All modules
CMVP Validated Module · FIPS 140-3 Security Policy

Samsung NVMe TCG Opal SSC SEDs PM1743 Series

Certificate#5018StandardFIPS 140-3Level1TypeHardwareEmbodimentMulti-Chip EmbeddedStatusActiveVendorSamsung Electronics Co., Ltd.
Low review priority  ·  exposes debug/recovery interface  ·  last validated 14 months ago. How this is derived →

Certificate

StandardFIPS 140-3
Overall level1
Module typeHardware
EmbodimentMulti-Chip Embedded
StatusActive
Sunset date5/18/2030
EntropyENT (P)
CaveatNone
VendorSamsung Electronics Co., Ltd.
Hardware versionsMZCLO1T9HCJR-00AMZ, MZCLO3T8HBLT-00AMZ, MZCLO7T6HBLA-00AMZ

Approved Algorithms (8)

AlgorithmACVP Cert
AES-ECBA2247
AES-ECBA2248
AES-ECBA2249
AES-GCMA2248
AES-XTS Testing Revision 2.0A2249
Counter DRBGA2248
ECDSA SigVer (FIPS186-4)A2255
SHA2-384A2248

Security Levels (Table 1)

Requirement areaLevel
Cryptographic Module Specification2
Roles, Services, and Authentication4

Derived Review-Risk Graph (review prompts, not findings)

