Manualshelf

System information

ManualsBrandsCisco ManualsComputer equipmentCatalyst 3750X-48PF
21222324252627282930
Cisco Cat3K ST 6 June 2012
23
4 SECURITY OBJECTIVES
This Chapter identifies the security objectives of the TOE and the IT Environment. The
security objectives identify the responsibilities of the TOE and the TOE’s IT environment
in meeting the security needs.
This document identifies objectives of the TOE as O.objective with objective
specifying a unique name. Objectives that apply to the IT environment are
designated as OE.objective with objective specifying a unique name.
4.1 Security Objectives for the TOE
The following table, Security Objectives for the TOE, identifies the security objectives of
the TOE. These security objectives reflect the stated intent to counter identified threats
and/or comply with any security policies identified. An explanation of the relationship
between the objectives and the threats/policies is provided in the rationale section of this
document.
Table 7 Security Objectives for the TOE
TOE Objective TOE Security Objective Definition
O.ACCESS_CONTROL The TOE will restrict access to the TOE Management
functions to the authorized administrators.
O.ADMIN_ROLE The TOE will provide administrator levels to isolate
administrative actions, and to make the administrative
functions available locally and remotely.
O.AUDIT_GEN The TOE will generate audit records which will
include the time that the event occurred and if
applicable, the identity of the user performing the
event.
O.AUDIT_VIEW The TOE will provide only the authorized
administrators the capability to review and to
configure the TOE to transmit audit messages to a
remote syslog server.
O.CFG_MANAGE The TOE will provide management tools/applications
to allow authorized administrators to manage its
security functions.
O.IDAUTH The TOE must uniquely identify and authenticate the
claimed identity of all administrative users before
granting management access.
O.MEDIATE The TOE must mediate the flow of all information
between hosts located on disparate internal and
external networks governed by the TOE.
O.SELFPRO The TOE must protect itself against attempts by
unauthorized users to bypass, deactivate, or tamper
with TOE security functions.
O.STARTUP_TEST The TOE will perform initial startup tests upon
bootup of the system to ensure correct operation of the
cryptographic module, TOE software image, and TOE
configuration.