NIAP: Assurance Continuity

NIAP

»»

Product Compliant List

»»

Product Entry

»»

Assurance Continuity

Assurance Continuity - Samsung Galaxy Devices on Android 11 – Spring, expanded to include Galaxy Note20, Galaxy Tab S7 and Z Flip 5G series of devices with Qualcomm processors

Date of Maintenance Completion: 2022.02.25

Product Type: Virtual Private Network
Mobility

Conformance Claim: Protection Profile Compliant

PP Identifier: PP-Module for VPN Client Version 2.1
Protection Profile for Mobile Device Fundamentals Version 3.1
Extended Package for Wireless LAN Client Version 1.0

Original Evaluated TOE: 2021.03.15 - Samsung Galaxy Devices on Android 11 - Spring

CC Certificate [PDF]

Validation Report [PDF]

Assurance Activity [PDF]

Administrative Guide [PDF]

Please note: The above files are for the Original Evaluated TOE. Consequently, they do not refer to this maintained version, although they apply to the maintained version.

Security Target [PDF]

* Assurance Continuity Maintenance Report [PDF]

Administrative Guide [PDF]

Please note: This serves as an addendum to the VR for the Original Evaluated TOE.

* This is the Security Target (ST) associated with this latest Maintenance Release. To view previous STs for this TOE, click here.

Readers are reminded that the certification of this product (TOE) is the result of maintenance, rather than an actual re-evaluation of the product. Maintenance only considers the affect of TOE changes on the assurance baseline (i.e. the original evaluated TOE); maintenance is not intended to provide assurance in regard to the resistance of the TOE to new vulnerabilities or attack methods discovered since the date of the initial certificate. Such assurance can only be gained through re-evaluation.

Using a security impact analysis of the changes made to the TOE, which was provided by the developer, the CCEVS has determined that the impact of changes on the TOE are considered minor and that independent evaluator analysis was not necessary. A summary of the results can be found in the Maintenance Report, which is written in relation to the product's original validation report and Security Target. Readers are therefore reminded to read the Security Target, Validation Report, and the Assurance Maintenance Report to fully understand the meaning of what a maintained certificate represents.

Product Description

The new devices covered by this IAR are added as equivalent devices to the evaluated devices of the Galaxy S21+ 5G and Galaxy S21 5G (Qualcomm) shown in the entry row for Galaxy S21 Ultra 5G in the following table. The specific equivalent additions are highlighted in yellow in the table below. All non-highlighted devices in the table were included in the previous Assurance Maintenance action documented in CCEVS-VR-VID11160-2021, 3/15/2022.