flowchart LR
  %% Deterministic review-risk graph for Samsung NVMe TCG Opal SSC SEDs PM1743 Series
  %% Review prompts and evidence gaps, NOT vulnerability findings.
  subgraph CMVP["CMVP-disclosed clues"]
    C1["[high] Firmware / bootloader<br/>versions disclosed<br/>(identity, not provenance)<br/><i>OPP9TA6A</i>"]
    C2["[high] Firmware update / recovery<br/>/ rollback services<br/><i>Update the firmware<br/>Error state in Boot<br/>Error State in operational state</i>"]
    C3["[high] Unauthenticated /<br/>self-test / status service<br/>surface<br/><i>Show Status<br/>Error State in operational state</i>"]
    C4["[high] Physical/logical<br/>interfaces (some 'blocked<br/>in firmware')<br/><i>JTAG</i>"]
    C6["[low] Operating system / runtime<br/>referenced (boundary<br/>membership not asserted)<br/><i>operating system<br/>application</i>"]
  end
  subgraph Inference["Derived inference"]
    I1["Component identity is<br/>disclosed, but provenance<br/>and patch lineage are not."]
    I2["Trusted code is reachable<br/>through update and<br/>recovery paths."]
    I3["Some services may process<br/>input before, or without,<br/>operator authentication."]
    I4["Interface reachability may<br/>vary by boot stage and<br/>lifecycle state."]
    I6["Possible only, a<br/>runtime/OS is referenced,<br/>but its membership in the<br/>cryptographic boundary is<br/>not established."]
  end
  subgraph Risk["Reviewer question"]
    R1["Do the vendor version<br/>strings obscure the<br/>upstream baseline, fork<br/>lineage, or known-CVE<br/>exposure?"]
    R2["Are update images<br/>authenticated before<br/>parsing, and are<br/>downgrade/rollback paths<br/>constrained?"]
    R3["Can unauthenticated<br/>services leak state,<br/>consume resources, or<br/>transition security state?"]
    R4["Are interfaces blocked<br/>before the bootloader<br/>runs, or only after<br/>approved mode starts?"]
    R6["If the OS/runtime is<br/>in-boundary, could its<br/>CVEs be hidden by<br/>firmware-only versioning?"]
  end
  subgraph Evidence["Evidence needed to close"]
    E1["SBOM / component baselines<br/>· patch and backport<br/>manifest · CVE disposition"]
    E2["update image format ·<br/>signature-before-parse<br/>proof · anti-rollback /<br/>downgrade policy"]
    E3["pre-auth reachability<br/>matrix · rate limits and<br/>output redaction ·<br/>abuse-case tests"]
    E4["lifecycle reachability<br/>matrix · boot-stage<br/>interface timing ·<br/>factory/recovery/error-state<br/>access controls"]
    E6["confirm the disclosure<br/>itself (keyword hit,<br/>context unverified) ·<br/>runtime identity and<br/>config · kernel/runtime<br/>hardening profile ·<br/>patch/backport manifest"]
  end
  C1 --> I1 --> R1 --> E1
  C2 --> I2 --> R2 --> E2
  C3 --> I3 --> R3 --> E3
  C4 --> I4 --> R4 --> E4
  C6 --> I6 --> R6 --> E6
  classDef clue fill:#eef3f9,stroke:#6f7f91,color:#1f3a5f;
  classDef infer fill:#fff7e6,stroke:#b98500,color:#6b4e00;
  classDef risk fill:#fbe9e9,stroke:#b02a2a,color:#7a1f1f;
  classDef evidence fill:#e6f4ea,stroke:#1e7d34,color:#14532d;
  class C1,C2,C3,C4,C6 clue;
  class I1,I2,I3,I4,I6 infer;
  class R1,R2,R3,R4,R6 risk;
  class E1,E2,E3,E4,E6 evidence;
Underlying clues
flowchart LR
  %% Deterministic clue tier for Samsung NVMe TCG Opal SSC SEDs PM1743 Series
  %% confidence: high = structured record field; medium = structured but soft; low (dashed) = bare keyword hit, context unverified
  subgraph CMVP["CMVP-disclosed clues (deterministic)"]
    C1["[high] Firmware / bootloader versions disclosed (identity, not provenance)<br/><i>OPP9TA6A</i><br/>src: certificate.firmwareVersions"]
    C2["[high] Firmware update / recovery / rollback services<br/><i>Update the firmware<br/>Error state in Boot<br/>Error State in operational state</i><br/>src: securityPolicy.services"]
    C3["[high] Unauthenticated / self-test / status service surface<br/><i>Show Status<br/>Error State in operational state</i><br/>src: securityPolicy.services"]
    C4["[high] Physical/logical interfaces (some 'blocked in firmware')<br/><i>JTAG</i><br/>src: securityPolicy.portsAndInterfaces"]
    C6["[low] Operating system / runtime referenced (boundary membership not asserted)<br/><i>operating system<br/>application</i><br/>src: text:keyword"]
  end
  classDef clueHigh fill:#eef3f9,stroke:#2f6fb0,stroke-width:2px,color:#1f3a5f;
  classDef clueMedium fill:#eef3f9,stroke:#6f7f91,color:#1f3a5f;
  classDef clueLow fill:#f7f7f7,stroke:#999,stroke-dasharray:4 4,color:#444;
  class C1,C2,C3,C4 clueHigh;
  class C6 clueLow;

Security Policy, page by page

Page 1

Samsung NVMe TCG Opal SSC SEDs PM1743 Series Document Version: 1.1 H/W Version: MZCLO1T9HCJR-00AMZ, MZCLO3T8HBLT-00AMZ, MZCLO7T6HBLA-00AMZ F/W Version: OPP9TA6A This document may be freely reproduced in its original entirety.

Page 2
VersionChange
1.0Initial Version
1.1Addressing CMVP comments.

