Cisco Aggregation Services Router (ASR) 900 Series Security Target Version 1.0 26 March 2015
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 10 of 52 1.3 TOE DESCRIPTION This section provides an overview of the C
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 11 of 52 The following figure provides a visual depiction of an
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 12 of 52 Up to two DC or two AC or a combination of AC and DC power s
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 13 of 52 Figure 2 ASR 902 chassis design Table 5 ASR 902 chassis Refer
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 14 of 52 Figure 4 Front Panel of Cisco ASR-920-12CZ-A Router Figure
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 15 of 52 Figure 7 Front Panel of Cisco ASR-920-4SZ -A Router Table
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 16 of 52 These features are described in more detail in the sub
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 17 of 52 Algorithm Cert. # RSA 1471 ECDSA 493 While the algorithm imple
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 18 of 52 1.6.1 User Data Protection The TOE ensures that all informati
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 19 of 52 Administrators can create configurable login banners to be dis
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 2 of 52 Table of Contents 1 SECURITY TARGET INTRODUCTION ...
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 20 of 52 Telnet Telnet sends authentication data in the clear.
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 21 of 52 2 CONFORMANCE CLAIMS 2.1 Common Criteria Conformance Claim Th
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 22 of 52 2.3.3 Statement of Security Requirements Consistency The Secu
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 23 of 52 3 SECURITY PROBLEM DEFINITION This chapter identifies the foll
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 24 of 52 Threat Threat Definition T.UNAUTHORIZED_ACCESS A user may
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 25 of 52 4 SECURITY OBJECTIVES This Chapter identifies the security obj
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 26 of 52 4.2 Security Objectives for the Environment All of the ass
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 27 of 52 5 SECURITY REQUIREMENTS This section identifies the Securi
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 28 of 52 Class Name Component Identification Component Name FCS_RBG_EXT.
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 29 of 52 FAU_GEN.1.2 The TSF shall record within each audit record at l
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 3 of 52 5.2.1 Trusted Path/Channels (FTP) ...
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 30 of 52 SFR Auditable Event Additional Audit Record Contents FPT_STM.1
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 31 of 52 112 bits. 5.2.2.2 FCS_CKM_EXT.4 Cryptographic Key Zeroization
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 32 of 52 FCS_IPSEC_EXT.1.3 The TSF shall have a nominal, final e
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 33 of 52 FCS_SSH_EXT.1.3 The TSF shall ensure that, as described in RFC
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 34 of 52 FIA_PSK_EXT.1.3 The TSF shall condition the text-based pre-shar
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 35 of 52 5.2.5.3 FMT_SMR.2 Restrictions on Security Roles FMT_SMR.2.1
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 36 of 52 5.2.7 TOE Access (FTA) 5.2.7.1 FTA_SSL_EXT.1 TSF-initiated S
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 37 of 52 5.2.1.2 FTP_TRP.1 Trusted Path FTP_TRP.1.1 Refinement: The TS
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 38 of 52 5.4.2 Security Assurance Requirements Rationale The Security
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 39 of 52 6 TOE SUMMARY SPECIFICATION 6.1 TOE Security Functional Requi
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 4 of 52 List of Tables TABLE 1: ACRONYMS ...
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 40 of 52 TOE SFRs How the SFR is Met functionality of the switch is
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 41 of 52 TOE SFRs How the SFR is Met Changes to the time. Changes to the
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 42 of 52 TOE SFRs How the SFR is Met discovers it can no longer communic
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 43 of 52 TOE SFRs How the SFR is Met services using AES-CBC-128 and AES-
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 44 of 52 TOE SFRs How the SFR is Met The TOE supports configuration life
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 45 of 52 TOE SFRs How the SFR is Met numbers, and special characters (th
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 46 of 52 TOE SFRs How the SFR is Met purposes of this evaluation, the pr
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 47 of 52 TOE SFRs How the SFR is Met FPT_APW_EXT.2 encrypt all locall
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 48 of 52 TOE SFRs How the SFR is Met FTA_SSL_EXT.1 and FTA_SSL.3 An Au
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 49 of 52 1 ANNEX A: KEY ZEROIZATION 1.1 Key Zeroization The following
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 5 of 52 List of Acronyms The following acronyms and abbreviations are
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 50 of 52 Name Description Zeroization skeyid_d, IKE Session Encryption K
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 51 of 52 Name Description Zeroization User Password This is a Variable 1
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 52 of 52 2 ANNEX B: REFERENCES The following documentation was used to
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 6 of 52 Acronyms/Abbreviations Definition autonomous system). A link-sta
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 7 of 52 DOCUMENT INTRODUCTION Prepared By: Cisco Systems, Inc. 170 West
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 8 of 52 1 SECURITY TARGET INTRODUCTION The Security Target contains th
Cisco Aggregation Services Router (ASR) 900 Series Security Target Page 9 of 52 but due to its smaller size, it has four interface module cards
Commenti su questo manuale