HP A-Series Spezifikationen PDF herunterladen (Seite 19)

Security Target Version 1.02, 08/16/2013

5. IT Security Requirements

This section defines the Security Functional Requirements (SFRs) and Security Assurance Requirements (SARs)

that serve to represent the security functional claims for the Target of Evaluation (TOE) and to scope the evaluation

effort.

The SFRs have all been drawn from the Protection Profile (PP): Security Requirements for Network Devices,

Version 1.1, 8 June 2012 (NDPP). As a result, refinements and operations already performed in that PP are not

identified (e.g., highlighted) here, rather the requirements have been copied from that PP and any residual operations

have been completed herein. Of particular note, the NDPP made a number of refinements and completed some of

the SFR operations defined in the CC and that PP should be consulted to identify those changes if necessary.

The SARs are also drawn from the NDPP which includes all the SARs for EAL1 as defined in the CC. Additionally,

the SARs are effectively refined since the ‘Assurance Activities’ defined in the NDPP that serve to ensure

corresponding evaluations will yield more practical and consistent assurance than the EAL1 assurance requirements

alone. As such, those assurance activities have been reproduced in section 5.4 to ensure they are included in the

scope of the evaluation effort.

5.1 Extended Requirements

All of the extended requirements in this ST have been drawn from the NDPP. The NDPP defines the following

extended SFRs and since they are not redefined in this ST, the NDPP should be consulted for more information in

regard to those CC extensions.

 FAU_STG_EXT.1: External Audit Trail Storage

 FCS_CKM_EXT.4: Cryptographic Key Zeroization

 FCS_IPSEC_EXT.1: Explicit: IPSEC

 FCS_RBG_EXT.1: Extended: Cryptographic Operation (Random Bit Generation)

 FCS_SSH_EXT.1: Explicit: SSH

 FIA_PMG_EXT.1: Password Management

 FIA_UAU_EXT.2: Extended: Password-based Authentication Mechanism

 FIA_UIA_EXT.1: User Identification and Authentication

 FPT_APW_EXT.1: Extended: Protection of Administrator Passwords

 FPT_SKP_EXT.1: Extended: Protection of TSF Data (for reading of all symmetric keys)

 FPT_TST_EXT.1: TSF Testing

 FPT_TUD_EXT.1: Extended: Trusted Update

 FTA_SSL_EXT.1: TSF-initiated Session Locking

1 2 ... 14 15 16 17 18 19 20 21 22 23 24 ... 65 66

Keine Kommentare

HP A-Series Spezifikationen Seite 19