Revision History 1.0 1.1 Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 3
Table of Contents
#SectionPage
1GENERAL5
2CRYPTOGRAPHIC MODULE SPECIFICATION6
2.1CRYPTOGRAPHIC BOUNDARY6
2.2VERSION INFORMATION7
2.3CRYPTOGRAPHIC FUNCTIONALITY8
2.3.1APPROVED ALGORITHM8
2.3.2NON-APPROVED ALGORITHM9
2.4APPROVED MODE OF OPERATION9
3CRYPTOGRAPHIC MODULE INTERFACES10
4ROLES, SERVICES, AND AUTHENTICATION11
4.1ROLE11
4.2SERVICE11
4.2.1APPROVED SERVICE11
4.3AUTHENTICATION13
5SOFTWARE/FIRMWARE SECURITY14
6OPERATIONAL ENVIRONMENT15
7PHYSICAL SECURITY16
8NON-INVASIVE SECURITY17
9SENSITIVE SECURITY PARAMETER MANAGEMENT18
10SELF-TESTS21
10.1PRE-OPERATIONAL TEST21
10.2CONDITIONAL TEST21
10.3ERROR STATES21
11LIFE-CYCLE ASSURANCE23
11.1SECURE INSTALLATION23
11.2OPERATIONAL DESCRIPTION OF MODULE23
12MITIGATION OF OTHER ATTACKS24
Page 4
AcronymDescription
CPUCentral Processing Unit (ARM-based)
CTRLController
DRAM I/FDynamic Random Access Memory Interface
LBALogical Block Address
MEKMedia Encryption Key
MSIDManufactured SID (Security Identifier)
NAND I/FNAND Flash Interface
PMICPower Management Integrated Circuit
ROMRead Only Memory
NVMeNon-Volatile Memory Host Controller Interface Specification
SEDSelf-Encrypting Drive
SSCSecurity Subsystem Class
SSPSensitive Security Parameter
TCGTrusted Computing Group

I. Introduction I.1. Scope referred to as the “cryptographic module” or “module.” The SSD (Solid State Drive) satisfies all applicable FIPS 140-3 security level 1 requirements for a ‘Hardware Module,’ supporting TCG Opal SSC-based SED (Self-Encrypting Drive) features designed to protect against unauthorized access to user data stored in its NAND Flash memories. The built-in AES hardware engines in the cryptographic module’s controller provide on-the-fly encryption and decryption of user data without performance loss. The SED’s design also enables instantaneous sanitization of user data via cryptographic erase. I.2. Acronyms Table 1. Acronyms Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 5
Security level
NameISO SectionRequirementLevel
11General1
22Cryptographic module specification1
33Cryptographic module interfaces1
44Roles, services, and authentication1
55Software/Firmware security1
66Operational environment1
77Physical security1
88Non-invasive securityN/A
99Sensitive security parameter management1
1010Self-tests1
1111Life-cycle assurance1
1212Mitigation of other attacksN/A

[Number Below] Table 2. Security Levels Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy N/A N/A

Page 6
  1. Cryptographic Module Specification 2.1. Cryptographic Boundary This firmware version, within the scope of this validation, must be validated through the FIPS 140-3 CMVP. Any other firmware loaded into this module is beyond the scope of this validation and requires a separate FIPS 140-3 validation. The following photographs depict the top and bottom views of the cryptographic module. The multiple-chip standalone cryptographic module comprises of both hardware and firmware components, all enclosed within two aluminum alloy cases. These cases serve as the cryptographic boundary of the module. Figure
  2. Specification of the Samsung SSD NVMe TCG Opal SSC SEDs PM1743 Series Cryptographic Boundary Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy
Page 7
Module configuration
NameModelHardware VersionFirmware VersionFeatures
PM1743PM1743MZCLO1T9HCJR-00AMZOPP9TA6A1.92TB
MZCLO3T8HBLT-00AMZMZCLO3T8HBLT-00AMZ3.84TB
MZCLO7T6HBLA-00AMZMZCLO7T6HBLA-00AMZ7.68TB

The PM1743 series utilizes a single-chip controller with an NVMe interface on the system side and internally integrates Samsung NAND flash. The following figure illustrates the operational environment of the module. The cryptographic boundary, shown in Figure 2 below, is represented by the black box that encloses the components of the module. Figure

