CEN/TS 419221-1:2016

SLOVENSKI STANDARD
SIST-TS CEN/TS 419221-1:2017
01-januar-2017
=DãþLWQLSURILOL]DNULSWRJUDIVNHPRGXOH763GHO3UHJOHG
Protection Profiles for TSP cryptographic modules - Part 1: Overview

Schutzprofile für kryptographische Module von vertrauenswürdigen Dienstanbietern - Teil

Profils de protection pour modules cryptographiques utilisés par les prestataires de

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

Profils de protection pour modules cryptographiques Schutzprofile für kryptographische Module von

utilisés par les prestataires de services de confiance - vertrauenswürdigen Dienstanbietern - Teil 1:

This Technical Specification (CEN/TS) was approved by CEN on 8 May 2016 for provisional application.

The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to

submit their comments, particularly on the question whether the CEN/TS can be converted into a European Standard.

CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS

available promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in

parallel to the CEN/TS) until the final decision about the possible conversion of the CEN/TS into an EN is reached.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,

Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,

Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and

© 2016 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 419221-1:2016 E

European foreword ....................................................................................................................................................... 3

Introduction .................................................................................................................................................................... 4

1 Scope .................................................................................................................................................................... 5

2 Normative references .................................................................................................................................... 5

3 Terms and definitions ................................................................................................................................... 5

4 Protection profiles specified in CEN/TS 419221 .............................................................................. 10

4.1 General ............................................................................................................................................................. 10

4.2 CEN/TS 419221-2: Cryptographic module for CSP signing operations with backup .......... 10

4.3 CEN/TS 419221-3: Cryptographic module for CSP key generation services .......................... 10

4.4 CEN/TS 419221-4: Cryptographic module for CSP signing operations without backup .... 10

4.5 CEN/TS 419221-5: Cryptographic Module for Trust Services ..................................................... 10

Bibliography ................................................................................................................................................................. 12

This document (CEN/TS 419221-1:2016) has been prepared by Technical Committee CEN/TC 224

“Personal identification and related personal devices with secure element, systems, operations and

privacy in a multi sectorial environment”, the secretariat of which is held by AFNOR.

This document has been prepared under a mandate given to CEN by the European Commission and the

CEN/TS 419221, Protection Profiles for TSP cryptographic modules, is currently composed of the

According to the CEN/CENELEC Internal Regulations, the national standards organisations of the

following countries are bound to announce this Technical Specification: Austria, Belgium, Bulgaria,

Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia,

France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta,

Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland,

This multi-part standard specifies protection profiles for trust service provider cryptographic modules,

as per common criteria (ISO/IEC 15408 series). Target applications include signing by certification

service providers, as specified in Directive 1999/93, as well as supporting cryptographic services for

This Technical Specification provides an overview of the protection profiles specified in other parts of

The following documents, in whole or in part, are normatively referenced in this document and are

indispensable for its application. For dated references, only the edition cited applies. For undated

references, the latest edition of the referenced document (including any amendments) applies.

CEN/TS 419241, Security Requirements for Trustworthy Systems Supporting Server Signing

ISO/IEC 15408 (all parts) , Information technology — Security techniques — Evaluation criteria for IT

CSP user role that performs TOE initialization or other TOE administrative functions

electronic signature which meets the following requirements (defined in Directive 1999/93/EC [1],

c) it is created using means that the signatory can maintain under his sole control, and

d) it is linked to the data to which it relates in such a manner that any subsequent change of the data

— Common Criteria for Information Technology Security Evaluation, Part 1: Introduction and General Model; Version 3.1,

— Common Criteria for Information Technology Security Evaluation, Part 2: Security Functional Components; Version 3.1,

— Common Criteria for Information Technology Security Evaluation, Part 3: Security Assurance Components; Version 3.1,

user exporting the TOE audit data and reviewing the audit data with tools in the TOE environment

export of the CSP_SCD, the TSF data and the system data (backup data) sufficient to recreate the state of

Note 1 to entry: Backup is the only function which is allowed to export CSP_SCD and only if backup package is

electronic attestation which links the SVD to a person and confirms the identity of that person (defined

collection of application elements which requests the SVD from the device generating the SCD/SVD pair

Note 1 to entry: The CGA stipulates the generation of a correspondent SCD/SVD pair, if the requested SVD has

not been generated by the SCD/SVD generation device yet. The CGA verifies the authenticity of the SVD by means

of (a) the SSCD proof of correspondence between SCD and SVD and (b) checking the sender and integrity of the

entity or a legal or natural person who issues certificates or provides other services related to

Note 1 to entry: In common usage this is often referred to as Certification Authority (CA). A CSP is a type of TSP.

set of hardware, software and firmware used to generate the Subscriber-SCD/Subscriber-SVD pair and

SCD which is used by the CSP, e.g. for the creation of advanced electronic signatures in qualified

SVD which corresponds to the CSP_SCD and which is used to verify the advanced electronic signature in