Hardware manual
Version 1.1, 03/31/2015
GSS CCT Evaluation Technical Report Page 3 of 56 © 2015 Gossamer Security Solutions, Inc.
Document: AAR-BrocadeNetIron5.8 All rights reserved.
TABLE OF CONTENTS
1. Introduction ........................................................................................................................................................... 5
2. Protection Profile SFR Assurance Activities ........................................................................................................... 6
2.1 Security audit (FAU) ..................................................................................................................................... 6
2.1.1 Audit Data Generation (FAU_GEN.1) ...................................................................................................... 6
2.1.2 User identity association (FAU_GEN.2) ................................................................................................. 14
2.1.3 External Audit Trail Storage (FAU_STG_EXT.1) ..................................................................................... 14
2.2 Cryptographic support (FCS) ...................................................................................................................... 16
2.2.1 Cryptographic Key Generation (for asymmetric keys) (FCS_CKM.1) .................................................... 16
2.2.2 Cryptographic Key Zeroization (FCS_CKM_EXT.4) ................................................................................ 17
2.2.3 Cryptographic Operation (for data encryption/decryption) (FCS_COP.1(1)) ........................................ 18
2.2.4 Cryptographic Operation (for cryptographic signature) (FCS_COP.1(2)) .............................................. 19
2.2.5 Cryptographic Operation (for cryptographic hashing) (FCS_COP.1(3)) ................................................ 19
2.2.6 Cryptographic Operation (for keyed-hash message authentication) (FCS_COP.1(4)) .......................... 20
2.2.7 Explicit: HTTPS (FCS_HTTPS_EXT.1) ...................................................................................................... 20
2.2.8 Extended: Cryptographic Operation (Random Bit Generation) (FCS_RBG_EXT.1) ............................... 21
2.2.9 Explicit: SSH (FCS_SSH_EXT.1) ............................................................................................................... 24
2.2.10 Explicit: TLS (FCS_TLS_EXT.1) .............................................................................................................. 27
2.3 User data protection (FDP) ........................................................................................................................ 29
2.3.1 Full Residual Information Protection (FDP_RIP.2) ................................................................................ 29
2.4 Identification and authentication (FIA) ...................................................................................................... 29
2.4.1 Password Management (FIA_PMG_EXT.1) ........................................................................................... 29
2.4.2 Protected Authentication Feedback (FIA_UAU.7) ................................................................................ 30
2.4.3 Extended: Password-based Authentication Mechanism (FIA_UAU_EXT.2) ......................................... 31
2.4.4 User Identification and Authentication (FIA_UIA_EXT.1) ..................................................................... 32
2.5 Security management (FMT) ...................................................................................................................... 33
2.5.1 Management of TSF Data (for general TSF data) (FMT_MTD.1) ........................................................... 34
2.5.2 Specification of Management Functions (FMT_SMF.1) ........................................................................ 36
2.5.3 Restrictions on Security Roles (FMT_SMR.2) ........................................................................................ 36