Specifications

ManualsBrandsAruba ManualsComputer equipment620

Security Target Version 1.0 9/29/2014

Requirement Class

Requirement Component

FAU: Security audit

FAU_GEN.1: Audit Data Generation

FAU_GEN.2: User Audit Association

FAU_SAR.1: Audit Review

FAU_SAR.2: Restricted Audit Review

FAU_SEL.1: Selective Audit

FAU_STG.1: Protected Audit Trail Storage (Local Storage)

FAU_STG_EXT.1: External Audit Trail Storage

FAU_STG_EXT.3: Action in Case of Loss of Audit Server Connectivity

FCS: Cryptographic

support

FCS_CKM.1(1): Cryptographic Key Generation (Symmetric Keys for

WPA2 Connections)

FCS_CKM.1(2): Cryptographic Key Generation (Asymmetric Keys)

FCS_CKM.2(1): Cryptographic Key Distribution (PMK)

FCS_CKM.2(2): Cryptographic Key Distribution (GTK)

FCS_CKM_EXT.4: Cryptographic Key Zeroization

FCS_COP.1(1): Cryptographic Operation (Data Encryption/Decryption)

FCS_COP.1(2): Cryptographic Operation (Cryptographic Signature)

FCS_COP.1(3): Cryptographic Operation (Cryptographic Hashing)

FCS_COP.1(4): Cryptographic Operation (Keyed-Hash Message

Authentication)

FCS_COP.1(5): Cryptographic Operation (WPA2 Data

Encryption/Decryption)

FCS_HTTPS_EXT.1: Extended: HTTP Security (HTTPS)

FCS_IPSEC_EXT.1: Extended: Internet Protocol Security (IPsec)

Communications

FCS_RBG_EXT.1: Extended: Cryptographic Operation: Random Bit

Generation

FCS_SSH_EXT.1: Extended: Secure Shell (SSH)

FCS_TLS_EXT.1: Extended: Transport Layer Security (TLS)

FDP: User data protection

FDP_RIP.2: Full Resident Information Protection

FIA: Identification and

authentication

FIA_8021X_EXT.1: Extended: 802.1X Port Access Entity (Authenticator)

Authentication

FIA_AFL.1: Authentication Failure Handling

FIA_PMG_EXT.1: Password Management

FIA_PSK_EXT.1: Extended: Pre-Shared Key Composition

FIA_UAU.6: Re-authenticating

FIA_UAU.7: Protected Authentication Feedback

FIA_UAU_EXT.5: Extended: Password-based Authentication

Mechanisms

FIA_UIA_EXT.1: User Identification and Authentication

FIA_X509_EXT.1: Extended: X509 Certificates

FMT: Security

management

FMT_MOF.1: Management of Security Functions Behavior

FMT_MTD.1(1): Management of TSF Data (General TSF Data)

FMT_MTD.1(2): Management of TSF Data (Reading of Authentication

Data)

FMT_MTD.1(3): Management of TSF Data (for reading of all symmetric

keys)

FMT_SMF.1: Specification of management functions

FMT_SMR.1: Security Management Roles

FPT: Protection of the TSF

FPT_FLS.1: Fail Secure

FPT_ITT.1: Basic Internal TSF Data Transfer Protection