  1. Block Diagram for Samsung SSD NVMe TCG Opal SSC SEDs PM1743 Series 2.2. Version information Table
  2. Cryptographic Module Tested Configuration Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy
Page 8
Approved algorithm
NameCAVP CertMode MethodKey SizeUse FunctionDescription/ Key Size(s)/ Key Strength(s)
AES-ECB / FIPS 197, SP 800-38AA2247ECB256-bit keys with 256-bit key strengthApproved Block Cipher for Counter DRBG (Cert.# A2248)
AES-ECB / FIPS 197, SP 800-38AA2248ECB256-bit keys with 256-bit key strengthPrerequisite for AES-GCM (A2248)
AES-GCM/ FIPS 197, SP 800-38DA2248GCM2256-bit keys with 256-bit key strength IV: 96 bitsKey Encryption / Decryption
Counter DRBG / SP 800-90A Rev. 1A2248CTR_ DRBG (AES-256)AES 256 bits with Derivation Function EnabledAll Cryptographic Key Generation
SHA2-384 / FIPS 180-4A2248SHA-384SHA-384Message Digest for digital signature verification (Cert.# A2255)
AES-ECB / FIPS 197, SP 800-38AA2249ECB256-bit keys with 256-bit key strengthPrerequisite for AES-XTS (A2249)
AES-XTS Testing Revision 2.0 / FIPS 197, SP 800-38EA2249XTS256-bit keys with 256-bit key strengthData Encryption / Decryption
ECDSA SigVer (FIPS186-4) / FIPS 186-4A2255Curve P-384 with SHA-384384 bitsDigital Signature Verification
CKG / SP 800-133rev2 (Section 4, 6.1, 6.3)Vendor AffirmedN/AN/ASymmetric Cryptographic Key Generation; SP 800- 133rev2 and IG D.H.
ENT (P) / SP800-90BN/AN/AENT (P) provides a minimum of 256 bits of entropy for DRBG seed materials in key generation.
AES-GCM / FIPS 197, SP800-38D (non-compliant)AES-GCM / FIPS 197, SP800-38D (non-compliant)No Security Claimed; AES-GCM is only used for obfuscation and removal of obfuscation the CSP. (IG 2.4.A Scenario #1)Key obfuscation and Removal of obfuscation
AES-XTS / FIPS 197, SP 800-38E (non-compliant)AES-XTS / FIPS 197, SP 800-38E (non-compliant)No Security Claimed; AES-XTS is used to remove obfuscation from the firmware during ROM initialized.Removal of firmware obfuscation
No Security Claimed; AES-XTS is used for obfuscation and removal of obfuscation the CSP. (IG 2.4.A Scenario #1)No Security Claimed; AES-XTS is used for obfuscation and removal of obfuscation the CSP. (IG 2.4.A Scenario #1)Key obfuscation and Removal of obfuscation
HMAC-SHA2-256 / FIPS 198-1 (non-compliant)HMAC-SHA2-256 / FIPS 198-1 (non-compliant)Non-approved algorithms here are only used as pre-requisite algorithms for PBKDF2 which is used for storing authentication data. (IG 2.4.A Scenario #1)Store authentication data
PBKDF2 / SP 800-132 (non-compliant)PBKDF2 / SP 800-132 (non-compliant)Non-approved algorithms here are only used for storing authentication data using PBKDF2 (IG 2.4.A Scenario #1)Store authentication data
SHA2-256 / FIPS 180-4 (non-compliant)SHA2-256 / FIPS 180-4 (non-compliant)Non-approved algorithm here are only used as pre-requisite algorithms for PBKDF2 which is used for storing authentication data. (IG 2.4.A Scenario #1)Store authentication data

2.3. Cryptographic Functionality 2.3.1. Approved Algorithm1 The cryptographic module supports the following Approved algorithms for secure data storage: N/A N/A N/A N/A Table 4. Approved Algorithms Note that not all algorithms/modes that appear on the module’s CAVP certificates are utilized by the module. Table 4 lists only the algorithms/modes that are utilized by the module. Not all algorithms/modes that appear on the module’s CAVP certificates are utilized by the module. IG C.H Scenario 2 for generating an IV is implemented in this module. In other words, Key and IV are generated internally using by approved Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 9

