1、BSI Standards PublicationWB11885_BSI_StandardCovs_2013_AW.indd 1 15/05/2013 15:06Protection Profiles for TSP Cryptographic ModulesPart 5: Cryptographic Module for Trust ServicesBS EN 419221-5:2018EUROPEAN STANDARD NORME EUROPENNE EUROPISCHE NORM EN 419221-5 May 2018 ICS 35.040.01; 35.240.30 English
2、Version Protection Profiles for TSP Cryptographic Modules - Part 5: Cryptographic Module for Trust Services Profils de protection pour les modules cryptographiques de prestataires de services de confiance - Partie 5: Module cryptographique pour les services de confiance Schutzprofile fr kryptographi
3、sche Module von Vertrauensdienstanbietern - Teil 5: Kryptographisches Modul fr vertrauenswrdige Dienste This European Standard was approved by CEN on 2 March 2018. CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standa
4、rd the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to any CEN member. This European Standard exists in three official versions (English,
5、 French, German). A version in any other language made by translation under the responsibility of a CEN member into its own language and notified to the CEN-CENELEC Management Centre has the same status as the official versions. CEN members are the national standards bodies of Austria, Belgium, Bulg
6、aria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzer
7、land, Turkey and United Kingdom. EUROPEAN COMMITTEE FOR STANDARDIZATION COMIT EUROPEN DE NORMALISATION EUROPISCHES KOMITEE FR NORMUNG CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels 2018 CEN All rights of exploitation in any form and by any means reserved worldwide for CEN natio
8、nal Members. Ref. No. EN 419221-5:2018 ENational forewordThis British Standard is the UK implementation of EN 419221-5:2018.The UK participation in its preparation was entrusted to Technical Committee IST/17, Cards and security devices for personal identification.A list of organizations represented
9、on this committee can be obtained on request to its secretary.This publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application. The British Standards Institution 2018 Published by BSI Standards Limited 2018ISBN 978 0 580 95322
10、 4ICS 35.240.30; 35.030Compliance with a British Standard cannot confer immunity from legal obligations. This British Standard was published under the authority of the Standards Policy and Strategy Committee on 31 May 2018.Amendments/corrigenda issued since publicationDate Text affectedBRITISH STAND
11、ARDBS EN 419221-5:2018EUROPEAN STANDARD NORME EUROPENNE EUROPISCHE NORM EN 419221-5 May 2018 ICS 35.040.01; 35.240.30 English Version Protection Profiles for TSP Cryptographic Modules - Part 5: Cryptographic Module for Trust Services Profils de protection pour les modules cryptographiques de prestat
12、aires de services de confiance - Partie 5: Module cryptographique pour les services de confiance Schutzprofile fr kryptographische Module von Vertrauensdienstanbietern - Teil 5: Kryptographisches Modul fr vertrauenswrdige Dienste This European Standard was approved by CEN on 2 March 2018. CEN member
13、s are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application
14、 to the CEN-CENELEC Management Centre or to any CEN member. This European Standard exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of a CEN member into its own language and notified to the CEN-CENELEC Managemen
15、t Centre has the same status as the official versions. CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Li
16、thuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United Kingdom. EUROPEAN COMMITTEE FOR STANDARDIZATION COMIT EUROPEN DE NORMALISATION EUROPISCHES KOMITEE FR NORMUNG CEN-CENELEC Management Centre: Rue de la
17、 Science 23, B-1040 Brussels 2018 CEN All rights of exploitation in any form and by any means reserved worldwide for CEN national Members. Ref. No. EN 419221-5:2018 EBS EN 419221-5:2018EN 419221-5:2018 (E) 2 Contents Page European foreword . 5 Introduction 6 1 Scope 7 2 Normative references 7 3 Term
18、s and definitions . 8 3.1 Terms and definitions . 8 3.2 Abbreviations . 9 4 Protection Profile 9 4.1 General 9 4.2 Protection Profile Reference 10 4.3 Protection Profile Overview . 10 4.3.1 General . 10 4.3.2 EU Qualified Electronic Signature / Seal Creation Device . 11 4.4 TOE Overview 11 4.4.1 TOE
19、 type 11 4.4.2 Usage and major security features of the TOE . 18 4.4.3 Available non-TOE hardware/software/firmware 19 5 Conformance Claim . 19 5.1 CC Conformance Claim . 19 5.2 PP Claim . 19 5.3 Conformance Rationale 19 5.4 Conformance Statement 20 6 Security Problem Definition . 20 6.1 Assets 20 6
20、.2 Subjects 20 6.3 Threats . 20 6.3.1 General . 20 6.3.2 T.KeyDisclose Unauthorised disclosure of secret/private key 21 6.3.3 T.KeyDerive Derivation of secret/private key . 21 6.3.4 T.KeyMod Unauthorised modification of a key 21 6.3.5 T.KeyMisuse Misuse of a key . 21 6.3.6 T.KeyOveruse Overuse of a
21、key . 21 6.3.7 T.DataDisclose Disclosure of sensitive client application data 21 6.3.8 T.DataMod Unauthorised modification of client application data 21 6.3.9 T.Malfunction Malfunction of TOE hardware or software . 22 6.4 Organisational Security Policies . 22 6.4.1 P.Algorithms Use of approved crypt
22、ographic algorithms 22 6.4.2 P.KeyControl Support for control of keys 22 6.4.3 P.RNG Random Number Generation 22 6.4.4 P.Audit Audit trail generation 23 6.5 Assumptions . 23 6.5.1 A.ExternalData Protection of data outside TOE control . 23 6.5.2 A.Env Protected operating environment 23 6.5.3 A.DataCo
23、ntext Appropriate use of TOE functions . 23 BS EN 419221-5:2018EN 419221-5:2018 (E) 3 6.5.4 A.UAuth Authentication of application users 24 6.5.5 A.AuditSupport Audit data review 24 6.5.6 A.AppSupport Application security support . 24 7 Security Objectives . 24 7.1 General . 24 7.2 Security Objective
24、s for the TOE . 24 7.2.1 General . 24 7.2.2 OT.PlainKeyConf Protection of confidentiality of plaintext secret keys . 24 7.2.3 OT.Algorithms Use of approved cryptographic algorithms . 24 7.2.4 OT.KeyIntegrity Protection of integrity of keys . 25 7.2.5 OT.Auth Authorization for use of TOE functions an
25、d data . 25 7.2.6 OT.KeyUseConstraint Constraints on use of keys 25 7.2.7 OT.KeyUseScope Defined scope for use of a key after authorization . 25 7.2.8 OT.DataConf Protection of confidentiality of sensitive client application data 26 7.2.9 OT.DataMod Protection of integrity of client application data
26、 . 26 7.2.10 OT.ImportExport Secure import and export of keys 26 7.2.11 OT.Backup Secure backup of user data . 26 7.2.12 OT.RNG Random number quality 27 7.2.13 OT.TamperDetect Tamper Detection . 27 7.2.14 OT.FailureDetect Detection of TOE hardware or software failures 27 7.2.15 OT.Audit Generation o
27、f audit trail. 27 7.3 Security Objectives for the Operational Environment 27 7.3.1 General . 27 7.3.2 OE.ExternalData Protection of data outside TOE control . 27 7.3.3 OE.Env Protected operating environment . 28 7.3.4 OE.DataContext Appropriate use of TOE functions . 28 7.3.5 OE.Uauth Authentication
28、 of application users 28 7.3.6 OE.AuditSupport Audit data review . 28 7.3.7 OE.AppSupport Application security support . 29 8 Extended Components Definitions . 29 8.1 Generation of random numbers (FCS_RNG) 29 8.1.1 General . 29 8.1.2 Family behaviour 29 8.1.3 Component levelling 29 8.2 Basic TSF Sel
29、f Testing (FPT_TST_EXT.1) . 30 8.2.1 General . 30 8.2.2 Family behaviour 30 8.2.3 Component levelling 30 9 Security Requirements . 31 9.1 General . 31 9.2 Typographical Conventions 31 9.3 SFR Architecture . 31 9.3.1 SFR Relationships . 31 9.3.2 SFRs and the Key Lifecycle 33 9.4 Security Functional R
30、equirements . 35 9.4.1 General . 35 9.4.2 Cryptographic Support (FCS) 35 9.4.3 Identification and authentication (FIA) . 38 9.4.4 User data protection (FDP) . 41 9.4.5 Trusted path/channels (FTP) . 47 9.4.6 Protection of the TSF (FPT) . 49 9.4.7 Security management (FMT) 51 BS EN 419221-5:2018EN 419
31、221-5:2018 (E) 4 9.4.8 Security audit data generation (FAU) . 58 9.5 Security Assurance Requirements . 60 9.5.1 General . 60 9.5.2 Refinements of Security Assurance Requirements 61 10 Rationales . 65 10.1 Security Objectives Rationale 65 10.1.1 Security Objectives Coverage . 65 10.1.2 Security Objec
32、tives Sufficiency 66 10.2 Security Requirements Rationale 68 10.2.1 Security Requirements Coverage . 68 10.2.2 SFR Dependencies 70 10.2.3 Rationale for SARs . 72 10.2.4 AVA_VAN.5 Advanced methodical vulnerability analysis 73 Annex A (informative) Mapping to Regulation (EU) 910/2014 74 Bibliography .
33、 79 Tables Table 1 Key Attributes Modification Table . 56 Table 2 Key Attributes Initialisation Table 82. 57 Table 3 Security Assurance Requirements 61 Table 4 Security Problem Definition mapping to Security Objectives . 66 Table 5 TOE Security Objectives mapping to SFRs 68 Table 6 SFR Dependencies
34、Rationale . 71 Table A.1 Mapping between Regulation, Annex II and this PP . 74 Figures Figure 1 Generic TOE Architecture . 12 Figure 2 Generation of Random numbers - Component Levelling 29 Figure 3 Basic TSF Self Testing Component Levelling 30 Figure 4 Architecture of Key Protection SFRs . 32 Figure
35、 5 Architecture of User, TSF Protection and Audit SFRs . 33 Figure 6 Generic Key Lifecycle and Related SFRs 34 BS EN 419221-5:2018EN 419221-5:2018 (E) 5 European foreword This document (EN 419221-5:2018) has been prepared by Technical Committee CEN/TC 224 “Personal identification and related persona
36、l devices with secure element, systems, operations and privacy in a multi sectorial environment”, the secretariat of which is held by AFNOR. This European Standard shall be given the status of a national standard, either by publication of an identical text or by endorsement, at the latest by Novembe
37、r 2018, and conflicting national standards shall be withdrawn at the latest by November 2018. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. CEN shall not be held responsible for identifying any or all such patent rights. This do
38、cument has been prepared under a mandate given to CEN by the European Commission and the European Free Trade Association. According to the CEN-CENELEC Internal Regulations, the national standards organisations of the following countries are bound to implement this European Standard: Austria, Belgium
39、, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, S
40、witzerland, Turkey and the United Kingdom. BS EN 419221-5:2018EN 419221-5:2018 (E) 6 Introduction Clause 4 provides the introductory material for the Protection Profile. Clause 5 provides the conformance claim. Clause 6 provides the Security Problem Definition. It presents the Assets, Threats, Organ
41、isational Security Policies and Assumptions related to the TOE. Clause 7 defines the security objectives for both the TOE and the TOE environment. Clause 8 presents the extended components that will be used in this PP. Clause 9 contains the functional requirements and assurance requirements derived
42、from the Common Criteria (CC), Part 2 CC2 and Part 3 CC3 that are to be satisfied by the TOE. Clause 10 provides rationales to demonstrate that: Security Objectives satisfy the policies and threats; SFR match the security Objectives; SFR dependencies are satisfied; The SARs are appropriate. A Biblio
43、graphy is provided to identify background material. A Mapping to the EU Requirements For Qualified Electronic Signature Creation Devices is provided in Annex A. BS EN 419221-5:2018EN 419221-5:2018 (E) 7 1 Scope This part of EN 419221 specifies a Protection Profile for cryptographic modules which is
44、intended to be suitable for use by trust service providers supporting electronic signature and electronic sealing operations, certificate issuance and revocation, time stamp operations, and authentication services, as identified by the (EU) No 910/2014 regulation of the European Parliament and of th
45、e Council on electronic identification and trust services for electronic transactions in the internal market (Regulation (EU) No 910/2014 eIDAS) in 10. The Protection Profile also includes optional support for protected backup of keys. The document follows the rules and conventions laid out in Commo
46、n Criteria Part 1 CC1, Annex B “Specification of Protection Profiles”. 2 Normative references The following documents are referred to in the text in such a way that some or all of their content constitutes requirements of this document. For dated references, only the edition cited applies. For undat
47、ed references, the latest edition of the referenced document (including any amendments) applies. ISO/IEC 19790:2012, Information technology Security techniques Security requirements for cryptographic modules Common Criteria for Information Technology Security Evaluation, Part 1: Introduction and gen
48、eral model (Version 3.1 Revision 4, September 2012), CCMB-2012-09-001 CC1 Common Criteria for Information Technology Security Evaluation, Part 2: Security functional requirements, (Version 3.1 Revision 4, September 2012), CCMB-2012-09-002 CC2 Common Criteria for Information Technology Security Evalu
49、ation, Part 3: Security assurance requirements, (Version 3.1 Revision 4, September 2012), CCMB-2012-09-003 CC3 BS EN 419221-5:2018EN 419221-5:2018 (E) 8 3 Terms and definitions 3.1 Terms and definitions For the purposes of this document, the terms and definitions given in EN 419221-1, Common Criteria Part 1 CC1 and the following apply. ISO and IEC maintain terminological databases for use in standardization at the following addresses:
