Aruba 620 Guida Utente Pagina 58
- Pagina / 67
- Indice
- SEGNALIBRI
Valutato. / 5. Basato su recensioni clienti
Aruba Networks Security Target
Page 58 of 67
#
NDPP
Source
Requirement
Assurance
Family
this key to successfully establish an IPsec connection. While the evaluator is not
required to test that all of the special characters or lengths listed in the
requirement are supported, it is required that they justify the subset of those
characters chosen for testing, if a subset is indeed used.
23.
FCS_SSH_
EXT.1.2
The evaluator shall check to ensure that the TSS contains a description of the
public key algorithms that are acceptable for use for authentication, that this list
conforms to FCS_SSH_EXT.1.5, and ensure that password-based
authentication methods are also allowed. The evaluator shall also perform the
following tests:
Test 1: The evaluator shall, for each public key algorithm supported, show that
the TOE supports the use of that public key algorithm to authenticate a user
connection. Any configuration activities required to support this test shall be
performed according to instructions in the operational guidance.
Test 2: Using the operational guidance, the evaluator shall configure the TOE to
accept password-based authentication, and demonstrate that a user can be
successfully authenticated to the TOE over SSH using a password as an
authenticator.
ASE_TSS
ATE_IND
24.
FCS_SSH_
EXT.1.3
The evaluator shall check that the TSS describes how “large packets” in terms of
RFC 4253 are detected and handled. The evaluator shall also perform the
following test:
Test 1: The evaluator shall demonstrate that if the TOE receives a packet larger
than that specified in this component, that packet is dropped.
ASE_TSS
ATE_IND
25.
FCS_SSH_
EXT.1.4
The evaluator shall check the description of the implementation of this protocol in
the TSS to ensure that optional characteristics are specified, and the encryption
algorithms supported are specified as well. The evaluator shall check the TSS to
ensure that the encryption algorithms specified are identical to those listed for
this component.
The evaluator shall also check the operational guidance to ensure that it
contains instructions on configuring the TOE so that SSH conforms to the
description in the TSS (for instance, the set of algorithms advertised by the TOE
may have to be restricted to meet the requirements). The evaluator shall also
perform the following test:
Test 1: The evaluator shall establish a SSH connection using each of the
encryption algorithms specified by the requirement. It is sufficient to observe (on
the wire) the successful negotiation of a protocol to satisfy the intent of the test.
ASE_TSS
AGD_OPE
ATE_IND
26.
FCS_SSH_
EXT.1.5
The assurance activity associated with FCS_SSH_EXT.1.4 verifies this
requirement.
N/A
27.
FCS_SSH_
EXT.1.6
The evaluator shall check the TSS to ensure that it lists the supported data
integrity algorithms, and that that list corresponds to the list in this component.
The evaluator shall also check the operational guidance to ensure that it
contains instructions to the administrator on how to ensure that only the allowed
data integrity algorithms are used in SSH connections with the TOE (specifically,
that the “none” MAC algorithm is not allowed).
ASE_TSS
- Aruba Networks 1
- Security Target 1
- Document History 2
- Table of Contents 3
- List of Tables 3
- List of Figures 4
- 1 Introduction 5
- 1.3 Terminology 6
- 1.4 References 6
- Page 7 of 67 7
- 2 TOE Description 8
- 2.3 Usage 9
- 2.4 Security Functions 10
- 2.5 Physical Scope 11
- Page 12 of 67 12
- 2.6 Logical Scope 13
- 3.1 Threats 14
- 3.3 Assumptions 14
- Page 15 of 67 15
- 4 Security Objectives 16
- Page 17 of 67 17
- 5 Security Requirements 18
- 5.3 Functional Requirements 19
- 5.3.1 Security Audit (FAU) 20
- Page 21 of 67 21
- HTTPS/TLS) 22
- Page 23 of 67 23
- Page 24 of 67 24
- TLS_RSA_WITH_AES_128_CBC_SHA 25
- TLS_RSA_WITH_AES_256_CBC_SHA 25
- Page 26 of 67 26
- Page 27 of 67 27
- Page 28 of 67 28
- Page 29 of 67 29
- 5.3.8 TOE Access (FTA) 30
- 5.4 Assurance Requirements 31
- 6 TOE Summary Specification 32
- Page 33 of 67 33
- 6.1.2 Verifiable Updates 34
- 6.1.3 System Monitoring 35
- 6.1.4 Secure Administration 35
- Page 36 of 67 36
- 6.1.6 Self Test 37
- 6.2 Cryptography 38
- Page 39 of 67 39
- 6.2.3 Roles and Services 44
- 7 Rationale 48
- Page 49 of 67 49
- Page 50 of 67 50
- Page 51 of 67 51
- Page 52 of 67 52
- Page 53 of 67 53
- Page 54 of 67 54
- Page 55 of 67 55
- Page 56 of 67 56
- Page 57 of 67 57
- Page 58 of 67 58
- Page 59 of 67 59
- Page 60 of 67 60
- Page 61 of 67 61
- Page 62 of 67 62
- Page 63 of 67 63
- Page 64 of 67 64
- Page 65 of 67 65
- Page 66 of 67 66
- ----- End of Document 67
Prodotti e manuali riguardandi Networking Aruba 620
Networking Aruba 620 Specifiche
(93 pagine)
(93 pagine)
Networking Aruba 620 Manuale Utente
(20 pagine)
(20 pagine)
© 2020, manymanuals.it. Tutti i diritti riservati | 0.036 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commenti su questo manuale