Technical data

ManualsBrandsBrocade Communications Systems ManualsHousehold Appliances8

Brocade Communications Systems, Inc. Page 17 of 48

5. IT Security Requirements

5.1 TOE Security Functional Requirements

Requirement Class

Requirement Component

FAU: Security audit

FAU_GEN.1: Audit data generation

FCS: Cryptographic Support

FCS_COP.1(1): Cryptographic Operation for Trusted Path

FCS_COP.1(2): Cryptographic Operation for User Data

Encryption

FCS_CKM.1(1): Cryptographic key generation

FCS_CKM.1(2): Cryptographic key generation

FCS_CKM.4: Cryptographic key destruction

FDP: User data protection

FDP_ACC.1: Subset access control

FDP_ACF.1: Security attribute based access control

FDP_IFC.1: Subset information flow control

FDP_IFF.1: Simple security attributes

FIA: Identification and authentication

FIA_AFL.1: Authentication failure handling

FIA_ATD.1: User attribute definition

FIA_SOS.1: Verification of secrets

FIA_UAU.2: User authentication before any action

FIA_UAU.5: Multiple authentication mechanisms

FIA_UID.2: User identification before any action

FMT: Security management

FMT_MSA.1(1): Management of security attributes

FMT_MSA.1(2): Management of security attributes

FMT_MSA.3(1): Static attribute initialization

FMT_MSA.3(2): Static attribute initialization

FMT_MTD.1(1): Management of TSF data

FMT_MTD.1(2): Management of TSF data

FMT_SMF.1: Specification of Management Functions

FMT_SMR.1: Security roles

FPT: Protection of the TSF

FPT_STM.1: Reliable time stamps

FTA: TOE access

FTA_MCS.1: Basic limitation on multiple concurrent

sessions

FTA_TSE.1: TOE session establishment

FTP: Trusted Path

FTP_TRP.1: Trusted path

Table 1 TOE Security Functional Components

5.1.1 Security audit (FAU)

5.1.1.1 Audit data generation (FAU_GEN.1)

FAU_GEN.1.1 The TSF shall be able to generate an audit record of the following auditable events: a) Start-up and

shutdown of the audit functions; b) All auditable events for the [not specified] level of audit; and

c) [the events listed in the table below].

FAU_GEN.1.2 The TSF shall record within each audit record at least the following information: a) Date and time

of the event, type of event, subject identity (if applicable), and the outcome (success or failure) of

the event; and b) For each audit event type, based on the auditable event definitions of the

functional components included in the PP/ST, [no additional details].

Requirement Component

Auditable event

FAU_GEN.1

start-up and shutdown of the audit functions

(specifically, of the TOE)

FIA_AFL.1

Locking and unlocking of an account as a

result of exceeding the maximum number of