HP A-Series Especificações Página 38
- Página / 66
- Índice
- MARCADORES
Avaliado. / 5. Com base em avaliações de clientes
Security Target Version 1.02, 08/16/2013
38
Assurance Activity – Design
Assurance Activity - Guidance
Assurance Activity - Testing
FPT_TUD_(EXT).1.1
FPT_TUD_(EXT).1.2
FPT_TUD_(EXT).1.3
Updates to the TOE either have a hash
associated with them, or are signed by an
authorized source. If digital signatures
are used, the definition of an authorized
source is contained in the TSS, along
with a description of how the certificates
used by the update verification
mechanism are contained on the device.
The evaluator ensures this information is
contained in the TSS. The evaluator also
ensures that the TSS (or the operational
guidance) describes how the candidate
updates are obtained; the processing
associated with verifying the digital
signature or calculating the hash of the
updates; and the actions that take place
for successful (hash or signature was
verified) and unsuccessful (hash or
signature could not be verified) cases.
The evaluator shall perform the following tests:
Test 1: The evaluator performs the version
verification activity to determine the current version
of the product. The evaluator obtains a legitimate
update using procedures described in the operational
guidance and verifies it is successfully installed on
the TOE. Then, the evaluator performs a subset of
other assurance activity tests to demonstrate the
update functions as expected. After the update, the
evaluator performs the version verification activity
again to verify the version correctly corresponds to
the update.
Test 2: The evaluator performs the version
verification activity to determine the current version
of the product. The evaluator obtains or produces an
illegitimate update, and attempts to install it on the
TOE. The evaluator verifies the TOE rejects the
update.
FPT_TST_EXT.1.1
The evaluator shall examine the TSS to
ensure that it details the self-tests that are
run by the TSF on start-up; this
description should include an outline of
what the tests are actually doing (e.g.,
rather than saying "memory is tested", a
description similar to "memory is tested
by writing a value to each memory
location and reading it back to ensure it
is identical to what was written" shall be
used). The evaluator shall ensure that
the TSS makes an argument that the tests
are sufficient to demonstrate that the TSF
is operating correctly.
The evaluator shall also ensure the operational
guidance describes the possible errors that may
result from such tests, and actions the
administrator should take in response; these
possible errors shall correspond to those
described in the TSS.
FTA_SSL.3.1
The evaluator shall perform the following test:
Test 1: The evaluator follows the operational
guidance to configure several different values for the
inactivity time period referenced in the component.
For each period configured, the evaluator establishes
a remote interactive session with the TOE. The
evaluator then observes the session is terminated after
the configured time period.
FTA_SSL.4.1
The evaluator shall perform the following test:
Test 1: The evaluator initiates an interactive local
session with the TOE. The evaluator then follows the
operational guidance to exit or log off the session and
observes the session has been terminated.
Test 2: The evaluator initiates an interactive remote
session with the TOE. The evaluator then follows the
operational guidance to exit or log off the session and
observes the session has been terminated.
FTA_SSL_EXT.1.1
The evaluator shall perform the following test:
Test 1: The evaluator follows the operational
guidance to configure several different values for the
inactivity time period referenced in the component.
For each period configured, the evaluator establishes
a local interactive session with the TOE. The
evaluator then observes the session is either locked or
terminated after the configured time period. If locking
was selected from the component, the evaluator then
ensures re-authentication is needed when trying to
unlock the session.
- Switches Security Target 1
- 1.2 Conformance Claims 5
- 1.3 Conventions 6
- 2. TOE Description 6
- 2.1 TOE Overview 7
- 2.2 TOE Architecture 11
- 2.2.2 Physical Boundaries 12
- 2.2.3 Logical Boundaries 12
- 2.3 TOE Documentation 14
- 3.1 Organizational Policies 15
- 3.2 Threats 15
- 3.3 Assumptions 15
- 4. Security Objectives 17
- 5.1 Extended Requirements 19
- 5.2.1 Security audit (FAU) 20
- 5.2.7 TOE access (FTA) 25
- 5.3.1 Development (ADV) 27
- 5.3.4 Tests (ATE) 28
- 6.1 Security audit 42
- 6.2 Cryptographic support 42
- 6.3 User data protection 48
- 6.5 Security management 49
- 6.6 Protection of the TSF 50
- 6.7 TOE access 51
- 6.8 Trusted path/channels 51
- 8. Rationale 54
Manuais e produtos relacionados com Barebones PC/estação de trabalho HP A-Series
Barebones PC/estação de trabalho HP All-in-One G1-2000 - Desktop PC Especificações Rápidas
(43 páginas)
(43 páginas)
Barebones PC/estação de trabalho HP Compaq Presario,Presario 5270 Informações Técnicas
(146 páginas)
(146 páginas)
© 2020, manymanuals-pt.com. Todos os direitos reservados. | 1.601 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais