Copyright © 2013-2021 FIDO Alliance All Rights Reserved.
This documents defines the security requirements for FIDO Authenticators.
This section describes the status of this document at the time of its publication. Other documents may supersede this document. The most recent version of this document can be found on the FIDO Alliance Website at https://fidoalliance.org.
This document was published by the FIDO Alliance as a Final Requirements Document. If you wish to make comments regarding this document, please Contact Us. All comments are welcome.
No rights are granted to prepare derivative works of this document. Entities seeking permission to reproduce portions of this document for other uses must contact the FIDO Alliance to determine whether an appropriate license for such use is available.
Implementation of certain elements of this Requirements Document may require licenses under third party intellectual property rights, including without limitation, patent rights. The FIDO Alliance, Inc. and its Members and any other contributors to the Requirements Document are not, and shall not be held, responsible in any manner for identifying or failing to identify any or all such third party intellectual property rights.
THIS FIDO ALLIANCE REQUIREMENTS DOCUMENT IS PROVIDED “AS IS” AND WITHOUT ANY WARRANTY OF ANY KIND, INCLUDING, WITHOUT LIMITATION, ANY EXPRESS OR IMPLIED WARRANTY OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
L1 | L1+ | L2 | L2+ | L3 | L3+ | |
---|---|---|---|---|---|---|
Security Requirements version (RV) | RV 1.4.1 | - | RV 1.4.1 | - | RV 1.4.1 | RV 1.4.1 |
Allowed Cryptography List version (CV) [FIDOAllowedCrypto] | CV 1.3.0 | - | CV 1.3.0 | - | CV 1.3.0 | CV 1.3.0 |
Allowed Restricted Operating Environments version (EV) [FIDORestrictedOperatingEnv] | - | - | EV 1.2.0 | - | EV 1.2.0 | EV 1.2.0 |
Authenticator Metadata Requirements version (MV) [FIDOMetadataRequirements] | MV 1.2.0 | - | MV 1.2.0 | - | MV 1.2.0 | MV 1.2.0 |
Vendor Questionnaire version (QV) | QV 1.4.1 | - | QV 1.4.1 | - | QV 1.4.1 | QV 1.4.1 |
Test Procedures version (PV) | PV 1.4.1 | - | PV 1.4.1 | - | PV 1.4.1 | PV 1.4.1 |
The key words “MUST”, “MUST NOT”, “REQUIRED”, “SHALL”, “SHALL NOT”, “SHOULD”, “SHOULD NOT”, “RECOMMENDED”, “MAY”, and “OPTIONAL” in this document are to be interpreted as described in [RFC2119].
In summary:This section is non-normative.
This document is a combination of FIDO Alliance Security Requirements, Test Procedures, and Vendor Questionnaires. Each Requirement has the following elements:No. | Requirement | Security Measures | |
---|---|---|---|
[Requirement Number] | [Specification]; [Profile];[Testing Style]; [Level] | ||
Requirement text.
Note Note text. Relation to Companion Program [Level] [Companion Program]: Relation to Companion Program text. Calibration Calibration text. [Level] Vendor Questionnaire
Vendor Questionnaire text.
[Level] Test Procedure
{Test Assurance Mode} Test Procedure text.
|
[Security Measures] |
All requirements apply to all Security Levels unless otherwise noted. If a requirement is marked "L<n> and higher" then it applies to level L<n> and all levels above L<n> and not to levels below L<n>.
Phrases starting with 'At L<n> ...' refine the requirement(s) stated above that apply in the scope of an L<n> certification.
Companion Programs make use of Certification Programs independent from FIDO with which FIDO relies on to offer joint FIDO Certification Programs to reduce the certification burden on Vendors. In this version, Companion Programs are relevant to certification levels 3 and 3+. All vendors targetting L3 or L3+ certification MUST provide responses to cover the FIDO Authenticator Security Requirements using a mapping table including supported Companion Programs. This mapping SHOULD be based on the following table [FIDO-SR-Mapping-Table] provided by FIDO.
In the Companion Program boxes, the term linked to indicates that the FIDO Security Requirement is related to the Companion Program Requirement but is not completely fulfilled by it. The term fulfilled by means that if the Companion Program Requirement is fulfilled, this automatically fulfills the FIDO Security Requirement.
This table is provided only as a guidance document for both vendors and labs to simplify evidence writing and evaluation tasks. This mapping table does not add or replace any FIDO Authenticator Security Requirements. This version of the table translates FIDO security requirements into Common Criteria (CC) Security Functional Requirements (SFR) and Security Assurance Requirements (SAR) and maps these to either the Java Card Open Configuration Protection Profile (PP) [JCPP], Security IC Platform PP [PP0084], FIDO U2F Authenticator PP [U2FPP] or GP TEE PP [TEE-PP]
This version of the FIDO Security Requirements accepts Common Critera (for L3 and L3+) and the GlobalPlatform TEE Protection Profile (for L3). Future FIDO Companion Programs may cover certifications endorsed by the security industry such as FIPS 140-2, EMVCo, DSC PP and more.
This section is non-normative.
In general, the relation between attack countermeasures, protection and FIDO certification levels can be briefly summarized as
FIDO Security Level | Sample Device HW & SW Requirements | Defends against |
---|---|---|
L3+ | Protection against chip fault injection, invasive attacks | Captured devices (chip-level attacks) |
L3 | Circuit board potting, package on package memory, encrypted RAM | Captured devices (circuit board level attacks) |
L2+ | Certified Restricted Operating Enviornment (ROE) | Device OS compromise (Defended by Certified ROE) |
L2 | Restricted Operating Enviornment (ROE) | Device OS compromise (Defended by ROE) |
L1+ | Any Device HW or SW with white box cryptography | Device OS compromise (defended by white box cryptography) |
L1 | Any device HW or SW | Better protection than passwords from phishing, server credential breaches, MITM attacks |
In the following section, some potential implementation solutions will be depicted and examples of security ratings and FIDO certification levels will be given.
Case# | Examples | Common-Criteria CC Companion Program Smart Card (JIL Rating) | GlobalPlatform GP Companion Program (TEE Rating) | Typical FIDO Certification Level |
---|---|---|---|---|
A | IoT device 100MHz 32-bit CPU accessing DIMM socket memory. Low speed memory socket interface | 7 | 10 | L2 |
B | Laptop with high performance 2GHz CPU accessing DDR4 memory in a SO-DIMM. High speed memory socket interface | 18 | 20 | L2..L3 |
C | Laptop with high performance 2GHz CPU accessing DDR4 memory in a SO-DIMM with buried trace | 18 | 21 | L2..L3 |
D | Mobile phone SoC with 2GHz CPU with PoP Memory | 20 | 23 | L2..L3 |
E | Mobile phone SoC with 2GHz CPU with memory and CPU die in the same package | 23 | 26 | L3 |
F | IoT device 32-bit 100MHz CPU with memory and CPU on the same die | 27 | 30 | L3+ |
G | SoC with CPU with strong inline memory encryption and integrity protection HW | 33 | 34 | L3+ |
H | Smart Card or Secure Element. Memory and CPU on the same die with hardware countermeasures | 33 | 34 | L3+ |
DISCLAMER: The aforementined examples are hypothetical realizations
with various assumptions and the attack scenario is limited to physical
probing of manipulative attacks.
Note that there might be other ways to attack the realization more easily.
(e.g. observing/side-channel-attack or semi-invasive/fault-injection-attack).
Please be aware that, debug functions or debug interfaces (e.g. JTAG) may pose additional
risks for security breaches and therefore protection of these functions and interfaces if
present need to be evaluated in depth.
As a baseline for above ratings, only the HW characteristics are considered in the table.
Other requirements (e.g. SW) have to be met to achieve maximum level.
Reference for Rating in JIL-Points see [AttackPotentialSmartcards].
and for Rating in TEE-Points see [TEE-PP]
The evaluator will calculate the ratings of the actual HW configuration to know for certain what level
HW can achieve; The examples given here are for illustrative purposes only.
Some requirements are prefaced by “(UAF)”, “(U2F)”, or “(FIDO2)”. These are applicability statements indicating that the requirement applies only to the UAF, U2F, or FIDO2 protocol families.
For requirements that relate to normative requirements of the UAF, U2F, or FIDO2 specifications, a reference is included citing the relevant section of the specifications. These references are included in square brackets, for example “[U2FRawMsgs], [Section 5.1]” refers to the U2F Authenticator specification, section 5.1.
A Profile is a context for certification, assigning an intended user environment for the authenticator. Each requirement is assigned one or more profiles. A requirements is valid for that profile if it is tagged with that profile.
Name | Description |
---|---|
Consumer | The Consumer Profile is applicable by default, the authenticator is intended to be used by consumers and sold on the open market. In the Consumer Profile, Enterprise Attestation MUST NOT be supported. |
Enterprise |
The Enterprise Profile applies if the authenticator is intended for employees of an enterprise and the authenticator is sold directly to the Enterprise. It allows the Enterprise Attestation option to be enabled on a FIDO Authenticator compliant with CTAP 2.1 ([[FIDOCTAP2.1]]). Enterprise Attestation allows Enterprises to uniquely identify Authenticators upon registration with their corporate systems. In the Enterprise Profile, Enterprise Attestation MAY be supported. More details on use case, privacy considerations and technical design may be found in [[2020-04-08_EnterpriseAttestationUseCasePrivConsTechDesign-2020-04-06]] paper. |
xx
All of the requirements end with a reference to the security measures that are supported by the requirement in question. These references are included within parentheses, for example “(SM-2)”. The security measure references are described in the the FIDO Security Reference document [FIDOSecRef].
Each requirement is also tagged with the testing style.
The following testing styles are included in this document:
This section is normative.
The FIDO Authenticator (Authenticator, for short) is a set of hardware and software that implements the Authenticator portion of the FIDO UAF, FIDO U2F, or FIDO2 protocols. For the purpose of this requirements, the Authenticator is the set of hardware and software within the Authenticator boundary, as defined in the response to requirement 1.1.
We use the term Authenticator Application to refer to the entity that (a) is provided by the Authenticator vendor and (b) combines with the underlying operating environment (hardware and firmware) in a way that results in a FIDO Authenticator. This operating environment might be clearly separated from a high-level operating system (HLOS). In this case we call it "Restricted Operating Environment" (ROE). If such separation meets the requirements defined in [FIDORestrictedOperatingEnv], we call it Allowed Restricted Operating Environment (AROE).
At L1, the Restricted Operating Environment as used in the figure above might be identical with the HLOS plus underlying HW and doesn't need to be an Allowed Restricted Operating Environment (AROE).
At L2 and above the Restricted Operating Environment MUST be an Allowed Restricted Operating Environment according to [FIDORestrictedOperatingEnv], e.g. a Trusted Execution Environment or a Secure Element.
In these requirements, the term “FIDO Relevant” means “used to fulfill or support FIDO Security Goals or FIDO Authenticator Security Requirements”.
For the certification levels L1 and L2 the Authenticator doesn't need to restrict the private authentication key (Uauth.priv) to signing valid FIDO messages only (see requirement 2.1.15 which is label L2+ and higher and higher). As a consequence, the generation of the to-be-signed object could be performed outside of the Authenticator.
No. | Requirement | Security Measures | |
---|---|---|---|
1.1 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
The vendor SHALL document an explicit Authenticator boundary. The Authenticator’s
boundary SHALL include any hardware that performs or software that implements
functionality used to fulfill FIDO Authenticator Security Requirements,
or FIDO Relevant user verification, key generation, secure transaction
confirmation display, or signature generation. If the Authenticator includes
a software component, the boundary SHALL contain the processor that executes this software.
If Transaction Confirmation Display [UAFProtocol] is supported and the Metadata Statement related to this Authenticator claims Transaction Confirmation Display support with
tcDisplay including the flag TRANSACTION_CONFIRMATION_DISPLAY_PRIVILEGED_SOFTWARE (0x0002), then the Transaction Confirmation Display MAY be implemented outside of an AROE - even when the Authenticator aims for a certification at L2
and higher.
However, in such case the vendor SHALL document where and how Transaction Confirmation Display is implemented. The Authenticator boundary as defined by FIDO is comprised of the hardware and software where the Authenticator runs. The Authenticator Application by definition, is always inside the authenticator boundary. The vendor MUST describe the operational environment for the Authenticator Application, including any specific hardware or operating system requirements to completely define this boundary. The Authenticator always comprises hardware and software and the vendor SHALL describe the boundary. An Authenticator typically belongs to one of the 4 categories:
For Authenticators falling under #1-3 above, the Authenticator is qualified for L1 Authenticator Certification only, and SHOULD refer to the L1 portions of this Requirements document. For Authenticators meeting #4, the Authenticator is qualified for L1 or above. It is up to the vendor to review the requirements in this document to determine the Level of Authenticator Certification they wish to complete. Note The Vendor should provide a clear description of the HW, supported OS versions that the evaluation is covering. See below:
In addition, the vendor must provide a high-level physical and logical representation of the Authenticator security boundary. The documentation provided by the vendor should cover software attack protection and, if required, hardware attack protection. Relation to Companion Program L3 GlobalPlatform: The AROE Security Target MUST be provided to support this requirement (see [TEE-PP] and [TEE-EM]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, the Authenticator vendor SHALL declare and describe to which of the above mentioned categories the
Authenticator Application belongs.
At L1, the vendor SHALL also describe what portions of functionality the Authenticator uses from any underlying operating environment that belongs to the Authenticator but that is not included in the Authenticator Application. L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-1, SM-9, SM-26) | ||
1.2 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
The vendor SHALL document all FIDO Relevant security and cryptographic
functions implemented within the Authenticator, both those on the
“Allowed Cryptography List” [FIDOAllowedCrypto] and those not on this list.
Note Some algorithms may only be allowed for certain Security Certification Levels. For example, not all cryptographic algorithms that are acceptable for L1 may be acceptable for L3. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided (see [TEE-EM]). This requirement is linked to the FCS_COP.1, FCS_RNG.1 and FCS_CKM.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, the vendor SHALL mark the FIDO Relevant security and cryptographic functions implemented in the Authenticator but implemented outside the Authenticator Application (i.e. in the underlying OS or HW). L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-1, SM-9, SM-16, SM-26) | ||
1.3 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
The vendor SHALL document where Authenticator User Private Keys (Uauth.priv)
are stored, the structure of all KeyIDs/CredentialIDs and Key Handles used by the Authenticator,
and explain how these private keys are related to the KeyIDs/CredentialIDs and Key Handles used by the Authenticator.
Relation to Companion Program L3 GlobalPlatform: AROE development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). L3 Common Criteria: Development documentation MUST be provided This requirement is linked to Class ADV (see [CC3V3-1R5]). L3+ Common Criteria: Development documentation MUST be provided This requirement is linked to Class ADV (see [CC3V3-1R5]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, the private keys, KeyIDs/CredentialIDs etc. that are generated outside the Authenticator Application SHALL be documented, but their internal structure does not need to be explained in detail. L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-1, SM-6, SM-26) | ||
1.4 | UAF + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
The vendor SHALL document an Authenticator as a first-factor Authenticator
or a second-factor Authenticator. [UAFAuthnrCommands], [Section 6.3.4] and [FIDOGlossary]
entries "Authenticator, 1stF / First Factor" and "Authenticator, 2ndF / Second Factor".
Relation to Companion Program L3 GlobalPlatform: The AROE Security Target MUST be provided to support this requirement (see [TEE-PP] and [TEE-EM]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-26) | ||
1.5 | UAF + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
If the Authenticator is a second-factor Authenticator, then the Authenticator
SHALL NOT store user names (UAF) / PublicKeyCredentialUserEntity (FIDO2) inside a Raw Key Handle [UAFAuthnrCommands], [Section 5.1].
A cryptographically wrapped Raw Key Handle is called Key Handle.
Relation to Companion Program L3 GlobalPlatform: Not applicable to AROE. Calibration No calibration required. L1 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, Provide the Security Secretariat with a description of how the requirement above is met.
L2 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23) | ||
1.6 | UAF + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
Supporting Transaction Confirmation is OPTIONAL for Authenticators.
If the Authenticator supports Transaction Confirmation Display, then it SHALL hash the Transaction Content using an Allowed Hashing Cryptographic Function ([UAFAuthnrCommands] Section 6.3.4, [WebAuthn] Section 10.2 and 10.3). Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1 component (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-16) | ||
1.7 | UAF+FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
If the Authenticator uses the KHAccessToken method of binding keys to apps,
then when responding to a “Register”, “Sign”, or “Deregister” command which
includes the AppID/RP ID, the Authenticator SHALL use an Allowed Hashing or Data
Authentication Cryptographic Function to mix the ASM-provided KHAccessToken and AppID/RP ID.
If the Authenticator uses an alternative method of binding keys to apps, the vendor SHALL describe why this method provides equivalent security. Equivalent security means, (1) it prevents other apps (not originating from the same RP) from using the key and (2) in the case of bound Authenticators, it prevents other FIDO Clients of triggering the use of that key, and (3) it may rely on the underlying HLOS platform to work as expected. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FDP_IFC.1, FDP_IFF.1 and FCS_COP.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-16) | ||
1.8 | UAF; Consumer + Enterprise; TVFR; L1 and higher | ||
If the Authenticator uses the KHAccessToken method of binding keys to apps,
then the Authenticator SHALL NOT process a “Deregister” command prior to
validating the KHAccessToken. [UAFAuthnrCommands], [Section 6.4.4]
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FDP_IFC.1 and FDP_IFF.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-13) | ||
1.9 | UAF + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
Supporting Transaction Confirmation is OPTIONAL for Authenticators.
If the Authenticator supports Transaction Confirmation Display, then it SHALL display the transaction content supplied in the “Sign” command. [UAFAuthnrCommands], Section 6.3.4, [FIDOGlossary], and [WebAuthn] Sections 10.2 and 10.3.
If the Metadata Statement related to this Authenticator claims Transaction Confirmation Display support with
If Relation to Companion Program L3 GlobalPlatform: (Applies if the Authenticator supports Transaction Confirmation and the Transaction Confirmation Display is implemented by the AROE) AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-PP] and [TEE-EM]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, describe how this requirement can be verified through documentation review. Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-10) | ||
1.10 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L1 and higher | ||
Authenticators SHALL validate data input to the Authenticator to defend
against buffer overruns, stack overflows, integer under/overflow or other such
invalid input-based attack vectors.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FAU_ARP.1, FDP_IFC.1, FDP_IFF.1 and FMT_MSA.3 components (see [TEE-PP]). Calibration L1: At L1, the Authenticator Application needs to verify only the inputs to the Authenticator Application before they are processed further by the underlying operating environment. L2: At L2, this requirement SHALL be applied to all inputs that can impact FIDO Security Goals or fulfillment of the FIDO Authenticator Security Requirements, including all those inputs into the FIDO implementation. All inputs to the Authenticator, including those not directly related to the FIDO implementation such as general inputs to the AROE, SHOULD meet this requirement. L3 GlobalPlatform: At L3 GlobalPlatform, this requirement SHALL be met for all inputs to the Authenticator. At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, this requirement SHALL be met for all inputs to the Authenticator. At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, this requirement SHALL be met for all inputs to the Authenticator. At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). Note At L2, L3 and L3+ the entire AROE is likely to be within the authenticator boundary and thus part of the Authenticator. Examples of inputs directly related to the FIDO authenticator are FIDO protocol messages and FIDO authenticator configuration inputs. Examples of inputs to the AROE that are not directly related to FIDO are calls to configure the AROE itself or get status from the AROE itself. if the AROE can load and run an application like a signed ELF file, that signed ELF file is an input to the authenticator and the code for verifying and loading the ELF file are subject to this requirement. This is because a malicious ELF file could allow an attacker to compromise the AROE kernel and thus compromise FIDO code running on the AROE. At L2, L3 and L3+ the inputs to the Authenticator are primarily inputs that come from the less-secure or non-secure world outside the AROE. These are typically calls that come from the High-Level or Rich OS. Inputs between modules and subsystems within the AROE are not considered inputs for this requirement. Data read by the AROE from unsecured storage is also considered an input to the AROE. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale that the Authenticator validates all data input to the Authenticator.
Provide a documentation review procedure to confirm that the Authenticator’s design is consistent with
the provided rationale. Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement
The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement
The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-28) | ||
1.11 | UAF + FIDO2; Consumer + Enterprise; DaD; L2+ and higher | ||
If the Authenticator has a Transaction Confirmation Display,
the AppID/RP ID SHALL be displayed to the user when a “Register”, “Sign”, or “Deregister” (UAF) command is received.
Displaying the AppID/RP ID SHALL meet the same security characteristics that apply to the Transaction Confirmation Display (see requirement 1.9). Relation to Companion Program L3 GlobalPlatform: (Applies if the Authenticator supports Transaction Confirmation and the Transaction Confirmation Display is implemented by the AROE) AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-PP] and [TEE-EM]). Calibration No calibration required. L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-10) |
No. | Requirement | Security Measures | |
---|---|---|---|
2.1.1 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
The vendor SHALL document all Authenticator Security Parameters (ASPs).
Data parameters used by or stored within the Authenticator which are FIDO Relevant are called
Authenticator Security Parameter.
These SHALL, at minimum, include all FIDO user verification reference data,
FIDO biometric data, Key Handle Access Tokens, User Verification Tokens
(see [UAFAuthnrCommands], Section 5.3 and [FIDOGlossary]),
signature or registration operation counters, FIDO Relevant cryptographic
keys, privacy sensitive data, and FIDO relevant Allowed Random Number Generator state
data. Biometric data is defined as raw captures off the sensor, stored
templates, candidate match templates, and any intermediate forms of biometric data.
Biometric data not used with FIDO is excluded.
Note
Note that the User Verification Token defined
by UAF is different from the Note Note that the keys generated when using FIDO2 ClientPIN subcommands are considered ASPs. Relation to Companion Program L3 GlobalPlatform: The AROE Security Target MUST be provided to support this requirement (see [TEE-PP] and [TEE-EM]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-1, SM-2, SM-6, SM-13, SM-15, SM-16, SM-26) | ||
2.1.2 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
For each Authenticator Security Parameter, the vendor SHALL document the protections
that are implemented for this parameter in order to support the FIDO Authenticator
Security Goals or FIDO Authenticator Security Requirements, the location where this
parameter is stored, how the parameter is protected in each storage location, how
and when the parameter is input or output from the Authenticator, in what form the
parameter is input or output, and when (if ever) the parameter is destroyed. Those
Authenticator Security Parameters whose confidentiality MUST be protected in order
to support the FIDO Security Goals or FIDO Authenticator Security Requirements
SHALL be documented as “Secret Authenticator Security Parameters”; these SHALL, at
minimum, include any of the following that are FIDO Relevant: secret and
private keys, Allowed Random Number Generators’ state data,
FIDO user verification reference data, and FIDO biometric data.
Note Please note that the keys stored for the FIDO2 large-blob support and for credBlob extension are Authentiator Security Parameters but not Secret Authenticator Security Parameters as they are passed outside the Authenticator Boundary. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-PP] and [TEE-EM]). Remark: Protection of biometric data should be provided through the AROE biometric system. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, the vendor SHALL describe the reliance of the Authenticator Application on the underlying operating environmentfor those Authenticator Security Parameters which are not fully maintained in the Authenticator Application. L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-1, SM-2, SM-6, SM-13, SM-15, SM-16, SM-26) | ||
2.1.3 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
For each Authenticator Security Parameter that is a cryptographic key that is
generated, used, or stored within the Authenticator, the vendor SHALL document
how this key is generated, whether the key is unique to a particular Authenticator
or shared between multiple Authenticators, and the key’s claimed cryptographic
strength. This claimed cryptographic strength SHALL NOT be larger than the maximal
allowed claimed cryptographic strength for the underlying algorithm, as specified
in the “Allowed Cryptography List” [FIDOAllowedCrypto]. If the key is used with an algorithm not listed
on the “Allowed Cryptography List” [FIDOAllowedCrypto], then the claimed cryptographic strength for
this key SHALL be zero.
