Archived Validated Protection Profile - U.S. Government Family of Protection Profiles for Public Key-Enabled Applications for Basic Robustness Environments, Version 2.77

Short Name: pp_pke_v2.77

Technology Type: PKI/KMI

CC Version: 2.x

Date: 01 February 2007

Preceded By: pp_pke_v2.75

Succeeded By: pp_pke_v2.8

Sunset Date: 21 March 2008

Conformance Claim: Basic Robustness

Protection Profile

Validation Report

CC Certificate

CC Certificate #2

CC Certificate #3

PP OVERVIEW

This family of PPs describes the Information Technology (IT) security requirements for PKE Applications, based on the X.509 standard, integrated into computing platforms or systems. Public key technology provides digital signature generation and verification, public/private key encryption and decryption, public key distribution services, and various support functions. A PKE application may provide confidentiality, integrity, authentication, and non-repudiation, based on the use of public key technology security services. A variety of applications may be PK-enabled. This family of PPs should be used to specify the various PK services. Thousands of PPs can be defined depending upon the combination of functional packages and the assurance level chosen to meet the requirements of the application. Many functional requirements in the PPs represent extensions to the Common Criteria (CC), because the CC does not provide requirements for the X.509 processing rules that are critical to this family of PPs.

ASSURANCE MAINTENANCE

Assurance maintenance has been performed on this protection profiles to incorporate minor updates to the profile. This update caused a change in version number (from 2.76 to 2.77) that indicates an update has occurred. The details on the update are included in the revision history table included in the front matter of the protection profile.

This Validated Protection Profile is assigned to the following Validated Product

• Public Key Infrastructure Framework Version 2.1