluation_facility": "SRC Security Research \u0026 Consulting GmbH",
"expiration_date": "10.09.2031",
"product": "Secure Smart Grid Hub (SGH-S), V1.00",
"protection_profile": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI-CC-PP-0073-2014",
"report_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000a_pdf.pdf?__blob=publicationFile\u0026v=2",
"target_link": "https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Zertifizierung/Reporte/Reporte1000/1000b_pdf.pdf?__blob=publicationFile\u0026v=2"
},
"product": "Secure Smart Grid Hub (SGH-S), V1.00",
"subcategory": "(Smart Meter Gateway)",
"url": "https://www.bsi.bund.de/SharedDocs/Zertifikate_CC/CC/SmartMeter_Gateway/1000.html",
"vendor": "EFR GmbH"
},
"st_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"BSI-DSZ-CC-1003-2018"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"ANSSI-CC-2017/54",
"BSI-DSZ-CC-1003-2018",
"BSI-DSZ-CC-0891-V2-2016"
]
}
},
"verified_cpe_matches": null
},
"maintenance_updates": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.cc.CCCertificate.MaintenanceReport",
"maintenance_date": "2024-01-16",
"maintenance_report_link": "https://www.commoncriteriaportal.org/files/epfiles/1000ma1a_pdf.pdf",
"maintenance_st_link": "https://www.commoncriteriaportal.org/files/epfiles/1000ma1b_pdf.pdf",
"maintenance_title": "Secure Smart Grid Hub (SGH-S) in the variants SGH-S-AL1-B-100 \u0026 SGH-S-AM1-B-100, V1.01"
}
]
},
"manufacturer": "EFR GmbH",
"manufacturer_web": "https://www.efr.de",
"name": "Secure Smart Grid Hub (SGH-S), V1.00",
"not_valid_after": "2031-09-10",
"not_valid_before": "2023-09-11",
"pdf_data": {
"_type": "sec_certs.sample.cc.CCCertificate.PdfData",
"cert_filename": "1000c_pdf.pdf",
"cert_frontpage": null,
"cert_keywords": {
"asymmetric_crypto": {},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1000-2023": 1
}
},
"cc_claims": {},
"cc_protection_profile_id": {},
"cc_sar": {
"ALC": {
"ALC_FLR": 1,
"ALC_FLR.2": 1
},
"AVA": {
"AVA_VAN.5": 1
}
},
"cc_security_level": {
"EAL": {
"EAL 2": 1,
"EAL 4": 2,
"EAL 4 augmented": 1,
"EAL 5": 1
}
},
"cc_sfr": {},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {},
"crypto_scheme": {},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {},
"side_channel_analysis": {},
"standard_id": {
"ISO": {
"ISO/IEC 15408": 2,
"ISO/IEC 18045": 2
}
},
"symmetric_crypto": {},
"technical_report_id": {},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"cert_metadata": {
"/Author": "Federal Office for Information Security",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR",
"/Title": "Certification Report BSI-DSZ-CC-1000-2023",
"pdf_file_size_bytes": 339208,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 1
},
"report_filename": "1000a_pdf.pdf",
"report_frontpage": {
"DE": {
"cc_security_level": "Common Criteria Part 3 conformant EAL 4 augmented by AVA_VAN.5 and ALC_FLR.2 valid until: 10 September 2031",
"cc_version": "PP conformant Common Criteria Part 2 extended",
"cert_id": "BSI-DSZ-CC-1000-2023",
"cert_item": "Secure Smart Grid Hub (SGH-S) V1.00",
"cert_lab": "BSI",
"developer": "EFR GmbH",
"match_rules": [
"(BSI-DSZ-CC-.+?) (?:for|For) (.+?) from (.*)"
],
"ref_protection_profiles": "Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014, BSI- CC-PP-0073-2014"
}
},
"report_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 3
