SRC evaluates cryptographic service providers of T-Systems according to BSI protection profiles. Thus, the component meets the requirements of the KassenSichV.
The Kassensicherungsverordnung (KassenSichV), also known as regulation for the determination of technical requirements for electronic recording and security systems in business transactions, provides among other things for an obligation to use a certified technical security device. The certification and its ongoing maintenance by the Federal Office for Information Security (BSI) is regulated by §146a of the associated tax code. The BSI meets this requirement with the protection profiles BSI-CC-PP-0104-2019 and “Timestamp and Audit functionality Protection Profile” BSI-CC-PP-0107-2019. These protection profiles are used by recognised test centres to evaluate technical security devices in preparation for certification. In doing so, they make use of the internationally recognized Common Criteria certification scheme.
The Cryptographic Service Provider developed by T-Systems International GmbH in the form of a contact smart card is an essential component of a technical security device in accordance with the KassenSichV. SRC’s CC Prüfstelle has successfully evaluated this CSP.
Dr. Bertold Krüger, head of the SRC test centre: “It is fulfilling for the developers of T-Systems and the evaluators alike when such an intensive evaluation is rewarded with the certificate of the BSI“.
For further information on the Common Criteria certification of security products, the experts of SRC are at your disposal.
Translated with www.DeepL.com/Translator (free version)