1. Guidance and recommendations for end users.
For the smartcard operating system CardOS this information is compiled in the so-called Trust Center Information package containing release notes, manuals and guidance documents. Since this package is rated ‘confidential’ it can be obtained from the manufacturer under NDA only. Please contact in case you need this information. cv-info@atos.net
For products based on ePasslet Suite, the documentation is available
• for NXP eDoc Suite via NXP DocStore.
• For Infineon Secora ID X Applet Collection with ePasslet Suite please contact Infineon Technologies AG.
• For Veridos Suite – cryptovision ePasslet Suite please contact Veridos GmbH.
For other CC certified products from Eviden please contact . cv-info@atos.net
2. Security updates for the Common Criteria certified smart card products: smart card operating systems and oncard applications/applets.
Common Criteria certification attests the evaluated security at time of evaluation. Typical validity of a Common Criteria certificate is 5 years. Security bulletins and updates will be provided for a minimum of 5 years from product certification date, unless the Common Criteria certificate is withdrawn.
3. Vulnerability responsible disclosure
Please use our PSIRT website to share any information on a potential vulnerability on one of our products.
4. Publicly disclosed vulnerabilities and cybersecurity advisories
Please refer to our PSIRT website for all publicly disclosed vulnerabilities and cybersecurity advisories concerning our products.