Note This requirement interacts with requirement 5.4 as the cryptographic strength of a key might get degraded - depending on potential side channel attacks - slightly each time the key is used. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.1 component (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, the vendor SHALL describe the reliance of the Authenticator Application on the underlying operating environmentfor those Authenticator Security Parameters (where stored, how protected, ...) which are not fully maintained in the Authenticator Application. If a cryptographic key is generated using an RNG with an unknown cryptographic strength, the cryptographic strength of that key is unknown. L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-1, SM-2, SM-6, SM-13, SM-16, SM-26) | ||
2.1.4 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
The vendor SHALL document the Authenticator’s Overall Claimed Cryptographic Strength;
the Overall Authenticator Claimed Cryptographic Strength SHALL be less than or equal
to the claimed cryptographic strength of all the Authenticator Security Parameters
that are cryptographic keys.
Note The security strength is a number associated with the amount of work (that is, the number of operations) that is required to break a cryptographic algorithm or system. It is specified in bits and it is often a value like 80, 112, 128, 192, 256. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1 components (see [TEE-PP]). Calibration L1: At L1, if the security strength for the RNG is not known, an unknown Overall Claimed Cryptographic Strength SHALL be assumed - which is allowed at L1. L2: At L2, the Authenticator’s Overall Claimed Cryptographic Strength SHALL at least be greater than or equal to 100 bits and it SHOULD be greater than or equal to 112 bits. L3 GlobalPlatform: At L3 GlobalPlatform, the Authenticator’s Overall Claimed Cryptographic Strength SHALL at least be greater than or equal to 100 bits and it SHOULD be greater than or equal to 112 bits. L3: At L3, the Authenticator’s Overall Claimed Cryptographic Strength SHALL at least be greater than or equal to 100 bits and it SHOULD be greater than or equal to 112 bits. L3+: At L3+, the Authenticator’s Overall Claimed Cryptographic Strength SHALL at least be greater than or equal to 100 bits and it SHOULD be greater than or equal to 112 bits. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
L3 Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
L3+ Test Procedure
The Tester SHALL verify the provided rationale and documentation meets the requirement.
|
(SM-1, SM-16, SM-26) | ||
2.1.5 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L1 and higher | ||
All Authenticator Security Parameters within the Authenticator SHALL be
protected against modification and substitution.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FDP_ACC.1, FDP_ACF.1, FDP_IFC.2, FDP_IFF.1, FDP_ITT.1, FDP_ROL.1, FDP_SDI.2, FMT_MSA.3, FMT_MTD.1, FPT_FLS.1, FPT_INI.1, FPT_ITT.1 and FPT_TEE.1 components (see [TEE-PP]). Calibration L1: At L1, the Authenticator Application SHALL follow best security practices specific to the underlying operating environment for protecting the Authenticator Security Parameters against being modified or substituted by (1) the user and (2) other applications. Due to the nature of L1 it is acceptable for the Authenticator Application to rely on the underlying operating environment for protecting the Authenticator Security Parameters against other applications running in the same operating environment.
L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE.
L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale that all Authenticator Security Parameters within the Authenticator are
protected against modification and substitution.
Provide a documentation review procedure to confirm that the Authenticator’s design is consistent
with the provided rationale. Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement
The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement
The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-1, SM-6, SM-13, SM-15, SM-16) | ||
2.1.6 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L1 and higher | ||
All Secret Authenticator Security Parameters within the Authenticator SHALL be
protected against unauthorized disclosure.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FDP_ACC.1, FDP_ACF.1, FDP_IFC.2, FDP_IFF.1, FDP_ITT.1, FDP_ROL.1, FMT_MSA.1, FMT_MSA.3, FPT_ITT.1 and FPT_INI.1 components (see [TEE-PP]). Calibration L1: At L1, the Authenticator Application SHALL follow best security practices specific to the underlying operating environment for protecting the Authenticator Security Parameters against being disclosed to (1) the user and (2) other applications. At L1, the Authenticator Application (either by implementing appropriate protection mechanisms directly in the Authenticator Application or by leveraging the underlying operating environment for implementing those) SHALL protect the Secret Authenticator Security Parameters from being disclosed to other application running in the same operating environment. If the Authenticator Application cannot leverage mechanisms of the underlying operating environment for that, it SHALL at least store such parameters in encrypted form such that the decryption key is not available to the other applications running in the same operating environment. For example, by using a user provided secret to be entered or a key derived from some biometric at startup of the Authenticator Application using a best practice key derivation function (for converting a low entropy password into a cryptographic key, e.g. according to [SP800-132]). L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale that all Secret Authenticator Security Parameters within the
Authenticator are protected against unauthorized disclosure.
Provide a documentation review procedure to confirm that the Authenticator’s design is consistent
with the provided rationale. Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement
The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement
The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-1, SM-13, SM-16) | ||
2.1.7 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
The Authenticator SHALL use an Allowed Data Authentication, Signature, or
Key Protection Cryptographic Function to protect any externally-stored
Authenticator Security Parameters against modification or the replay of
stale (but possibly previously authenticated) data.
Note In this requirement, externally-stored refers to parameters stored outside of the Authenticator boundary. For example, cloud storage services. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1, FDP_ACC.1, FDP_ACF.1 and FDP_SDI.2 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-6, SM-13, SM-15, SM-16, SM-25) | ||
2.1.8 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
The Authenticator SHALL protect any externally-stored Secret Authenticator Security
Parameters using an Allowed Key Protection Cryptographic Function.
[UAFAuthnrCommands], [Sections 5.1, 6.3.4] for RawKeyHandles.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1, FDP_ACC.1 and FDP_ACF.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-6, SM-13, SM-15, SM-16, SM-25) | ||
2.1.9 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
Any key used with an Allowed Key Protection Cryptographic Function to protect
an externally-stored secret or private key which is an Authenticator Security
Parameter SHALL have a claimed cryptographic strength greater than or equal to
the claimed cryptographic strength of the key being wrapped.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, externally-stored means stored outside the Authenticator boundary. In the case of L1 this Authenticator boundary includes the underlying operating environment. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-6, SM-16, SM-25) | ||
2.1.10 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
Authenticators might offload the persistent storage of key material to components
outside the Authenticator boundary if they cryptographically wrap it appropriately.
Such structure containing cryptographically wrapped key material or
information related to keys is called Key Handle containing a key
(in [WebAuthn] the term Credential ID is used instead of Key Handle).
If the Authenticator uses such Key Handle approach, the Authenticator SHALL verify that any Key Handle containing a key provided to the Authenticator was generated by that Authenticator using an Allowed Data Authentication or Signature Cryptographic Function; if not, then no signature using this key SHALL be generated. [U2FRawMsgs], [Section 5.1] and [UAFAuthnrCommands], [Annex A Security Guidelines, entry Wrap.sym]. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.1, FCS_COP.1 and FCS_RNG.1 components (see [TEE-PP]). Calibration L1: At L1, this Authenticator boundary includes the underlying operating environment. L2: No calibration required. L3 GlobalPlatform: No calibration required. L3: No calibration required. L3+: No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-2, SM-16, SM-25, SM-27) | ||
2.1.11 | UAF; Consumer + Enterprise; TVFR; L1 and higher | ||
If the Authenticator supports the KHAccessToken [UAFAuthnrCommands]
method of binding keys to apps,
then the Authenticator SHALL verify that the supplied KHAccessToken is associated with
the referenced Key Handle prior to using that Key Handle to generate a signature;
if not, then no signature associated with this Key Handle SHALL be generated.
[UAFAuthnrCommands], [Section 6.3.4].
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1, FDP_IFF, FDP_IFC and FIA_USB.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-13) | ||
2.1.12 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
If the Authenticator supports the Key Handle approach, then
the Authenticator SHALL verify that any Key Handle containing a key provided
to the Authenticator is associated with the application parameter (U2F) or AppID (UAF) or RP ID (FIDO2)
by using an Allowed Data
Authentication or Signature Cryptographic Function; if not, then no signature
using this key SHALL be generated.
[U2FRawMsgs], [Section 5.1] and [UAFAuthnrCommands], [Section 6.3.4].
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FDP_IFC.1, FDP_IFF.1 and FCS_COP.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlaform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-2, SM-16, SM-25, SM-27) | ||
2.1.13 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||
The Authenticator SHALL generate an independent
User Authentication Key for each registration [UAFAuthnrCommands], [Section 6.2.4].
Note Any User Authentication Key (Uauth) SHALL only be used for authenticating one user account to one particular Relying Party. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.1, FCS_COP.1 and FCS_RNG.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-2, SM-27) | ||
2.1.14 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
The Authenticator SHALL support Full Basic attestation (or an attestation method with
equal or better security), or Attestation CA [WebAuthn] section 6.3.3,
or ECDAA attestation [FIDOEcdaaAlgorithm].
The Attestation Private Key SHALL only be used to sign well-formed FIDO attestation objects. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1 components (see [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-3) | ||
2.1.15 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2+ and higher | ||
All Authenticator User Private Keys (Uauth.priv) SHALL only be usable for generating
well-formed FIDO signature assertions. [U2FImplCons], [Section 2.7]
and [UAFAuthnrCommands], [Section 5.2].
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1 components (see [TEE-PP]). Calibration No calibration required. L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1) | ||
2.1.16 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
In the event that an Authenticator Security Parameter is “destroyed” it SHALL be made
permanently unavailable so it can never be read or used again.
Note
The means by which this is accomplished is implementation and level
dependent. It may by simply deleting it, overwriting it, destroying the key material
used to encrypt it or other.
Note
The purpose of this requirement is primarily so that a factory reset carried out by
an end user before they sell or dispose of their device giving assurance that the new
owner cannot re instate authentication keys.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.4 and FDP_RIP.1 components (see [TEE-PP]). Calibration L1: At L1, the Authenticator Application SHALL follow best security practices specific to the underlying operating environment for protecting the Authenticator Security Parameters against being recovered and used. L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. L3 GlobalPlatform: At L3 GlobalPlatform, the means for making the Authenticator Security Parameter permanently unavailable SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the means for making the Authenticator Security Parameter permanently unavailable SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the means for making the Authenticator Security Parameter permanently unavailable SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-24) | ||
2.1.17 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
Authenticators might support a function allowing the user resetting the Authenticator to the original (factory) state,
i.e. deleting all user specific information.
This process is called factory reset in this document.
In the event of a factory reset, the Authenticator SHALL destroy all User-specific Secret Authenticator Security Parameters other than any Allowed Random Number Generator’s state. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.4, FCS_RNG.1, FDP_IFF.1, FDP_RIP.1 and FMT_MSA.1 components (see [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-18, SM-19) | ||
2.1.18 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
Any time the Authenticator generates an Authenticator Security Parameter which is
a key for use with an algorithm specified in the “Allowed Cryptography List” [FIDOAllowedCrypto],
the Authenticator SHALL generate keys as required by the standard referenced
in the “Allowed Cryptography List” [FIDOAllowedCrypto] for that algorithm.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.1 and FCS_RNG.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-16, SM-21) | ||
2.1.19 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||
Any wrapped FIDO biometric data and FIDO user verification reference data that
is output from the Authenticator SHALL only be able to be unwrapped by the
Authenticator that produced this data.
Note Cryptographic Collision would be an exception. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.1 and FCS_COP.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that
the Authenticator’s design is consistent with the provided rationale.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-27) | ||
2.1.20 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||
Any wrapped Authenticator User Private Key (UAuth.priv) that is output from
the Authenticator SHALL only be able to be unwrapped by the Authenticator
that produced this data.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.1 and FCS_COP.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that
the Authenticator’s design is consistent with the provided rationale.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-6, SM-26) |
No. | Requirement | Security Measures | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
2.2.1 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||||||||||||
An Allowed Random Number Generator or Allowed Key Derivation Function SHALL be used for all key generation resulting in an Authenticator Security Parameter and for any random input for FIDO Relevant signature generation.
An Allowed Random Number Generator or Allowed Key
Derivation Function SHALL be used to generate
the Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_CKM.1, FCS_COP.1 and FCS_RNG.1 components (see [TEE-PP]). Calibration L1: At L1, the Authenticator Application SHOULD use the OSes RNG if it is an Allowed RNG according to [FIDOAllowedCrypto] and add entropy as described in [FIDOAllowedCrypto], section "Random Number Generator". Otherwise the Authenticator Application SHALL implement its own Allowed RNG using the OSes RNG and potentially other sources for seeding entropy. L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. L3 GlobalPlatform: No calibration required. L3: No calibration required. L3+: No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-16) | ||||||||||||
2.2.2 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||||||||||||
The security strength (see the relevant Allowed Deterministic Random Number Generator specification
document cited in the “Allowed Cryptography List” [FIDOAllowedCrypto]) of any Authenticator’s Allowed Deterministic
Random Number Generator SHALL be at least as large as the largest claimed
cryptographic strength of any key generated or used.
If the Authenticator generates a key with an Allowed Key Derivation Function, or uses a key with parameters
generated by an Allowed Key Derivation Function (see the “Allowed Cryptography List” [FIDOAllowedCrypto]),
then the security level of the Allowed Key Derivation Function SHALL be at least as large as the claimed
cryptographic level of they key generated or used.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_RNG.1 component (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1, SM-26) | ||||||||||||
2.2.3 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||||||||||||
If the Authenticator adds Authenticator generated nonces
and the nonces are produced randomly, then an Allowed Random Number Generator
SHALL be used for nonce generation.
Authenticators with unrestricted keys (i.e. Metadata Statement isKeyRestricted: false) don't exclusively control the to-be-signed message and hence have no need to generate a nonce. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_RNG.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-16) | ||||||||||||
2.2.4 | UAF; Consumer + Enterprise; TVFR; L2+ and higher | ||||||||||||
The Authenticator generated nonce SHALL be of sufficient length to guarantee that the probability
of collision between produced Authenticator nonces for a particular User Authentication Key
is less than 2^-32 after the maximum number of signatures allowed to be generated using
that key.
If the Authenticator generated nonce value added is 16 bytes or longer, then this requirement can be considered to have been fulfilled without a separate argument. Note This interacts with requirement 5.4, describing the maximum possible number of signatures.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_RNG.1 component (see [TEE-PP]). Calibration No calibration required. L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-8, SM-22) | ||||||||||||
2.2.5 | UAF + U2F + FIDO2; Consumer + Enterprise; L3 and higher | ||||||||||||
If the Authenticator implements a Deterministic Random Number Generator, then an Allowed Physical True Random Number Generator SHALL always be used for seeding (seed, re-seed, seed update). Note Random Numbers means non-reproducible random numbers. In the instance that reproducible values are desired, using a Key Derivation Function (KDF) is dealt with elsewhere in this requirement set. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_RNG.1 component (see [TEE-PP]). Calibration No calibration required. L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-16) |
Support of Signature counters is OPTIONAL.
Authenticators with unrestricted keys (i.e. Metadata Statement field isKeyRestricted: false) cannot support these counters.
Authenticators with restricted keys (i.e. Metadata Statement field isKeyRestricted: true), SHALL set the signature counter value in the assertions to "0" to indicate that they are not supported.
An Authenticator using (1) restricted keys (i.e. Metadata Statement field isKeyRestricted: true) and (2) including values other than "0" for the counter "claims" to support the counter.
If the Authenticator claims supporting signature counter(s), it MAY implement a single signature counter for all keys or one signature counter per key.
No. | Requirement | Security Measures | |
---|---|---|---|
2.3.1 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L1 and higher | ||
The vendor SHALL document whether the Authenticator supports Signature
Counters and if they are supported, the vendor SHALL document whether one
Signature Counter per authentication key is implemented or one (global) Signature Counter
for all authentication keys (i.e. at least one counter covering multiple keys).
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration L1: At L1, Authenticators not running in an Allowed Restricted Operating Environment (AROE) [FIDORestrictedOperatingEnv], SHALL support signature counter(s). L2: No calibration required. L3 GlobalPlatform: No calibration required. L3: No calibration required. L3+: No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
|
(SM-15) | ||
2.3.2 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-2; L1 and higher | ||
If the Authenticator claims supporting signature counter(s), then the Authenticator
SHALL ensure that the signature counter value contained in FIDO signature assertions
related to one specific authentication key either
[U2FImplCons], [Section 2.6] and [UAFAuthnrCommands] [Section 6.3.4]. If one signature counter per authentication key is implemented (recommended option), it SHALL be incremented by 1 per signature operation. If a global signature counter is implemented, it SHOULD be incremented by a positive random number per signature operation (see [UAFAuthnrCommands] [Section A Security Guidelines, entry SignCounter]). Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-15) |
User Verification is defined as verifying that a particular user, typically a human or person, has supplied some input so the authenticator can know it is that particular human or person. The input is typically is something only the user knowns or possesses. This definition is primarily used to refer to a single method, not multifactor authentication based the combination of methods. Examples are a PIN, password or fingerprint.
An External User Verification is the same as a user
verification except that its user input comes from outside the
authenticator boundary. It is marked as such with an _EXTERNAL
suffix in the User Verification Methods in the "FIDO Registry of
Predefined Values" [FIDORegistry] and may appear anywhere the
USER_VERIFY
constants are used (e.g., Metadata
and userVerificationMethod extension).
For example,
USER_VERIFY_PASSCODE_EXTERNAL
is a PIN authenticator for which the PIN
input (keyboard, touch screen or such) is outside of the authenticator
boundary.
The only user verification methods that may be designated
as _EXTERNAL
are PIN, password, passcode and
pattern. Biometric user verification may not be designated
as _EXTERNAL
.
Implementations of clientPIN and common HLOS PINs (lock screen)
can be either external user verification or internal
(no _EXTERNAL
suffix) at L1 depending on where the
authenticator boundary is drawn. At L1 the HLOS is often inside
the authenticator boundary. At L2 and higher, since the HLOS is
rarely inside the authentication boundary, they will typically
have to be
external user verification.
User Presence Check is defined as obtaining some explicit gesture from the user (i.e. a natural person) that they are present. Examples are pressing a button, touching a touch screen or pad, or any biometrics that require a conscious action from the user such as touching a fingerprint sensor (but not passive biometrics such as looking at a device or checking an EKG).
PIN entry fits the above criteria for a user presence check and is thus considered to provide a user presence check. While external user verification is allowed, external user presence checking is not, generally implying that a user verification that is also providing a user presence check must be inside the authenticator boundary.
A common scenario occurs with an authenticator typically called
a security key that has a user presence check that
is inside the authenticator boundary, but relies on the CTAP
clientPIN for user verification. It would thus
declare USER_VERIFY_PASSCODE_EXTERNAL
and USER_VERIFY_PRESENCE
in its metadata or UVM
extension and is certifiable at L2 and higher.
Some may consider external user verification methods to have different security characteristic from those that are not.
Also see the "FIDO Technical Glossary" [FIDOGlossary]. The definitions here are normative and take precedence over those in the FIDO Glossary.
No. | Requirement | Security Measures | |
---|---|---|---|
3.1 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
If the Authenticator indicates it can perform or has performed a user presence check, the Authenticator shall provide a mechanism to obtain a gesture or action from the user establishing the user authorizes the given authentication action. For U2F, indication is by the user presence bit in the Authentication Response Message (see [U2FRawMsgs]).
In UAF, this is indicated
by In FIDO2 this is indicated by the "up"=1 flag in the MakeCredential or GetAssertion responses (see [FIDOCTAP]). Note This requirement prevents remote attacks. The user has to confirm an action by pressing a button or providing some other (physical) gesture. Note A user presence check could be implicit as part of a user verification such as the case with a fingerprint Authenticator where the user always performs an action. A user presence check could also be part of but separate from an authentication such having to push a button at the same time face recognition is happening. It can also just be a simple push of a button with no user verification at all. Note
Any user verification method that implicitly performs a
user presence check must explicitly indicate that it does,
or it will be assumed that it does not. For example, all
fingerprint Authenticators should indicate they perform
user presence check by setting "up"=1 for FIDO2 and
Note The metadata indication of support for user presence check is irrelevant for certification for U2F and FIDO2, but not UAF. Metadata is the only way for UAF implementations that do not support the fido.uaf.uvm extension to indicate support for user presence check to the relying party. Calibration No calibration required. All Levels Vendor Questionnaire
This requirement MUST be demonstrated to the Test Proctor during Interoperability Testing.
Documentation is not required.
All Levels Test Procedure
The Security Secretariat SHALL verify the requirement during Interoperability
Testing.
|
(SM-1, SM-5) | ||
3.2 | UAF + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
For FIDO2, if an Authenticator indicates "uv"=1 in either a GetAssertion or a MakeCredential, then the Authenticator MUST have a mechanism to verify the user and have performed user verification or have accepted and verified the pinAuth parameter. (see [FIDOCTAP]). Similarly, for UAF, if an Authenticator indicates it performed user verification in either a registration or authentication by way of the User Verification Method Extension (fido.uaf.uvm) [UAFRegistry], it MUST have performed a user verification.
If either a UAF or FIDO2 authenticator supplies metadata,
it MUST correctly indicate how it supports user
verification in
the
If either a UAF or FIDO2 authenticator supplies metadata
and implements a mode where no user verification is
performed or might not be performed, it MUST list one user
verification as Note The definition of user verification in the "FIDO Technical Glossary" [FIDOGlossary] considers user presence check to be a form of user verification. That definition is not applicable for this requirement. Note See note above on explicitly indicating User Presence for Authenticators that intrinsically perform User Presence as a part of User Verification. Note
This requirement does not, nor any other requirement,
gaurantee that user verification is always performed when
FIDO2 MakeCredential or UAF registration happens. If a
relying party wants this behavior, then it must make sure
that it requests it during those operations or that the
authenticator does not indicate Calibration No calibration required. All Levels Vendor Questionnaire
This requirement MUST be demonstrated to the Test Proctor during Interoperability Testing.
Documentation is not required.
All Levels Test Procedure
The Security Secretariat SHALL verify the requirement during Interoperability
Testing.
|
(SM-1, SM-5) | ||
3.3 | |||
3.3 was removed as a U2F Security Requirement for L1 and higher as part of DV 1.1.0. See Requirement 3.4. Requirement text within DV 1.0.2 read as follows:
|
|||
3.4 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||
A time period after a successful user verification, user presence check or both is defined as the cached period. During the cached period the user verification and/or presence check stays valid and the authenticator can perform multiple operations such as registration, generating authentication assertions, enrolling new biometrics without further user verification or presence check. The cached period starts when user verification and/or presence check completes successfully. A cached period is one of three types: A cached period's type is set when it starts and cannot be changed. If another type is needed, a new user verification and/or presence check must be performed; all timeouts and the associated relying party reset.The time from the start of the cached period until the first authenticator operation starts is the time-to-start and has a maximum:
The time from the start of the cached period until the last authenticator operation completes is the time-to-complete and has a maximum:
During the cached period, multiple operations (e.g. CTAP methods), may be invoked in the authenticator. A relying party is associated with each cached period. This may be set when it is first created. If not set explicitly when created, then it is set to the first relying party the cached period is used with. If a subsequent operation is invoked for a different relying party, the authenticator must either reject that operation or initiate a new cached period by performing a new user verification and/or presence check. Only one use of the cached user presence check is allowed. Once it is used, a new user presence check must be performed.
Any authenticator-external identifier
(e.g., Note
This requirement is general and applies to all user
verification and/or user presence check
caching mechanisms. It covers
This requirement is general and applies to any FIDO
protocol mechanisms or extensions for the relying party
to request a particular timeout and for the
authenticator to report the timeout in effect. This
requirement applies to existing mechanisms
like This requirement is designed to work equally for authenticators that do user verification, biometric enrollment and credential management within the authenticator boundary as for authenticators that use External User Verification (collect PIN input outside the authenticator boundary). Note To follow this requirement, an authenticator must either adhere to the base maximum timeout values, report a different value in the metadata or report a different value in FIDO protocol messages. For operations like biometric enrollment that do not associate a relying party, timeouts are either fixed as described in the metadata or are the base values.
