U.S. Government Approved Protection Profile - collaborative Protection Profile for Dedicated Security Component, Version 1.0
Short Name: cpp_dsc_v1.0
Technology Type: Hardware Platform and Components
CC Version: 3.1
Conformance Claim: NoneProtection Profile
The Target of Evaluation (TOE) is a Dedicated Security Component (DSC). In the context of this collaborative Protection Profile (cPP), a DSC is the combination of a hardware component and its controlling firmware. The firmware should be dedicated to providing the encompassing platform with services for the provisioning, protection, and use of Security Data Objects (SDOs), which include keys, identities, attributes, and other types of Security Data Elements (SDEs).
The TOE should be one or more discrete and embedded hardware components that provide wellscoped security functions that are physically inaccessible directly from the rich operating system. The DSC TOE would consist of isolated firmware and circuitry capable of executing well-defined commands against SDEs/SDOs in memory and across restricted interfaces. Examples of a DSC that could claim conformance to this cPP include Secure Elements (SE), Trusted Platform Modules (TPM), Hardware Security Modules (HSM), Trusted Execution Environments (TEE), and Secure Enclave Processors (SEP). In some cases, vendors have already integrated these dedicated hardware components into a System on Chip (SoC) and as such are isolated components of a larger physical package.
This U.S. Government Approved Protection Profile is not assigned to any Validated Products
Active Related Technical Decision
Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).
Please forward any general questions to our Q&A tool.