Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipmentASR 900 Series
31323334353637383940
Cisco Aggregation Services Router (ASR) 900 Series Security Target
Page 38 of 52
5.4.2 Security Assurance Requirements Rationale
The Security Assurance Requirements (SARs) in this Security Target represent the SARs
identified in the NDPPv1.1. As such, the NDPP SAR rationale is deemed acceptable since the
PP itself has been validated.
5.5 Assurance Measures
The TOE satisfies the identified assurance requirements. This section identifies the Assurance
Measures applied by Cisco to satisfy the assurance requirements. The table below lists the
details.
Table 21 Assurance Measures
Component
How requirement will be met
ADV_FSP.1
The functional specification describes the external interfaces of the TOE; such as the means
for a user to invoke a service and the corresponding response of those services. The
description includes the interface(s) that enforces a security functional requirement, the
interface(s) that supports the enforcement of a security functional requirement, and the
interface(s) that does not enforce any security functional requirements. The interfaces are
described in terms of their purpose (general goal of the interface), method of use (how the
interface is to be used), parameters (explicit inputs to and outputs from an interface that
control the behaviour of that interface), parameter descriptions (tells what the parameter is in
some meaningful way), and error messages (identifies the condition that generated it, what
the message is, and the meaning of any error codes). The development evidence also
contains a tracing of the interfaces to the SFRs described in this ST.
AGD_OPE.1
The Administrative Guide provides the descriptions of the processes and procedures of how
the administrative users of the TOE can securely administer the TOE using the interfaces
that provide the features and functions detailed in the guidance.
AGD_PRE.1
The Installation Guide describes the installation, generation and startup procedures so that
the users of the TOE can put the components of the TOE in the evaluated configuration.
ALC_CMC.1
The Configuration Management (CM) document(s) describes how the consumer (end-user)
of the TOE can identify the evaluated TOE (Target of Evaluation). The CM document(s),
identifies the configuration items, how those configuration items are uniquely identified, and
the adequacy of the procedures that are used to control and track changes that are made to
the TOE. This includes details on what changes are tracked, how potential changes are
incorporated, and the degree to which automation is used to reduce the scope for error.
ALC_CMS.1
ATE_IND.1
Cisco will provide the TOE for testing.
AVA_VAN.1
Cisco will provide the TOE for testing.