Cisco IPS4345 Manual de usuario descargar pdf (Pagina 21)

Cisco Intrusion Prevention System Security Target

3 SECURITY PROBLEM DEFINITION

This chapter identifies the following:

 Significant assumptions about the TOE’s operational environment.

 IT related threats to the organization countered by the TOE.

 Environmental threats requiring controls to provide sufficient protection.

 Organizational security policies for the TOE as appropriate.

This document identifies assumptions as A.assumption with “assumption” specifying a unique

name. Threats are identified as T.threat with “threat” specifying a unique name.

3.1 Assumptions

The specific conditions listed in the following subsections are assumed to exist in the TOE’s

environment. These assumptions include both practical realities in the development of the TOE

security requirements and the essential environmental conditions on the use of the TOE.

Table 8: TOE Assumptions

Assumption

Assumption Definition

Reproduced from the U.S. Government Protection Profile for Security Requirements for Network Devices

A.NO_GENERAL_PURPOSE

It is assumed that there are no general-purpose computing capabilities

(e.g., compilers or user applications) available on the TOE, other than

those services necessary for the operation, administration and support of

the TOE.

A.PHYSICAL

Physical security, commensurate with the value of the TOE and the data

it contains, is assumed to be provided by the environment.

A.TRUSTED_ADMIN

TOE Administrators are trusted to follow and apply all administrator

guidance in a trusted manner.

1 2 ... 16 17 18 19 20 21 22 23 24 25 26 ... 60 61

Sin comentarios

Cisco IPS4345 Manual de usuario Pagina 21