NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems

Short Name: pp_mdm_v2.0

Technology Type: Mobility

CC Version: 3.1

Date: 2014.12.31

Preceded By: pp_mdm_v1.1

Succeeded By: pp_mdm_v3.0

Sunset Date: 2017.05.21

Conformance Claim: None

Protection Profile 

DoD Annex 

DoD Annex 

Control Mapping 

PP OVERVIEW

Mobile device management (MDM) products allow enterprises to apply security policies to mobile devices, such as smartphones and tablets. The purpose of these policies is to establish a security posture adequate to permit mobile devices to process enterprise data and connect to enterprise network resources.

This document provides a baseline set of Security Functional Requirements (SFRs) for an MDM System, which is the Target of Evaluation (TOE).  The MDM System is only one component of an enterprise deployment of mobile devices.  Other components, such as the mobile device platforms, which enforce the security policies, and network access control servers, are out of scope.

This U.S. Government Approved Protection Profile is not assigned to any Validated Products

Active Related Technical Decision

• 0079 – RBG Cryptographic Transitions per NIST SP 800-131A Revision 1
  • References:  PP_APP_v1.1

Archived Related Technical Decisions

• 0234 – Appendix H - TLS Mapping Table
• 0212 – FCS_HTTPS_EXT.1.3 - TLS Mutual Authentication Update
• 0107 – FCS_CKM - ANSI X9.31-1998, Section 4.1.for Cryptographic Key Generation
• 0084 – P-256 is Optional in MDM v2.0
• 0082 – Removal of Auditing of SSH Rekey in FAU_GEN.1(1)
• 0078 – FAU_ALT_EXT.1.1 AA Scenario Removal in MDM PP v2.0
• 0057 – Update to TD0047 for Non Wear Leveled Flash Memory
• 0040 – Clarifications to Tests for TLSS Requirements in MDM PP V2.0
• 0037 – IPsec Requirement_DN Verification
• 0034 – Revision of Test 5 in FCS_TLSC_EXT.1.1 & EXT.2.1 reqs in MDF PP V2.0, MDM PP V2.0, MDM Agent PP V2.0