HP A-Series Especificações Página 39
- Página / 66
- Índice
- MARCADORES
Avaliado. / 5. Com base em avaliações de clientes
Security Target Version 1.02, 08/16/2013
39
Assurance Activity – Design
Assurance Activity - Guidance
Assurance Activity - Testing
FTA_TAB.1.1
The evaluator shall check the TSS to
ensure that it details each method of
access (local and remote) available to the
administrator (e.g., serial port, SSH,
HTTPS).
The evaluator shall also perform the following test:
Test 1: The evaluator follows the operational
guidance to configure a notice and consent warning
message. The evaluator shall then, for each method of
access specified in the TSS, establish a session with
the TOE. The evaluator shall verify the notice and
consent warning message is displayed in each
instance.
FTP_ITC.1.1
The evaluator shall examine the TSS to
determine that, for all communications
with authorized IT entities identified in
the requirement, each communications
mechanism is identified in terms of the
allowed protocols for that IT entity. The
evaluator shall also confirm that all
protocols listed in the TSS are specified
and included in the requirements in the
ST.
The evaluator shall confirm the operational
guidance contains instructions for establishing
the allowed protocols with each authorized IT
entity, and it contains recovery instructions
should a connection be unintentionally broken.
The evaluator shall also perform the following tests:
Test 1: The evaluators shall ensure communications
using each protocol with each authorized IT entity is
tested during the course of the evaluation, setting up
the connections as described in the operational
guidance and ensuring communication is successful.
Test 2: For each protocol that the TOE can initiate as
defined in the requirement, the evaluator shall follow
the operational guidance to ensure the communication
channel can be initiated from the TOE.
Test 3: The evaluator shall ensure, for each
communication channel with an authorized IT entity,
the channel data is not sent in plaintext.
Test 4: The evaluator shall ensure, for each
communication channel with an authorized IT entity,
modification of the channel data is detected by the
TOE.
Test 5: The evaluators shall, for each protocol
associated with each authorized IT entity tested
during test 1, the connection is physically interrupted.
The evaluator shall ensure when physical
connectivity is restored, communications are
appropriately protected.
FTP_TRP.1.1
The evaluator shall examine the TSS to
determine that the methods of remote
TOE administration are indicated, along
with how those communications are
protected. The evaluator shall also
confirm that all protocols listed in the
TSS in support of TOE administration
are consistent with those specified in the
requirement, and are included in the
requirements in the ST.
The evaluator shall confirm the operational
guidance contains instructions for establishing
the remote administrative sessions for each
supported method.
The evaluator shall also perform the following tests:
Test 1: The evaluators shall ensure communications
using each specified (in the operational guidance)
remote administration method is tested during the
course of the evaluation, setting up the connections as
described in the operational guidance and ensuring
communication is successful.
Test 2: For each method of remote administration
supported, the evaluator shall follow the operational
guidance to ensure there is no available interface that
can be used by a remote user to establish remote
administrative sessions without invoking the trusted
path.
Test 3: The evaluator shall ensure, for each method of
remote administration, the channel data is not sent in
plaintext.
Test 4: The evaluator shall ensure, for each method of
remote administration, modification of the channel
data is detected by the TOE.
Table 5 NDPP Security Functional Requirement Assurance Activities
- Switches Security Target 1
- 1.2 Conformance Claims 5
- 1.3 Conventions 6
- 2. TOE Description 6
- 2.1 TOE Overview 7
- 2.2 TOE Architecture 11
- 2.2.2 Physical Boundaries 12
- 2.2.3 Logical Boundaries 12
- 2.3 TOE Documentation 14
- 3.1 Organizational Policies 15
- 3.2 Threats 15
- 3.3 Assumptions 15
- 4. Security Objectives 17
- 5.1 Extended Requirements 19
- 5.2.1 Security audit (FAU) 20
- 5.2.7 TOE access (FTA) 25
- 5.3.1 Development (ADV) 27
- 5.3.4 Tests (ATE) 28
- 6.1 Security audit 42
- 6.2 Cryptographic support 42
- 6.3 User data protection 48
- 6.5 Security management 49
- 6.6 Protection of the TSF 50
- 6.7 TOE access 51
- 6.8 Trusted path/channels 51
- 8. Rationale 54
Manuais e produtos relacionados com Barebones PC/estação de trabalho HP A-Series
Barebones PC/estação de trabalho HP All-in-One G1-2000 - Desktop PC Especificações Rápidas
(43 páginas)
(43 páginas)
Barebones PC/estação de trabalho HP Compaq Presario,Presario 5270 Informações Técnicas
(146 páginas)
(146 páginas)
© 2020, manymanuals-pt.com. Todos os direitos reservados. | 0.039 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais