NIAP: Compliant Product
NIAP/CCEVS
  NIAP  »»  Product Compliant List  »»  Compliant Product  
Compliant Product - Seagate Secure TCG SSC Self-Encrypting Drives

CC Certificate [PDF] Security Target [PDF] * Validation Report [PDF]

Assurance Activity [PDF]

Administrative Guide [PDF]


* This is the Security Target (ST) associated with the latest Maintenance Release.  To view previous STs for this TOE, click here.

Product Description

The TOE comprises the Seagate Secure® TCG Enterprise SSC and TCG Opal SSC Self-Encrypting Drives by Seagate Technology, LLC. TOE model numbers and firmware versions are identified in the table below. Some Enterprise and Opal drives also support ATA Security as indicated in the table.

The TOE provides Encryption Engine functionality for Full-Drive Encryption as defined by collaborative Protection Profile for Full Drive Encryption - Encryption Engine, Version 2.0 (September 9, 2016). In particular, the TOE provides data encryption, policy enforcement, and key management functions. The TOE provides for the generation, update, protection, and destruction of the data encryption key and other intermediate keys under its control.

Product Name

Model #

TCG Standard

Firmware

Nytro 3000 SSD, 7mm, SAS Interface

XS1600ME10023
XS800ME10023
XS400ME10023
XS6400LE70023
XS1600LE10023
XS1920SE10123
XS3840TE10023

Enterprise SSC

7539

Nytro 3000 SSD, 15mm, SAS Interface

XS3200ME70023
XS15360SE70123
XS15360TE70023
XS7680TE70023

Enterprise SSC

7539

Exos 15E900, 2.5-Inch, 15K-RPM, SAS Interface

ST900MP0166
ST600MP0156

Enterprise SSC

CK10

Exos 15E900, 2.5-Inch, 15K-RPM, SAS Interface

ST900MP0126
ST600MP0026

Enterprise SSC

CKF1

FireCuda 2.5", SATA Interface

ST2000LX003
ST1000LX017

Opal SSC

ATA Security

SSM1

BarraCuda 2.5", SATA Interface

ST2000LM010
ST1000LM038
ST500LM033

Opal SSC

ATA Security

SDM2

RSE3 (1D)

RDE3 (2D)

BarraCuda Pro 2.5", SATA Interface

ST1000LM050
ST500LM035

Opal SSC
ATA Security

SDM2

RXE2

Exos 10E2400, 2.5-Inch, 10K-RPM

ST1200MM0069

Enterprise SSC

CSF2

Exos 10E2400, 2.5-Inch, 10K-RPM

ST2400MM0149
ST1800MM0149
ST1200MM0149

Enterprise SSC

CS10

Exos X10, 3.5-inch, 7K-RPM, SAS Interface

ST10000NM0246

Enterprise SSC

CT10

Exos X10, 3.5-inch, 7K-RPM, SAS Interface

ST10000NM0236

Enterprise SSC

CT12

Exos X10, 3.5-inch, 7K-RPM, SATA Interface

ST10000NM0186

Enterprise SSC
ATA Security

CT14

Exos X10, 3.5-inch, 7K-RPM, SATA Interface

ST10000NM0176

Enterprise SSC
ATA Security

CTF1

BarraCuda 3.5", SATA Interface

ST2000DM011

Opal SSC

ATA Security

0001


Evaluated Configuration


Security Evaluation Summary

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Seagate Secure TCG Enterprise SSC and TCG Opal SSC Self-Encrypting Drives were judged are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 4. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 rev 4. The product satisfies all of the security functional requirements stated in the Seagate Secure TCG SSC Self-Encrypting Drives Security Target, version 1.0, April 4, 2018, when delivered and configured as identified in the product documentation listed in the aforementioned security target.

The evaluation underwent CCEVS Validator review. The evaluation was completed in April 2018. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report prepared by CCEVS.


Environmental Strengths

Seagate Secure TCG Enterprise SSC and TCG Opal SSC Self-Encrypting Drives enforce the following TOE security functional policies as specified in the ST.

Cryptographic Support

The TOE includes NIST-validated cryptographic algorithms supporting cryptographic functions. The TOE provides Key Wrapping, Key Derivation, and Border Encryption Value Validation.

User Data Protection

The TOE performs full drive encryption such that the drive contains no plaintext user data. The TOE performs user data encryption by default in the out-of-the-box configuration using XTS-AES-256 mode.

Security Management

The TOE supports management functions for changing and erasing data encryption keys, for initiating the TOE firmware updates, and for configuring the number of failed validation attempts required to trigger corrective action.

Protection of the TSF

The TOE:

·         Provides trusted firmware update and access control functions,

·         Protects keys and key material, and

·         Supports power saving states.

The TOE runs a suite of self-tests during initial start-up (on power on), before the function is first invoked.


Vendor Information

Logo
Seagate Technology
David R. Kaiser
+1 (952) 402-2356
david.r.kaiser@seagate.com

http://www.seagate.com/
Site Map              Contact Us              Home