NIAP: Assurance Continuity
NIAP/CCEVS
  NIAP  »»  Product Compliant List  »»  Product Entry  »»  Assurance Continuity  
Assurance Continuity - Samsung Galaxy Devices on Android 10 - Spring

Date of Maintenance Completion:  2020.08.19

Product Type:    Virtual Private Network
   Mobility

Conformance Claim:  Protection Profile Compliant

PP Identifier:    PP-Module for VPN Client Version 2.1
  Protection Profile for Mobile Device Fundamentals Version 3.1
  Extended Package for Wireless LAN Client Version 1.0

Original Evaluated TOE:  2020.04.30 - Samsung Galaxy Devices on Android 10 - Spring

CC Certificate [PDF] Validation Report [PDF] Assurance Activity [PDF]

Administrative Guide [PDF]

Please note:  The above files are for the Original Evaluated TOE.  Consequently, they do not refer to this maintained version, although they apply to the maintained version. 

Security Target [PDF] * Assurance Continuity Maintenance Report [PDF] Administrative Guide [PDF]

Please note:  This serves as an addendum to the VR for the Original Evaluated TOE. 

* This is the Security Target (ST) associated with the latest Maintenance Release.  To view previous STs for this TOE, click here.

Readers are reminded that the certification of this product (TOE) is the result of maintenance, rather than an actual re-evaluation of the product.  Maintenance only considers the affect of TOE changes on the assurance baseline (i.e. the original evaluated TOE); maintenance is not intended to provide assurance in regard to the resistance of the TOE to new vulnerabilities or attack methods discovered since the date of the initial certificate.  Such assurance can only be gained through re-evaluation. 

Using a security impact analysis of the changes made to the TOE, which was provided by the developer, the CCEVS has determined that the impact of changes on the TOE are considered minor and that independent evaluator analysis was not necessary.  A summary of the results can be found in the Maintenance Report, which is written in relation to the product's original validation report and Security Target.  Readers are therefore reminded to read the Security Target, Validation Report, and the Assurance Maintenance Report to fully understand the meaning of what a maintained certificate represents. 

Product Description

Samsung added several device models to the evaluated TOE. The following table summarizes the devices that were originally evaluated:

Table 1 Samsung Galaxy devices originally evaluated

Device Name

Model
Number

Chipset Vendor

CPU

Kernel Version

Build Number

Galaxy S20+ 5G

SM-G986B

Samsung

Exynos 990

4.19.87

QP1A.190711.020

Galaxy S20+ 5G

SM-G986U

Qualcomm

SM8250

4.19.81

QP1A.190711.020

Galaxy XCover Pro

SM-G715F

Samsung

Exynos 9611

4.14.113

QP1A.190711.020

Galaxy Note10

SM-N976B

Samsung

Exynos 9825

4.14.113

QP1A.190711.020

Galaxy S10e

SM-G970F

Samsung

Exynos 9820

4.14.113

QP1A.190711.020

Galaxy S10+

SM-G975U

Qualcomm

SM8150

4.14.117

QP1A.190711.020

Galaxy Note9

SM-N960F

Samsung

Exynos 9810

4.9.118

QP1A.190711.020

Galaxy Note9

SM-N960U

Qualcomm

SDM845

4.9.186

QP1A.190711.020


This assurance maintenance action adds the following device models to the list of already-approved devices above:
Galaxy Note20 Ultra 5G (SM-N986), Galaxy Note20 Ultra (SM-N985), Galaxy Note20 5G (SM-N981), Galaxy Note20 (SM-N980), the Galaxy Tab S7+ (SM-T97x), Galaxy Tab S7 (SM-T87x), Galaxy Z Fold2 (SM-F916) and Galaxy Z Flip 5G (SM-F707). The following table shows the complete list of products, including the prior evaluated products and the newly added products.   

