{"product_id":10595,"v_id":10595,"product_name":"Samsung Galaxy Note 4, Galaxy Note Edge, Galaxy Alpha, Galaxy Tab S & Galaxy Tab Active VPN Client","certification_status":"Certified","certification_date":"2014-11-17T00:00:00Z","tech_type":"Virtual Private Network","vendor_id":{"name":"Samsung Electronics Co., Ltd.","website":"www.samsung.com"},"vendor_poc":"Brian Wood","vendor_phone":"908-809-7939","vendor_email":"be.wood@samsung.com","assigned_lab":{"cctl_name":"Gossamer Security Solutions"},"product_description":"

The Target of Evaluation (TOE) is the Samsung Electronics Co., Ltd. Samsung Galaxy Devices VPN Client, including the Samsung Galaxy Note 4, Galaxy Note Edge, Galaxy Alpha, Galaxy Tab S 8.4 LTE & 10.5 LTE, & Galaxy Tab Active. 

\r\n

The TOE Platform is a mobile operating system based on Android 4.4 with modifications made to increase the level of security provided to end users and enterprises. The TOE facilitates secure communications through a VPN, and is intended to be used as part of an enterprise messaging solution providing mobile staff with enterprise connectivity.

","evaluation_configuration":"

The evaluated configuration consists of several devices with specific processors.  The model numbers of the mobile devices are as follows.

\r\n\r\n \r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n \r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
\r\n

Device Name

\r\n		\r\n

Base Model
Number

\r\n		\r\n

Android
Version

\r\n		\r\n

Kernel Version

\r\n		\r\n

Build Number

\r\n
\r\n

Galaxy Note 4 (Qualcomm)

\r\n		\r\n

SM-N910

\r\n		\r\n

4.4.4

\r\n		\r\n

3.10.0

\r\n		\r\n

KYU84Q

\r\n
\r\n

Galaxy Note 4 (System LSI)

\r\n		\r\n

3.10.9

\r\n
\r\n

Galaxy Note Edge (Qualcomm)

\r\n		\r\n

SM-N915

\r\n		\r\n

4.4.4

\r\n		\r\n

3.10.0

\r\n		\r\n

KYU84Q

\r\n
\r\n

Galaxy Note Edge (System LSI)

\r\n		\r\n

3.10.9

\r\n
\r\n

Galaxy Alpha (Qualcomm)

\r\n		\r\n

SM-G850

\r\n		\r\n

4.4.4

\r\n		\r\n

3.4.0

\r\n		\r\n

KYU84Q

\r\n
\r\n

Galaxy Alpha (System LSI)

\r\n		\r\n

3.10.9

\r\n
\r\n

Galaxy Tab S 8.4

\r\n		\r\n

SM-T707

\r\n		\r\n

4.4.2

\r\n		\r\n

3.4.0

\r\n		\r\n

KOT49H

\r\n
\r\n

Galaxy Tab S 10.5

\r\n		\r\n

SM-T807

\r\n		\r\n

4.4.2

\r\n		\r\n

3.4.0

\r\n		\r\n

KOT49H

\r\n
\r\n

Galaxy Tab Active

\r\n		\r\n

SM-T360

\r\n		\r\n

4.4.4

\r\n		\r\n

3.4.0

\r\n		\r\n

KTU84P

\r\n
\r\n

The security software version is MDF v1.1 Release 4.

","security_evaluation_summary":"

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Samsung Galaxy Devices VPN Client was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 4.  The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 rev 4.  Gossamer Security Solutions determined that the evaluation assurance level (EAL) for the product is EAL 1.  The product, when delivered and configured as identified in the Samsung VPN Client on Galaxy Devices Guidance documentation, Version 1.1, October 28, 2014   document, satisfies all of the security functional requirements stated in the Samsung Electronics Co., Ltd. Samsung Galaxy Note 4, Galaxy Note Edge, Galaxy Alpha, Galaxy Tab S & Galaxy Tab Active VPN Client (IVPNCPP14) Security Target, Version 1.4, November 11, 2014.  The project underwent CCEVS Validator review.  The evaluation was completed in November 2014.  Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report (report number CCEVS-VR-VID10595-2014) prepared by CCEVS.

","environmental_strengths":"

The logical boundaries of the Samsung Galaxy Devices VPN Client, including the Samsung Galaxy Note 4, Galaxy Note Edge, Galaxy Alpha, Galaxy Tab S 8.4 LTE & 10.5 LTE, & Galaxy Tab Active TOE are realized in the security functions that it implements. Each of these security functions is summarized below.

\r\n

Cryptographic Support - The IPsec implementation is the primary function of the TOE. IPsec is used by the TOE to protect communication between itself and a VPN Gateway over an unprotected network. With the exception of the IPsec implementation, the TOE relies upon its underlying evaluated platform for the cryptographic services specified in this Security Target.

\r\n

User Data Protection - The TOE ensures that residual information is protected from potential reuse in accessible objects such as network packets.

\r\n

Identification and Authentication - The TOE provides the ability to use, store, and protect X.509 certificates and pre-shared keys that are used for IPsec Virtual Private Network (VPN) connections.

\r\n

Security Management - The TOE provides all the interfaces necessary to manage the security functions required by the VPN client to meet the requirements. In particular, the IPsec VPN is fully configurable by a combination of functions provided directly by The TOE and those available to the associated VPN gateway.

\r\n

TSF Protection - The TOE relies upon its underlying platform to perform self-tests that cover the TOE as well as the functions necessary to securely update the TOE.

\r\n

Trusted Path/Channels - The TOE acts as a VPN client using IPsec to established secure channels to corresponding VPN gateways.

","features":[]}