Manualshelf

Technical data

ManualsBrandsBrocade Communications Systems ManualsHousehold Appliances8
11121314151617181920
Brocade Communications Systems, Inc. Page 11 of 48
Figure 3: TOE and environment components.
The intended environment of the TOE can be described in terms of the following components:
Host A system in the environment that uses TOE SAN services.
Host Bus Adapters (HBAs) Provides physical network interfaces from host machines in the environment
to the TOE. HBA drivers provide operating system interfaces on host machines in the environment to
storage devices in the environment. Storage devices in the environment appear to the host operating system
as local (i.e. directly-attached) devices.
Storage device A device used to store data (e.g. a disk or tape) that is connected to the TOE using a
FC/FCIP connection and is accessed by a host using the TOE.
Terminal application Provides a runtime environment for console-based (i.e. SSH) client administrator
console interfaces.
Web browser Provides a runtime environment for web-based (i.e. HTTPS) client administrator console
interfaces.
Syslog server Provides logging to record auditable event information generated by the TOE. The syslog
server is expected to protect audit information sent to it by the TOE and make that data available to
administrators of the TOE.
RADIUS/LDAP Server An optional component that can perform authentication based on user credentials
passed to it by the TOE. The TOE then enforces the authentication result returned by the RADIUS or
LDAP Server.
Certificate Authority (CA) Provides digital certificates for SSH and HTTPS-based interfaces that are
installed during initial TOE configuration. After installation, the CA no longer needs to be on the network
for operation.
Key management systems -- Provide life cycle management for all DEKs created by the encryption engine.
Key management systems are provided by third party vendors.
2.2.1 Physical Boundaries
The components that make up the TOE are identified in Section 1.1 above.
The TOE relies on a syslog server in the environment to store and protect audit records that are generated by the
TOE. The TOE can be configured to use a RADIUS or LDAP Server for authentication. The TOE does not rely on