NIAP: U.S. Government Approved Protection Profile - Extended Package for Software File Encryption Version 1.0
NIAP/CCEVS

NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems
Questions?  We're here to help
  NIAP  »»  Protection Profiles  »»  Approved PPs  »»  Details  
U.S. Government Approved Protection Profile - Extended Package for Software File Encryption Version 1.0

Short Name: pp_app_swfe_ep_v1.0

Technology Type: Encrypted Storage

CC Version: 3.1

Date: 10 November 2014

Conformance Claim: None

Protection Profile [PDF]

Control Mapping [PDF]


 

PP OVERVIEW

This is an Extended Package (EP) for the Application Software Protection Profile. This EP specifically addresses encryption of a set of data. This EP addresses the primary threat that an unauthorized user will obtain access to a host machine containing encrypted information and be able to extract the sensitive data through the process of decryption. The Target of Evaluation (TOE) defined in this EP is an encryption product that will inherently encrypt all of that data that the user selects to encrypt.  For ease of explanation, “file” will frequently be used to refer to the object that is encrypted (however, it could be any number of things – folders, volumes, containers, etc.).

There are two use cases for this EP.  First, the traditional ability to encrypt files and power down the machine and know the data is securely protected.  Second, the ability to encrypt a file on a machine and then send the encrypted file securely using a non-encrypted data in transit method.  

Assigned to the following Validated Products

Related Technical Decisions

Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).

Please forward any general questions to our Q&A tool.

 
Site Map              Contact Us              Home