1、PD CEN/TS 419221-2:2016 Protection Profiles for TSP cryptographic modules Part 2: Cryptographic module for CSP signing operations with backup BSI Standards Publication WB11885_BSI_StandardCovs_2013_AW.indd 1 15/05/2013 15:06PD CEN/TS 419221-2:2016 PUBLISHED DOCUMENT National foreword This Published
2、Document is the UK implementation of CEN/TS 419221-2:2016. The UK participation in its preparation was entrusted to Technical Committee IST/17, Cards and personal identification. A list of organizations represented on this committee can be obtained on request to its secretary. This publication does
3、not purport to include all the necessary provisions of a contract. Users are responsible for its correct application. The British Standards Institution 2016. Published by BSI Standards Limited 2016 ISBN 978 0 580 92180 3 ICS 35.040; 35.240.30 Compliance with a British Standard cannot confer immunity
4、 from legal obligations. This Published Document was published under the authority of the Standards Policy and Strategy Committee on 31 July 2016. Amendments issued since publication Date Text affectedPD CEN/TS 419221-2:2016TECHNICAL SPECIFICATION SPCIFICATION TECHNIQUE TECHNISCHE SPEZIFIKATION CEN/
5、TS 419221-2 July 2016 ICS 35.240.30; 35.040 Supersedes CWA 14167-2:2004 English Version Protection Profiles for TSP cryptographic modules - Part 2: Cryptographic module for CSP signing operations with backup Profils de protection pour modules cryptographiques utiliss par les prestataires de services
6、 de confiance - Partie 2 : Module cryptographique utilis par le prestataire de services de certification pour les oprations de signature avec sauvegarde Schutzprofile fr kryptographische Module von vertrauenswrdigen Dienstanbietern - Teil 2: Schutzprofil fr CSP Signieroperationen mit Sicherung This
7、Technical Specification (CEN/TS) was approved by CEN on 8 May 2016 for provisional application. The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their comments, particularly on the question whether the CEN/TS ca
8、n be converted into a European Standard. CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel t
9、o the CEN/TS) until the final decision about the possible conversion of the CEN/TS into an EN is reached. CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, G
10、reece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United Kingdom. EUROPEAN COMMITTEE FOR STANDARDIZATION COMIT EUROPEN DE NORMALISATION EUROPISCHES KOMITEE FR NORMU
11、NG CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels 2016 CEN All rights of exploitation in any form and by any means reserved worldwide for CEN national Members. Ref. No. CEN/TS 419221-2:2016 EPD CEN/TS 419221-2:2016 CEN/TS 419221-2:2016 (E) 2 Contents Page European foreword . 4 Intr
12、oduction 5 1 Scope 6 2 Normative references 6 3 Terms and definitions . 6 4 PP Introduction 6 4.1 General 6 4.2 PP Reference . 6 4.3 Protection Profile Overview 7 4.4 TOE Overview . 8 4.4.1 TOE type . 8 4.4.2 TOE Roles . 9 4.4.3 Usage and major security features of the TOE 9 4.4.4 Available non-TOE
13、hardware/software/firmware 11 5 Conformance Claim . 11 5.1 CC Conformance Claim . 11 5.2 PP Claim . 11 5.3 Conformance Rationale 11 5.4 Conformance Statement 12 6 Security Problem Definition . 12 6.1 Assets 12 6.1.1 General . 12 6.1.2 TOE services . 12 6.1.3 TOE Data 12 6.2 Threats . 14 6.2.1 Genera
14、l . 14 6.2.2 Threat agents . 14 6.2.3 Threats description . 15 6.2.4 Threats vs Threat agents . 17 6.3 Organizational Security Policies . 18 6.4 Assumptions . 18 7 Security Objectives 19 7.1 General . 19 7.2 Security Objectives for the TOE . 19 7.3 Security Objectives for the Operational Environment
15、 . 21 8 Extended Components Definitions 22 8.1 Extended Component Definitions 22 8.1.1 Family FCS_RND 22 8.1.2 Family FDP_BKP 23 9 Security Requirements . 25 9.1 General . 25 9.2 Subjects, objects, security attributes and operations . 25 9.2.1 General . 25 PD CEN/TS 419221-2:2016 CEN/TS 419221-2:201
16、6 (E) 3 9.2.2 Subjects 25 9.2.3 TOE Objects and security attributes 25 9.2.4 TOE Operations . 26 9.3 Security Functional Requirements . 27 9.3.1 General . 27 9.3.2 Security audit (FAU) 27 9.3.3 Cryptographic support (FCS) 29 9.3.4 User data protection (FDP) . 31 9.3.5 Identification and authenticati
17、on (FIA) . 35 9.3.6 Security management (FMT) 36 9.3.7 Privacy (FPR) 37 9.3.8 Protection of the TOE Security Functions (FPT) 39 9.3.9 Trusted path (FTP) Trusted path (FTP_TRP.1) 42 9.4 Security Assurance Requirements . 42 9.5 Security Requirements Rationale . 43 9.5.1 Security Problem Definition cov
18、erage by Security Objectives . 43 9.5.2 Security Objectives coverage by SFRs . 49 9.5.3 SFR Dependencies 54 9.5.4 Rationale for SARs 54 9.5.5 AVA_VAN.5 Advanced methodical vulnerability analysis 54 Bibliography . 55 PD CEN/TS 419221-2:2016 CEN/TS 419221-2:2016 (E) 4 European foreword This document (
19、CEN/TS 419221-2:2016) has been prepared by Technical Committee CEN/TC 224 “Personal identification and related personal devices with secure element, systems, operations and privacy in a multi sectorial environment”, the secretariat of which is held by AFNOR. This document supersedes CWA 14167-2:2004
20、. This document has been prepared under a mandate given to CEN by the European Commission and the European Free Trade Association. CEN/TS 419221, Protection Profiles for TSP cryptographic modules, is currently composed with the following parts: Part 1: Overview; Part 2: Cryptographic module for CSP
21、signing operations with backup; Part 3: Cryptographic module for CSP key generation services; Part 4: Cryptographic module for CSP signing operations without backup. According to the CEN/CENELEC Internal Regulations, the national standards organisations of the following countries are bound to announ
22、ce this Technical Specification: Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Roma
23、nia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom. PD CEN/TS 419221-2:2016 CEN/TS 419221-2:2016 (E) 5 Introduction This Cryptographic Module for CSP Signing Operations with Backup - Protection Profile (CMCSOB-PP) is issued by the European Committee for Standardizatio
24、n. The document is for use by the European Commission in accordance with the procedure laid down in Article 9 of the Directive 1999/93/EC of the European Parliament and of the Council of 13 December 1999 on a Community framework for electronic signatures 1 as generally recognized standard for electr
25、onic-signature products in the Official Journal of the European Communities. The document has been prepared as a Protection Profile (PP) following the rules and formats of the Common Criteria version 3.1r3 CC1 CC2 CC3. The set of algorithms for secure signature-creation devices and parameters for al
26、gorithms for secure signature-creation devices is given in a separate document, ETSI/TS 102 176. This document has been originally prepared as a single Protection Profile and approved as CWA 14167- 2:2002. Afterwards, while reviewing this Protection Profile for the evaluation, in order to make it co
27、nformant to the Common Criteria 2.1, two Protection Profiles have been created for the same TOE, one including the mandatory function of key backup and the other excluding this function: Cryptographic Module for CSP Signing Operations with Backup - Protection Profile (CMCSOB-PP), version 0.28; CWA 1
28、4167-2:2004; Cryptographic Module for CSP Signing Operations - Protection Profile (CMCSO-PP), version 0.28; CWA 14167-4:2004. Correspondence and comments to this Cryptographic Module for CSP Signing Operations - Protection Profile with Backup (CMCSOB-PP) should be referred to: Editor: Rmy DAUDIGNY E
29、mail: PD CEN/TS 419221-2:2016 CEN/TS 419221-2:2016 (E) 6 1 Scope This Technical Specification specifies a protection profile for cryptographic modules used by certification service providers (as specified in Directive 1999/93) for signing operations, with key backup. Target applications include roo
30、t certification authorities (certification authorities who issue certificates to other CAs and who are at the top of a CA hierarchy) and other certification service providers where there is a high risk of direct physical attacks against the module. 2 Normative references The following documents, in
31、whole or in part, are normatively referenced in this document and are indispensable for its application. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. CEN/TS 419221-1:2016, Protection Pr
32、ofiles for TSP cryptographic modules Part 1: Overview ETSI/TS 101 456, Electronic Signature and Infrastructure (ESI); Policy requirements for certification authorities issuing qualified certificates ETSI/TS 102 176, Electronic Signatures and Infrastructures (ESI); Algorithms and Parameters for Secur
33、e Electronic Signatures 3 Terms and definitions For the purposes of this document, the terms and definitions given in CEN/TS 419221-1:2016 apply. 4 PP Introduction 4.1 General This clause provides document management and overview information that is required to carry out protection profile registry.
