EN 419241-2:2019
(Main)Trustworthy Systems Supporting Server Signing - Part 2: Protection profile for QSCD for Server Signing
Trustworthy Systems Supporting Server Signing - Part 2: Protection profile for QSCD for Server Signing
The scope of proposed 419 241 part 2 (PP TSCM) covers security requirements to reach compliance with Annex II of Regulation No 910/2014 of the remote (qualified TSP operated) parts of the system, other than those relating to Signature Activation Data (SAD) management and the operation of the Signature Activation Protocol (SAP), assuming use of a cryptographic module conforming to EN 419 221-5. EN 419 241 part 2 will be balloted simultaneously with EN 419241 Part 3 Protection profile for Signature Activation Data management and Signature Activation Protocol(PP-SAD+SAP). These two new parts of EN 419 241, used in conjunction with the protection for PP for Cryptographic Module for Trust Services (EN 419 221-5), will contain security requirements for level 2 (sole control) as specified in TS 419 241 in a formal manner aligned with common criteria. These two new parts of EN 419 241, with EN 419 221-5, will support the certification of a system for remote qualified electronic signature or seal creation devices (remote QSCD) which meet the requirements of EU Regulation No 910/2014: The electronic signature creation data can be reliably protected by the legitimate signatory (sole control) against use by others, where the generation and management of the signature creation data is carried out by a qualified trust service provider on behalf of a signatory.
The scope of proposed 419 241 part 3 (PP-SAD+SAP) covers security requirements to reach compliance with Annex II of Regulation No 910/2014 on the management of the SAD and the operation of the SAP used to provide sole control of the signatory or seal creator for the remote QSCD signing or sealing functions. The proposed parts 2 and 3 are to be independent of specific authentication mechanism and signature activation protocol to allow maximum flexibility with respect to future solutions and to allow supporting several authentication mechanisms. The proposed part 3 is to take into account: a) potential implementations that require dedicated functional components, owned by the signatory or seal creator, which are for the purposes of ensuring sole control, and b) potential implementations that do not require such dedicated functional components but still ensuring sole control of the signatory or seal creator. The proposed part 3 covers requirements up to the interface to the signatory or seal creator needed for authentication and the interface to the signature creation application for selection, checking and display of data to be signed (e. g. a signature creation application as defined in EN 419 111) while requirements on the signature creation application itself are out of scope. It is proposed that part 3 (PP-SAD+SAP) forms the prime reference for server signing that may be certified according to Regulation No 910/2014 including Annex II, and that this part requires components certified according to part 2 (PP TSCM) and EN 419221-5.
Vertrauenswürdige Systeme, die Serversignaturen unterstützen - Teil 2: Schutzprofil für qualifizierte Signaturerstellungseinheiten zur Serversignierung
Dieser Teil von EN 419241 spezifiziert ein Schutzprofil für ein Unterschriftsaktivierungsmodul (SAM), das darauf abzielt, die Anforderungen eines QSCD, wie in der Verordnung (EU) Nr. 910/2014 [eIDAS] angegeben, zu erfüllen.
Systèmes fiables de serveur de signature électronique - Partie 2 : Profil de protection de QSCD pour la signature par serveur
La présente partie de l'EN 419241 spécifie un profil de protection pour un module d’activation de signature (SAM), visant à répondre aux exigences d’un QSCD tel que prescrit par le Règlement (UE) no 910/2014 eIDAS.
