HP A-Series Especificações descarregar pdf (Página 24)

Security Target Version 1.02, 08/16/2013

5.2.3 User data protection (FDP)

5.2.3.1 Full Residual Information Protection (FDP_RIP.2)

FDP_RIP.2.1 The TSF shall ensure that any previous information content of a resource is made

unavailable upon the [allocation of the resource to] all objects.

5.2.4 Identification and authentication (FIA)

5.2.4.1 Password Management (FIA_PMG_EXT.1)

FIA_PMG_EXT.1.1 The TSF shall provide the following password management capabilities for

administrative passwords:

1. Passwords shall be able to be composed of any combination of upper and lower

case letters, numbers, and the following special characters: [“!”, “@”, “#”, “$”,

“%”, “^”, “&”, “*”, “(”, “)”, [“'”, “+”, “,”, “-”, “.”, “/”, “:”, “;”, “<”, “=”,

“>”, “[”, “\”, “]”, “_”, “`”, “{”, “}”, and “~”]];

2. Minimum password length shall settable by the Security Administrator, and

support passwords of 15 characters or greater;

5.2.4.2 Protected Authentication Feedback (FIA_UAU.7)

FIA_UAU.7.1 The TSF shall provide only obscured feedback to the administrative user while the

authentication is in progress at the local console.

5.2.4.3 Extended: Password-based Authentication Mechanism (FIA_UAU_EXT.2)

FIA_UAU_EXT.2.1 The TSF shall provide a local password-based authentication mechanism, [[and access to

external RADIUS and TACACS]] to perform administrative user authentication.

5.2.4.4 User Identification and Authentication (FIA_UIA_EXT.1)

FIA_UIA_EXT.1.1

The TSF shall allow responses to the following actions prior to requiring the non-TOE entity to initiate the

identification and authentication process:

- Display the warning banner in accordance with FTA_TAB.1;

- [[network switching services]].

FIA_UIA_EXT.1.2 The TSF shall require each administrative user to be successfully identified and

authenticated before allowing any other TSF-mediated actions on behalf of that

administrative user.

5.2.5 Security management (FMT)

5.2.5.1 Management of TSF Data (for general TSF data) (FMT_MTD.1)

FMT_MTD.1.1 The TSF shall restrict the ability to manage the TSF data to the Security Administrators.

5.2.5.2 Specification of Management Functions (FMT_SMF.1)

FMT_SMF.1.1 The TSF shall be capable of performing the following management functions:

 Ability to administer the TOE locally and remotely;

 Ability to update the TOE, and to verify the updates using the [digital

signature] capability prior to installing those updates; [

 Ability to configure the cryptographic functionality].

5.2.5.3 Restrictions on Security Roles (FMT_SMR.2)

FMT_SMR.2.1 The TSF shall maintain the roles:

 Authorized Administrator.

1 2 ... 19 20 21 22 23 24 25 26 27 28 29 ... 65 66

Sem comentários

HP A-Series Especificações Página 24