System information
Cisco Cat3K ST 6 June 2012
27
Functional Component
FPT_TST_EXT.1: TSF testing
FTA: TOE Access FTA_SSL.3: TSF-initiated termination
FTA_TAB.1: Default TOE Access Banners
5.2.1 Security audit (FAU)
5.2.1.1 FAU_GEN.1: Audit data generation
FAU_GEN.1.1 The TSF shall be able to generate an audit record of the following
auditable events:
a) Start-up and shutdown of the audit functions;
b) All auditable events for the [not specified] level of audit
specified in Table 10; and
c) [no additional events].
FAU_GEN.1.2 The TSF shall record within each audit record at least the
following information:
a) Date and time of the event, type of event, subject identity (if
applicable), and the outcome (success or failure) of the event;
and
b) For each audit event type, based on the auditable event
definitions of the functional components included in the PP/
ST,
[information specified in the Additional Audit Record Contents
column of Table 10].
Table 10: Auditable Events
Requirement Auditable Events Additional Audit Record
Contents
FAU_GEN.1 None.
FAU_GEN.2 None.
FAU_SAR.1 None.
FAU_STG.1 None.
FCS_SSH_EXT.1 Failure to establish an SSH
session
Establishment/Termination of
an SSH session
Reason for failure
Non-TOE endpoint of
connection (IP address) for
both successes and failures.
FDP_ACC.2 None None
FDP_ACF.1 All decisions on request for
access control (execute a
command)
None