NIAP: Compliant Product

»»

Compliant Product

Compliant Product - Samsung Knox File Encryption 1.4

Certificate Date: 2022.06.09

Validation Report Number: CCEVS-VR-VID11263-2022

Product Type: Application Software

Conformance Claim: Protection Profile Compliant

PP Identifier: PP-Module for File Encryption Version 1.0
Protection Profile for Application Software Version 1.3

CC Testing Lab: Gossamer Security Solutions

CC Certificate [PDF]

Security Target [PDF]

Validation Report [PDF]

Assurance Activity [PDF]

Administrative Guide [PDF]

Product Description

The Target of Evaluation (TOE) is Samsung Knox File Encryption 1.4. The TOE is a software service built into Samsung Android 12 with Knox 3.8 to provide file encryption. Samsung Knox File Encryption is designed to provide a second encryption layer similar to and on top of the FBE layer for the entire device.

The Knox File Encryption service runs in the background and utilizes Samsung Android cryptographic modules to provide file encryption services. The service is designed to run without any user intervention as all files will be encrypted automatically.

Evaluated Configuration

The evaluated configuration consists of the Samsung Knox File Encryption 1.4 (the version is listed as “DualDAR”) on the following devices:

Device Name	Model Number	Chipset Vendor	CPU	Android Version	TEE OS	Knox Version	DualDAR Version
Galaxy S22 Ultra 5G	SM-S908B	Samsung	Exynos 2200	12	TEEGRIS 4.3	3.8	1.4.1
Galaxy S22 5G	SM-S901U	Qualcomm	Snapdragon 8 Gen 1 Mobile Platform	12	QSEE 5.12	3.8	1.4.1
Galaxy S21 Ultra 5G	SM-G998B	Samsung	Exynos 2100	12	TEEGRIS 4.2	3.8	1.4.0
Galaxy S21 Ultra 5G	SM-G998U	Qualcomm	Snapdragon 888	12	QSEE 5.11	3.8	1.4.0
Galaxy S20+ 5G	SM-G986B	Samsung	Exynos 990	12	TEEGRIS 4.1	3.8	1.4.0
Galaxy S20+ 5G	SM-G986U	Qualcomm	Snapdragon 865	12	QSEE 5.8	3.8	1.4.0
Galaxy S10e	SM-G970F	Samsung	Exynos 9820	12	TEEGRIS 3.1	3.8	1.4.0
Galaxy S10+	SM-G975U	Qualcomm	Snapdragon 855	12	QSEE 5.2	3.8	1.4.0

In addition to the evaluated devices, the following device models are claimed as equivalent with a note about the differences between the evaluated device and the equivalent models.

Evaluated Device	CPU	Equivalent Devices	Differences
Galaxy S22 Ultra 5G	Exynos 2200	Galaxy S22+ 5G	All devices have same software environments (Android, Kernel, TEE)
		Galaxy S22 5G
Galaxy S22 5G	Snapdragon 898	Galaxy S22 Ultra 5G	All devices have same software environments (Android, Kernel, TEE)
		Galaxy S22+ 5G
		Galaxy Tab S8 Ultra
		Galaxy Tab S8+
		Galaxy Tab S8
Galaxy S21 Ultra 5G	Exynos 2100	Galaxy S21+ 5G	All devices have same software environments (Android, Kernel, TEE)
		Galaxy S21 5G
Galaxy S21 Ultra 5G	Snapdragon 888	Galaxy S21+ 5G	All devices have same software environments (Android, Kernel, TEE)
		Galaxy S21 5G
		Galaxy S21 5G FE
		Galaxy Z Fold3 5G
		Galaxy Z Flip3 5G
Galaxy S20+ 5G	Exynos 990	Galaxy Note20 Ultra 5G	All devices have same software environments (Android, Kernel, TEE)
		Galaxy Note20 Ultra LTE
		Galaxy Note20 5G
		Galaxy Note20 LTE
		Galaxy S20 Ultra 5G
		Galaxy S20+ LTE
		Galaxy S20 5G
		Galaxy S20 LTE
		Galaxy S20 FE
Galaxy S20+ 5G	Snapdragon 865	Galaxy Z Fold2 5G	All devices have same software environments (Android, Kernel, TEE)
		Galaxy Note20 Ultra 5G
		Galaxy Note20 5G
		Galaxy Tab S7+
		Galaxy Tab S7
		Galaxy Z Flip 5G
		Galaxy S20 Ultra 5G
		Galaxy S20 5G
		Galaxy S20 FE
Galaxy S10e	Exynos 9820	Galaxy S10+	All devices have same software environments (Android, Kernel, TEE)
		Galaxy S10 5G
		Galaxy S10
		Galaxy Note10+ 5G (Samsung)	Note10 (Samsung) devices have Exynos 9825 CPU
		Galaxy Note10+ (Samsung)
		Galaxy Note10 5G (Samsung)
Galaxy S10+	Snapdragon 855	Galaxy Note10+ 5G	All devices have same software environments (Android, Kernel, TEE)
		Galaxy Note10+
		Galaxy Note10
		Galaxy Tab S6
		Galaxy S10 5G
		Galaxy S10
		Galaxy S10e
		Galaxy Fold 5G
		Galaxy Fold
		Galaxy Z Flip