Table 2 Complete list of devices covered by assurance maintenance

Device Name

Chipset Vendor

Base Model
Number

Carrier Models

Galaxy Z Fold2 5G

Qualcomm

SM-F916

B, N, U, W

Galaxy Note20 Ultra 5G

Samsung

SM-N986

B

Galaxy Note20 Ultra 5G

Qualcomm

SM-N986

C, N, U, W, SC01O*

Galaxy Note20 Ultra LTE

Samsung

SM-N985

F

Galaxy Note20 5G

Samsung

SM-N981

B

Galaxy Note20 5G

Qualcomm

SM-N981

N, U, W

Galaxy Note20 LTE

Samsung

SM-N980

F

Galaxy Tab S7+

Qualcomm

SM-T978

U

SM-T976

B, N

SM-T975

N, None

SM-T970

None

Galaxy Tab S7

Qualcomm

SM-T878

U

SM-T875

N, None

SM-T870

None

Galaxy Z Flip 5G

Qualcomm

SM-F707

B, N, U

Galaxy S20 Ultra 5G

Samsung

SM-G988

B

Galaxy S20 Ultra 5G

Qualcomm

SM-G988

N, U, W

Galaxy S20+ 5G

Samsung

SM-G986

B

Galaxy S20+ 5G

Qualcomm

SM-G986

N, U, W, SC52A*, SCG02*

Galaxy S20+ LTE

Samsung

SM-G985

F

Galaxy S20 5G

Samsung

SM-G981

B

Galaxy S20 5G

Qualcomm

SM-G981

N, U, V, W, SC51A*, SCG01*

Galaxy S20 TE

Qualcomm

SM-G981

U

Galaxy S20 LTE

Samsung

SM-G980

F

Galaxy XCover Pro

Samsung

SM-G715

F, U, W

Galaxy A51

Samsung

SM-A515

F, U, W

SM-S515

DL

Galaxy Note10+ 5G

Samsung

SM-N976

B, N

Galaxy Note10+ 5G

Qualcomm

SM-N976

U, V

Galaxy Note10+

Samsung

SM-N975

F

Galaxy Note10+

Qualcomm

SM-N975

C, U, SC-01M*, SCV45*

Galaxy Note10 5G

Samsung

SM-N971

N

Galaxy Note10

Samsung

SM-N970

F

Galaxy Note10

Qualcomm

SM-N970

U

Galaxy Tab S6 5G

Qualcomm

SM-T866

N

Galaxy Tab S6

Qualcomm

SM-T867

R4, U, V

SM-T865

N, None

SM-T860

None

Galaxy S10 5G

Samsung

SM-G977

B, N

Galaxy S10 5G

Qualcomm

SM-G977

P, T, U

Galaxy S10+

Samsung

SM-G975

F, N

Galaxy S10+

Qualcomm

SM-G975

U, SC-04L*, SC-05L*, SCV42*

Galaxy S10

Samsung

SM-G973

F, N

Galaxy S10

Qualcomm

SM-G973

U, SC-03L*, SCV41*

Galaxy S10e

Samsung

SM-G970

F, N

Galaxy S10e

Qualcomm

SM-G970

U

Galaxy Fold 5G

Qualcomm

SM-F907

B, N

Galaxy Fold

Qualcomm

SM-F900

F, U, SC-06L*, SCV44*

Galaxy Z Flip

Qualcomm

SM-F700

F, N, U, W, SCV47*

Galaxy Note9

Samsung

SM-N960

F, N

Galaxy Note9

Qualcomm

SM-N960

U, SC-01L*, SCV40*

Galaxy XCover FieldPro

Samsung

SM-G889

A

Galaxy S9+

Samsung

SM-G965

F, N

Galaxy S9+

Qualcomm

SM-G965

U, SC-03K*, SCV39*

Galaxy S9

Samsung

SM-G960

F, N

Galaxy S9

Qualcomm

SM-G960

U, SC-02K*, SCV38*


The differences between the devices that were originally evaluated and those that were added as part of this maintenance action are primarily hardware related. These include differences in form factor (screen size and battery size), input capabilities (Samsung S-Pen), and wireless radios (cellular and Wi-Fi). The Z Fold2 and the Z Flip 5G are foldable devices with multiple displays.

Some of the devices have also been updated to support different fingerprint biometric authentication subsystems to accommodate the various form factors and screen sizes of the various device models (as summarized in the following table). The biometric hardware and software components remain unchanged from the ones that were part of the original evaluation.

Table 3 Biometrics capabilities on claimed devices

Claimed Device

Sensor

Galaxy Tab S7+

Fingerprint-ID (Image under display)

Galaxy Tab S7

Fingerprint-I (Image sensor, such as power button)

Galaxy Z Fold2, Galaxy Z Flip

Fingerprint-I (Image sensor, such as power button)

 

Equivalency Discussion:

The major change undertaken with this maintenance action is to add a set of devices to the already-evaluated products, with hardware changes that do not affect the evaluated security functional requirements. As described earlier, these hardware changes relate to form factor, input capabilities, modifications to the biometrics subsystems to accommodate the various form factors, and screen sizes.

The firmware and system software on the devices have been periodically updated as part of Samsung’s normal update process, which covers both planned and emergency updates that address both security and functionality aspects of the devices. These changes do not affect the SFRs and are not covered by this assurance maintenance action. There were no other relevant changes to the devices because all other changes to application software are out of scope of the evaluation and do not affect the originally evaluated security functional requirements.

Vendor Information


Samsung Electronics Co., Ltd.
Brian Wood
908-809-7939
be.wood@samsung.com

www.samsung.com
Site Map              Contact Us              Home