Certification Report
BSI-DSZ-CC-0840-2013
Preliminary Remarks
Under the BSIG Act, the Federal Office for Information Security (BSI) is tasked with issuing certificates for information technology products. Certification is carried out at the instigation of the vendor or distributor (sponsor). The process involves a technical examination (evaluation) of the product against security criteria published by the BSI or generally recognized security criteria. The evaluation is typically conducted by an evaluation facility recognized by the BSI or by the BSI itself. This report contains the certificate (summarized assessment) and detailed Certification Results, including the technical description of security functionality, evaluation details (strengths and weaknesses), and user instructions.
A Certification
1 Specifications of the Certification Procedure
The certification procedure follows criteria outlined in:
- BSIG
- BSI Certification Ordinance
- BSI Schedule of Costs
- Special decrees from the Federal Ministry of the Interior
- DIN EN 45011 standard
- BSI certification: Procedural Description (BSI 7125)
- Common Criteria for IT Security Evaluation (CC), Version 3.1
- Common Methodology for IT Security Evaluation, Version 3.1
- BSI certification: Application Notes and Interpretation of the Scheme (AIS)
2 Recognition Agreements
To avoid multiple certifications for the same product in different countries, mutual recognition of IT security certificates based on ITSEC or CC has been agreed upon under certain conditions.
2.1 European Recognition of ITSEC/CC – Certificates (SOGIS-MRA)
The SOGIS-Mutual Recognition Agreement (SOGIS-MRA), Version 3 (effective April 2010), defines the recognition of IT-Product certificates at a basic recognition level and higher levels for specific technical domains. The basic level includes CC Evaluation Assurance Levels EAL1 to EAL4 and ITSEC E1 to E3 (basic). Higher levels cover domains like Smart card and similar Devices, including assurance levels beyond EAL4/E3 (basic), and Protection Profiles based on Common Criteria.
2.2 International Recognition of CC – Certificates (CCRA)
The Common Criteria Recognition Arrangement (CCRA), signed in May 2000, facilitates mutual recognition of certificates based on CC Evaluation Assurance Levels up to EAL 4, including Protection Profiles. As of September 2011, numerous national bodies have signed the arrangement. The CCRA logo on a certificate indicates recognition by signatory nations. Some components (ADV_FSP.5, ADV_INT.2, ADV_TDS.4, ALC_CMS.5, ALC_DVS.2, ALC_TAT.2, ASE_TSS.2, ATE_DPT.3, AVA_VAN.5) are not mutually recognized under CCRA, with EAL4 components being relevant for mutual recognition.
3 Performance of Evaluation and Certification
The certification body monitors evaluations for uniform procedure, interpretation, and ratings. The NXP Secure Smart Card Controller P60D144/080MVA including IC Dedicated Software with MIFARE Plus MF1PLUSx0 underwent certification at BSI. The evaluation was conducted by T-Systems GEI GmbH, an ITSEF recognized by BSI, and completed on March 15, 2013. NXP Semiconductors Germany GmbH is the sponsor and applicant. The product was developed by NXP Semiconductors Germany GmbH. The certification concluded with a comparability check and the production of this Certification Report by BSI.
4 Validity of the Certification Result
This Certification Report applies only to the specified product version and its configuration. The assurance package is valid only if all stipulations regarding generation, configuration, and operation are observed, and the product is operated in the specified environment and Security Target. Re-assessment may be needed as attack methods evolve. Changes to the certified version require assurance continuity (re-certification or maintenance) and may extend validity if no security deficiencies are found.
5 Publication
The product is listed in the BSI's list of certified products, accessible via https://www.bsi.bund.de. Further information is available from BSI-Infoline (+49 228 9582-111). Copies of this report can be requested from the developer, NXP Semiconductors Germany GmbH, Stresemannallee 101, 22529 Hamburg.
B Certification Results
1 Executive Summary
The Target of Evaluation (TOE) is the "NXP Secure Smart Card Controller P60D144/080MVA including Security IC Dedicated Software with MIFARE Plus MF1PLUSx0". This hardware platform with IC Dedicated Software is used in high-security applications like banking, finance, e-commerce, and government sectors. It features coprocessors for Triple-DES and AES, large integer arithmetic, cyclic redundancy check, and a True Random Number Generator. It supports ISO/IEC 7816 (contact) and ISO/IEC 14443 A (contactless) interfaces. The CPU offers multiple modes for application separation and memory management. The IC Dedicated Software supports EEPROM write operations and can call MIFARE Plus MF1PLUSx0 functionality for contactless transport applications and access management systems. The evaluation covered Security Level 0 (personalization) and Security Level 3 (MIFARE Plus), excluding Security Levels 1 and 2 (MIFARE Classic). The TOE is referenced as P60D144/080MVA with MIFARE Plus MF1Plusx0. The certification is based on the Security Target [6], which in turn is based on the certified Protection Profile Security IC Platform Protection Profile, Version 1.0, 15 June 2007, BSI-CC-PP-0035-2007 [7]. The TOE meets the assurance requirements of Evaluation Assurance Level EAL 5 augmented by ASE_TSS.2, ALC_DVS.2, and AVA_VAN.5. The TOE Security Functional Requirements (SFR) are outlined in the Security Target [6] and [8], chapter 6.1, selected from Common Criteria Part 2 and including new definitions, making the TOE CC Part 2 extended.