As of the initial writing of this requirement (January
2020), there are no metadata fields to report the
time-to-start or the time-to-complete. There is only one
protocol
mechanism, It is allowed for the authenticator to implement additional timeouts such as a lack-of-activity timeout that expires after 30 seconds of receiving no CTAP commands as long as the above requirements are still met. These timeouts are maximums. An authenticator may use shorter timeouts. If an authenticator uses shorter timeouts it is does not need to report them to the relying party. The purpose of the maximum time-to-start is to be sure the user can know that they are authorizing for a particular relying party and only that relying party. For example, they might verify for a transaction for First Bank. Something may go wrong with that transaction with no assertion generated for it. If there is no maximum time-to-start, many minutes later, an assertion for Second Bank might be generated without any user verification required. The purpose of the maximum time-to-complete is to limit the time for which authentication is valid for the associated relying party. To give an example of what happens without this timeout, an attacker may come to "own" the non-authenticator part of a user's phone that was used to log in to a bank. That attacker would be able to log back into that bank for hours or days. The bank's server timeouts do not help because the attacker can just re authenticate. The 10-minute base value for time-to-complete is for two reasons. The first is to allow biometric enrollment, which may involve a number of steps to complete. The second is to accommodate worst-case scenarios such a slow and simple authenticator working with a large number of credentials over a slow CTAP connection that might take as much as 10 minutes to complete.
The [FIDOCTAP] specification has text discussing the
lifetime of getting a Some may consider these timeouts to be of little benefit for authenticators using External User Verification because the attacker outside the authenticator boundary can capture and replay the PIN whenever the timeout goes off to renew their authentication. While this is true, not all authenticators collect the PIN outside the authenticator boundary and it is simpler to have a uniform timeout requirement for all authenticators. Note The first operation in a cached period may have no associated relying party (e.g. a biometric enrollment). It is currently allowed for subsequent authenticator operations for the same cached period to then have an associated relying party. For example, the user might initiate and complete a biometric enrollment in 5 minutes and then 4 minutes later authenticate to a relying party. There would be a user verification when the biometric enrollment started, but not necessarily for the authentication to the relying party. Similar is true when the relying party operation is first. Note that this gives a 10-minute window after the start of a biometric enrollment for an attacker controlling the platform to generate authentications for one relying party. This non-requirement allows for biometric enrollment and registration with a relying party to be performed in line / together and require only one user verification. Note
The CTAP specification refers to the
authenticator-external identifier as
the
Multiple cached periods
(e.g., See also requirement 2.2.1 which requires the identifier be generated with a certified random number generator. Calibration L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential [TEE-PP]. The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the requirement SHALL be fulfilled so as to protect against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the requirement SHALL be fulfilled so as to protect against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L1 Vendor Questionnaire
Provide the Security Secretariat with
a rationale of how the requirement above is
met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure
to confirm that the Authenticator’s design is
consistent with the provided rationale. Please
provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
L3 Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements, including
the following supporting documents:
|
(SM-5) | ||
3.5 | UAF; Consumer + Enterprise; GaVR-1; L1 and higher | ||
This requirement has been renumbered to requirement 4.8 because it is privacy related. | (SM-5, SM-10) | ||
3.6 | UAF; GaVR-1; L1 and higher | ||
This requirement has been renumbered to requirement 4.9 because it is privacy related. | (SM-5, SM-10) | ||
3.7 | UAF + U2F + FIDO2; Consumer + Enterprise; L2 and higher | ||
All Authenticator user input and output must be protected from data injection, disclosure, modification or substitution through use of a Trusted Path. This trusted path SHALL allow a user to communicate directly with the Authenticator, SHALL only be able to be activated by the Authenticator or the user, and cannot be imitated by software outside of the AROE. At some certifications levels an exception is made to this requirement for external user verification. See the calibration for this requirement. UAF Transaction Confirmation only has to adhere
to this requirement and use a trusted path when it sets
either the
Note All Authenticators have a need to accept user input or provide user output except those that are Silent Authenticators [FIDOGlossary] or exclusively implement external user verification. A Trusted Path is the means by which a user and a security functionality of the Authenticator can communicate with the necessary confidence. In other words, a Trusted Path allows users to perform functions through an assured direct interaction with the security functionality of the Authenticator. For instance, plaintext ASPs may be entered into or output from the Authenticator in an encrypted form (e.g. display text digitally signed). This means that any user output performed under this requirement SHALL be protected from a display overlay attack. The exception for external user verification methods is only for the user input and output. Stored / enrolled reference data (templates) and the comparison of the input to these must still be protected per requirements at the required calibration level. Relation to Companion Program L3 GlobalPlatform: (If Authenticator is not silent) AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM] and [TEE-PP]). Remark: The input/output from/to the user should be provided through the AROE’s TUI and/or biometric system. Calibration L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. Authenticators may implement external user verification. If they do so, they must indicate so in both the metadata and in the UVM extension. L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). Authenticators that implement external user verification methods must indicate so in both the metadata and in the UVM extension. L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the
implementation meets the requirements, including
the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
L3 GlobalPlatform Test Procedure L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-5, SM-10, SM-29) | ||
3.8 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L1 and higher | ||
If the Authenticator claims to accept any input from the user, then the Authenticator SHALL protect against injection or replay of user verification data (e.g. password, PIN, biometric data and such) and/or the user presence check signal. When we say "the Authenticator claims to accept any input from the user", we mean that the Authenticator declares a user verification or user presence check method other than external user verification methods. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to FTP_ITC.1 component (see [TEE-PP]). Remark: Protection of user verification data should be provided through the AROE TUI and/or biometric system. Calibration L1: At L1, the Authenticator Application SHALL follow best security practices specific to the underlying operating environment for protecting against injection or replay of FIDO user verification or user presence checkdata. This especially means that the Authenticator Application SHALL NOT provide any API for injecting FIDO user verification or user presence data. L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. Authenticators may implement external user verification methods. If they do so, they must indicate so in both the metadata and in the UVM extension. L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the
implementation meets the requirements,
including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-5, SM-27) | ||
3.9 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L1 and higher | ||
Authenticators implementing user verification methods other than user presence check [FIDOGlossary],
SHALL rate-limit user verification attempts in order to prevent
brute-force attacks. [FIDOMetadataStatement], sections 3.1, 3.2, 3.3
and [UAFAuthnrCommands], Appendix A Security Guidelines, entry "Matcher".
The overarching requirement is based on an upper limit for the probability of a successful brute-force attack. The upper limits specified in "calibration" below. For the purposes of this requirement, a brute-force attack is defined as follows: The attacker tries all possible input combinations (e.g. passwords, PINs, patterns, biometrics...) in order to pass the user verification. In the case of biometric user verification, the attacker brings a potentially unlimited number of "friends" that can try whether their biometric characteristic is accepted (as false accept). In all cases the number of trials per time is limited by the verification speed of the authenticator and the integrity of the authenticator is not violated (e.g. no decapping of chips, no malware, ...) - since there are other requirements dealing with such attacks. Note
Relation to Companion Program L3 GlobalPlatform: (Applicable if the implementation relies on AROE time stamp services) AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement(see [TEE-EM]). This requirement is linked to FPT_STM.1 (see [TEE-PP]). Calibration L1: At L1, the time dependent probability of a successful brute-force attack on the authenticator SHALL be P(t) ≤ maximum(170/10000, (24*t+16) / 10000), with t being the time in days.For a 4 digit PIN it means up to 170 non-biometric user verification attempts in the first 6.4 days and then at least one hour delay per one of them. For a 6 digit PIN it means up to 17000 non-biometric user verification attempts in the first 6.4 days and then at least 1 hour delay per 100 of them. For a biometric, the FAR times the number of allowed attempts must be smaller than 0.017 for the first 6.4 days. After those 6.4 days, the allowed chance will increase. L2: At L2, the time dependent probability of a successful brute-force attack on the authenticator SHALL be P(t) ≤ maximum(170/10000, (12*t+16) / 10000), with t being the time in days.For a 4 digit PIN it means up to 170 non-biometric user verification attempts in the first 12.8 days and then at least a two hour delay per one of them. For a 6 digit PIN it means up to 17000 non-biometric user verification attempts in the first 12.8 days and then at least a two hour delay per 100 of them. For a biometric, the FAR times the number of allowed attempts must be smaller than 0.017 for the first 12.8 days. After those 12.8 days, the allowed chance will increase. At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the Authenticator Boundary, i.e. inside the AROE. L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). Note This implies that an attack potential calculation should be undertaken to determine what the actual rate limit should be to meet the requirement at the level. It is likely to be more restrictive for the end user than the rate described in the requirement text. L3: At L3, in addition to meeting the calibration for L2, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). Note This implies that an attack potential calculation should be undertaken to determine what the actual rate limit should be to meet the requirement at the level. It is likely to be more restrictive for the end user than the rate described in the requirement text. L3+: At L3+, in addition to meeting the calibration for L2, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). Note This implies that an attack potential calculation should be undertaken to determine what the actual rate limit should be to meet the requirement at the level. It is likely to be more restrictive for the end user than the rate described in the requirement text. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-1, SM-5, SM-27) | ||
3.10 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L2+ and higher | ||
If the authenticator supports biometric user verification (e.g. fingerprint, face recognition, etc.), then the authenticator biometric component SHALL be certified according to [FIDOBiometricsRequirements]. The Level Calibration, correspondence to Companion Programs, Vendor Questionnaires, and Test Procedures for this requirement are all specified in [FIDOBiometricsRequirements]. L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. L3+ Test Procedure The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-1, SM-5, SM-27) | ||
3.11 | UAF + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
A FIDO authenticator MUST indicate it supports user verification in its GetInfo response if at any time it indicates it performed user verification in a FIDO2 MakeCredential or GetAssertion response (see [FIDOCTAP]), or in a UAF authentication or UAF registration response. (see [UAFProtocol])
If an authenticator indicates it always performs user
verification in its metadata statement then it must always
indicate it performs user verification in its GetInfo
response. Indication that user verification is always
performed in the metadata is by way of setting one or more
of the defined bits for the different types of user
verification (e.g., setting If an authenticator indicates it supports user verification in its GetInfo response then it MUST always indicate that in its GetInfo response until factory reset is performed. If an authenticator indicates it supports user verification in its GetInfo response, it MUST perform user verification before these two operations:
Note This requirement is to ensure that authentication keys created under the control of one set of user verification data stay under control of the that set until factory reset, even through expansion of that set of user verification data through additional verification data and methods. Note This requriement assumes there is only one set of user verification reference data per authenticator and every biometric template, PIN and such is equivalent. Note If any one of the authenticator's user verification methods is an external user verification, this may be used to allow changing the user verification reference data of a user verification method inside the authenticator boundary. Some relying parties may consider this to reduce the security of the user verification methods inside the authenticator boundary. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM] and [TEE-PP]). Remark: The User Verification should be provided through the AROE's TUI and/or biometric system. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with
a rationale of how the requirement above is
met.
L2 Vendor Questionnaire
Describe how this requirement can be
verified through documentation review. Please
provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
|
(SM-1, SM-5) |
No. | Requirement | Security Measures | |||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
4.1 | UAF + U2F + FIDO2; Consumer; GaVR-1; L1 and higher | ||||||||||||||||||||
An Authenticator SHALL NOT have any Correlation Handle that is visible
across multiple Relying Parties.
