Cisco IPS4345 Manual de usuario descargar pdf (Pagina 39)

Cisco Intrusion Prevention System Security Target

5.5 Security Assurance Requirements

5.5.1 SAR Requirements

The TOE assurance requirements for this ST are taken directly from the Common Criteria

Version 3.1, Revision 4. The assurance requirements are summarized in the table below.

Table 20: Assurance Measures

Assurance Class

Components

Components Description

Development

ADV_FSP.1

Basic Functional Specification

Guidance Documents

AGD_OPE.1

Operational user guidance

AGD_PRE.1

Preparative User guidance

Life Cycle Support

ALC_CMC.1

Labeling of the TOE

ALC_CMS.1

TOE CM coverage

Tests

ATE_IND.1

Independent testing - conformance

Vulnerability Assessment

AVA_VAN.1

Vulnerability analysis

5.5.2 Security Assurance Requirements Rationale

This target was chosen to ensure that the TOE has a low to moderate level of assurance in

enforcing its security functions when instantiated in its intended environment which imposes no

restrictions on assumed activity on applicable networks.

5.5.3 Assurance Measures

The TOE satisfies the identified assurance requirements. This section identifies the Assurance

Measures applied by Cisco to satisfy the assurance requirements. The table below lists the

details.

Table 21: Assurance Measures

Component

How requirement will be met

ADV_FSP.1

The functional specification describes the external interfaces of the TOE; such as the means

for a user to invoke a service and the corresponding response of those services. The

description includes the interface(s) that enforces a security functional requirement, the

interface(s) that supports the enforcement of a security functional requirement, and the

interface(s) that does not enforce any security functional requirements. The interfaces are

described in terms of their purpose (general goal of the interface), method of use (how the

interface is to be used), parameters (explicit inputs to and outputs from an interface that control

the behavior of that interface), parameter descriptions (tells what the parameter is in some

meaningful way), and error messages (identifies the condition that generated it, what the

message is, and the meaning of any error codes). The development evidence also contains a

tracing of the interfaces to the SFRs described in this ST.

AGD_OPE.1

The Administrative Guide provides the descriptions of the processes and procedures of how

the administrative users of the TOE can securely administer the TOE using the interfaces that

provide the features and functions detailed in the guidance.

AGD_PRE.1

The Installation Guide describes the installation, generation, and startup procedures so that the

users of the TOE can put the components of the TOE in the evaluated configuration.

ALC_CMC.1

The Configuration Management (CM) document(s) describes how the consumer (end-user) of

1 2 ... 34 35 36 37 38 39 40 41 42 43 44 ... 60 61

Comentarios a estos manuales

Sin comentarios

Cisco IPS4345 Manual de usuario Pagina 39

Comentarios a estos manuales

Relacionado con productos y manuales para Redes Cisco IPS4345