TOE Security Functions:
| TOE Security Functions | Addressed issue |
|---|---|
| SS.RNG | Random Number Generator |
| SS.HW_DES | Tripple-DES coprocessor |
| SS.HW AES | AES coprocessor |
| SS.CRC | Cyclic Redundancy Check |
| SS.MFP_AUTH | Authentication |
| SS.MFP_ACC_CTRL | Access Control |
| SS.MFP ENC | Encryption |
| SS.MFP_MAC | Message Authentication Code |
| SS.RECONFIG | Post Delivery Configuration |
| SF.OPC | Control of Operating Conditions |
| SF.PHY | Protection against Physical Manipulation |
| SF.LOG | Logical Protection |
| SF.COMP | Protection of Mode Control |
| SF.MEM_ACC | Memory Access Control |
| SF.SFR_ACC | Special Function Register Access Control |
| SF.FFW | Firmware Firewall |
| SF.Firmware | Firmware Support |
The assets to be protected are defined in the Security Target [6] and [8], chapter 3.1. The TOE Security Problem is defined by Assumptions, Threats, and Organizational Security Policies (OSPs) in chapters 3.2 to 3.4. The P60D144/080MVA with MIFARE Plus MF1Plusx0 can be delivered in different configurations, detailed in table 5. Vulnerability assessment results do not include ratings for cryptographic algorithms for encryption/decryption (see BSIG Section 9, Para. 4, Clause 2). Certification results apply only to the indicated product version and require adherence to all stipulations in this report. This certificate does not constitute an endorsement or warranty by the BSI or any other recognizing organization.
2 Identification of the TOE
The Target of Evaluation (TOE) is the NXP Secure Smart Card Controller P60D144/080MVA including IC Dedicated Software with MIFARE Plus MF1PLUSx0.
Deliverables of the TOE:
| No | Type | Identifier | Release | Form of Delivery |
|---|---|---|---|---|
| 1 | HW | P60D144/080MVA with MIFARE Plus MF1Plusx0 | nameplate 9050B | wafer, module, inlay or package |
| 2 | SW | Test ROM Software (IC Dedicated Test Software), Test-ROM on the chip acc. to 9050B_CL015_TESTROM_v1_btos_07v0B_fos_6v10.hex | Release 07.0B, 29 March, 2012 | stored in ROM on the chip |
| 3 | SW | Boot ROM Software (part of the IC Dedicated Support Software), Boot-ROM on the chip acc. to 9050B_CL015_TESTROM_v1_btos_07v0B_fos_6v10.hex | Release 07.0B, 29 March, 2012 | stored in ROM on the chip |
| 4 | SW | Firmware Operating System (FOS) (part of the IC Dedicated Support Software), Firmware Operating System on the chip acc. to 9050B_CL015_TESTROM_v1_btos_07v0B_fos_6v10.hex | Version 6.11, 29 March, 2012 | stored in ROM on the chip |
| 5 | DOC | Product Data Sheet, SmartMX2 family P60D080/144 and P60C080/144, Secure high-performance smart card controller, NXP Semiconductors, Business Unit Identification | Rev. 3.8, 3 August 2012 | electronic form [12] |
| 6 | DOC | MIFARE Plus, Functionality of implementation on smart card controllers, Product data sheet, NXP Semiconductors, Business Unit Identification | Rev. 3.1, 24 September 2012 | electronic form [13] |
| 7 | DOC | Product Data Sheet Addendum, SmartMX2 family Firmware Interface Specification, NXP Semiconductors | Rev. 3.3, 11 December 2012 | electronic form [14] |
| 8 | DOC | Instruction set for the SmartMX2 family, Secure smart card controller, NXP Semiconductors, Business Unit Identification | Rev. 3.1, 2 February 2012 | electronic form [15] |
| 9 | DOC | Product Data Sheet Addendum, SmartMX2 family Chip Health Mode, NXP Semiconductors | Rev. 3.0, 11 May 2012 | electronic form [16] |
| 10 | DOC | Product Data Sheet Addendum, SmartMX2 family Post Delivery Configuration, NXP Semiconductors | Rev. 3.2, 4 February 2013 | electronic form [17] |
| 11 | DOC | Guidance and Operation Manual, NXP Secure Smart Card Controller P60x080VA/P60x144VA, NXP Semiconductors | Rev. 1.9, 7 September 2012 | electronic form [18] |
| 12 | DOC | NXP Secure Smart Card Controller P60xeeey with MF1PLUSx0, MIFARE Plus MF1PLUSx0, Guidance, Delivery and Operation Manual, NXP Semiconductors, Business Unit Identification | Rev. 1.3, 20 February 2013 | electronic form [19] |
| 13 | DOC | Wafer and delivery specification, SmartMX2 family P60D080/144 VA and P60C080/144 VA, NXP Semiconductors | Rev. 3.3, 19 July 2012 | electronic form [20] |
Note: The ROM mask is released according to version 6.10, but the evaluated version includes a Firmware patch to version 6.11.