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1000-2023": 13
}
},
"cc_claims": {},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0073": 1,
"BSI-CC-PP-0073-2014": 3,
"BSI-CC-PP-0077-V2-2015": 2
}
},
"cc_sar": {
"ALC": {
"ALC_CMS": 1,
"ALC_FLR": 3,
"ALC_FLR.2": 4
},
"ATE": {
"ATE_COV": 1,
"ATE_DPT": 1,
"ATE_IND": 1
},
"AVA": {
"AVA_VAN.5": 5
}
},
"cc_security_level": {
"EAL": {
"EAL 1": 1,
"EAL 2": 3,
"EAL 4": 8,
"EAL 4 augmented": 3,
"EAL 5": 3,
"EAL 5+": 1,
"EAL 6": 1
}
},
"cc_sfr": {
"FCS": {
"FCS_CKM.1": 1
},
"FMT": {
"FMT_SMR.1": 1
}
},
"certification_process": {
"ConfidentialDocument": {
"ALC_CMS \u201cKonfigurations-Management-Scope Kon- figurationsliste\u201d, v1.13, 30.08.2023, EFR GmbH (confidential document) [11] Servicetechniker Handbuch f\u00fcr das Smart-Meter-Gateway (SMGW) Secure Smart Grid Hub EFR SGH-S": 1,
"ID BSI- DSZ-CC-1000, Version 1.3.2, 06.09.2023, SRC Security Research \u0026 Consulting GmbH (confidential document) [8] Protection Profile for the Gateway of a Smart Metering System, Version 1.3, 31 March 2014": 1,
"being maintained, is not given any longer. In particular, prior to the dissemination of confidential documentation and information related to the TOE or resulting from the evaluation and certification": 1
},
"OutOfScope": {
"2. Multiple Communication Modules for LTE exist, however these are non-TOE components and as such out of scope for this certification. 9. Results of the Evaluation 9.1. CC specific results The Evaluation": 1,
"out of scope": 1
}
},
"cipher_mode": {
"CBC": {
"CBC": 1
},
"GCM": {
"GCM": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"SSH": {
"SSH": 1
},
"TLS": {
"TLS": {
"TLS": 7
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 2
},
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {
"SRC": {
"SRC Security Research \u0026 Consulting": 1
}
},
"hash_function": {
"SHA": {
"SHA2": {
"SHA-256": 2,
"SHA-384": 1,
"SHA-512": 1,
"SHA256": 5
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"TRNG": {
"TRNG": 1
}
},
"side_channel_analysis": {
"FI": {
"malfunction": 1,
"physical tampering": 1
},
"SCA": {
"side channel": 1
}
},
"standard_id": {
"BSI": {
"AIS 32": 1,
"AIS 34": 2,
"AIS 46": 2,
"AIS 48": 2
},
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 3
},
"ISO": {
"ISO/IEC 15408": 4,
"ISO/IEC 17065": 2,
"ISO/IEC 18033-": 1,
"ISO/IEC 18045": 4
},
"RFC": {
"RFC 2104": 2,
"RFC 3394": 2,
"RFC 4493": 3,
"RFC 5084": 3,
"RFC 5246": 1,
"RFC 5289": 4,
"RFC 5652": 3,
"RFC-2104": 1,
"RFC-3394": 1,
"RFC4493": 1,
"RFC5246": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 9,
"AES-": 1
}
},
"constructions": {
"MAC": {
"CMAC": 1,
"HMAC": 2
}
}
},
"technical_report_id": {
"BSI": {
"BSI 7148": 1,
"BSI TR-02102-1": 1,
"BSI TR-03111": 1,
"BSI TR-03116": 1
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"report_metadata": {
"/Author": "Federal Office for Information Security",
"/Keywords": "\"Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR\"",
"/Subject": "Common Criteria, Certification, Zertifizierung, Smart Meter Gateway, SMGW, EFR",
"/Title": "Certification Report BSI-DSZ-CC-1000-2023",
"pdf_file_size_bytes": 492094,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"https://www.bsi.bund.de/zertifizierung",