2.3.2. The module does not implement any Non-Approved Algorithms Not Allowed in the Approved Mode of Operation or Non-Approved Algorithms Allowed in the Approved Mode of Operation. The following algorithms are not intended to be used as a security function and are not implemented to meet any FIPS 140-3 requirements. Additionally, these algorithms are not provided through a non-approved service to an operator #1) Table 5. Non-Approved Algorithms Allowed in the Approved Mode of Operation with No Security Claimed 2.4. Approved Mode of Operation The module only supports one mode of operation: the Approved mode, in which the Approved cryptographic functions are available. The module automatically transitions to the Approved mode of operation after completing its pre-operational self-tests. The cryptographic module indicates its approved mode through the validated version status, displayed by the Show Status Service in Table 8 via the PCIe command. In the approved mode of operation, non-approved algorithms are allowed, but with no security claims in the module. Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 10
Ports and interfaces
NamePhysical PortLogical InterfaceData That Passes
NVMe ConnectorNVMe ConnectorData Input / Outputplaintext data; signed data
Control InputControl Inputcommands input logically via an API; signals input logically or physically via one or more physical ports
Status OutputStatus Outputstatus information output logically via an API; signal outputs logically or physically via one or more physical ports;
PowerPowerN/A
JTAGJTAGControl Inputsignals input logically or physically via one or more physical ports
Status OutputStatus Outputsignal outputs logically or physically via one or more physical ports;
  1. Cryptographic Module Interfaces The module does not support a Control Output Interface. N/A Table
  2. Ports and Interfaces Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy
Page 11
Service
NameDescriptionRolesCsps AccessedApproved FunctionsAccessIndicatorInputOutput
Show StatusPCIe CommandStatusCryptographic Officer (CO)
Lock/Unlock an LBA RangeLBA RangeStatus
Erase an LBA Range’s DataLBA RangeStatus
Update the firmwareFW image binaryStatus
Get Random NumberTCG CommandStatus
IO CommandLBA RangeStatus
Sanitize / DeleteNSLBA RangeStatus
FormatNVMLBA RangeStatus
RevertPSIDN/A
Perform the Self-testsN/AStatus
Change the PasswordN/AStatus
Set User PasswordN/AStatus
AuthenticationN/AStatus
DiagnosticsN/AN/AMaintenance3
Show StatusShow approved version status and version information of the module / Error State in operational stateCON/AN/ANVM Command: Identify Controller command Result : Status Code
Lock/Unlock an LBA RangeBlock or allow read (decrypt) / write (encrypt)MEKAES-GCM / A2248UID: Locking_GlobalRange / Locking_RangeNNNNOO
KEKKEKOOO
Service
NameDescriptionRolesCsps AccessedApproved FunctionsAccessIndicatorInputOutput
Show StatusPCIe CommandStatusCryptographic Officer (CO)
Lock/Unlock an LBA RangeLBA RangeStatus
Erase an LBA Range’s DataLBA RangeStatus
Update the firmwareFW image binaryStatus
Get Random NumberTCG CommandStatus
IO CommandLBA RangeStatus
Sanitize / DeleteNSLBA RangeStatus
FormatNVMLBA RangeStatus
RevertPSIDN/A
Perform the Self-testsN/AStatus
Change the PasswordN/AStatus
Set User PasswordN/AStatus
AuthenticationN/AStatus
DiagnosticsN/AN/AMaintenance3
Show StatusShow approved version status and version information of the module / Error State in operational stateCON/AN/ANVM Command: Identify Controller command Result : Status Code
Lock/Unlock an LBA RangeBlock or allow read (decrypt) / write (encrypt)MEKAES-GCM / A2248UID: Locking_GlobalRange / Locking_RangeNNNNOO
KEKKEKOOO

4.1. The cryptographic module does not support role-based authentication. Roles are implicitly assumed based on the service they are invoking. The module does not support any bypass capabilities. N/A N/A N/A N/A N/A N/A N/A 4.2. 4.2.1. The cryptographic module only supports the following approved services and does not support any non-approved services. The abbreviations of the type of access to keys and SSPs have the following interpretation:

3 Maintenance role is an operator responsible for using the JTAG.
4 The result of ATA or TCG command is used as an indicator.

Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 12
Approved algorithm
NameUse Function
of user data.of user data.TCG Method: Set Result: TCG status code
Counter DRBG / A2248 AES-ECB / A2247Erase user data by changing the data encryption key.UID: K_AES_256_GlobalRan ge_Key / K_AES_256_RangeNNN N_Key TCG Method: GenKey Result: TCG status codeErase an LBA Range’s DataDRBG VOOOO
AES-GCM / A2248 CKG ENT (P)MEKOOO
ECDSA SigVer (FIPS186-4) / A2255 SHA2-384 / A2248Update the firmwareAdmin Command: Firmware Commit Result : Status CodeUpdate the firmwareFW Verification KeyO
Counter DRBG / A2248 AES-ECB / A2247Provide a random number generated by the CM.UID: ThisSP TCG Method: Random Result: TCG status codeGet Random NumberDRBG VOOOO
AES-XTS Testing Revision 2.0 / A2249Read/Write user dataNVM Command: Write / Read Result : Status CodeIO CommandMEKO
Counter DRBG / A2248 AES-ECB / A2247Erase user data by changing the data encryption key.Admin Command: Format NVM Result : Status CodeFormatNVMDRBG VOOOO
CKG ENT (P)MEKOOO
KEKKEKOO
Counter DRBG / A2248 AES-ECB / A2247Erase user data by changing the data encryption key.Admin Command: Sanitize / Namespace Management Result : Status CodeSanitize / DeleteNSDRBG VOOOO
CKG ENT (P)MEKOOO
KEKKEKOOO
Counter DRBG / A2248 AES-ECB / A2247Erase user data in all Range by changing the dataUID: SPObj(AdminSP) TCG Method: Revert Result: TCG status codeRevertDRBG VOOOO
CKG ENT (P)MEKOOO
KEKKEKOOO
AES-XTS (No Security Claimed)Power cycling the module to perform self- testsLevel 0 Discovery CMD return a failure as a failure indicatorPerform the Self-testsDRBG VO
No Security Claimed – PBKDF2 (non- compliant) HMAC-SHA2- 256 (non- compliant) SHA2-256 (non- compliant)Change CO passwordN/AChange the PasswordN/A
No Security Claimed – PBKDF2 (non- compliant) HMAC-SHA2- 256 (non- compliant) SHA2-256 (non- compliant)Authenticate the module. (This is not authentication to meet the FIPS 140-3 requirements)N/AAuthenticationN/A
N/APerform MaintenanceN/ADiagnosticsN/A

O O O O O O O perform selftests O O O O O O O O O O O O O O O O O O O O O O O O O O O O O O O O O O O O Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 13

PBKDF2 (noncompliant) HMAC-SHA2256 (noncompliant) N/A N/A N/A N/A N/A N/A (noncompliant) PBKDF2 (noncompliant) HMAC-SHA2256 (noncompliant) (noncompliant) N/A Table

  1. Approved Services 4.3. The module does not support any authentication mechanisms to access its services under Security Level
  2. Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy
Page 14

5. Software/Firmware Security The integrity of the module’s executable firmware (OPP9TA6A_DC_2048.bin) is verified using ECDSA SigVer P-384 (A2255) with SHA2-384 (A2248) for firmware integrity testing of the following components:

Page 15

6. Operational Environment The cryptographic module operates in a limited operational environment, consisting of the module’s firmware. This module does not have an operating system but is designed in a manner to allow controlled, validated firmware modifications by an operator. This operational environment does not require any specific security rules, settings, configurations, or restrictions to be set. The cryptographic module does not provide any general-purpose operating system to the operator. Firmware download is only available for CMVP validated firmware versions. Unauthorized modification of the firmware is prevented by the pre-operational firmware integrity test and conditional firmware load test. Since the cryptographic module is zeroised through the procedure for using maintenance role, it is restricted to prevent uncontrolled access to CSPs and uncontrolled modifications of SSPs. Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 16

