Evaluated Product - Details

Return to the EPL index

TrustedNet Connect V2.0

Product type: PKI Products
Product Status: Archived
Assurance Level: EAL4

Version: 2.0

Product Details

Product Description

Certification Country: AUSTRALIA/NEW ZEALAND (2003)
Certificate Details: 2003/26, May 2003
Certification Method: CC
Crypt Evaluation: Completed
Evaluation Facility: CSC
Manufacturer/Vendor/Distributor: SecureNet Limited

SecureNet Limited

9-11 Napier Close
Deakin ACT 2600 Australia
Website: http://www.securenet.com.au/


Chris Nicholls
Level 3, 243 Northbourne Avenue
Lyneham ACT 2601 AU
Phone: +61 2 6268 9200
Fax: +61 2 6268 9233
Email: cnicholls@securenet.com.au


Security Target
Certification Report

TrustedNet Connect is a client application that integrates with e-mail, web browsers and other client applications to provide the user with cryptographic services enabling encryption, authentication and digital signature operations. TrustedNet Connect uses a MULTOS smart card to protect the user's private key data and dictates that all cryptographic functions involving the private key are handled securely on the smart card. Any application including web browsers, e-mail and PKI VPN clients can call on the TrustedNet Connect cryptographic services via either the RSA Inc PKCS#11 interface or the Microsoft CSP interface to obtain signing, encryption and decryption functions. TrustedNet Connect can be used for:

  • Signing and decrypting e-mail (S/MIME compliant)
  • Securing access to web servers using client-side SSL authentication
  • Signing transactions
  • VPN client authentication via IPsec IKE
  • Secure logon to Microsoft Windows 2000

The TrustedNet Connect product includes the TrustedNet Connect Server, the cryptographic interfaces (PKCS#11 and CSP) which work with Microsoft, Netscape, and Lotus products, all of which are resident on the PC, and the smart card application code that is loaded on the MULTOS smart card.

The MULTOS smart card has previously been evaluated to ITSEC E6, which is equivalent to CC EAL 7 (DSD Certificate 2000/13, July 2000).

The product, in conjunction with the evaluated smartcard, provides the following security features:

  • Password protected security module (smart card) which requires user to authenticate themselves before allowing access to the cryptographic functions involving cardholder's private key 
  • Signing of a message or data with the cardholder's private key stored securely on the MULTOS smart card
  • Decrypting of a message or data transmission using the cardholder's private key stored securely on the MULTOS smart card

The PC based portion of the product runs on Intel-based and compatible computers running the Microsoft Windows NT 4.0 operating system.