NIAP: Assurance Continuity
NIAP/CCEVS
  NIAP  »»  Product Compliant List  »»  Product Entry  »»  Assurance Continuity  
Assurance Continuity - NetApp Storage Encryption (NSE) Running ONTAP 9.10.1P7

Date of Maintenance Completion:  2022.09.30

Product Type:    Encrypted Storage

Conformance Claim:  Protection Profile Compliant

PP Identifier:    collaborative Protection Profile for Full Drive Encryption - Authorization Acquisition Version 2.0 + Errata 20190201

Original Evaluated TOE:  2021.09.07 - NetApp Storage Encryption (NSE) running ONTAP 9.7P13

CC Certificate [PDF] Validation Report [PDF] Assurance Activity [PDF]

Administrative Guide [PDF]

Administrative Guide [PDF]

Administrative Guide [PDF]

Administrative Guide [PDF]

Administrative Guide [PDF]

Please note:  The above files are for the Original Evaluated TOE.  Consequently, they do not refer to this maintained version, although they apply to the maintained version. 

Security Target [PDF] * Assurance Continuity Maintenance Report [PDF] Administrative Guide [PDF]

Administrative Guide [PDF]

Please note:  This serves as an addendum to the VR for the Original Evaluated TOE. 

* This is the Security Target (ST) associated with this latest Maintenance Release.  To view previous STs for this TOE, click here.

Readers are reminded that the certification of this product (TOE) is the result of maintenance, rather than an actual re-evaluation of the product.  Maintenance only considers the affect of TOE changes on the assurance baseline (i.e. the original evaluated TOE); maintenance is not intended to provide assurance in regard to the resistance of the TOE to new vulnerabilities or attack methods discovered since the date of the initial certificate.  Such assurance can only be gained through re-evaluation. 

Using a security impact analysis of the changes made to the TOE, which was provided by the developer, the CCEVS has determined that the impact of changes on the TOE are considered minor and that independent evaluator analysis was not necessary.  A summary of the results can be found in the Maintenance Report, which is written in relation to the product's original validation report and Security Target.  Readers are therefore reminded to read the Security Target, Validation Report, and the Assurance Maintenance Report to fully understand the meaning of what a maintained certificate represents. 

Product Description

Description of ASE Changes:

The Impact Analysis Report (IAR) identifies many new features. It indicates that these new features do not impact the security functionality of the TOE nor do they impact its NSE portion. The features that are excluded from the evaluation are identified in the ST. The IAR also identifies when the ST has been updated to include the new appliances.

The SAN enhancements do not affect the claimed security functionality identified in the security target. The secure configuration guidance was not affected by the addition of the new arrays as the new models/appliances do not have any impact the guidance documentation. However, the documentation has been repackaged. These documents will be the replacement for the AGD regression testing.

The AGD assurance activities for most of the SFRs covered in the evaluation were not impacted. For those that were impacted, the documents referenced in the AAR were not affected by the additional arrays. This includes the NetApp Encryption Power Guide [NEPG] (same version as in the initial evaluation), the Commands Manual [CMPR], the System Administration Reference [SAR], and the Upgrade/Downgrade Guides [UEG] and [URDG]. For the SFRs that have guidance assurance activities, the references to the new documents are shown below. The IAR includes the details for each.

Administrators: when you see this in the AGD AAR, look here instead

1.       FCS_AFA_EXT.1

Administrators: when you see this (Section “Configuring NetApp hardware-based encryption > Configuring onboard key management > Enabling onboard key management in ONTAP 9.6 and later” of [NEPG]) in the AGD AAR, look at the [ONTAP 9 doc] and in the hardcopy [SDE] instead.

2.       FCS_AFA_EXT.2

Administrators: when you see this (Section “Configuring NetApp hardware-based encryption > Configuring onboard key management > Enabling onboard key management in ONTAP 9.6 and later” of [NEPG]) in the AGD AAR, look at the [ONTAP 9 doc] and in the hardcopy [SDE] instead.

3.       FCS_VAL_EXT.1

Administrators: when you see this (Section “Configuring NetApp hardware-based encryption > Configuring onboard key management > Enabling onboard key management in ONTAP 9.6 and later” of [NEPG]) in the AGD AAR, look at the [ONTAP 9 doc] and in the hardcopy [SDE] instead.

4.       FMT_SMF.1:

Administrators: when you see this (“storage/security/cluster commands” in [CMPR]) in the AGD AAR, look at the [ONTAP 9 doc] and in the hardcopy [CLI] instead.

5.       FPT_PWR_EXT.1

Administrators: when you see this ([CMPR] and [SAR]) in the AGD AAR, look at the [ONTAP 9 doc] and in the hardcopy [CLI] instead.

6.       FPT_PWR_EXT.2

Administrators: when you see this ([CMPR] and [SAR]) in the AGD AAR, look at the [ONTAP 9 doc] and in the hardcopy [CLI] instead.

7.       FPT_TUD_EXT.1

Administrators: when you see this (Configuring NetApp hardware-based encryption > Configuring onboard key management > Enabling onboard key management in ONTAP 9.6 and later” of [NEPG])  in the AGD AAR, look in the hardcopy [SDE] and [SUR] instead.

The following is a summary of the changes of this Assurance Maintenance with respect to the amount of actual product changes:

·       Percent of the Product code overall that was changed since the original evaluation: ~10% (includes changes to third-party libraries, new features, etc.). There were no identified bug fixes in the IAR.

·       Percent of the Product code that specifically enforces the TOE security Functions that was changed since the original evaluation: < 0.1%

·       Percent of the changes that impact code that isn’t even included in the evaluated configuration: ~90% (includes new features, support for new platforms, etc.)

Description of ALC Changes:

Changes to the Security Target revision were made, going from version 1.0 (14 June 2021) to 1.2 (1 September 2022) with the update of the TOE software version, the product version number, additional platform appliances, and the identification of the excluded functionality. The guidance documentation was also updated as noted in the of the table above. No other documentation was affected.

Vendor Information


NetApp, Inc.
Tim Chevalier
408-822-6000
Tim.Chevalier@netapp.com

www.netapp.com
Site Map              Contact Us              Home