"https://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/zertifizierungsreporte",
"https://www.sogis.eu/",
"http://www.commoncriteriaportal.org/cc/",
"https://www.bsi.bund.de/AIS",
"http://www.commoncriteriaportal.org/",
"https://www.bsi.bund.de/"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 26
},
"st_filename": "1000b_pdf.pdf",
"st_frontpage": null,
"st_keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 2
},
"ECDSA": {
"ECDSA": 1
}
},
"FF": {
"DH": {
"Diffie-Hellman": 1
}
}
},
"cc_cert_id": {
"DE": {
"BSI-DSZ-CC-1003-": 1,
"BSI-DSZ-CC-1003-2018": 2
}
},
"cc_claims": {
"OE": {
"OE.SM": 3
},
"OSP": {
"OSP.SM": 4
}
},
"cc_protection_profile_id": {
"BSI": {
"BSI-CC-PP-0073-": 1,
"BSI-CC-PP-0073-2014": 5,
"BSI-CC-PP-0077-": 1,
"BSI-CC-PP-0077-2015": 2,
"BSI-CC-PP-0077-V2-2015": 1
}
},
"cc_sar": {
"ADV": {
"ADV_ARC.1": 1,
"ADV_IMP.1": 1
},
"AGD": {
"AGD_OPE.1": 1
},
"ALC": {
"ALC_CMC.4": 1,
"ALC_DEL.1": 1,
"ALC_FLR.2": 5,
"ALC_LCD.1": 1
},
"ASE": {
"ASE_CCL": 2,
"ASE_CCL.1": 1,
"ASE_INT.1": 1,
"ASE_OBJ": 2,
"ASE_OBJ.2": 1,
"ASE_SPD": 3,
"ASE_SPD.1": 1
},
"ATE": {
"ATE_COV.2": 1,
"ATE_FUN.1": 1
},
"AVA": {
"AVA_VAN.5": 6
}
},
"cc_security_level": {
"EAL": {
"EAL 4": 4,
"EAL 4 augmented": 1,
"EAL4": 1,
"EAL4 augmented": 1
}
},
"cc_sfr": {
"FAU": {
"FAU_ARP": 9,
"FAU_GEN": 30,
"FAU_GEN.1": 22,
"FAU_GEN.2": 6,
"FAU_GEN.2.1": 1,
"FAU_SAA": 9,
"FAU_SAA.1": 5,
"FAU_SAR": 21,
"FAU_SAR.1": 9,
"FAU_STG": 23,
"FAU_STG.1": 8,
"FAU_STG.2": 10,
"FAU_STG.2.1": 1,
"FAU_STG.2.2": 1,
"FAU_STG.2.3": 2,
"FAU_STG.3": 3,
"FAU_STG.4": 3,
"FAU_STG.4.1": 1
},
"FCO": {
"FCO_NRO": 3,
"FCO_NRO.1": 1,
"FCO_NRO.2": 8,
"FCO_NRO.2.1": 1,
"FCO_NRO.2.2": 1,
"FCO_NRO.2.3": 1
},
"FCS": {
"FCS_CKM": 48,
"FCS_CKM.1": 6,
"FCS_CKM.2": 5,
"FCS_CKM.4": 28,
"FCS_CKM.4.1": 2,
"FCS_COP": 49,
"FCS_COP.1": 10
},
"FDP": {
"FDP_ACC": 2,
"FDP_ACC.1": 9,
"FDP_ACC.2": 8,
"FDP_ACC.2.1": 1,
"FDP_ACC.2.2": 1,
"FDP_ACF": 1,
"FDP_ACF.1": 7,
"FDP_ACF.1.1": 1,
"FDP_ACF.1.2": 1,
"FDP_ACF.1.3": 1,
"FDP_ACF.1.4": 1,
"FDP_IFC": 24,
"FDP_IFC.1": 12,
"FDP_IFC.2": 4,
"FDP_IFF": 20,
"FDP_IFF.1": 22,
"FDP_IFF.1.3": 1,
"FDP_ITC.1": 12,
"FDP_ITC.2": 12,
"FDP_RIP": 2,
"FDP_RIP.1": 1,
"FDP_RIP.2": 7,
"FDP_RIP.2.1": 1,
"FDP_SDI": 2,
"FDP_SDI.1": 1,
"FDP_SDI.2": 5,
"FDP_SDI.2.1": 1,
"FDP_SDI.2.2": 2
},
"FIA": {
"FIA_AFL": 3,
"FIA_AFL.1": 6,
"FIA_AFL.1.1": 1,
"FIA_AFL.1.2": 1,
"FIA_ATD": 3,
"FIA_ATD.1": 11,
"FIA_ATD.1.1": 1,
"FIA_UAU": 5,
"FIA_UAU.1": 2,
"FIA_UAU.2": 6,
"FIA_UAU.2.1": 1,
"FIA_UAU.5": 5,
"FIA_UAU.5.1": 1,
"FIA_UAU.5.2": 1,
"FIA_UAU.6": 6,
"FIA_UAU.6.1": 1,
"FIA_UID": 3,
"FIA_UID.1": 8,
"FIA_UID.2": 10,
"FIA_UID.2.1": 1,
"FIA_USB": 3,
"FIA_USB.1": 6,
"FIA_USB.1.1": 1,
"FIA_USB.1.2": 1,
"FIA_USB.1.3": 1
},
"FMT": {
"FMT_MOF": 1,
"FMT_MOF.1": 6,
"FMT_MOF.1.1": 1,
"FMT_MSA": 44,
"FMT_MSA.1": 10,
"FMT_MSA.3": 11,
"FMT_SMF": 2,
"FMT_SMF.1": 18,
"FMT_SMF.1.1": 1,
"FMT_SMR": 3,
"FMT_SMR.1": 25,
"FMT_SMR.1.1": 1,
"FMT_SMR.1.2": 1
},
"FPR": {
"FPR_CON": 6,
"FPR_CON.1": 9,
"FPR_CON.1.1": 2,
"FPR_CON.1.2": 4,
"FPR_PSE": 2,
"FPR_PSE.1": 7,
"FPR_PSE.1.1": 1,
"FPR_PSE.1.2": 1,
"FPR_PSE.1.3": 1
},
"FPT": {
"FPT_FLS": 3,
"FPT_FLS.1": 10,
"FPT_FLS.1.1": 1,
"FPT_PHP": 1,
"FPT_PHP.1": 6,
"FPT_PHP.1.1": 1,
"FPT_PHP.1.2": 1,
"FPT_RPL": 3,
"FPT_RPL.1": 6,
"FPT_RPL.1.1": 1,
"FPT_RPL.1.2": 1,
"FPT_STM": 3,
"FPT_STM.1": 18,
"FPT_STM.1.1": 1,