7. Physical Security The following physical security mechanisms are implemented in the cryptographic module:

Page 17

8. Non-Invasive Security The module does not implement any non-invasive attack mitigation techniques. Therefore, this section is not applicable. Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 18
Sensitive security parameter
NameStrengthSecurity FunctionGenerationEstablishmentStorageImport ExportKey/SSP Name/ TypeZeroisation5
Generates the MEK and KEK128-bitCounter DRBG / A2248 AES-ECB / A2247SP 800-90A Rev. 1 Counter DRBGN/APlaintext in RAMN/ADRBG V / CSPExplicitly zeroised via these services: Performing via Erase an LBA Range’s Data, Sanitize / DeleteNS, FormatNVM, and Revert service, and zeroisation is shown through their respective indicator. Implicitly zeroised by Power on Reset
Generates the MEK and KEK256-bitCounter DRBG / A2248 AES-ECB / A2247SP 800-90A Rev. 1 CTR_DRBG (AES-256)N/AN/ADRBG Key / CSPExplicitly zeroised via these services: Performing via Erase an LBA Range’s Data, Sanitize / DeleteNS, FormatNVM, and Revert service, and zeroisation is shown through their respective indicator. Implicitly zeroised by Power on Reset
Generates the MEK and KEK384-bitsCounter DRBG / A2248ENT (P) CKGN/AN/ADRBG Seed / CSPExplicitly zeroised via these services: Performing via

9. Sensitive Security Parameters Management Temporary SSPs and SSPs stored in volatile memory are automatically zeroized upon power-on reset. The module performs zeroization by overwriting the target SSP with random values generated by the DRBG. The module does not import or export SSPs. All SSPs in volatile memory, including HW SFR, are automatically zeroised instantly either after key generation/use or upon performing power-on-reset, depending on the characteristics of volatile memory. N/A N/A N/A N/A N/A N/A

5 “Zeriosation” performs in non-volatile memory.

Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 19
Approved algorithm
NameMode MethodKey SizeUse Function
AES-ECB / A2247Erase an LBA Range’s Data, Sanitize / DeleteNS, FormatNVM, and Revert service, and zeroisation is shown through their respective indicator. Implicitly zeroised by Power on Reset
Counter DRBG / A2248 AES-ECB / A2247ENT (P) CKG384-bitsGenerates the MEK and KEKExplicitly zeroised via these services: Performing via Erase an LBA Range’s Data, Sanitize / DeleteNS, FormatNVM, and Revert service, and zeroisation is shown through their respective indicator. Implicitly zeroised by Power on ResetDRBG Entropy Input String / CSPN/AN/A
AES-GCM / A2248CKG SP 800-90A Rev. 1 Counter DRBG256-bitWraps MEKExplicitly zeroised via these services: Performing via Sanitize / DeleteNS, FormatNVM, and Revert service, and zeroisation is shown through their respective indicator. Implicitly zeroised by Power on ResetKEK / CSPN/AN/APlaintext in RAM
AES-XTS Testing Revision 2.0 / A2249CKG SP 800-90A Rev. 1 Counter DRBG256-bitData encryption and decryption of user dataImplicitly zeroised by Power on ResetMEK / CSPN/AN/APlaintext in RAM
Cipher text in FlashExplicitly zeroised via these services: Performing via Erase an LBACipher text in Flash
ECDSA SigVer (FIPS186-4) / A2255 SHA2-384 / A2248Entered during manufacturing192-bitFirmware Load TestExplicitly zeroised via this service: Performing via Update the Firmware service, and zeroisation is shown through their respective indicator.Firmware Verification Key6 / PSPN/AN/APlaintext HW SFR7
Plaintext in ROMN/APlaintext in ROM
DetailsEntropy sourcesMinimum number of bits of
The entropy source provides an estimated min-entropy output of 0.58 bits per bit. The DRBG is seeded with 768 bits of entropy input data from the entropy source. Therefore, the DRBG is seeded with at least 384-bits of entropy before generating SSPs.384 bitsENT (P)

