Manualshelf

Specifications

ManualsBrandsBrocade Communications Systems ManualsComputer equipmentNetIron CER Series
11121314151617181920
Brocade MLXand NetIron® Family Devices with Multi-Service IronWare R05.7.00
Security Target Version 1., July 15, 2014
Page 12 of 50
3. Security Objectives
The Security Problem Definition may be found in the Protection Profile for Network Devices, version 1.1, 8 June
2012 (NDPP) with Errata #2, 13 January 2014, and this section reproduces only the corresponding Security
Objectives for convenience. The NDPP offers additional information about the identified security objectives, but
that has not been reproduced here and the NDPP should be consulted if there is interest in that material.
In general, the NDPP has presented a Security Objectives appropriate for network infrastructure devices and as such
are applicable to the Brocade MLXe® and NetIron® Family Devices with Multi-Service IronWare R05.7.00.
3.1 Security Objectives for the TOE
O.DISPLAY_BANNER
The TOE will display an advisory warning regarding use of the TOE.
O.PROTECTED_COMMUNICATIONS
The TOE will provide protected communication channels for administrators, other parts of
a distributed TOE, and authorized IT entities.
O.RESIDUAL_INFORMATION_CLEARING
The TOE will ensure that any data contained in a protected resource is not available
when the resource is reallocated.
O.SESSION_LOCK
The TOE shall provide mechanisms that mitigate the risk of unattended sessions being
hijacked.
O.SYSTEM_MONITORING
The TOE will provide the capability to generate audit data and send those data to an
external IT entity.
O.TOE_ADMINISTRATION
The TOE will provide mechanisms to ensure that only administrators are able to log in
and configure the TOE, and provide protections for logged-in administrators.
O.TSF_SELF_TEST
The TOE will provide the capability to test some subset of its security functionality to
ensure it is operating properly.
O.VERIFIABLE_UPDATES
The TOE will provide the capability to help ensure that any updates to the TOE can be
verified by the administrator to be unaltered and (optionally) from a trusted source.
3.2 Security Objectives for the Environment
OE.NO_GENERAL_PURPOSE
There are no general-purpose computing capabilities (e.g., compilers or user
applications) available on the TOE, other than those services necessary for the
operation, administration and support of the TOE.