Manualshelf

Technical data

ManualsBrandsBrocade Communications Systems ManualsHousehold Appliances8
11121314151617181920
Brocade Communications Systems, Inc. Page 20 of 48
2. decrypt blocks read from the storage device port before sending the data frames
to the HBA;
b.) the CryptoTarget container membership for the storage device includes the HBA port
number and indicates the LUN should be encrypted, then the TOE will NOT
1. encrypt blocks written from the HBA to the LUN to the storage device port; or
2. decrypt blocks read from the storage device port before sending the data frames
to the HBA;
].
FDP_IFF.1.3 For models of the product supporting user data encryption, the TSF shall enforce the [no
additional SPF rules].
FDP_IFF.1.4 For models of the product supporting user data encryption, the TSF shall explicitly authorise
an information flow based on the following rules: [none].
FDP_IFF.1.5 For models of the product supporting user data encryption, the TSF shall explicitly deny an
information flow based on the following rules: [none].
5.1.4 Identification and authentication (FIA)
5.1.4.1 Authentication failure handling (FIA_AFL.1)
FIA_AFL.1.1 The TSF shall detect when [an administrator configurable positive integer within [1 to 999]]
unsuccessful authentication attempts occur related to [user logon].
FIA_AFL.1.2 When the defined number of unsuccessful authentication attempts has been met or surpassed, the
TSF shall [lockout the account for an administrator configured time period].
5.1.4.2 User attribute definition (FIA_ATD.1)
FIA_ATD.1.1 The TSF shall maintain the following list of security attributes belonging to individual users:[
a.) the security attributes of users possessing administrative roles:
user identity
password
role
].
5.1.4.3 Verification of secrets (FIA_SOS.1)
FIA_SOS.1.1 The TSF shall provide a mechanism to verify that secrets meet [an administrator specified
overall minimum length and have a minimum number of specified character types].
5.1.4.4 User authentication before any action (FIA_UAU.2)
FIA_UAU.2.1 The TSF shall require each user to be successfully authenticated before allowing any other TSF-
mediated actions on behalf of that user.
5.1.4.5 Multiple authentication mechanisms(FIA_UAU.5)
FIA_UAU.5.1 The TSF shall allow [local authentication, authentication by a third-party RADIUS and
authentication by a third-party LDAP server] to support user authentication.
FIA_UAU.5.2 The TSF shall authenticate any user's claimed identity according to the [administrator
configured order of authentication providers].
5.1.4.6 User identification before any action (FIA_UID.2)
FIA_UID.2.1 The TSF shall require each user to identify itself before allowing any other TSF-mediated actions
on behalf of that user.