3 Security Policy
The Security Policy is defined by the Security Functional Requirements (SFRs) implemented by the TOE. As a hardware platform, the TOE's security policy includes countermeasures against information leakage, physical probing, malfunctions, physical manipulations, and unauthorized access to code and data memory. The TOE aims to maintain the integrity and confidentiality of stored data and the integrity, correct operation, and confidentiality of its security functions.
4 Assumptions and Clarification of Scope
Assumptions defined in the Security Target and certain aspects of Threats and Organizational Security Policies are not covered by the TOE itself. These require specific security objectives for the TOE-Environment, including:
- Usage of Hardware Platform (OE.Plat-Appl)
- Treatment of User Data (OE.Resp-Appl)
- Protection during composite product manufacturing (OE.Process-Sec-IC)
- Check of initialisation data by the Security IC Embedded Software (OE.Check-Init)
- Check of the Originality Key of the MIFARE Plus MF1PLUSx0 (OE.Check-OriginalityKey)
- OE.Secure-Values (Generation of secure values)
- Terminal support for integrity, confidentiality, and use of random numbers (OE.Terminal-Support)
Details are available in the Security Target [6] and [8], chapters 4.2 and 4.3.
5 Architectural Information
The P60D144/080MVA with MIFARE Plus MF1Plusx0 is an integrated circuit (IC) with a hardware platform and IC Dedicated Support Software. A top-level block diagram and subsystem list are in the Security Target ([6] and [8]). Detailed descriptions of the hardware platform, IC Dedicated Support Software, and instruction set are in the "Product Data Sheet, SmartMX2 family P60D080/144 and P60C080/144" [12] and its addenda [16], [17]. The "Firmware Interface Specification" [14] relates to version 6.11 of the Firmware Operating System, and "MIFARE Plus, Functionality of implementation on smart card controllers" [13] is the datasheet for the MIFARE PLUS MF1Plusx0 software.
The hardware platform includes a SMX2 CPU, Special Function Registers, Triple-DES Co-Processor, AES Co-processor, CRC Coprocessor, Fame2 Co- Processor, Memory Management Unit, Copy Machines, Random Number Generator (RNG), Power Module, and Security Sensors and Filters. It has both contact and contactless interfaces. The CPU has three modes for application separation, with one mode reserved for the Firmware Operating System. Security measures for physical protection are integrated into the circuitry layout.
Special Function Registers, controlled by the Security IC Embedded Software, provide an interface to the TOE's security functionality. The P60D144/080MVA with MIFARE Plus MF1Plusx0 offers different access control levels to SFRs via CPU Modes, and configurable access control for Special Function Registers in User Mode and Firmware Mode. The Fame2 provides modular arithmetic functions suitable for asymmetric cryptography and implements security features against fault and timing attacks [6], [8].
The TOE executes the IC Dedicated Support Software (Boot ROM Software) during startup for configuration and initialization. This software runs in Boot Mode. After startup, the CPU mode changes to System Mode, and re-entry to Boot Mode requires a reset. The Firmware Operating System provides functions for the IC Embedded Software, including EEPROM write support (with re-trimming for endurance), activation and maintenance of the ISO 14443 contactless protocol, and MIFARE PLUS MF1Plusx0 software. MIFARE Plus MF1PLUSx0 commands can be exchanged via the contactless or remote interface (requiring shared RAM). Strict memory partitioning ensures separation between IC Dedicated Support Software and Security IC Embedded Software. The Firmware operates in Firmware Mode with access only to Firmware partitions. System Mode and User Modes access the Security IC Embedded Software partition. System Mode can configure shared RAM for data exchange with Firmware Mode. Firmware can access code and data in the Security IC Embedded Software's EEPROM partition for EEPROM write operations. Firmware Operating System code and data are not accessible by Security IC Embedded Software in System or User Mode.
The hardware platform has both contact and contactless interfaces, usable independently or simultaneously based on configuration and clock settings.
6 Documentation
The evaluated documentation, as outlined in table 2, is provided with the product to the customer, containing information for secure usage of the TOE according to the Security Target. Additional obligations and notes for secure usage are in chapter 10.
7 IT Product Testing
The TOE, a hardware platform with IC Dedicated Software, is uniquely defined by the name P60D144MVA and P60D080MVA for major configurations. Its implementation and configurations are specified by Configuration Lists [25] for the hardware platform and [11] for the IC Dedicated Support Software. Developer tests include simulation environment tests, functional tests with special software for TSFIs (including MIFARE Plus MF1PLUSx0), characterization and verification tests for production release (including operating conditions and security features), and end-of-production functional tests using IC Dedicated Test Software. Evaluator tests repeat developer tests, supplemented by independent tests, special tests, and examination of hardware and firmware using open samples and different configurations. Penetration testing considered all TOE Security Functionality, including physical tampering, reverse engineering, side-channel analysis (AES, Triple-DES), and perturbation attacks. Attacks addressed include those averted by hardware/software combinations and those against hardware and firmware directly. IC Dedicated Software penetration tests also include logical attacks.