If the authenticator puts the exact identical attestation key into a group of Authenticators (e.g., group of devices, phones, security keys...) so that the attestation key doesn't become a Correlation Handle, then each group of Authenticators MUST be at least 100,000 in number. If less than 100,000 Authenticators are made, then they MUST all have the same attestation key. Note The goal of this requirement is that, for privacy reasons, the Authenticator MUST NOT leak information about the user across multiple Relying Parties by sharing a Correlation Handle. This requirement specifically applies to KeyIDs/CredentialIDs, KeyHandles etc. The public key used to verify a signed attestation, or the key ID of the public key used to verify an attestation becomes a Correlation Handle when it is unique per Authenticator and used with an attestation scheme like Full Basic Attestation. One approach to mitigate this is to use the indentical key in 100,000 or more authenticators. Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23) | ||||||||||||||||||||
4.2 | UAF + U2F + FIDO2; Consumer; GaVR-1; L1 and higher | ||||||||||||||||||||
An Authenticator SHALL NOT provide information to one Relying Party that can be used to uniquely
identify that Authenticator instance to a different Relying Party.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23) | ||||||||||||||||||||
4.3 | UAF + FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
An external party with two (AAID, KeyID) / (AAGUID, CredentialID) tuples produced using the Authenticator SHALL NOT
be able to establish that they were produced using the same Authenticator.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, security guidance and test documentation MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_RNG.1 component (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23) | ||||||||||||||||||||
4.4 | UAF; Consumer + Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
The Authenticator’s response to a “Deregister” command SHALL NOT reveal whether
the provided KeyID was registered.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23) | ||||||||||||||||||||
4.5 | UAF+U2F; Consumer + Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
The Authenticator’s response to any command (e.g. an “Authenticate”) SHALL NOT reveal whether
a key was registered for the given AppID / RP ID without the Authenticator
either (1) requiring a KeyID / Credential ID as input or (2) verifying the user (using a method other than user presence check) -
unless the authenticator registered a key to that entity.
Note This requirement is intended to avoid third parties having physical access to an Authenticator to determine the AppIDs/RP IDs the Authenticator has been registered to - without having user consent. This means that Authenticators that (a) persistently store the Uauth key pair inside the Authenticator boundary and (b) that implement no user verification or only implement user presence check need to provide a response that cannot be distinguished from a valid authentication response. Such Authenticators could maintain a dedicated Uauth key pair for generating responses for unknown AppIDs / RP IDs. The corresponding public key shall never leave the Authenticator (since with knowledge of the corresponding public key the response could be distinguished from a response for a registered AppID / RP ID). Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements,
including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements,
including the following supporting documents:
|
SM-5 | ||||||||||||||||||||
4.6 | FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
The Authenticator SHALL implement the CredProtect extension. All levels
This requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required.
|
SM-5 | ||||||||||||||||||||
4.7 | FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
Depending on the CredProtect Level of the created Credential, an Authenticator SHALL NOT reveal certain information.
Presence of credentials If the credential was created with the userVerificationOptionalWithCredentialIDList option, the Authenticator SHALL NOT reveal whether a key was registered for the given RP ID without the Authenticator either (1) requiring a Credential ID as input or (2) verifying the user (using a method other than user presence check). If the credential was created with the userVerificationRequired option, the Authenticator SHALL NOT reveal whether a key was registered for the given RP ID without the Authenticator verifying the user (using a method other than user presence check). User fields
If the Credential was created with the userVerificationOptionalWithCredentialIDList, userVerificationRequired or userVerificationOptional option, the Authenticator SHALL NOT reveal Name, DisplayName and Icon of a User without verifying the user (using a method other than user presence check). The User ID field MAY be returned if a signature is returned. RP fields. If the Credential was created with the userVerificationRequired option, the Authenticator SHALL NOT reveal ID, Name and Icon of a RP without verifying the user (using a method other than user presence check). If the Credential was created with the userVerificationOptionalWithCredentialIDList, the Authenticator SHALL NOT reveal ID, Name and Icon of a RP without either (1) requiring a Credential ID as input or (2) verifying the user (using a method other than user presence check). If the Credential was created with the userVerificationOptional option, the Authenticator MAY reveal Name, DisplayName and Icon of an RP without verifying the user. Note
If User Verifcation is NOT performed this comes down to:
Note This requirement does not specify a default for the CredProtect value because this depends on the version of the technical specification. Because the CredProtect extension was defined after the initial spec (FIDO_2_0) was released, the default is userVerificationOptional as this is the behavior specified in that spec. With this default, it is possible to implement the CredProtect extension without violating the initial spec. Once a new specification is released (or at least defined), we can either define the default here provided we link it to the technical spec version identifier or we can leave the definition of the default up to the technical spec. Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-5, SM-10) | ||||||||||||||||||||
4.8 | UAF; Consumer + Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
The Authenticator SHALL NOT reveal the stored username(s) (UAF) prior to verifying the user.
[UAFAuthnrCommands], Section 6.3.4.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-5, SM-10) | ||||||||||||||||||||
4.9 | UAF; Consumer + Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
The Authenticator SHALL NOT output unencrypted AppIDs or KeyIDs that are associated
with a Key Handle prior to verifying the user.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-5, SM-23) | ||||||||||||||||||||
4.10 | FIDO2; Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
An Authenticator SHALL NOT have any Correlation Handle that is visible
across multiple Relying Parties, except the unique identifier present in the
Enterprise Attestation Certificate or the Enterprise Attestation Certificate itself.
Note The goal of this requirement is that, for privacy reasons, the Authenticator MUST NOT leak information about the user across multiple Relying Parties by sharing a Correlation Handle, except what is available through Enterprise Attestation. This requirement specifically applies to KeyIDs/CredentialIDs, KeyHandles etc. Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23) | ||||||||||||||||||||
4.11 | FIDO2; Consumer; GaVR-1; L1 and higher | ||||||||||||||||||||
The Authenticator SHALL NOT support Enterprise Attestation. If the firmware supports Enterprise
Attestation, it shall be disabled through the Security Configuration of the Authenticator in
such a way only the vendor or its delegates can enable it.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. L3 Common Criteria: A Security Target, Development and Tests documents MUST be provided (see [CC1V3-1R5]). The TSF shall require each user to be successfully identified before allowing any other TSF-mediated actions on behalf of that user. L3+ Common Criteria: A Security Target, Development and Tests documents MUST be provided (see [CC1V3-1R5]). The TSF shall require each user to be successfully identified before allowing any other TSF-mediated actions on behalf of that user. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-5, SM-23) | ||||||||||||||||||||
4.12 | FIDO2; Enterprise; GaVR-1; L1 and higher | ||||||||||||||||||||
The FIDO2 Enterprise Attestation feature, mode 1, allows the Authenticator to be configured with a RP ID list. Authenticators that do not support mode 2 will fall back to mode 1 when mode 2 is requested for compatibility reasons, this requirement also applies in that case. The Authenticator MUST NOT return an Enterprise Attestation for RP IDs not on this list. An Authenticator MAY require additional conditions before returning an Enterprise Attestation. This list MUST contain only RP IDs owned by the Customer or its Data Processors (as defined by the GDPR). This RP ID list MUST only be modifyable by the Vendor or its delegates, specifically, it MUST NOT be modifiable by the Customer. Relation to Companion Program L3 GlobalPlatform: Not applicable. L3 Common Criteria: A Security Target, Development and Tests documents MUST be provided (see [CC1V3-1R5]). This requirement is linked to FDP_IFC/Authentication and FDP_IFF/Authentication (see [CC2V3-1R5] and [CC3V3-1R5]). The TSF shall explicitly authorise an information flow based on the following rules: [assignment: rules, based on security attributes, that explicitly authorise information flows] L3+ Common Criteria: A Security Target, Development and Tests documents MUST be provided (see [CC1V3-1R5]). This requirement is linked to FDP_IFC/Authentication and FDP_IFF/Authentication (see [CC2V3-1R5] and [CC3V3-1R5]). The TSF shall explicitly authorise an information flow based on the following rules: [assignment: rules, based on security attributes, that explicitly authorise information flows] Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-5, SM-23) |
No. | Requirement | Security Measures | |
---|---|---|---|
5.1 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L2 and higher | ||
The vendor SHALL document the physical security and side channel attack protections used by the Authenticator.
Relation to Companion Program L3 GlobalPlatform: AROE development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). L3 Common Criteria: Development documentation MUST be provided. This requirement is linked to Class ADV (see [CC3V3-1R5]). L3+ Common Criteria: Development documentation MUST be provided. This requirement is linked to Class ADV (see [CC3V3-1R5]). Calibration No calibration required. L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
|
(SM-1, SM-20, SM-24, SM-26, SM-29) | ||
5.2 | N/A | ||
5.2 was removed as a UAF + U2F L2+ and higher Security Requirement as part of DV 1.1.0. See Requirement 5.3. Requirement text within DV 1.0.2 read as follows:
Note At L3, such evidence SHALL be visible to the user (and not necessarily to the RP). As a consequence, a level of cooperation from the user is expected to protect the RP. |
N/A | ||
5.3 | UAF + U2F + FIDO2; Consumer + Enterprise; L3 and higher | ||
The Authenticator shall resist physical tampering that allows the attacker to violate
FIDO Security Goals or FIDO Authenticator Security Requirements.
Note The keys can be zeroed in response to an attack so the Authenticator is no longer usable. This is the way the relying party can be informed of the attack. If the Authenticator includes a biometric user verification feature, the calibration as defined below must address that feature to the same level of vulnerability assessment. Note Resistance to physical tampering obviates the need for physical tamper evidence. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the AVA_VAN_AP.3 component (see [TEE-PP]). Calibration L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-20, SM-24, SM-26) | ||
5.4 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
Each secret or private key that is an Authenticator Security Parameter SHALL have a
key use limit establishing the maximal number of times that particular key can be used
within a particular Authenticator.
Note Key refresh needs to be initiated by the RP for ideal user experience. In the current protocol, there is no provision for the Authenticator to initiate key refresh. This requirement interacts with requirements 2.1.3, 2.2.4, 5.5, 5.6. This is a requirement that provides flexibility in satisfying other requirements. The idea is that key use limit SHOULD be established such that the other requirements cited here are fulfilled (providing the vendor the ability to restrict the number of possible key uses rather than using longer nonces or better side-channel countermeasures), and additionally provides the option for the vendor to defend the Authenticator against attacks that are not yet known. Both cryptographic and side-channel attacks on the Authenticator can be enabled by having access to information associated with distinct cryptographic operations under the same key, so the vendor MAY elect to impose a conservative key use limit in order to defend against such attacks, especially for attacks that are not yet known and thus cannot easily be otherwise defended against. Any limit that allows the Authenticator to fulfill the other related requirements is sufficient for compliance to the requirement set. Some examples follow: If a vendor doesn't require any particular key use limit to satisfy additional requirements, and they are not concerned with the possibility of unknown cryptographic attack, then this limit can be simply the maximal possible uses of this key, given the hardware constraints of the Authenticator (i.e., the rate of key use that the hardware can support multiplied by the total expected lifetime of the Authenticator). In this instance, the Authenticator need not retain the number of uses of each key. For example, if a device can perform one key use per second and has an expected lifetime of 5 years, then a reported key use limit of roughly (5*365+1)*86400 (less than 2^28) would be sufficient. If the vendor does wish to limit the number of possible key uses, but does not wish to store state associated with this data, then the vendor can limit the average key use rate such that the total number of uses of a given key throughout the expected lifetime of the Authenticator is sufficiently low. For an example, if an Authenticator vendor wishes to limit the total number of key uses of a user key to 10,000,000 (less than 2^24) and the Authenticator has a expected lifetime of 5 years, then the Authenticator MUST enforce a long term average key use rate of roughly 1 key use every 158 seconds. If a vendor does not wish to arbitrarily limit the rate at which keys can be used, but does wish to restrict the number of possible key uses, then they can store a count of the number of times a particular key has been used, and then disable use of the key at the limit. Some keys (e.g., the User Private Key, or the Attestation key) cannot be painlessly replaced within the FIDO protocol (this requires re-enrolling, or replacing the Authenticator, respectively), so a suitably large limit SHOULD be chosen to prevent usability problems. FIDO Authenticators typically require a user verification before using a private key. Such manual interaction requires a minimum amount of time. Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration No calibration required. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review.
Please provide explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-24, SM-26) | ||
5.5 | UAF + U2F + FIDO2; Consumer + Enterprise; L3 and higher | ||
The Authenticator SHALL NOT leak Secret Authenticator Security Parameter data
(e.g. due to power, near field, or radio leakage) at a rate that would allow an
attacker to weaken the key below the claimed cryptographic strength of the key, even
after an attacker has observed all allowed key uses.
Note This interacts with requirement 5.4. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the AVA_VAN_AP.3 component (see [TEE-PP] ). Calibration L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-20) | ||
5.6 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L2+ and higher | ||
The variations in the amount of time required to perform a cryptographic algorithm
SHALL NOT allow remote attackers to reduce the security of Authenticator Security
Parameters which are secret or private keys below their claimed cryptographic strength.
Note This requirement is mandatory for L2+-and-higher but it remains relevant for L2 as a developer guideline. It refers to all Secret Authenticator Security Parameters, and not just the authentication and attestation keys. This means it includes keys used to wrap these parameters, including keys that might be used to wrap biometric reference data. The defense against remote timing attacks requires securing the cryptographic operation implementations and/or hardening the Allowed Restricted Operating Environment (AROE, see [FIDORestrictedOperatingEnv]) cache implementation:Securing cryptographic operations: Concerning symmetric-key algorithms, It is recommended to use Hardware-based cryptographic algorithms replacing the software-based implementation and thus eliminating the side-channel information leaked from the execution of cryptographic operations. Otherwise, the software implementation MUST consider randomization of the control flow so that there is no fixed relation between the execution path and the cache set. Or, MUST enable using the same amount of cache independently from the keys used. AROE cache enhanced implementations: It is recommended to secure the cache memory implementation in order to restrict the impact from the Rich OS on the AROE cache memory. This could be done by programming memory allocations so that the Rich OS memory will never be mapped to the AROE cache memory. The implementation can also consider flushing sensitive secure cache to memory to eliminate the information on the table access. For more details on how to implement adequate counter-measures please review the following research papers:
Note This interacts with requirement 5.4. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the Enhanced-basic attack potential component (see [TEE-PP]). Calibration L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-20, SM-29) | ||
5.7 | UAF + U2F + FIDO2; Consumer + Enterprise; L3 and higher | ||
The length of time required to perform a cryptographic algorithm using a
Secret Authenticator Security Parameter SHALL NOT be dependent on the value of
that secret or private key.
Note No time variations are allowed in this requirement, in comparison to requirement 5.6, in which some time variations are allowed. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the AVA_VAN_AP.3 component (see [TEE-PP]). Calibration No calibration required. L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-20, SM-29) | ||
5.8 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-2; L2 and higher | ||
All physical and logical debug interfaces to the Authenticator which enable violation
of FIDO Authenticator Security Goals or FIDO Authenticator Security Requirements SHALL
be disabled and unusable in fielded Authenticators.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-EM] and [TEE-PP]). L3 Common Criteria: A Security Target, Development, Tests and Preparative Procedure Guidance documentation MUST be provided. This requirement is linked to FPT_TST.1, AGD_PRE, Class ADV and ATE. L3+ Common Criteria: A Security Target, Development, Tests and Preparative Procedure Guidance documentation MUST be provided. This requirement is linked to FPT_TST.1, AGD_PRE, Class ADV and ATE. Calibration No calibration required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23, SM-26) | ||
5.9 | UAF + U2F + FIDO2; Consumer + Enterprise; L3 and higher | ||
The Authenticator SHALL be resistant to induced fault attacks.
Note This requirement is mandatory for L3 and higher but it is still relevant for L2 and higher as a developer guideline. The developer SHALL take into account SW-based fault induction side channel attack and implement relevant countermeasures such as enabling memory error detection. Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the AVA_VAN_AP.3 component (see [TEE-PP] ). Calibration L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-28, SM-21) |
For compliance with L1, Surrogate Basic Attestation [UAFProtocol] in the case of UAF / self-signed attestation certificates in the case of U2F is acceptable.
No. | Requirement | Security Measures | |
---|---|---|---|
6.1 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
The vendor SHALL use attestation certificates / ECDAA Issuer public keys [FIDOEcdaaAlgorithm] dedicated
to a single Authenticator model.
Relation to Companion Program L3 GlobalPlatform : Not applicable to the AROE. Calibration No calibration required. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-3) | ||
6.2 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
Each Authenticator being declared as the same model (i.e. having the same AAID, AAGUID or having at
least one common attestationCertificateKeyIdentifier in the MetadataStatement), SHALL fulfill at
least the security characteristics stated for that Authenticator model.
Relation to Companion Program L3 GlobalPlatform : Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and evidence meet the requirement. |
(SM-3) | ||
6.3 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L1 and higher | ||
The Authenticator SHALL accurately describe itself in its provided metadata. The vendor SHALL provide all
mandatory Metadata Statement fields see [FIDOMetadataRequirements].
Relation to Companion Program L3 GlobalPlatform : Not applicable to the AROE. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
At L1, in addition to the rationale provided by the vendor, this requirement MUST be demonstrated to the Test Proctor during Interoperability Testing. Documentation is not required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and evidence meet the requirement. |
(SM-3) | ||
6.4 | UAF + U2F + FIDO2; Consumer + Enterprise; DaD; L2 and higher | ||
The vendor SHALL document whether the attestation root certificate is
shared across multiple Authenticator models.
In such case, the attestation certificate MUST contain an extension indicating the Authenticator model (e.g. AAID or AAGUID). Relation to Companion Program L3 GlobalPlatform : Not applicable to the AROE. Calibration No calibration required. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
|
(SM-3) | ||
6.5 | UAF + FIDO2; Consumer + Enterprise; DaD; L2 and higher | ||
The vendor SHALL document whether the attestation certificate includes the
Authenticator model (e.g. AAID or AAGUID).
Relation to Companion Program L3 GlobalPlatform : Not applicable to the AROE. L2 Vendor Questionnaire
Provide the tester with documentation that specifies how the requirement above is met.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure
The tester SHALL verify that the provided rationale and evidence meet the requirement.
|
(SM-3) | ||
6.6 | FIDO2; Enterprise; GaVR-1; L2 and higher | ||
An Enterprise Attestation capable Authenticator that inserts a unique identifier
in its Enterprise Attestation certificate SHALL use a unique private key per
identifier.
Calibration No calibration required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-23) |
At L1 we allow the Authenticator Application to run in any operating environment. For the levels L2 through L3+, the Authenticator Application needs to run in an Allowed Restricted Operating Environment [FIDORestrictedOperatingEnv].
No. | Requirement | Security Measures | |
---|---|---|---|
7.1 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L2 and higher | ||
The Authenticator Application SHALL run in an
Allowed Restricted Operating Environment (AROE)[FIDORestrictedOperatingEnv].
Relation to Companion Program L3 GlobalPlatform: AROE Security Target and security guidance MUST be provided to support this requirement (see [TEE-EM] and [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and evidence meet the requirement. |
(SM-1) | ||
7.2 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L2 and higher | ||
The operating environment SHALL be configured so that all operating environment security functions
used by the Authenticator are active and available for use to support the
FIDO Authenticator Security Goals or FIDO Authenticator Security Requirements.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target and security guidance MUST be provided to support this requirement (see [TEE-EM] and [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1) | ||
7.3 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L2 and higher | ||
The operating environment SHALL prevent non-Authenticator processes from reading,
writing and modifying running or stored Authenticator Application and its associated memory.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1, FDP_ACC.1 , FDP_ACF.1 , FDP_IFC.2 , FDP_IFF.1 , FDP_ITT.1 , FDP_RIP.1, FDP_ROL.1, FIA_ATD.1, FIA_UID.2, FIA_USB.1, FMT_MSA.1, FMT_MSA.3, FMT_SMF.1, FMT_SMR.1, FPT_FLS.1, FPT_INI.1 and FPT_ITT.1 components (see [TEE-PP]). Calibration L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1) | ||
7.4 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-3; L2 and higher | ||
The operating environment SHALL NOT be able to be modified
in a way that undermines the security of the Authenticator.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FAU_ARP.1, FPT_FLS.1, FPT_INI.1 and FPT_TEE.1 components (see [TEE-PP]). Calibration L2: At L2, the requirement SHALL be fulfilled by mechanisms functioning entirely inside the AROE. L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-1) | ||
7.5 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L2 and higher | ||
The security configuration of the operating environment SHALL be fully under
control of the Authenticator vendor or its delegates such that the security
configuration present at commercial shipment cannot be changed except for
in-the-field updates that are also fully under control of the Authenticator
device vendor or its delegates.
Note In some environments (e.g. PC), the user (i.e. anyone other than the Authenticator vendor or its delegates) might change the security configuration of the Authenticator. However, it is the responsibility of the Authenticator to detect potential changes in the Authenticator security configuration and provide the appropriate RP response through a FIDO assertion if the changed configuration still meets the expected security characteristics according to the Metadata Statement (or stop working and either protect the security parameters at the prior level or securely destroy them if it doesn't). The Authenticator certification MUST include all security configuration items available to the user. Relation to Companion Program L3 GlobalPlatform: AROE Security Target and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FPT_INI.1, FPT_FLS.1 and FPT_TEE.1 components (see [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and evidence meet the requirement. |
(SM-1, SM-28) | ||
7.6 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-1; L2 and higher | ||
The security characteristics of the Authenticator SHALL NOT be modifiable
by anyone other than the Authenticator device vendor or its delegates.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FCS_COP.1, FPT_INI.1, FPT_FLS.1 and FPT_TEE.1 components (see [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and evidence meet the requirement. |
(SM-1, SM-28) | ||
7.7 | FIDO2; Enterprise; GaVR-1; L1 and higher | ||
The Vendor MUST verify that the RPID list provided by the Customer and configured into the device only contains RPIDs owned by the Customer or the Customer's Data Processors (as defined by the GDPR). If the device supports EA mode 2, the Vendor SHALL inform the Customer that the RPIDs configured in the browsers can only be RPIDs owned by the Customer or the Customer's Data Processors (as defined by the GDPR). Relation to Companion Program L3 GlobalPlatform: Not Applicable. Calibration No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and evidence meet the requirement. |
(SM-1, SM-28) |
No. | Requirement | Security Measures | |
---|---|---|---|
8.1 | UAF + U2F + FIDO2; Consumer + Enterprise; GaVR-2; L2 and higher | ||
An Authenticator SHALL either (a) be resistant to induced fault analysis
(requirement 5.9) or (b) after powering up, an Authenticator SHALL run
a known answer self-test for any deterministic cryptographic function
prior to using that function, or (c) the Authenticator SHALL verify
the validity of its software and Firmware using
an Allowed Signature Algorithm. If the most recent known answer self-test
did not pass, the corresponding cryptographic function SHALL NOT be used.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, test documentation and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FAU_ARP.1, FPT_TEE.1, FPT_INI.1, FCS_COP.1 and FPT_FLS.1 components (see [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-21, SM-24) | ||
8.2 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
If the Authenticator mediates the update of its software, then the Authenticator
SHALL use an Allowed Data Authentication or Signature Cryptographic Function, as required by the standard referenced
in the “Allowed Cryptography List” [FIDOAllowedCrypto], to
verify that the software being loaded has not been tampered with. If the loaded
software does not pass, then the Authenticator SHALL NOT update the software.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, test documentation and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FAU_ARP.1, FPT_TEE.1, FPT_INI.1, FCS_COP.1 and FPT_FLS.1 components (see [TEE-PP]). Calibration No calibration required. L1 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-16, SM-26, SM-24) | ||
8.3 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
An Authenticator SHALL either (a) be resistant to induced fault analysis (requirement 5.9)
or (b) the Authenticator SHALL verify that any generated Authenticator Security Parameters
which are public / private keys have the correct mathematical relationships prior to
outputting the public key or using the private key for signature generation, or (c)
the Authenticator SHALL verify the validity of its software and Firmware using
an Allowed Signature Algorithm.
Relation to Companion Program L3 GlobalPlatform: AROE Security Target, development information, test documentation and security guidance MUST be provided to support this requirement (see [TEE-EM]). This requirement is linked to the FAU_ARP.1, FPT_TEE.1, FPT_INI.1, FCS_COP.1 and FPT_FLS.1 components (see [TEE-PP]). Calibration No calibration required. L2 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
Provide a rationale for how the requirement above is met.