34、 Therefore, Subclause 4.2 “PP Reference” gives labelling and descriptive information necessary for registering the Protection Profile (PP). Subclause 4.3 “Protection Profile Overview” summarizes the PP in narrative form. Subclause 4.4 “TOE Overview” summarizes the TOE in a narrative form. As such, t
35、hese subclauses give an overview to the potential user to decide whether the PP is of interest. It is usable as standalone abstract in PP catalogues and registers. 4.2 PP Reference Title Cryptographic Module for CSP Signing Operations with backup Protection Profile CC revision v3.1 release 3 PP vers
36、ion v0.35 Authors Rmy Daudigny Publication Date 2015 Keywords cryptographic module, CSP signing device, qualified certificate signing, certificate status information signing Registration 4192212 PD CEN/TS 419221-2:2016 CEN/TS 419221-2:2016 (E) 7 4.3 Protection Profile Overview The Directive 1999/93/
37、EC of the European parliament and of the council of 13 December 1999 on a Community framework for electronic signatures 1, referred to as the Directive in the remainder of the PP, states in Annex II that: Certification-service-providers must: (f) use trustworthy systems and products which are protec
38、ted against modification and ensure the technical and cryptographic security of the process supported by them; (g) take measures against forgery of certificates, and, in cases where the certification-service-provider generates signature-creation data, guarantee confidentiality during the process of
39、generating such data; In the supporting ETSI Technical Specification “Policy Requirements for Certification Authorities (CA) 1)issuing Qualified Certificates” (ETSI/TS 101 456), it is stated that: The CA shall ensure that CA keys are generated in accordance with industry standards, and The CA shall
40、ensure that CA private keys remain confidential and maintain their integrity. This Protection Profile (PP) defines the security requirements of a Cryptographic Module (CM) used by CSP as part of its trustworthy system to provide signing services, such as Certificate Generation Service or Certificate
41、 Status Information Signing Services. The Cryptographic Module, which is the Target of Evaluation (TOE), is used for the creation of CSP key pairs, and their usage for the creation and verification of advanced electronic signatures in qualified certificates or certificate status information. The pri
42、vate keys are referred to in this PP as Certification Service Provider Signature-Creation Data (CSP-SCD). The public keys are referred as Certification Service Provider Signature-Verification Data (CSP-SVD). The Protection Profiles primary scope is for signing qualified certificates. However compone
43、nts evaluated against this standard may be applied for other signature-creation tasks carried out by a certificate service provider (CSP) such as time-stamping, signing certificate revocation lists (CRLs) or issuing online certificate status protocol (OCSP) messages. It may also be used for other tr
44、usted service providers creating electronic signatures. This PP is Common Criteria Part 2 extended and Common Criteria Part 3 conformant. The assurance level for this PP is EAL4, augmented with AVA_VAN.5 (Advanced methodical vulnerability analysis). In Article 3.5, the Directive further states that:
45、 The Commission may, in accordance with the procedure laid down in Article 9, establish and publish reference numbers of generally recognized standards for electronic-signature products in the Official Journal of the European Communities. Member States shall presume that there is compliance with the
46、 requirements laid down in Annex II, point (f), and Annex III when an electronic signature product meets those standards.” This Protection Profile is established by CEN/ISSS for use by the European Commission, with reference to Annex II (f), in accordance with this procedure. 1) In the remainder of
47、this PP the term Certificate Service Provider (CSP) is used instead of the commonly used term Certification Authority (CA), as the former is employed by the Directive EC 1999/93 1 this PP aims to support. PD CEN/TS 419221-2:2016 CEN/TS 419221-2:2016 (E) 8 4.4 TOE Overview 4.4.1 TOE type The TOE is a
48、 Cryptographic Module (CM) used for the creation and usage of Certificate Service Provider Signature-Creation Data (CSP-SCD). The CM may optionally also perform hashing of the qualified certificate content. The TOE is configured software and hardware that may be used to provide the following cryptog
49、raphic functions: a) generation of CSP-SCD; b) usage of the CSP-SCD to create advanced electronic signatures for qualified certificates based on either: 1) the hash value of the content of the qualified certificate, or 2) an intermediate hash-value of a first part of the qualified certificate and a remaining part of the qualified certificate or 3) the complete content of the qualified certificate, where the hashing is also performed in the CM (optional). The TOE may implement additional functions and security