8 Evaluated Configuration
The P60D144/080MVA with MIFARE Plus MF1Plusx0 hardware platform was tested in various major and minor configurations. Table 5 provides an overview of major configurations, showing available EEPROM for Security IC Embedded Software and Copy Machines.
| P60D144MVA | P60D080MVA | |
|---|---|---|
| Contact-less interface | available | available |
| Accessible EEPROM for the Security IC Embedded Software for Mifare Plus 2kByte configuration | 142592 Byte | 77056 Byte |
| accessible EEPROM for the Security IC Embedded Software for Mifare Plus 4kByte configuration | 139776 Byte | 74240 Byte |
| Copy Machines | 2 | 1 |
The tested configurations include all major and minor options specified in table 4 of section 1.4.2.2 of [6] and [8]. Differences are listed in table 5. Major configurations do not affect security features. Minor configuration options were tested as specified and described in [12], [13], and [18]. The results apply to P60D144MVA and P60D080MVA major configurations and all minor configurations described in [6] and [8].
Customer influence on major and minor configurations is not possible. Configuration is set using mask-coded bits and switches based on the ROM code mask and EEPROM-fuses set during wafer test. These settings are fixed after delivery. Post-delivery configuration, as described in [12], can disable the AES coprocessor, the Fame2 coprocessor, and adjust accessible EEPROM and CXRAM size. Disabling a component can lead to exceptions when accessing its SFRs. The FVEC0.15 allows reconfiguration of MIFARE Plus MF1PLUSx0, including its availability and accessible memory space, and can disable security services.
The MIFARE Plus MF1PLUSx0 software supports different configurations. The evaluation covered Security Level 0 (personalization) and Security Level 3 (MIFARE Plus), excluding MIFARE Classic (Security Levels 1 and 2). Transition from Security Level 1 or 2 to Security Level 3 is possible in the field (phase 7), following guidance in manual [19], section 3.1.
9 Results of the Evaluation
9.1 CC specific results
The Evaluation Technical Report (ETR) [9], provided by the ITSEF, adheres to Common Criteria [1], Methodology [2], Scheme requirements [3], and Scheme guidelines (AIS) [4]. The Evaluation Methodology CEM [2] was used for components up to EAL5, extended by Certification Body advice for components beyond EAL5 and technology-specific guidance [4] (AIS 34). Specific guidance for integrated circuits, smartcards, and evaluation was used ([4], AIS 25, AIS 26, AIS 37). AIS 31 was used for RNG assessment. ETR for composite evaluation [10] supports composite evaluations per AIS 36. Assurance refinements in the Security Target were followed. The evaluation verdict is PASS for assurance components including the EAL 5 package (ASE class) and augmented components ASE_TSS.2, ALC_DVS.2, and AVA_VAN.5.
The evaluation confirmed:
- PP Conformance: Security IC Platform Protection Profile, Version 1.0, 15 June 2007, BSI-CC-PP-0035-2007 [7]
- Functionality: PP conformant plus product specific extensions (Common Criteria Part 2 extended)
- Assurance: Common Criteria Part 3 conformant, EAL 5 augmented by ASE_TSS.2, ALC_DVS.2, and AVA_VAN.5
Specific evaluation results for the development and production environment are in annex B (part D). Evaluation results are applicable to the TOE as defined in chapter 2 and configuration in chapter 8.
9.2 Results of cryptographic assessment
Cryptographic algorithm strength was not rated in this certification (BSIG Section 9, Para. 4, Clause 2). Cryptographic Functionalities marked 'no' in 'Security Level above 100 Bits' have a security level below 100 bits. Application context must be considered for these functionalities. Further hints are in 'Technische Richtlinie BSI TR-02102' (https://www.bsi.bund.de).
| Purpose | Mechanism | Standard of Implementation | Key Size in Bits | Security Level above 100 Bits |
|---|---|---|---|---|
| Authentication (MFP) | AES in CBC mode | [FIPS-197] (AES), [SP 800-38A] (CBC) | |K| = 128 | yes |
| Encryption and Decryption | Two-key TDES | [FIPS-46-3] (DES) | |K| = 112 | no |
| Three-key TDES | [FIPS-46-3] (DES) | |K| = 168 | yes | |
| AES | [FIPS-197] (AES) | |K| = 128, 192, 256 | yes | |
| Message authentication code generation and verification | AES in CBC mode | [FIPS-197] (AES), [SP 800-38A] (CBC) | |K| = 128 | yes |
| AES in CMAC mode | [FIPS-197] (AES), [SP800-38B] (CMAC) | |K| = 128 | yes | |
| Key Agreement (MFP) | FTP_TRP.1[MFP] | -- | -- | no |
10 Obligations and Notes for the Usage of the TOE
The documentation in table 2 contains essential information for TOE usage, and all security hints must be considered. Assumptions, Threats, and OSPs not covered by the TOE must be fulfilled by the operational environment. Customers should consider certification results in their system risk management process and define periods for re-assessment. Some security measures require implementation in hardware and additional configuration or controls via the IC Dedicated Support Software or Embedded Software. Guidance documentation for developers of Security IC Embedded Software and remote stations (terminals) is provided.
