U.S. Government Approved Protection Profile - Extended Package for Software File Encryption Version 1.0
Short Name: pp_app_swfe_ep_v1.0
Technology Type: Encrypted Storage
CC Version: 3.1
To Be Succeeded By: mod_fe_v1.0
Sunset Date: 2020.01.25
Conformance Claim: NoneProtection Profile
This is an Extended Package (EP) for the Application Software Protection Profile. This EP specifically addresses encryption of a set of data. This EP addresses the primary threat that an unauthorized user will obtain access to a host machine containing encrypted information and be able to extract the sensitive data through the process of decryption. The Target of Evaluation (TOE) defined in this EP is an encryption product that will inherently encrypt all of that data that the user selects to encrypt. For ease of explanation, “file” will frequently be used to refer to the object that is encrypted (however, it could be any number of things – folders, volumes, containers, etc.).
There are two use cases for this EP. First, the traditional ability to encrypt files and power down the machine and know the data is securely protected. Second, the ability to encrypt a file on a machine and then send the encrypted file securely using a non-encrypted data in transit method.
Assigned to the following Validated Products
Active Related Technical Decisions
Archived Related Technical Decisions
Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).
Please forward any general questions to our Q&A tool.