Compliant Product - Scalar and Express P-series SSD, version NV.R1900
Certificate Date: 2022.06.10CC Certificate Security Target * Validation Report
Validation Report Number: CCEVS-VR-VID11262-2022
Product Type: Encrypted Storage
Conformance Claim: Protection Profile Compliant
PP Identifier: collaborative Protection Profile for Full Drive Encryption - Authorization Acquisition Version 2.0 + Errata 20190201
collaborative Protection Profile for Full Drive Encryption - Encryption Engine Version 2.0 + Errata 20190201
CC Testing Lab: UL Verification Services Inc. (Formerly InfoGard)
* This is the Security Target (ST) associated with the latest Maintenance Release. To view previous STs for this TOE, click here.
The TOE is the Scalar and Express P-series SSD, version NV.R1900, including the Guidance Documentation. The self-encrypting solid state drives each consist of a single ASIC controller, volatile DRAM memory chips and non-volatile NAND. The TOE is used to protect data at rest on a device that is lost or stolen while powered off.
Security Evaluation Summary
The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) processes and procedures. The Scalar and Express P-series SSD, version NV.R1900 was evaluated against the criteria contained in the Common Criteria for Information Technology Security Evaluation, Version 3.1 Revision 5, the collaborative Protection Profile for Full Drive Encryption – Encryption Engine, Version 2.0 + Errata 20190201, February 01, 2019, and the collaborative Protection Profile for Full Drive Encryption - Authorization Acquisition, Version 2.0 + Errata 20190201, February 01, 2019. The product, when installed and configured per the instructions provided in the guidance, satisfies all of the security functional requirements stated in the Security Target. The evaluation was completed in June 2022. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report and the Assurance Activities Report, prepared by CCEVS.
The drive utilizes the cryptographic algorithms that are approved for use by NIST FIPS 140-3 per SP 800-140C and SP 800-140D.
User Data Protection
The drive uses XTS-AES-256 (SP800-38E) IEEE Std. 1619-2007 XTS-AES-256 algorithm to encrypt all user data on the drive.
The drive allows authorized users to change the data encryption key (DEK), erase the DEK, initiate firmware updates, erase user data, and change passwords.
Protection of the TSF
The drive protects itself by running a suite of self-tests at power-up and before using certain functions, authenticating firmware and by not providing any mechanism to export any key values.
Novachips Co., Ltd.