Security Evaluation Summary

The evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) requirements and guidance. The evaluation demonstrated that the TOE meets the security requirements contained in the Security Target. The criteria against which the TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1, Revision 5, April 2017. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Evaluation Methodology, Version 3.1, Revision 5, April 2017. The product, when delivered and configured as identified in the Samsung File Encryption 1.4 Administrator Guide, Version 1.4, November 15, 2021 document, satisfies all of the security functional requirements stated in the Samsung Electronics Co., Ltd. Samsung Knox File Encryption 1.4 Security Target, Version 0.3, May 25, 2022. The project underwent CCEVS Validator review. The evaluation was completed in June 2022. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report (report number CCEVS-VR-VID11263-2022) prepared by CCEVS.

Environmental Strengths

The logical boundaries of the Samsung Knox File Encryption are realized in the security functions that it implements. Each of these security functions is summarized below.

Cryptographic support:

The TOE runs as part of Samsung Android 12 with Knox 3.8 and includes several cryptographic libraries for encryption/decryption/cryptographic hashing functions for securing file contents and TOE keys.

User data protection:

Depending on the FEB configuration, the TOE either protects all user data within the Knox work profile or the entire device by providing an automatic encryption service for all stored files; applications do not have to be made aware of the Knox File Encryption service to be protected. All keys are either AES 128-bit (FEKs) or 256-bit (for Master key), using AES-GCM for FEK protection and AES-CBC for file content protection.

Identification and authentication:

Depending on the FEB configuration, the TOE either utilizes the authentication services provided by the Knox work profile or its own authentication dialog to unlock the Master Key. Unsuccessful authentication will prevent the Master Key from being unlocked, and hence no encrypted files can be accessed.

Security management:

The services provided by the TOE are not available until either a Knox File Encryption has been enabled. Authentication management and the work profile lock settings are handled by the Knox work profile management and are generic for all Knox work profile configurations. When the whole device is configured for encryption authentication settings are handled by a combination of the device authentication settings and additional Knox File Encryption settings. In either case, these settings cannot be managed directly on the device but must be configured from the MDM.

Privacy:

The TOE does not transmit Personally Identifiable Information over any network interfaces nor does it request access to any applications that may contain such information.

Protection of the TSF:

The TOE relies on the physical boundary of the evaluated platform as well as the Samsung Android operating system for the protection of the TOE’s components.

The TOE relies on the Samsung Android operating system to provide updates as the software is incorporated as part of the device image. The version of the Knox File Encryption software can be seen in the About Device page with the Knox version information (as the DualDAR version).

The TOE is a Samsung component, and all code is maintained solely by Samsung. Only documented APIs available in Samsung Android (which includes the Knox work profile and Samsung cryptographic libraries) are used.

Trusted path/channels:

The TOE does not transmit Personally Identifiable Information over any network interfaces.

Vendor Information

Samsung Electronics Co., Ltd.
Ranjit Mallela
9734409125
r.mallela@samsung.com

www.samsung.com

Site Map Contact Us Home