Zaupanja vredni sistemi, ki podpirajo strežniško podpisovanje - 2. del: Zaščita profilov za QSCD za strežniško podpisovanje
Področje uporabe predlaganega 2. dela standarda EN 419241 (PP TSCM) zajema varnostne zahteve za doseganje skladnosti z dodatkom II Uredbe št. 910/2014 za oddaljene dele sistema (ki jih upravljajo potrjeni ponudniki storitev zaupanja) razen tistih, ki se navezujejo na upravljanje podatkov o aktiviranju podpisa (SAD) in upravljanje protokola za aktiviranje podpisa (SAP), pri čemer je predvidena uporaba kriptografskega modula v skladu s standardom EN 419221-5. Glasovanje o 2. delu standarda EN 419241 bo potekalo hkrati z glasovanjem o standardu EN 419241 - 3. del: Varnostni profil za upravljanje podatkov o aktiviranju podpisa in upravljanje protokola za aktiviranje podpisa (PP-SAD+SAP). Ta nova dela standarda EN 419241, ki se uporabljata v povezavi z zaščito za zaščitni profil za kriptografski modul za storitve zaupanja (EN 419221-5), bosta vsebovala varnostne zahteve za 2. raven (izključni nadzor), kot je določeno v standardu TS 419241 na formalen način in usklajeno s skupnimi merili. Ta dva nova dela standarda EN 419241 bosta skupaj s standardom EN 419221-5 podpirala certificiranje sistema za naprave za ustvarjanje oddaljenega kvalificiranega elektronskega podpisa ali pečata (oddaljeni QSCD), ki izpolnjujejo zahteve Uredbe (EU) št. 910/2014. Podatke za ustvarjanje elektronskega podpisa lahko pred nepooblaščeno uporabo zanesljivo zaščiti zakoniti podpisnik (izključni nadzor), pri čemer ustvarjanje in upravljanje podatkov za ustvarjanje podpisa izvaja potrjeni ponudnik storitev zaupanja v imenu podpisnika.
General Information
Standards Content (Sample)
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.Vertrauenswürdige Systeme, die Serversignaturen unterstützen - Teil 2: Schutzprofil für qualifizierte Signaturerstellungseinheiten zur ServersignierungSystèmes fiables de serveur de signature électronique - Partie 2 : Profil de protection de QSCD pour la signature par serveurTrustworthy Systems Supporting Server Signing - Part 2: Protection profile for QSCD for Server Signing35.040.01Kodiranje informacij na splošnoInformation coding in general35.030Informacijska varnostIT SecurityICS:Ta slovenski standard je istoveten z:EN 419241-2:2019SIST EN 419241-2:2019en,fr,de01-maj-2019SIST EN 419241-2:2019SLOVENSKI
STANDARD
EUROPEAN STANDARD NORME EUROPÉENNE EUROPÄISCHE NORM
EN 419241-2
February
t r s { ICS
u wä r u r English Version
Trustworthy Systems Supporting Server Signing æ Part
tã Protection profile for QSCD for Server Signing Systèmes fiables de serveur de signature électronique æPartie
t ã Profil de protection de QSCD pour la signature par serveur
Vertrauenswürdige Systemeá die Serversignaturen unterstützen æ Teil
tã Schutzprofil für qualifizierte Signaturerstellungseinheiten zur Serversignierung This European Standard was approved by CEN on
t x November
t r s zä
egulations which stipulate the conditions for giving this European Standard the status of a national standard without any alterationä Upætoædate lists and bibliographical references concerning such national standards may be obtained on application to the CENæCENELEC Management Centre or to any CEN memberä
translation under the responsibility of a CEN member into its own language and notified to the CENæCENELEC Management Centre has the same status as the official versionsä
CEN members are the national standards bodies of Austriaá Belgiumá Bulgariaá Croatiaá Cyprusá Czech Republicá Denmarká Estoniaá Finlandá Former Yugoslav Republic of Macedoniaá Franceá Germanyá Greeceá Hungaryá Icelandá Irelandá Italyá Latviaá Lithuaniaá Luxembourgá Maltaá Netherlandsá Norwayá Polandá Portugalá Romaniaá Serbiaá Slovakiaá Sloveniaá Spainá Swedená Switzerlandá Turkey and United Kingdomä
EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG
CEN-CENELEC Management Centre:
Rue de la Science 23,
B-1040 Brussels
t r s { CEN All rights of exploitation in any form and by any means reserved worldwide for CEN national Membersä Refä Noä EN
v s { t v sæ tã t r s { ESIST EN 419241-2:2019
Contents EUROPEAN FOREWORD . 4 INTRODUCTION . 5 1 SCOPE . 6 2 NORMATIVE REFERENCES. 6 3 TERMS, DEFINITIONS, SYMBOLS AND ABBREVIATIONS . 6 3.1 TERMS AND DEFINITIONS . 6 3.2 SYMBOLS AND ABBREVIATIONS . 7 4 INTRODUCTION . 7 4.1 GENERAL . 7 4.2 PROTECTION PROFILE REFERENCE . 7 4.3 PROTECTION PROFILE OVERVIEW . 7 4.4 TOE OVERVIEW . 7 5 CONFORMANCE CLAIM . 11 5.1 CC CONFORMANCE CLAIM . 11 5.2 PP CLAIM . 12 5.3 CONFORMANCE RATIONALE . 12 5.4 CONFORMANCE STATEMENT . 12 6 SECURITY PROBLEM DEFINITION . 12 6.1 ASSETS . 12 6.2 SUBJECTS . 14 6.3 THREATS . 15 6.4 RELATION BETWEEN THREATS AND ASSETS . 18 6.5 ORGANISATIONAL SECURITY POLICIES . 19 6.6 ASSUMPTIONS . 20 7 SECURITY OBJECTIVES . 21 7.1 GENERAL . 21 7.2 SECURITY OBJECTIVES FOR THE TOE . 21 7.3 SECURITY OBJECTIVES FOR THE OPERATIONAL ENVIRONMENT . 23 7.4 SECURITY PROBLEM DEFINITION AND SECURITY OBJECTIVES . 25 7.5 RATIONALE FOR THE SECURITY OBJECTIVES . 30 8 EXTENDED COMPONENTS DEFINITIONS. 33 8.1 CLASS FCS: CRYPTOGRAPHIC SUPPORT . 33 9 SECURITY REQUIREMENTS . 34 9.1 TYPOGRAPHICAL CONVENTIONS . 34 9.2 SUBJECTS, OBJECTS AND OPERATIONS . 35 9.3 SFRS OVERVIEW . 36 9.4 SECURITY FUNCTIONAL REQUIREMENTS . 39 9.5 SECURITY ASSURANCE REQUIREMENTS . 64 SIST EN 419241-2:2019
EN 419241-1: Security Requirements for Trustworthy Systems Supporting Server Signing;
EN 419241-2: This document Further details of this series can be found in EN 419241-1. Document Structure Section 1 provides the introductory material for the Protection Profile. Section 2 describes normative references Section 3 describes terms and definitions Section 4 contains the introduction Section 5 provides the conformance claim Section 6 provides the Security Problem Definition. It presents the Assets, Threats, Organisational Security Policies and Assumptions related to the TOE. Section 7 defines the security objectives for both the TOE and the TOE environment. Section 8 contains an extended component definition to include random number generation Section 9 contains the functional requirements and assurance requirements derived from the Common Criteria (CC), Part 2 [CC2] and Part 3 [CC3] that has to be satisfied by the TOE. Section 10 provides rationales to demonstrate that:
Security Objectives satisfy the policies and threats
SFR match the security Objectives
SFR dependencies are satisfied
The SARs are appropriate. A reference section is provided to identify background material. An acronym list is provided to define frequently used acronyms. SIST EN 419241-2:2019
IEC Electropedia: available at http://www.electropedia.org/
http://www.iso.org/obp NOTE Common Criteria terms and definitions are given in [CC1]. 3.1.1 certificate certificate for electronic signature as defined in [eIDAS] article 3 3.1.2 delegated party subcontractor of the TSP or notified eID provider according to eIDAS regulation used for authentication 3.1.3 digital signature value result of a cryptographic operation involving the signing key Note 1 to entry: Within this document, Seal, Signature, Digital Signature or Digital Seal denote Digital Signature Value. 3.1.4 one-time signing key signing key created, used and disposed based on one a single authorization, typically linked to a single session signing DTBS/R(s) Note 1 to entry:
Contrary to signing keys, which may be used in several signing sessions. SIST EN 419241-2:2019
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.