| Password History Length controls the number of most recently used Passwords stored in the Password History list.
The Password History list does not store the actual value of the previous passwords but instead calculates the hash value of the passwords. When the user attempts to set a new password, the hash value of the password is first calculated and the Password History list is checked to determine if it already contains a matching value, rejecting the password if it does. If the password is accepted, the oldest entry in the Password History list is removed, and the newly calculated password hash is added to the list.
The MDFPP requires that values derived from passwords are destroyed when no longer needed; therefore, the calculated hash values of previous passwords should not be stored in the Password History list.
This feature must be configured for a Samsung Android device to be in the NIAP-certified Common Criteria (CC) mode of operation.
SFR ID: FMT_SMF_EXT.1.1 #47