User guide
Aruba Networks Security Target
Page 16 of 67
4 Security Objectives
4.1 Objectives for the Operational Environment
29 Table 7 identifies the objectives for the operational environment.
Table 7: Operational environment objectives drawn from NDPP
Identifier
Description
OE.NO_GENERAL_PURPOSE
There are no general-purpose computing capabilities (e.g.,
compilers or user applications) available on the TOE, other
than those services necessary for the operation,
administration and support of the TOE.
OE.PHYSICAL
Physical security, commensurate with the value of the TOE
and the data it contains, is provided by the environment.
OE.TRUSTED_ADMIN
TOE Administrators are trusted to follow and apply all
administrator guidance in a trusted manner.
4.2 Objectives for the TOE
30 Table 8 identifies the security objectives for the TOE.
Table 8: Objectives drawn from NDPP
Identifier
Description
O.PROTECTED
_COMMUNICATIONS
The TOE will provide protected communication channels for
administrators, other parts of a distributed TOE, and
authorized IT entities.
O.VERIFIABLE_UPDATES
The TOE will provide the capability to help ensure that any
updates to the TOE can be verified by the administrator to be
unaltered and (optionally) from a trusted source.
O.SYSTEM_MONITORING
The TOE will provide the capability to generate audit data and
send those data to an external IT entity.
O.DISPLAY_BANNER
The TOE will display an advisory warning regarding use of the
TOE.
O.TOE_ADMINISTRATION
The TOE will provide mechanisms to ensure that only
administrators are able to log in and configure the TOE, and
provide protections for logged-in administrators.
O.RESIDUAL_INFORMATION
_CLEARING
The TOE will ensure that any data contained in a protected
resource is not available when the resource is reallocated.