Provide a documentation review procedure to confirm that the Authenticator’s
design is consistent with the provided rationale. Please provide explicit design
document references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
|
(SM-21) | ||
8.4 | UAF + U2F + FIDO2; Consumer + Enterprise; L2+ and higher | ||
If the Authenticator is not resistant to induced fault
analysis as defined in requirement 5.9, the Authenticator
SHALL verify that any produced signature is valid prior to
outputting the signature.
Relation to Companion Program L3 GlobalPlatform: If requirement 5.9 holds, then AROE Security Target, development information, test documentation and security guidance MUST be provided to support this requirement (see [TEE-EM]). Otherwise, not applicable to the AROE. This requirement is linked to the AVA_VAN_AP.3 component (see [TEE-PP]). Calibration L3 GlobalPlatform: At L3 GlobalPlatform, the protection mechanisms SHALL resist attackers with Enhanced-basic attack potential (see [TEE-PP]). The vulnerability assessment methodology is defined by AVA_VAN_AP.3 (see [TEE-PP] and [TEE-EM]). L3: At L3, the protection SHALL be strong enough to be protected against enhanced-basic effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.3 or higher vulnerability analysis (see [CEMV3-1R5]). L3+: At L3+, the protection SHALL be strong enough to be protected against moderate or high effort software and hardware attacks [AttackPotentialSmartcards]. The vulnerability assessment methodology is defined by AVA_VAN.4 or higher vulnerability analysis (see [CEMV3-1R5]). L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting evidence:
L3 Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how
the implementation meets the requirements,
including the following supporting documents:
L3 GlobalPlatform Test Procedure L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct vulnerability analysis and penetration testing to meet the calibration requirements. |
(SM-21) |
At L1, the creation of the final Authenticator Application is considered the Authenticator manufacturing.
No. | Requirement | Security Measures | |
---|---|---|---|
9.1 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
If Authenticator Security Parameters which are cryptographic keys are generated during
manufacturing, then these keys SHALL be generated as required by the standard referenced
in the “Allowed Cryptography List” [FIDOAllowedCrypto] for that algorithm using an Allowed Random Number Generator.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration L1: At L1, the creation of the final Authenticator Application is considered the Authenticator manufacturing. L2: No calibration required. L3 GlobalPlatform: No calibration required. L3: No calibration required. L3+: No calibration required. L1 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Is this requirement applicable to the Authenticator? If No, then describe why.
If Yes, describe how this requirement can be verified through documentation review. Please provide
explicit design documentation references.
L3 GlobalPlatform Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide explicit design documentation references.
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and evidence meet the requirement. L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. |
(SM-28) | ||
9.2 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
Access to the private component of any Authenticator's attestation key SHALL be restricted
to security-qualified authorized factory personnel.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration L2: At L2, security protection controls (physical, procedural, personnel, and other security measures) on the production environment MUST be adequate to provide the confidentiality and integrity of the design and implementation of the Authenticator that is necessary to ensure that secure operation of the Authenticator is not compromised. Note For example, production machines SHALL NOT be directly connected to unprotected networks (e.g. the Internet). Only security-qualified authorized factory personnel SHALL have access to all means of processing the handling of attestation key life cycle (generation, provisioning, and verification). Security measures for protecting the life cycle management of the key generation and key provisioning SHALL be provided in the Vendor Questionnaire. Note Security-qualified authorized factory personnel should be limited to a small number of people. It should not be every worker in the factory and it should not be all the development engineers. L3 GlobalPlatform: At L3 GlobalPlatform, security protection controls (physical, procedural, personnel, and other security measures) on the production environment MUST be adequate to provide the confidentiality and integrity of the design and implementation of the Authenticator that is necessary to ensure that secure operation of the Authenticator is not compromised. Note For example, production machines SHALL NOT be directly connected to unprotected networks (e.g. the Internet). Only security-qualified authorized factory personnel SHALL have access to all means of processing the handling of attestation key life cycle (generation, provisioning, and verification). Security measures for protecting the life cycle management of the key generation and key provisioning SHALL be provided in the Vendor Questionnaire. Note Security-qualified authorized factory personnel should be limited to a small number of people. It should not be every worker in the factory and it should not be all the development engineers. L3: At L3, ALC_DVS.1 MUST be applied. L3+: At L3+, ALC_DVS.2 MUST be applied. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design documentation references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements. Please provide explicit documentation references.
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and documentation meet the requirement. L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. |
(SM-28) | ||
9.3 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
The equipment used to generate, store and provision Authenticator Security Parameters SHALL be secured to prevent modification of all provisioned Authenticator Security Parameters and secured to prevent capture of provisioned Secret Authenticator Security Parameters. The equipment used by the authenticator vendor to generate, store and provision other keys whose compromise would affect the security of the Authenticator and the ability to identify it based on certificates in the FIDO Metadata Service [FIDOMetadataService] SHALL also be secured.
Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration L2: At L2, all Authenticator Security Parameters must be protected by some form of integrity protection and all Secret Authenticate Security Parameters must never be exposed in the clear. Use of Allowed Cryptographic Algorithms [FIDOAllowedCrypto] is preferred, but not required for these protections (if the lack of security is compensated by physical controls). Note For example, attestation secret keys provisioned over a serial cable between the Authenticator device and the equipment used to store and inject keys should be encrypted and integrity protected to prevent factory personnel from snooping the cable or carrying out a man-in-the-middle attack on the cable. L3 GlobalPlatform: At L3 GlobalPlatform, all Authenticator Security Parameters must be protected by some form of integrity protection and all Secret Authenticate Security Parameters must never be exposed in the clear. Use of Allowed Cryptographic Algorithms [FIDOAllowedCrypto] is preferred, but not required for these protections (if the lack of security is compensated by physical controls). Note For example, attestation secret keys provisioned over a serial cable between the Authenticator device and the equipment used to store and inject keys should be encrypted and integrity protected to prevent factory personnel from snooping the cable or carrying out a man-in-the-middle attack on the cable. L3: At L3, ALC_DVS.1 (see [CC3V3-1R5]) MUST be applied. L3+: At L3+, ALC_DVS.2 (see [CC3V3-1R5]) MUST be applied. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design documentation references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements. Please provide explicit documentation references.
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
TProvide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and documentation meet the requirement. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct a development site audit to validate the security measures defined in the life-cycle support documents |
(SM-28) | ||
9.4 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
A revision control system SHALL be implemented for the Authenticator and all of its
components, and for all associated Authenticator documentation. This revision control
system SHALL, at minimum, track changes to all software or hardware specifications,
implementation files, and all tool chains used in the production of the final
Authenticator.
Relation to Companion Program L3 GlobalPlatform: AROE configuration management documentation MUST be provided to support this requirement. This requirement is linked to the ALC_CMC.2 and ALC_CMS.2 (see [TEE-PP]). Calibration L1: At L1, the use of a revision control system SHALL only be proven for the Authenticator Application. L2: No calibration required. L3 GlobalPlatform: No calibration required. L3: No calibration required. L3+: No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design documentation references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements. Please provide explicit documentation references.
L3 Vendor Questionnaire
TProvide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and documentation meet the requirement. L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. |
(SM-28) | ||
9.5 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L1 and higher | ||
Each version of each configuration item that comprises the Authenticator and
associated documentation SHALL be assigned a unique identification.
Note "Configuration item" stands for all the objects managed by the configuration management system during the product development. These may be either parts of the product (e.g. source code) or objects related to the development of the product like guidance documents, development tools, tests results, etc.) Relation to Companion Program L3 GlobalPlatform: AROE configuration management documentation MUST be provided to support this requirement. This requirement is linked to the ALC_CMC.2 and ALC_CMS.2 (see [TEE-PP]). Calibration L1: At L1, the configuration items comprising the Authenticator Application are relevant. L2: No calibration required. L3 GlobalPlatform: No calibration required. L3: No calibration required. L3+: No calibration required. L1 Vendor Questionnaire
Provide the Security Secretariat with a rationale of how the requirement above is met.
L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design documentation references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements. Please provide explicit documentation references.
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and documentation meet the requirement. L3 Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. |
(SM-28) | ||
9.6 | UAF + U2F + FIDO2; Consumer + Enterprise; TVFR; L2 and higher | ||
There SHALL be management and control over all personnel that can enter the physical part of the factory where attestation key material is configured into the authenticators.
Note This refers to all factory workers possibly including those that have little or nothing to do with the manufacturing line itself, such as cleaning and repair staff. The point of this requirement is to defend against counterfeit devices being run through the manufacturing line to receive real attestation keys. For example, loading dock staff working at 2 AM might conspire to manufacture counterfeit devices. Relation to Companion Program L3 GlobalPlatform: Not applicable to the AROE. Calibration L2: At L2, standard per-person badge access systems or standard brass keys and door locks are acceptable. Any personnel without a key or badge MUST be escorted by one with a key or badge. L3 GlobalPlatform: At L3 GlobalPlatform, standard per-person badge access systems or standard brass keys and door locks are acceptable. Any personnel without a key or badge MUST be escorted by one with a key or badge. L3: At L3, ALC_DVS.1 (see [CC3V3-1R5]) must be applied. L3+: At L3+, ALC_DVS.2 (see [CC3V3-1R5]) must be applied. L2 Vendor Questionnaire
Describe how this requirement can be verified through documentation review. Please provide
explicit design documentation references.
L3 GlobalPlatform Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements. Please provide explicit documentation references.
L3 Vendor Questionnaire
Provide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3+ Vendor Questionnaire
TProvide the tester with a rationale for how the implementation meets the requirements, including the following supporting documents:
L3 GlobalPlatform Test Procedure The Tester SHALL verify that the provided rationale and documentation meet the requirement. L3+ Test Procedure The Tester SHALL verify the provided rationale and documentation meets the requirement. The Tester SHALL execute a sample of tests from the tests documentation provided to verify the developer test results. The Tester SHALL conduct a development site audit to validate the security measures defined in the life-cycle support documents |
(SM-28) |
This allows authenticators using GP-certified TEE's to get speedier certification.
This is slotted in at L3, so there are now two paths to get L3 certification. A vendor must pick one and stick to it.
This table now gives very specific examples rather than describing classes or groups of hardware. These are only examples. Vendor's HW is likely to be different and must be specifically evaluated. The examples table is not a short cut or used in certification.
Requirements 3.1, 3.2, 3.4 and 3.7 are updated and 3.11 is added.
How an authenticator indicates it supports user presence and user verification is better specified and described. This is for indication in the metadata, in the response to the server and in the user verification method extension.
Timeouts when changing the PIN, enrolling more fingerprints and such are more clearly specified.
L2 Calibration was added for requirement 3.7 to day that trusted path must be implemented inside the AROE.
Some of the user verification requirements are now completely verified at interop test. Documentation is not required.
Requirements 3.2, 3.7 and 3.8 are updated and 3.11 is added.
At L2 and higher authenticators that implement multiple user verification methods must support the user verification method extension.
External PIN, password and pattern authenticators are allowed for L2 and above certification. Authenticators that do this must explicitly indicate this in metadata and the user verification method extension. New authentication "_EXTERNAL" methods are defined in the FIDO registry for this. This allows L2 certification of FIDO2 clientPIN and authenticators making use of smart phone lock screen PINs.
There is a clear requirement that no new user verification methods or templates are added for an authenticator without a user verification from existing templates or methods. For example, the user must successfully enter a PIN or pass fingerprint verification to add a new finger for an authenticator that support PIN and fingerprint.
Requirements 3.5 and 3.6, which are UAF-only, are restored and give strong privacy.
Requirement 4.6 was added. It is FIDO2 only. It gives the calibrated per security level requirements for implementation of the FIDO 2 privacy extension.
No change in concept. Just clarification on how attestation keys should be shared with 100,000 devices.
L3 and L3+ calibration was removed for requirement 8.4 as it was unnecessary
Some leftover refernces to L4 and L5 were corrected.
Correlation Handle was defined twice.
Some of the version older numbers in cross references in the document set were wrong.
"Partner Program" is renamed to "Companion Program".
Many of the external references had broken links and other issues. They have been corrected.
The Enterprise and Consumer profiles were added and defined.
The Enterprise Attestation feature was restricted to the Enterprise profile
The Enterprise profile requirements were adjusted for Enterprise Attestation