Guidance documents help implement measures required by the Security Target for the MIFARE Plus MF1PLUSx0 application. The evaluation of the composite product/system must verify correct and effective implementation of these measures. Evaluation results from ETR for composite evaluation [10] should also be considered. The term "DFA" in REQ.53 of [18] should be read as "Fault Injection". The encryption/decryption operation of MIFARE Plus MF1PLUSx0 may expose XOR differences between plaintext pairs, addressed in [19] (REC.12).
11 Security Target
The Security Target [8] for the Target of Evaluation (TOE) is provided as a separate document (Annex A), which is a sanitized version of the complete Security Target [6]. Sanitization followed CCRA policy (AIS 35 [4]).
12 Definitions
12.1 Acronyms
| Acronym | Definition |
|---|---|
| AES | Advanced Encryption Standard |
| AIS | Application Notes and Interpretations of the Scheme |
| BSI | Bundesamt für Sicherheit in der Informationstechnik / Federal Office for Information Security, Bonn, Germany |
| BSIG | BSI-Gesetz / Act on the Federal Office for Information Security |
| CCRA | Common Criteria Recognition Arrangement |
| CC | Common Criteria for IT Security Evaluation |
| CEM | Common Methodology for Information Technology Security Evaluation |
| CRC | Cyclic Redundancy Check |
| DES | Data Encryption Standard |
| EAL | Evaluation Assurance Level |
| EEPROM | Electrically Erasable Programmable Read Only Memory |
| ETR | Evaluation Technical Report |
| IEC | International Electrotechnical Commission |
| ISO | International Organization for Standardization |
| IT | Information Technology |
| ITSEF | Information Technology Security Evaluation Facility |
| OS | Operating System |
| PP | Protection Profile |
| ROM | Read Only Memory |
| SAR | Security Assurance Requirement |
| SFP | Security Function Policy |
| SFR | Security Functional Requirement |
| ST | Security Target |
| TOE | Target of Evaluation |
| TSF | TOE Security Functionality |
12.2 Glossary
- Augmentation: The addition of one or more requirement(s) to a package.
- Die: The separate, isolated chip.
- Extension: The addition to an ST or PP of functional requirements not contained in part 2 and/or assurance requirements not contained in part 3 of the CC.
- Fab: Short name used for the factory producing wafers.
- FabKey: Key to protect the chips during delivery (wafers or dies).
- Formal: Expressed in a restricted syntax language with defined semantics based on well-established mathematical concepts.
- Informal: Expressed in natural language.
- Object: An passive entity in the TOE, that contains or receives information, and upon which subjects perform operations.
- Protection Profile: An implementation-independent statement of security needs for a TOE type.
- Security Target: An implementation-dependent statement of security needs for a specific identified TOE.
- Semiformal: Expressed in a restricted syntax language with defined semantics.
- Subject: An active entity in the TOE that performs operations on objects.
- Target of Evaluation: A set of software, firmware and/or hardware possibly accompanied by guidance.
- TOE Security Functionality: Combined functionality of all hardware, software, and firmware of a TOE that must be relied upon for the correct enforcement of the SFRs.
C Excerpts from the Criteria
CC Part 1:
Conformance Claim (chapter 10.4)
The conformance claim indicates the source of requirements met by a PP or ST during evaluation. It includes a CC conformance claim detailing:
- The CC version to which the PP or ST claims conformance.
- Conformance to CC Part 2 (security functional requirements):
- CC Part 2 conformant: All SFRs based only on functional components in CC Part 2.
- CC Part 2 extended: At least one SFR not based on functional components in CC Part 2.
- Conformance to CC Part 3 (security assurance requirements):
- CC Part 3 conformant: All SARs based only on assurance components in CC Part 3.
- CC Part 3 extended: At least one SAR not based on assurance components in CC Part 3.
The conformance claim may also include statements regarding packages:
- Package name Conformant: PP or ST is conformant to a pre-defined package (e.g., EAL) if its SFRs/SARs are identical to those in the package.
- Package name Augmented: PP or ST augments a predefined package if its SFRs/SARs contain all package components, plus additional or hierarchically higher SFRs/SARs.
When a TOE is evaluated to an ST, the ST's conformance claims also apply to the TOE. Conformance claims can also include statements about Protection Profiles:
- PP Conformant: TOE meets specific PP(s) listed in the conformance result.
- Conformance Statement (for PPs): Describes the manner (strict or demonstrable) in which PPs or STs must conform to this PP.
