NIAP: U.S. Government Approved Protection Profile - Extended Package for Software File Encryption Version 1.0

Short Name: pp_app_swfe_ep_v1.0

Technology Type: Encrypted Storage

CC Version: 3.1

Date: 10 November 2014

Conformance Claim: None



This is an Extended Package (EP) for the Application Software Protection Profile. This EP specifically addresses encryption of a set of data. This EP addresses the primary threat that an unauthorized user will obtain access to a host machine containing encrypted information and be able to extract the sensitive data through the process of decryption. The Target of Evaluation (TOE) defined in this EP is an encryption product that will inherently encrypt all of that data that the user selects to encrypt.  For ease of explanation, “file” will frequently be used to refer to the object that is encrypted (however, it could be any number of things – folders, volumes, containers, etc.).

There are two use cases for this EP.  First, the traditional ability to encrypt files and power down the machine and know the data is securely protected.  Second, the ability to encrypt a file on a machine and then send the encrypted file securely using a non-encrypted data in transit method.  

Assigned to the following Validated Products

Related Technical Decisions

  • 0288 – Support for Single-User File Encryption
  • 0285 – Test for Key Wrap using RSA-OAEP
  • 0280 – Selection added to allow for keys to be stored in the underlying platform keystore
  • 0263 – Specification of key generation and use requirements in the Software File Encryption EP
  • 0221 – FMT_SMF.1.1 - Assignments moved to Selections
  • 0204 – Protection of Selected User Data
  • 0175 – Revision of FCS_CKM_EXT.4 requirement in APP SW FE EP v1.0
  • 0123 – GCM Mode Added to FCS_KYC_EXT.1.1, FCS_COP.1.1(1), FPT_KYP_EXT.1.1
  • 0122 – FMT_SMF.1.1 Assignments moved to Selections
  • 0121 – FMT_MEC_EXT.1.1 Configuration Options
  • 0092 – FCS_KYC_EXT.1 - Key Integrity
  • 0076 – Correction to SWFE Keychain Requirement
  • 0069 – Revision to FCS_COP.1(1) AA in SWFE EP v1.0
  • 0067 – Revision to FCS_CKM.1(A) SFR & AA in SWFE EP v1.0
  • 0065 – Revision of FDP_PRT_EXT.1.2 requirement in APP SWFE EP v1.0

Please forward any questions or comments to

Site Map              Contact Us              Home