User guide

Aruba Networks Security Target

Page 48 of 67

7 Rationale

7.1 Conformance Claim Rationale

82 The following rationale is presented with regard to the PP conformance claims:

a) TOE type. As identified in section 2.1, the TOE is a network device, consistent

with the TOE type identified by the NDPP.

b) Security problem definition. As shown in section 3, the threats, OSPs and

assumptions are identical to those of the NDPP.

c) Security objectives. As shown in section 4, the security objectives are

identical to those of the NDPP.

d) Security requirements. As shown in section 5, the security requirements are

reproduced from the NDPP. No additional requirements have been specified.

In accordance with NDPP section 3.1, footnote 1, FPT_ITT.1 has been

excluded as the TOE is not distributed.

7.2 Security Objectives Rationale

83 All security objectives are drawn directly from the NDPP.

7.3 Security Requirements Rationale

84 All security requirements are drawn directly from the NDPP.

85 In accordance with NDPP section 3.1, footnote 1, FPT_ITT.1 has been excluded as

the TOE is not distributed.

7.4 TOE Summary Specification Rationale

86 Table 15 provides a coverage mapping showing that all SFRs are mapped to the

security functions described in the TSS.

Table 15: Map of SFRs to TSS Security Functions

SFR

Protected

Communications

Verifiable

Updates

System

Monitoring

Secure

Administration

Residual

Information

Clearing

Self Test

FAU_GEN.1

FAU_GEN.2

FAU_STG_EXT.1

FCS_CKM.1(1)