CC Part 3:
Class APE: Protection Profile evaluation (chapter 10)
Evaluating a PP requires demonstrating its soundness, internal consistency, and correct instantiation of other PPs or packages. These properties ensure suitability as a basis for writing an ST or another PP.
| Assurance Class | Assurance Components |
|---|---|
| Class APE: Protection Profile evaluation | APE_INT.1 PP introduction |
| APE_CCL.1 Conformance claims | |
| APE_SPD.1 Security problem definition | |
| APE_OBJ.1 Security objectives for the operational environment | |
| APE_OBJ.2 Security objectives | |
| APE_ECD.1 Extended components definition | |
| APE_REQ.1 Stated security requirements | |
| APE_REQ.2 Derived security requirements | |
| APE: Protection Profile evaluation class decomposition |
Class ASE: Security Target evaluation (chapter 11)
Evaluating an ST requires demonstrating its soundness, internal consistency, and correct instantiation of PPs or packages. These properties ensure suitability for a TOE evaluation.
| Assurance Class | Assurance Components |
|---|---|
| Class ASE: Security Target evaluation | ASE_INT.1 ST introduction |
| ASE_CCL.1 Conformance claims | |
| ASE_SPD.1 Security problem definition | |
| ASE_OBJ.1 Security objectives for the operational environment | |
| ASE_OBJ.2 Security objectives | |
| ASE_ECD.1 Extended components definition | |
| ASE_REQ.1 Stated security requirements | |
| ASE_REQ.2 Derived security requirements | |
| ASE_TSS.1 TOE summary specification | |
| ASE_TSS.2 TOE summary specification with architectural design summary | |
| ASE: Security Target evaluation class decomposition |
Security assurance components (chapter 7)
Assurance classes, families, and components are described below. Each assurance class contains at least one assurance family, and each assurance family contains one or more assurance components.
| Assurance Class | Assurance Components |
|---|---|
| ADV: Development | ADV_ARC.1 Security architecture description |
| ADV_FSP.1 Basic functional specification | |
| ADV_FSP.2 Security-enforcing functional specification | |
| ADV_FSP.3 Functional specification with complete summary | |
| ADV_FSP.4 Complete functional specification | |
| ADV_FSP.5 Complete semi-formal functional specification with additional error information | |
| ADV_FSP.6 Complete semi-formal functional specification with additional formal specification | |
| ADV_IMP.1 Implementation representation of the TSF | |
| ADV_IMP.2 Implementation of the TSF | |
| ADV_INT.1 Well-structured subset of TSF internals | |
| ADV_INT.2 Well-structured internals | |
| ADV_INT.3 Minimally complex internals | |
| ADV_SPM.1 Formal TOE security policy model | |
| ADV_TDS.1 Basic design | |
| ADV_TDS.2 Architectural design | |
| ADV_TDS.3 Basic modular design | |
| ADV_TDS.4 Semiformal modular design | |
| ADV_TDS.5 Complete semiformal modular design | |
| ADV_TDS.6 Complete semiformal modular design with formal high-level design presentation | |
| AGD: Guidance documents | AGD_OPE.1 Operational user guidance |
| AGD_PRE.1 Preparative procedures | |
| ALC: Life cycle support | ALC_CMC.1 Labelling of the TOE |
| ALC_CMC.2 Use of a CM system | |
| ALC_CMC.3 Authorisation controls | |
| ALC_CMC.4 Production support, acceptance procedures and automation | |
| ALC_CMC.5 Advanced support | |
| ALC_CMS.1 TOE CM coverage | |
| ALC_CMS.2 Parts of the TOE CM coverage | |
| ALC_CMS.3 Implementation representation CM coverage | |
| ALC_CMS.4 Problem tracking CM coverage | |
| ALC_CMS.5 Development tools CM coverage | |
| ALC_DEL.1 Delivery procedures | |
| ALC_DVS.1 Identification of security measures | |
| ALC_DVS.2 Sufficiency of security measures | |
| ALC_FLR.1 Basic flaw remediation | |
| ALC_FLR.2 Flaw reporting procedures | |
| ALC_FLR.3 Systematic flaw remediation | |
| ALC_LCD.1 Developer defined life-cycle model | |
| ALC_LCD.2 Measurable life-cycle model | |
| ALC_TAT.1 Well-defined development tools | |
| ALC_TAT.2 Compliance with implementation standards | |
| ALC_TAT.3 Compliance with implementation standards - all parts | |
| ATE: Tests | ATE_COV.1 Evidence of coverage |
| ATE_COV.2 Analysis of coverage | |
| ATE_COV.3 Rigorous analysis of coverage | |
| ATE_DPT.1 Testing: basic design | |
| ATE_DPT.2 Testing: security enforcing modules | |
| ATE_DPT.3 Testing: modular design | |
| ATE_DPT.4 Testing: implementation representation | |
| ATE_FUN.1 Functional testing | |
| ATE_FUN.2 Ordered functional testing | |
| ATE_IND.1 Independent testing – conformance | |
| ATE_IND.2 Independent testing – sample | |
| ATE_IND.3 Independent testing – complete | |
| AVA: Vulnerability assessment | AVA_VAN.1 Vulnerability survey |
| AVA_VAN.2 Vulnerability analysis | |
| AVA_VAN.3 Focused vulnerability analysis | |
| AVA_VAN.4 Methodical vulnerability analysis | |
| AVA_VAN.5 Advanced methodical vulnerability analysis |
Evaluation assurance levels (chapter 8)
Evaluation Assurance Levels (EALs) provide a scale balancing assurance level with cost and feasibility. CC identifies separate assurance concepts for a TOE during evaluation and operational use. Not all families/components from CC Part 3 are included in EALs, but they may be considered for augmentation in PPs and STs where useful. EALs represent increasing assurance, achieved by substituting higher assurance components and adding components from other families.