"FPT_TST": 3,
"FPT_TST.1": 8,
"FPT_TST.1.1": 1,
"FPT_TST.1.2": 1,
"FPT_TST.1.3": 1
},
"FTP": {
"FTP_ITC": 23,
"FTP_ITC.1": 8
}
},
"certification_process": {},
"cipher_mode": {
"GCM": {
"GCM": 3
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"PACE": {
"PACE": 1
},
"TLS": {
"TLS": {
"TLS": 44,
"TLSv1.2": 2
}
},
"VPN": {
"VPN": 1
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 3,
"Key agreement": 2
},
"MAC": {
"MAC": 8
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"hash_function": {
"JH": {
"JH": 1
},
"SHA": {
"SHA2": {
"SHA-2": 3,
"SHA-256": 2,
"SHA-384": 2,
"SHA-512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"TRNG": {
"TRNG": 3
}
},
"side_channel_analysis": {
"FI": {
"malfunction": 3,
"physical tampering": 3
}
},
"standard_id": {
"FIPS": {
"FIPS 180-4": 1,
"FIPS 197": 1
},
"NIST": {
"NIST SP 800-38A": 1,
"NIST SP 800-38D": 1
},
"RFC": {
"RFC 2104": 1,
"RFC 3394": 1,
"RFC 4493": 1,
"RFC 5084": 1,
"RFC 5246": 1,
"RFC 5289": 1,
"RFC 5652": 1,
"RFC-2104": 2,
"RFC-3394": 2,
"RFC-4493": 3,
"RFC-5084": 2,
"RFC-5246": 3,
"RFC-5289": 3,
"RFC-5652": 3
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 16,
"AES-": 1
}
},
"constructions": {
"MAC": {
"CMAC": 1,
"HMAC": 2
}
}
},
"technical_report_id": {
"BSI": {
"BSI TR-03109-1": 2,
"BSI TR-03111": 1,
"BSI TR-03116-3": 1
}
},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256": 3,
"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": 3,
"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384": 3,
"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384": 3
}
},
"vendor": {},
"vulnerability": {}
},
"st_metadata": {
"/Author": "EFR GmbH",
"/Subject": "Common Criteria Evaluation",
"/Title": "Security Target EFR SGH-S",
"pdf_file_size_bytes": 1849024,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 94
}
},
"protection_profiles": {
"_type": "Set",
"elements": [
{
"_type": "sec_certs.sample.protection_profile.ProtectionProfile",
"pp_eal": "EAL4+",
"pp_ids": {
"_type": "Set",
"elements": [
"SMARTMETERGATEWAYPP_V1.3"
]
},
"pp_link": "https://www.commoncriteriaportal.org/files/ppfiles/pp0073b_pdf.pdf",
"pp_name": "Protection Profile for the Gateway of a Smart Metering System"
}
]
},
"report_link": "https://www.commoncriteriaportal.org/files/epfiles/1000a_pdf.pdf",
"scheme": "DE",
"security_level": {
"_type": "Set",
"elements": [
"EAL4+",
"AVA_VAN.5",
"ALC_FLR.2"
]
},
"st_link": "https://www.commoncriteriaportal.org/files/epfiles/1000b_pdf.pdf",
"state": {
"_type": "sec_certs.sample.cc.CCCertificate.InternalState",
"cert": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "0415a2a4135ec0c104c98563d2bb53128b4f325793b309521286778102fd8f1a",
"txt_hash": "6f21749fdb90fe818f593cea73c31b4b5e4ad0a855413b23edf4a65b00a347bb"
},
"report": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "57b155fe20efc25f3836337c59ac1164724520abc30588f29866132b703456c3",
"txt_hash": "a2a510aa6f2651e8e8beacd81fc6f74c7242df981100703e46b7aa7d98db895a"
},
"st": {
"_type": "sec_certs.sample.cc.CCCertificate.DocumentState",
"convert_garbage": false,
"convert_ok": true,
"download_ok": true,
"extract_ok": true,
"pdf_hash": "0a5f42e988f683a33db28884db26fbb433663de623f9554b8736c38e7c8bf9bf",
"txt_hash": "6ecf1f3fa8acc96b7591606fc90abf6f2f24928f242723d43e8172528186fd10"
}
},
"status": "active"
}