Samsung SAS 12G TCG Enterprise SSC SEDs PM1633a Series Security Policy
This non-proprietary Security Policy may only be copied in its entirety without alterations including this statement. Samsung copyright 2016.
Page 4 of 19
Introduction
Samsung Electronics Co., Ltd. (“Samsung”) SAS 12G TCG Enterprise SSC SEDs
PM1633a Series, herein after referred to as a “cryptographic module” or “module”,
SSD (Solid State Drive), satisfies all applicable FIPS 140-2 Security Level 2
requirements, supporting TCG Enterprise SSC based SED (Self-Encrypting Drive)
features, designed to protect unauthorized access to the user data stored in its
NAND Flash memories. The built-in AES HW engines in the cryptographic
module’s controller provide on-the-fly encryption and decryption of the user data
without performance loss. The SED’s nature also provides instantaneous
sanitization of the user data via cryptographic erase.
Module Name
Hardware Version
Firmware
Version
Drive
Capacity
Samsung SAS 12G TCG Enterprise
SSC SED PM1633a
MZILS7T6HMLS-000H9
3P00
7.6TB
MZILS15THMLS-000H9
3P00
15.2TB
Exhibit 1 – Versions of Samsung SAS 12G TCG Enterprise SSC SED PM1633a
Series.
Cryptographic Boundary
The following photographs show the cryptographic module’s top and bottom views.
The multiple-chip standalone cryptographic module consists of hardware and
firmware components that are all enclosed in two aluminum alloy cases, which
serve as the cryptographic boundary of the module. The top and bottom cases are
assembled by screws and the tamper-evident labels are applied for the detection of
any opening of the cases. No security relevant component can be seen within the
visible spectrum through the opaque enclosure.
New firmware versions within the scope of this validation must be validated
through the FIPS 140-2 CMVP. Any other firmware loaded into this module is out
of the scope of this validation and requires a separate FIPS 140-2 validation.
