System information

Cisco Cat3K ST 6 June 2012

5.2.6 Protection of the TSF (FPT)

5.2.6.1 FPT_RPL.1: Replay detection

FPT_RPL.1.1 The TSF shall detect replay for the following entities: [network

packets terminated at the TOE].

FPT_RPL.1.2 The TSF shall perform [reject the data] when replay is detected.

5.2.6.2 FPT_STM.1: Reliable time stamps

FPT_STM.1.1 The TSF shall be able to provide reliable time stamps.

5.2.6.3 FPT_TST_EXT.1: TSF testing

FPT_TST_EXT.1.1 The TSF shall run a suite of self tests during initial start-up

(on power on) to demonstrate the correct operation of the

TSF.

5.2.7 TOE Access (FTA)

5.2.7.1 FTA_SSL.3: TSF-initiated termination

FTA_SSL.3.1 The TSF shall terminate a remote and local interactive session after

a [authorized administrator-configurable time interval of session

inactivity].

5.2.7.2 FTA_TAB.1: Default TOE Access Banners

FTA_TAB.1.1 Before establishing a user

local or remote administrator session

the TSF shall display an authorized administrator-specified

advisory notice and consent warning message regarding

unauthorized use of the TOE.

5.3 Extended Components Definition

This Security Target includes Security Functional Requirements (SFR) that is not drawn

from existing CC Part 2. The Extended SFRs are identified by having a label ‘_EXT’

after the requirement name for TOE SFRs. The structure of the extended SFRs is

modeled after the SFRs included in CC Part 2. The structure is as follows:

A. Class – The extended SFRs included in this ST are part of the identified

classes of requirements.