NIAP: Assurance Continuity
  NIAP  »»  Product Compliant List  »»  Product Entry  »»  Assurance Continuity  
Assurance Continuity - Seagate Secure TCG SSC Self-Encrypting Drives

Date of Maintenance Completion:  2018.11.14

Product Type:    Encrypted Storage

Conformance Claim:  Protection Profile Compliant

PP Identifier:    collaborative Protection Profile for Full Drive Encryption - Encryption Engine Version 2.0

Original Evaluated TOE:  2018.04.11 - Seagate Secure TCG SSC Self-Encrypting Drives

CC Certificate [PDF] Validation Report [PDF] Assurance Activity [PDF]

Administrative Guide [PDF]

Please note:  The above files are for the Original Evaluated TOE.  Consequently, they do not refer to this maintained version, although they apply to the maintained version. 

Assurance Continuity Maintenance Report [PDF]

Please note:  This serves as an addendum to the VR for the Original Evaluated TOE. 

* This is the Security Target (ST) associated with the latest Maintenance Release.  To view previous STs for this TOE, click here.

Readers are reminded that the certification of this product (TOE) is the result of maintenance, rather than an actual re-evaluation of the product.  Maintenance only considers the affect of TOE changes on the assurance baseline (i.e. the original evaluated TOE); maintenance is not intended to provide assurance in regard to the resistance of the TOE to new vulnerabilities or attack methods discovered since the date of the initial certificate.  Such assurance can only be gained through re-evaluation. 

Using a security impact analysis of the changes made to the TOE, which was provided by the developer, the CCEVS has determined that the impact of changes on the TOE are considered minor and that independent evaluator analysis was not necessary.  A summary of the results can be found in the Maintenance Report, which is written in relation to the product's original validation report and Security Target.  Readers are therefore reminded to read the Security Target, Validation Report, and the Assurance Maintenance Report to fully understand the meaning of what a maintained certificate represents. 

Product Description

The TOE has been updated in the following ways.

  1. Two new versions of firmware have been added to Common Criteria certified Seagate product models ST1000LM050 and ST500LM035.
  2. Each model number uses the same two new firmware revision numbers. The new firmware version numbers are RXE3 and LXM7.
  3. Both RXE3 and LXM7 are based on the existing CC certified firmware revision RXE2.
    • Two separate firmware revisions are required because these are unique customer configurations that have different compile time flags enabled. 
    • These compile time flags are minimal and mostly involve customer identification information. 
    • There are zero security related differences based on customer unique flags.
  4. There are a total 28 firmware code changes that make up the two new CC firmware revisions. Of these, only one is security relevant. The item “Enable Block SID Feature” is security relevant and while it does not affect the developer evidence directly, if used incorrectly, it can prevent the drive from entering FIPS or CC mode, since SID authentication is required for CC mode. Because of this interaction, the vendor has added new developer evidence and information to the “Seagate Secure® TCG Enterprise and TCG Opal SSC Self-Encrypting Drive Common Criteria Configuration Guide” to instruct administrators and users on how to avoid this issue.
  5. The updated Security Target, the Entropy Document, and the Key Management Description were only changed to incorporate the new firmware version, RXE3 and LXM7.


Vendor Information

Seagate Technology
Seagate Security Certification Contracts
+1 (952) 402-2356
Site Map              Contact Us              Home