Evaluation assurance level (EAL) overview (chapter 8.1)
Table 1 summarizes EALs, showing hierarchically ordered assurance families and components. EALs are hierarchically ordered, with each EAL providing more assurance than lower EALs. Augmentation allows adding assurance components not in the base EAL or substituting with higher assurance components within the same family. Augmentation requires justification of utility and added value.
| Assurance Class | Assurance Family | Assurance Components by Evaluation Assurance Level | ||||||
|---|---|---|---|---|---|---|---|---|
| EAL1 | EAL2 | EAL3 | EAL4 | EAL5 | EAL6 | EAL7 | ||
| Development | ADV_ARC | 1 | 1 | 1 | 1 | 1 | 1 | 1 |
| ADV_FSP | 1 | 2 | 3 | 4 | 5 | 5 | 6 | |
| ADV_IMP | 1 | 1 | 2 | 2 | 2 | 2 | 2 | |
| ADV_INT | 1 | 2 | 3 | 3 | 3 | 3 | 3 | |
| ADV_SPM | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| ADV_TDS | 1 | 2 | 3 | 4 | 5 | 6 | 6 | |
| Guidance Documents | AGD_OPE | 1 | 1 | 1 | 1 | 1 | 1 | 1 |
| AGD_PRE | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| Life cycle Support | ALC_CMC | 1 | 2 | 3 | 4 | 4 | 5 | 5 |
| ALC_CMS | 1 | 2 | 3 | 4 | 5 | 5 | 5 | |
| ALC_DEL | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| ALC_DVS | 1 | 1 | 1 | 2 | 2 | 2 | 2 | |
| ALC_FLR | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| ALC_LCD | 1 | 1 | 1 | 1 | 2 | 2 | 2 | |
| ALC_TAT | 1 | 2 | 3 | 3 | 3 | 3 | 3 | |
| Security Target Evaluation | ASE_CCL | 1 | 1 | 1 | 1 | 1 | 1 | 1 |
| ASE_ECD | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| ASE_INT | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| ASE_OBJ | 1 | 2 | 2 | 2 | 2 | 2 | 2 | |
| ASR_REQ | 1 | 2 | 2 | 2 | 2 | 2 | 2 | |
| ASE_SPD | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| ASE_TSS | 1 | 1 | 1 | 1 | 1 | 1 | 1 | |
| Tests | ATE_COV | 1 | 2 | 2 | 2 | 3 | 3 | 3 |
| ATE_DPT | 1 | 1 | 3 | 3 | 4 | 4 | 4 | |
| ATE_FUN | 1 | 1 | 1 | 1 | 2 | 2 | 2 | |
| ATE_IND | 1 | 2 | 2 | 2 | 2 | 2 | 3 | |
| Vulnerability assessment | AVA_VAN | 1 | 2 | 2 | 3 | 4 | 5 | 5 |
Evaluation assurance level 1 (EAL1) - functionally tested (chapter 8.3)
EAL1 is suitable when confidence in correct operation is needed, but threats are not serious. It's valuable for independent assurance regarding due care for personal information. EAL1 requires a limited security target and focuses on stating SFRs rather than deriving them from threats, OSPs, and assumptions. It includes evaluation of the TOE as provided to the customer, independent testing, and examination of guidance documentation. An EAL1 evaluation should demonstrate that the TOE functions consistently with its documentation.
Evaluation assurance level 2 (EAL2) - structurally tested (chapter 8.4)
EAL2 requires developer cooperation in delivering design information and test results, consistent with good commercial practice. It's applicable when a low to moderate level of independently assured security is needed, especially when development records are not fully available, such as in securing legacy systems or with limited developer access.
Evaluation assurance level 3 (EAL3) - methodically tested and checked (chapter 8.5)
EAL3 allows a conscientious developer to achieve maximum assurance through positive security engineering at the design stage without significant alteration of development practices. It's applicable when a moderate level of independently assured security is required, along with thorough investigation of the TOE and its development without substantial re-engineering.
Evaluation assurance level 4 (EAL4) - methodically designed, tested, and reviewed (chapter 8.6)
EAL4 permits maximum assurance from positive security engineering based on rigorous commercial development practices, without requiring substantial specialist knowledge. It's the highest level economically feasible for retrofitting to existing product lines. EAL4 is suitable for moderate to high levels of independently assured security in conventional commodity TOEs, with additional security-specific engineering costs.
