PP for a Machine Readable Travel Document with "ICAO Application" Extended Access Control with PACE

Passport / Smart card and similar devices

Certification Body

Bundesamt fĂźr Sicherheit in der Informationstechnik (BSI)


Bundesamt fĂźr Sicherheit in der Informationstechnik (BSI)

Point of Contact


Certification ID

BSI-CC-PP-0056-V2-2012-MA-02 which updates

BSI-CC-PP-0056-V2-2012-MA-01 which updates


PP Version


CC Version

3.1 Revision 3

CC Conformance Claim

CC part 2 extended
CC part 3 conformant
EAL 4 augmented by ALC_DVS.2, ATE_DPT.2 and AVA_VAN.5
Conformance claims to this protection profile requires strict conformance

Certification status

Maintained 21 December 2012
Maintained 26 March 2012
Certified 10 February 2012




The Protection Profile defines the security objectives and requirements for the contact or contactless chip of machine readable travel documents (MRTD) based on the requirements and recommendations of the International Civil Aviation Organisation (ICAO).

It addresses the security method Extended Access Control in the technical reports of the ICAO New Technology Working Group. The communication between terminal and chip shall be protected by Password Authenticated Connection Establishment (PACE).

The Target of Evaluation (TOE) defined in the PP is the contact/contactless integrated circuit chip (IC) of machine readable travel documents programmed according to the Logical Data Structure (LDS) and Extended Access Control according to the ICAO document. It comprises the circuitry of the MRTD's contact/contactless chip, the IC Dedicated Software, the IC Embedded Software (operating system), the ePassport application and the associated guidance documentation.

The product life cycle is described in terms of the four life cycle phases: Phase 1"Development", Phase 2 "Manufacturing", Phase 3 "Personalization of the MRTD", Phase 4 "Operational Use Operational use of the TOE is explicitly in focus of the current PP.

Relation to other PPs

The Protection Profile is an update of the following previous Protection Profiles :

  • v1.3.1 (BSI-CC-PP-0056-V2-2012-MA-01)

  • v1.3.0 (BSI-CC-PP-0056-V2-2012)

This Protection Profile is strictly conforming to the PP for a Machine Readable Travel Document using Standard Inspection Procedure with PACE.