Evaluated Device	SoC	Equivalent Devices	Differences
Galaxy S21 Ultra 5G	Exynos 2100	Galaxy S21+ 5G	S21 Ultra > S21+ > S21 in terms of display size
Galaxy S21 Ultra 5G	Exynos 2100	Galaxy S21 5G	S21+ & S21 devices have S20+ 5G Wi-Fi chip
Galaxy S21 Ultra 5G	Snapdragon 888	Galaxy S21+ 5G	S21 Ultra > S21+ > S21 > in terms of display size
		Galaxy S21 5G	S21+ & S21 devices have S20+ 5G Wi-Fi chip
		Galaxy S21 5G FE	Z Fold3 5G & Z Flip3 5G have 2 displays & folding display
		Galaxy Z Fold3 5G	Z Fold3 5G & Z Flip3 5G have power button fingerprint sensor
		Galaxy Z Flip3 5G	Z Fold3 & Z Flip3 have different Wi-Fi chips
Galaxy S20+ 5G	Exynos 990	Galaxy Note20 Ultra 5G	S20 Ultra > S20+ > S20 > S20 FE in terms of display size
		Galaxy Note20 Ultra LTE	S20 Ultra > S20+ > S20 > S20 FE in terms of display size
		Galaxy Note20 5G	5G devices have different cellular modem
		Galaxy Note20 LTE	5G devices have different cellular modem
		Galaxy S20 Ultra 5G	Note20 Ultra > Note20 in terms of display size
		Galaxy S20+ LTE	Note20 Ultra > Note20 in terms of display size
		Galaxy S20 5G	Note20 devices include S Pen & functionality to take advantage of it for input (not security related)
		Galaxy S20 LTE
		Galaxy S20 FE
Galaxy S20+ 5G	Snapdragon 865	Galaxy Z Fold2 5G	S20 Ultra > S20+ > S20 > S20 FE in terms of display size
		Galaxy Note20 Ultra 5G	Note20 Ultra > Note20 in terms of display size
		Galaxy Note20 5G	Note20 devices include S Pen & functionality to take advantage of it for input (not security related)
		Galaxy Tab S7+	Z Fold2 5G & Z Flip have 2 displays & folding display
		Galaxy Tab S7	Tab S7 devices are tablets (no voice calling) with S Pen
		Galaxy Z Flip 5G	Tx70 tablets only have Wi-Fi, others have cellular
		Galaxy S20 Ultra 5G	Tab S7+ > Tab S7 in terms of display size
		Galaxy S20 5G	Tab S7+ & S20 FE have under screen image fingerprint sensor
		Galaxy S20 TE	Tab S7, Z Fold2 5G & Z Flip 5G have power button fingerprint sensor
		Galaxy S20 FE
Galaxy XCover Pro	Exynos 9611	Galaxy A51	XCover Pro is ruggedized
			XCover Pro has Push-to-Talk button
			XCover Pro has removable battery
			A51 has under screen image fingerprint sensor
Galaxy Note10+ 5G	Exynos 9825	Galaxy Note10+	Note10+ > Note10 in terms of display size
		Galaxy Note10 5G	5G devices have different cellular modem
		Galaxy Note10	5G devices have different cellular modem
Galaxy S10e	Exynos 9820	Galaxy S10+	S10 & S10+ have ultrasonic fingerprint sensor
		Galaxy S10 5G	S10+ > S10 > S10e in terms of display sizes
		Galaxy S10	S10 5G has different cellular modem
Galaxy S10+	Snapdragon 855	Galaxy Note10+ 5G	S10e, Fold & Z Flip have power button image fingerprint sensor
		Galaxy Note10+	S10 & S10e have smaller display sizes
		Galaxy Note10	5G devices have different cellular modem
		Galaxy Tab S6	Fold & Z Flip have 2 displays
		Galaxy S10 5G	Fold & Z Flip have folding display
		Galaxy S10	Note10+ > Note10 in terms of display size
		Galaxy S10e	Note10 devices include S Pen & functionality to take advantage of it for input (not security related)
		Galaxy Fold 5G	Tab S6 is tablet (no voice calling) with S Pen
		Galaxy Fold	T867 & T865 tablets have LTE, T860 tablets only have Wi-Fi
		Galaxy Z Flip	Tab S6 has under screen image fingerprint sensor

The following table lists differences from the common hardware model Galaxy S21 Ultra 5G. The TOE software is identical on all models, and changes are based on the differences in the hardware components where there are variations from the previously certified model. Changes related to utilizing two screens on the new devices are outside the boundary of the TOE software (and hardware).

Certified Model	Equivalent Model highlighted in first table	Differences in Equivalent Model
Galaxy S21 Ultra 5G	Galaxy Z Fold3 5G	· Two displays – one when closed, a folding display (7-8”) when opened (only one display is active at a time) · Power button fingerprint sensor (this sensor is marked as fingerprint-I in the Security Target and evaluated on the S10e) · Different Wi-Fi chip (see section 2.1.2)
Galaxy S21 Ultra 5G	Galaxy Z Flip3 5G	· Two displays – one when closed for notifications, a folding display (5-6”) when opened (only one display is active at a time) · Power button fingerprint sensor (this sensor is marked as fingerprint-I in the Security Target and evaluated on the S10e) · Different Wi-Fi chip (see section 2.1.2)
Galaxy S21 Ultra 5G	Galaxy S21 FE 5G	· Smaller screen size, lower resolution · Smaller battery, flash storage

The security software portion of the TOE boundary, as defined in the TSF Inventory section of the Samsung Electronics Co., Ltd. Samsung Galaxy Devices on Android 11 - Spring Key Management Description, version 1.1, December 15, 2021, is identical between all models. There are no additional security features in the new devices, all changes are outside the core components of the TOE.

The S20 FE device models added as part of this maintenance action differ from the earlier S20 series devices in screen size and screen resolution. The added devices represent a minor change to the TOE.

Vendor Information

Samsung Electronics Co., Ltd.
Ranjit Mallela
1-650-861-1549
r.mallela@samsung.com

www.samsung.com

Site Map Contact Us Home