Evaluation assurance level 5 (EAL5) - semiformally designed and tested (chapter 8.7)
EAL5 allows maximum assurance from security engineering based on rigorous commercial practices with moderate specialist security engineering techniques. TOEs designed for EAL5 may incur moderate additional costs for achieving this assurance. EAL5 is applicable when a high level of independently assured security is required in planned development, with a rigorous approach without unreasonable specialist costs.
Evaluation assurance level 6 (EAL6) - semiformally verified design and tested (chapter 8.8)
EAL6 enables high assurance from security engineering techniques in a rigorous development environment for premium TOEs protecting high-value assets against significant risks. EAL6 is applicable to security TOEs in high-risk situations where asset value justifies the costs.
Evaluation assurance level 7 (EAL7) - formally verified design and tested (chapter 8.9)
EAL7 is applicable to security TOEs in extremely high-risk situations or where high asset value justifies higher costs. Practical application is limited to TOEs with tightly focused security functionality amenable to extensive formal analysis.
Class AVA: Vulnerability assessment (chapter 16)
The AVA: Vulnerability assessment class addresses the possibility of exploitable vulnerabilities in the TOE's development or operation.
Vulnerability analysis (AVA_VAN) (chapter 16.1)
Vulnerability analysis assesses potential vulnerabilities identified during TOE development and operation, or through other methods (e.g., flaw hypotheses, statistical analysis), that could allow attackers to violate SFRs. It identifies flaws enabling unauthorized access to data/functionality, interference with or alteration of the TSF, or interference with authorized user capabilities.
D Annexes
List of annexes of this certification report
- Annex A: Security Target provided within a separate document.
- Annex B: Evaluation results regarding development and production environment.
Annex B of Certification Report BSI-DSZ-CC-0840-2013
Evaluation results regarding development and production environment
The IT product NXP Secure Smart Card Controller P60D144/080MVA including IC Dedicated Software with MIFARE Plus MF1PLUSx0 (TOE) was evaluated at an approved facility using CEM, Version 3.1, extended by Certification Body advice and technology-specific guidance for CC, Version 3.1 conformance. The certification, dated April 19, 2013, confirms that Common Criteria assurance requirements ALC (ALC_CMC.4, ALC_CMS.5, ALC_DEL.1, ALC_DVS.2, ALC_LCD.1, ALC_TAT.2) are fulfilled for the listed development and production sites.
| Development site | Task within the evaluation |
|---|---|
| NXP Semiconductors Hamburg, Business Unit Identification (BU ID), Stresemannallee 101, 2569 Hamburg, Germany | Development, Delivery and customer support |
| NXP Semiconductors, Interleuvenlaan 80, B-3001 Leuven, Belgium | Development support |
| TSMC, Fab 2 and 5, No. 121 Park Ave. III, Hsinchu Science Park, Hsinchu, Taiwan 300, R.O.C. | Mask data preparation |
| TSMC, Fab 7, No. 6, Creation Rd. II, Hsinchu Science Park, Hsinchu, Taiwan 300, R.O.C. | Mask data preparation |
| TSMC, Fab 6 and Fab 14, No. 1, Nan-Ke North Rd., Tainan Science Park, Tainan, Taiwan 741, R.O.C. | Mask and wafer production |
| Chipbond Technology Corporation, No. 3, Li-Hsin Rd. V | Bumping |
| Science Based Industrial Park, Hsin-Chu City, Taiwan, R.O.C. | Test Center and configuration of the Fabkey |
| NXP Semiconductors GmbH Hamburg, Test Center Europe - Hamburg (TCE-H), Stresemannallee 101, 22569 Hamburg, Germany | Test Center, Delivery and Module assembly |
| Assembly Plant Bangkok, 303 Moo 3 Chaengwattana Rd., Laksi, Bangkok 10210, Thailand | Test Center, Delivery and Module assembly |
| Assembly Plant Kaohsiung, NXP Semiconductors Taiwan Ltd, #10, Jing 5th Road, N.E.P.Z, Kaohsiung 81170, Taiwan, R.O.C | Test Center and Module assembly |
| SMARTRAC Technology Ltd. Bangkok, Street: 142 Moo, Hi-Tech Industrial Estate, Tambon Ban Laean, Amphor Bang-Pa-In, 13160 Ayutthaya, Thailand | Inlay assembly |
| SMARTRAC TECHNOLOGY GERMANY GmbH, Gewerbeparkstr. 10, 51580 Reichshof-Wehnrath, Germany | Inlay assembly |
| HID Global Teoranta, Paic Tionscail na Tulaigh, Balle na hAbhann, Co. Galway, Ireland | Inlay assembly |
| NXP Semiconductors Austria GmbH Styria Business Unit Identification (BU ID), Mikron-Weg 1, 8108 Gratkorn, Austria | Document control |
| NedCard B.V., Bijsterhuizen 25-29, 6604 LM Wijchen, The Netherlands | Module assembly |
The evaluators verified that the threats, security objectives, and requirements for the TOE life cycle phases up to delivery, as stated in the Security Target [6] and [8], are fulfilled by the procedures at these sites.