N/A N/A N/A N/A N/A N/A Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 20
Approved algorithm
NameMode MethodKey SizeUse Function
ECDSA SigVer (FIPS186-4) / A2255 SHA2-384 / A2248Entered during manufacturing192-bitFirmware Load TestFirmware Verification Key6 / PSPN/AN/APlaintext HW SFR7Explicitly zeroised via this service: Performing via Update the Firmware service, and zeroisation is shown through their respective indicator.
Plaintext in ROMPlaintext in ROMN/A
DetailsEntropy sourcesMinimum number of bits of
The entropy source provides an estimated min-entropy output of 0.58 bits per bit. The DRBG is seeded with 768 bits of entropy input data from the entropy source. Therefore, the DRBG is seeded with at least 384-bits of entropy before generating SSPs.384 bitsENT (P)

N/A N/A N/A Table

  1. SSPs The cryptographic module contains an entropy source, compliant with SP 800-90B. Table
  2. Non-Deterministic Random Number Generation Specification *Note: This is not considered an SSP as per ISO/IEC 19790:2012 section 7.5 but is included in the list for completeness. HW SFR (Special Function Register) is a register within a hardware cryptographic algorithm IP, which has characteristic of volatile memory.

8 Estimated amount of entropy per the source’s output bit is 0.85444 and Samsung conservatively claims to be set at 0.5 per bit.

Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 21
Self test
NameAlgorithm Or TestTest TypeDetails
ECDSAECDSAFirmware integrity testFirmware integrity test for Boot Loader is performed by using ECDSA with SHA2-384 at every power-on-reset.
ECDSAECDSAFirmware integrity testFirmware integrity test for the Main Firmware is performed by using ECDSA with SHA2-384 at every power-on-reset.
AES-XTSAES-XTSCritical Function TestDuplicate Key Test for AES-XTS described in FIPS 140-3 IG C.I (i.e. key_1 ≠ key_2)
AES-XTSAES-XTSCryptographic algorithm self-testKAT: Encrypt is performed (256-bits)
AES-XTSAES-XTSCryptographic algorithm self-testKAT: Decrypt is performed (256-bits)
ECDSAECDSACryptographic algorithm self-testKAT: Curve P-384 with SHA-384 signature verification is performed
SHA2-384SHA2-384Cryptographic algorithm self-testKAT: Hash digest is performed
CTR DRBGCTR DRBGCryptographic algorithm self-testKATs: SP 800-90A Rev. 1 Health testing on Instantiate, Generate and Reseed functions
CTR DRBGCTR DRBGCryptographic algorithm self-testKAT: DRBG with AES-256 is performed
AES-GCMAES-GCMCryptographic algorithm self-testKAT: Encrypt is performed
AES-GCMAES-GCMCryptographic algorithm self-testKAT: Decrypt is performed
ECDSAECDSAFirmware load testECDSA signature verification is performed if new FW is downloaded or at every power-on-reset
ENT (P)ENT (P)Cryptographic algorithm self-testConditional SP800-90B Health tests: Repetition count test, Adaptive proportion test
Service
NameDescriptionRole AccessIndicatorRecovery Method
Error state in BootThe module has failed any self-tests during the bootDuring the bootThe module is not initiated, so no services are available.Power cycle
Error State in operational stateThe module has failed any self-tests in theTransition to approved mode of operation Operational stateERRORMOD message in Show status servicePower cycle

While executing the following self-tests, all data output is inhibited until the completion of the self-test. Conditional self-tests are conducted before the initial operation of approved algorithms. If a cryptographic module fails a self-test, it will enter an error state, during which all data output is inhibited. 10.1. Pre-operational test Table 11. Pre-operational Self-tests

10.3 Error States

Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 22

operational state Table 13: Error States Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy

Page 23

11. Life-Cycle Assurance The cryptographic module operates in the Approved mode of operation by default upon shipment from the vendor’s manufacturing site and does not support a non-approved mode of operation. Section 11.1 provides guidance on the rules for secure installation and operation. Operators must follow this guidance to ensure the cryptographic module operates in compliance with FIPS 140-3 security level 1 requirements. 11.1. Secure Installation

Page 24

12. Mitigation of Other Attacks The cryptographic module has not been designed to mitigate any specific attacks beyond the scope of FIPS 140-3. Samsung Electronics Co., Ltd. SSD FIPS 140-3 Security Policy