Specifications
Cisco Aggregation Services Router (ASR) 901 Series Security Target
Page 26 of 50
Class Name
Component
Identification
Component Name
FCS_RBG_EXT.1
Extended: Cryptographic Operation (Random Bit
Generation)
FC_SSH_EXT.1
Explicit: SSH
FDP: User data
protection
FDP_RIP.2
Full Residual Information Protection
FIA: Identification and
authentication
FIA_PMG_EXT.1
Password Management
FIA_PSK_EXT.1
Extended: Pre-Shared Key Composition
FIA_UIA_EXT.1
User Identification and Authentication
FIA_UAU_EXT.2
Password-based Authentication Mechanism
FIA_UAU.7
Protected Authentication Feedback
FMT: Security
management
FMT_MTD.1
Management of TSF Data (for general TSF data)
FMT_SMF.1
Specification of Management Functions
FMT_SMR.2
Restrictions on Security Roles
FPT: Protection of the
TSF
FPT_SKP_EXT.1
Extended: Protection of TSF Data (for reading of all
symmetric keys)
FPT_APW_EXT.1
Extended: Protection of Administrator Passwords
FPT_STM.1
Reliable Time Stamps
FPT_TUD_EXT.1
Extended: Trusted Update
FPT_TST_EXT.1
TSF Testing
FTA: TOE Access
FTA_SSL_EXT.1
TSF-initiated Session Locking
FTA_SSL.3
TSF-initiated Termination
FTA_SSL.4
User-initiated Termination
FTA_TAB.1
Default TOE Access Banners
FTP: Trusted
path/channels
FTP_ITC.1
Trusted Channel
FTP_TRP.1
Trusted Path
5.2.1 Security audit (FAU)
5.2.1.1 FAU_GEN.1: Audit data generation
FAU_GEN.1.1 The TSF shall be able to generate an audit record of the following auditable
events:
a) Start-up and shut-down of the audit functions;
b) All auditable events for the not specified level of audit; and
c) All administrative actions;
d) [Specifically defined auditable events listed in Table 16].