Hardware manual
Version 1.1, 03/31/2015
GSS CCT Evaluation Technical Report Page 49 of 56 © 2015 Gossamer Security Solutions, Inc.
Document: AAR-BrocadeNetIron5.8 All rights reserved.
2.8.2.3 FTP_TRP.1.3
TSS Assurance Activities: None Defined
Guidance Assurance Activities: None Defined
Testing Assurance Activities: None Defined
Component Assurance Activities: The evaluator shall examine the TSS to determine that the methods of remote
TOE administration are indicated, along with how those communications are protected. The evaluator shall also
confirm that all protocols listed in the TSS in support of TOE administration are consistent with those specified in
the requirement, and are included in the requirements in the ST.
Section 6.8 indicates that SSH or HTTPS/TLS is required for remote administration.
The evaluator shall confirm that the operational guidance contains instructions for establishing the remote
administrative sessions for each supported method. The evaluator shall also perform the following tests:
Test 1: The evaluators shall ensure that communications using each specified (in the operational guidance) remote
administration method is tested during the course of the evaluation, setting up the connections as described in the
operational guidance and ensuring that communication is successful.
Test 2: For each method of remote administration supported, the evaluator shall follow the operational guidance
to ensure that there is no available interface that can be used by a remote user to establish a remote
administrative sessions without invoking the trusted path.
Test 3: The evaluator shall ensure, for each method of remote administration, the channel data is not sent in
plaintext.
Further assurance activities are associated with the specific protocols.
Test 1 – The evaluator tested SSH when testing the FCS_SSH_EXT.1 requirement and tested HTTPS when testing
the FCS_HTTPS_EXT.1 requirement.