Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipmentA9014CFD
11121314151617181920
Cisco Aggregation Services Router (ASR) 901 Series Security Target
Page 17 of 50
1.6.3 Security Management
The TOE provides secure administrative services for management of general TOE configuration
and the security functionality provided by the TOE. All TOE administration occurs either
through a secure SSHv2 session or via a local console connection. The TOE provides the ability
to securely manage:
All TOE administrative users;
All identification and authentication;
All audit functionality of the TOE;
All TOE cryptographic functionality;
The timestamps maintained by the TOE;
Update to the TOE; and
TOE configuration file storage and retrieval.
The TOE supports two separate administrator roles: non-privileged administrator and privileged
administrator. Only the privileged administrator can perform the above security relevant
management functions.
Administrators can create configurable login banners to be displayed at time of login, and can
also define an inactivity timeout for each admin interface to terminate sessions after a set period
of inactivity.
1.6.4 Protection of the TSF
The TOE protects against interference and tampering by untrusted subjects by implementing
identification, authentication, and access controls to limit configuration to Authorized
Administrators. The TOE prevents reading of cryptographic keys and passwords. Additionally
Cisco IOS is not a general-purpose operating system and access to Cisco IOS memory space is
restricted to only Cisco IOS functions.
The TOE internally maintains the date and time. This date and time is used as the timestamp that
is applied to audit records generated by the TOE. Administrators can update the TOE’s clock
manually, or can configure the TOE to use NTP to synchronize the TOE’s clock with an external
time source. Finally, the TOE performs testing to verify correct operation of the switch itself and
that of the cryptographic module.
The TOE is able to verify any software updates prior to the software updates being installed on
the TOE to avoid the installation of Authorized Administrator software.
The TOE also supports direct connections from VPN clients, and protects against threats related
to those client connections. The TOE disconnects sessions that have been idle too long, can be
configured to deny sessions based on IP, time, and day, and can be configured to NAT external
IPs of connecting VPN clients to internal network addresses.