Download CA Layer 7 Security Target

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
page
28
page
29
page
30
page
31
page
32
page
33
page
34
page
35
page
36
page
37
page
38
page
39
page
40
page
41
page
42
page
43
page
44
page
45
page
46
page
47
page
48
page
49
page
50
page
51
page
52
page
53
page
54
page
55
page
56
page
57
page
58
page
59
page
60
page
61
page
62
page
63
page
64
page
65
page
66
page
67
page
68
page
69
page
70
page
71
page
72
page
73
page
74
Transcript 
CA Layer 7
Security Target
n)
Global Policy Fragments
2.6.3
Scope of Evaluated Policy Assertions
45
The core functionality of the SecureSpan SOA Gateway is its ability to define and
enforce policies for web services. To achieve this, the SecureSpan SOA Gateway
utilizes a policy assertion language. All available policy assertions are defined in the
Policy Authoring User Manual. Not all policies are related to access control or
security – in order to clarify the relationship between policy assertions and the scope
of evaluation, the following table classifies each policy assertion as one of the
following:
a)
Enforcing. Assertions that enforce the TOE security policy and are the focus
of this evaluation.
b)
Unevaluated Functional. Assertions that facilitate product functionality and
may be present in the evaluated configuration but that do not interfere with the
security functions of the TOE. Such assertions have not been evaluated.
c)
Unevaluated Security. Assertions that are security related but have not been
evaluated.
Table 3: Scope of evaluated policy assertions
Unevaluated
Security
Unevaluated
Functional
Enforcing
Assertion
Access Control Assertions
Authenticate User or Group Assertion
X
Authenticate Against Identity Provider Assertion
X
Require HTTP Basic Credentials Assertion
X
Require SAML Token Profile Assertion
X
Require SSL or TLS Transport Assertion with Client Authentication
(same as Transport Layer Security assertion: Require SSL or TLS
Transport Assertion)
X
Authenticate Against SiteMinder Assertion
X
Authorize via SiteMinder Assertion
X
Check Protected Resource Against SiteMinder Assertion
X
Exchange Credentials using WS-Trust Assertion
X
Extract Attributes from Certificate Assertion
X
Extract Attributes for Authenticated User Assertion
X
Page 17 of 74
Related documents
Lire/enregistrer le document - Droit-ntic
Lire/enregistrer le document - Droit-ntic
Operating Instructions Elevator Machine Model
Operating Instructions Elevator Machine Model
User manual - energetyka.itr.org.pl
User manual - energetyka.itr.org.pl
Administrative Guide
Administrative Guide
RAD Data comm IPmux-8 Specifications
RAD Data comm IPmux-8 Specifications
Brainloop Secure Connector for Microsoft PowerPoint
Brainloop Secure Connector for Microsoft PowerPoint
Sierra Products EasyFire MODEL EF 3800 Repair manual
Sierra Products EasyFire MODEL EF 3800 Repair manual
RAD Data comm IPmux-11 Specifications
RAD Data comm IPmux-11 Specifications
Benutzerhandbuch - CA Technologies
Benutzerhandbuch - CA Technologies
JiJi Active Directory Reports User Manual
JiJi Active Directory Reports User Manual
Panasonic NA-140VS4
Panasonic NA-140VS4
140VG3 NA - 148VG3 - Appliances Online
140VG3 NA - 148VG3 - Appliances Online
Manual SIA IP
Manual SIA IP
View/Open - Oregon State University
View/Open - Oregon State University
CMS 1
CMS 1
Common Criteria Protection Profile BSI-PP-0025
Common Criteria Protection Profile BSI-PP-0025
Introduction to Computers
Introduction to Computers
OfficeServ 7400 GWIMC Certification Report
OfficeServ 7400 GWIMC Certification Report
SuperNet 2000 EAL4/r1 Common Criteria Security Target (EAL4)
SuperNet 2000 EAL4/r1 Common Criteria Security Target (EAL4)