Samsung Devices– Now Validated Through Common Criteria and FIPS

In today’s mobile ecosystem, there are many types of certifications currently in the market. Of these, some of the most important are Common Criteria and FIPS. has vigorously pursued and achieved validation through each of these certification programs.

Samsung devices are also equipped with leading security features, including on-device encryption and secure data connectivity. Additionally, each device is protected by —a holistic array of security enhancements from the hardware layer all the way to the application layer.

Common Criteria

The Common Criteria certification against the Mobile Device Fundamentals evaluates a mobile device from the outside Protection Profile (MDFPP). The MDFPP MDFPP v2 in, looking at where and how it will be used was developed by the National Information Common Criteria-Certified Devices: and then measuring it to see that it Assurance Partnership (NIAP). Under this • S 6 provides an adequate level of security for baseline security definition for mobility, • 6 Edge the stated purpose. part of the FIPS 140-2 validations is also integrated, as per international specifications. MDFPP v1.1 Instead of focusing just on the cryptography, Common Criteria-Certified Devices: the evaluation looks holistically at the entire The MDFPP is continually evolving, with product, from development/creation to updates being driven in large part through • Samsung Galaxy Tab Active physical delivery to end use by the customer, Samsung efforts, to better meet the needs • in order to establish the chain of trust for the of government users. • mobile device. • In addition to the MDFPP validation, • Samsung Galaxy Tab S* 8.4 and 10.5 Today, almost all evaluations are performed Samsung Mobile devices have also been • Samsung Galaxy S 5 against a set of requirements laid out in a validated against the Protection Profile for • document called a Protection Profile (PP). IPsec Virtual Private Network (VPN) Clients. • .1 The PP states exactly what the mobile device Similarly developed by NIAP, this PP 2014 Edition must accomplish, such as requiring the user specifies the requirements for any IPsec • Samsung Galaxy S 4 to log in with a password and enforcing VPN client, including FIPS 140-2 • Samsung Galaxy Note Pro 12.2 parameters and consequences should cryptography and enterprise-grade the login fail (i.e., password requirements, connectivity. This VPN client is available failure scenarios, etc.). The overall evaluation built-in on all MDFPP-validated devices All listed devices are also validated to the ensures compliance against both the mobile with nothing else to install. VPN PP v1.4. Common Criteria Support device documentation as well as the mobile is available in KitKat (Android OS 4.4) and device itself to verify that stated requirements Common Criteria evaluates not only Lollipop (Android OS 5).** are met. encryption capabilities but also other components within the device, ensuring In the case of Samsung Mobile devices, that it meets stated regulatory requirements Common Criteria validation was performed and is secure as a whole.

*LTE. **In order to confirm if the device contains the version that supports Common Criteria, please go to: Settings > About phone > “Security version.” For more information or to view the latest documentation on device software updates, please visit www.samsung.com/us/knox or contact a Samsung representative. FIPS The Samsung Difference

FIPS 140 is a standard that speci es In order to make sure that the extensive requirements for cryptographic modules. security enhancements made to Samsung FIPS-Compliant Devices: In other words, it validates that a mobile Mobile devices are suitable for security- device uses and implements encryption conscious customers, Samsung will continue • Samsung Galaxy S 6 algorithms correctly. The current version to pursue validation against the most stringent • Samsung Galaxy S 6 Edge of the standard is FIPS 140-2. certi cations available in the market today. • Samsung Galaxy Tab Active Our intention is to have a continually growing • Samsung Galaxy Alpha To provide the basis for a broad set of portfolio of mobile devices that adhere to • Samsung Galaxy Note Edge functionality, including SSL, VPN, S/MIME the most relevant security standards • Samsung Galaxy Note 4 and On-Device/SD Card Encryption, recognized by customers worldwide, • Samsung Galaxy Tab S* 8.4 and 10.5 Samsung provides common low-level including Common Criteria and FIPS. • Samsung Galaxy S 5 cryptographic libraries that can be used • Samsung Galaxy Note 3 and reused by many different applications It’s very important to note that certi cations • Samsung Galaxy Note 10.1 and services. awarded to Samsung are based on 2014 Edition Samsung-speci c enhancements; they are • Samsung Galaxy S 4 In addition, Samsung utilizes the same not obtained based on generic Android • Samsung Galaxy Note Pro 12.2 module in multiple platforms without devices. Samsung will continue to invest in modi cation, allowing the devices to be our world-class security platform, Samsung FIPS-compliant without revalidating for each Knox, and in our market-leading portfolio FIPS is supported from Android OS 4.4 and individual device. In this particular case, as of mobile devices for years to come. Our newer. FIPS support is available in KitKat the evolves, these customers will enjoy the ease of use they (Android OS 4.4) and Lollipop (Android OS 5). modules are not modi ed, and the mobile have come to expect on Samsung devices device still keeps the certi cation valid. without having to compromise security.

Samsung Samsung Samsung Samsung Samsung Samsung Samsung Samsung Samsung Galaxy Galaxy Galaxy Galaxy Galaxy Galaxy Galaxy Galaxy Galaxy S 5 Tab S 8.4 Tab S 10.5 Note 4 Note Edge Alpha Tab Active S 6 S 6 Edge

Learn more samsung.com/business 1-800-SAMSUNG 1-866-SAM4BIZ Follow us youtube.com/samsungbizusa @SamsungBizUSA

©2015 America, Inc. Samsung, Galaxy S®, Galaxy Note®, Samsung Galaxy Tab®, Galaxy Alpha™ and Samsung Knox™ are all trademarks of Samsung Electronics Co., Ltd. Other company and product names mentioned herein may be trademarks of their respective owners. Screen images simulated. Appearance of devices may vary. Printed in U.S.A. HHP-COMMONCRITERIAFIPSDSHT-JUN15J