DIN Standards Committee Information Technology and IT Applications
DIN CEN/TS 419221-3
; DIN SPEC 16572-3:2016-10
Protection Profiles for TSP Cryptographic modules - Part 3: Cryptographic module for CSP key generation services; English version CEN/TS 419221-3:2016
Schutzprofile für kryptographische Module von vertrauenswürdigen Dienstanbietern - Teil 3: Kryptographisches Modul für CSP Schlüsselgenerierungsdienste; Englische Fassung CEN/TS 419221-3:2016
Procedure
VN
Overview
This Protection Profile (PP) defines the security requirements of a Cryptographic Module (CM) used by CSP as part of its trustworthy system to provide key generation services. The Cryptographic Module, which is the Target of Evaluation (TOE), is used for the creation of subscriber private keys, and loading them into secure signature creation devices (SSCD) as part of a subscriber device provision service. Such keys are referred to in this PP as subscriber signature creation data. A cryptographic module for CSP key generation services is used specifically for SSCD type 2 initialization. The TOE may implement additional functions and security requirements, for example for CSP Signing Operations. However, these additional functions and security requirements are not subject of this PP. This protection profile is an extension of the Common Criteria Part and compliant with the Common Criteria Part 3. The assurance level for this PP is EAL4, augmented with ADV IMP.2 (implementation of TSF), AVA CCA.1 (vulnerability assessment, covert channel analysis), and AVA VLA.4 (vulnerability assessment, extremely resilient). The minimum strength level for the TOE security functions is "SOF-high" (high strength of functions).
Document: references other documents
Responsible national committee
NA 043-04-17-04 UA - Exchange protocols for integrated circuit cards
Responsible european committee
CEN/TC 224/WG 17 - Protection Profiles in the context of SSCD
