1
Download CA Layer 7 Security Target
Transcript
CA Layer 7 Security Target Table of Contents 1 Introduction ........................................................................................................................... 5 1.1 1.2 1.3 1.4 2 TOE Description .................................................................................................................... 8 2.1 2.2 2.3 2.4 2.5 2.6 3 Conventions ................................................................................................................. 28 Extended Components Definition ................................................................................. 28 Functional Requirements ............................................................................................. 29 Assurance Requirements ............................................................................................. 47 TOE Summary Specification .............................................................................................. 48 6.1 6.2 6.3 6.4 6.5 6.6 6.7 7 Objectives for the Operational Environment ................................................................ 25 Objectives for the TOE ................................................................................................. 26 Security Requirements ....................................................................................................... 28 5.1 5.2 5.3 5.4 6 Threats ......................................................................................................................... 22 Organizational Security Policies ................................................................................... 23 Assumptions ................................................................................................................. 23 Security Objectives............................................................................................................. 25 4.1 4.2 5 Type and Usage ............................................................................................................. 8 Architecture .................................................................................................................... 9 Evaluated Configuration ............................................................................................... 11 Security Functions ........................................................................................................ 12 Physical Scope ............................................................................................................. 14 Logical Scope ............................................................................................................... 16 Security Problem Definition ............................................................................................... 22 3.1 3.2 3.3 4 Overview ........................................................................................................................ 5 Identification ................................................................................................................... 5 Conformance Claims ...................................................................................................... 5 Terminology.................................................................................................................... 5 Access Control Policy Definition .................................................................................. 48 Access Control Policy Enforcement ............................................................................. 50 Policy Security .............................................................................................................. 51 System Monitoring........................................................................................................ 52 Robust Administrative Access ...................................................................................... 53 Continuity of Enforcement ............................................................................................ 54 TLS and SSH Details ................................................................................................... 54 Rationale .............................................................................................................................. 56 7.1 7.2 7.3 7.4 Conformance Claim Rationale ..................................................................................... 56 Security Objectives Rationale ...................................................................................... 59 Security Requirements Rationale ................................................................................. 59 TOE Summary Specification Rationale ........................................................................ 59 Annex A: Assurance Activities .................................................................................................. 62 Annex A.1: ESM Policy Manager PP Assurance Activities ....................................................... 62 Annex A.2: ESM Access Control PP Assurance Activities ....................................................... 70 List of Tables Table 1: Evaluation identifiers ......................................................................................................... 5 Table 2: Terminology ....................................................................................................................... 5 Page 3 of 74
