Specifications
Cisco ISR-800 Security Target
45
5.3.9 Trusted Path/Channels (FTP)
5.3.9.1 FTP_ITC.1 Inter-TSF trusted channel
FTP_ITC.1.1 Refinement: The TSF shall use IPsec, and [no other protocols] to provide a
trusted communication channel between itself and all authorized IT entities that is logically
distinct from other communication channels and provides assured identification of its end points
and protection of the channel data from disclosure and detection of modification of the channel
data.
FTP_ITC.1.2 The TSF shall permit the TSF, or the authorized IT entities to initiate
communication via the trusted channel.
FTP_ ITC.1.3 The TSF shall initiate communication via the trusted channel for [
• external audit servers using IPsec,
• remote AAA servers using IPsec,
• remote VPN gateways/peers using IPsec,
• another instance of the TOE using IPsec,
• a CA server using IPsec].
5.3.9.2 FTP_TRP.1 Trusted Path
FTP_TRP.1.1 Refinement: The TSF shall use [IPsec, SSH] provide a trusted communication
path between itself and remote administrators that is logically distinct from other
communication paths and provides assured identification of its end points and protection of the
communicated data from disclosure and detection of modification of the communicated data.
FTP_TRP.1.2 Refinement: The TSF shall permit remote administrators to initiate
communication via the trusted path.
FTP_TRP.1.3 The TSF shall require the use of the trusted path for initial administrator
authentication and all remote administration actions.
5.4 TOE SFR Dependencies Rationale for SFRs
The NDPPv1.1, NDPP Errata#2 and VPNGWEP v1.1 contain all the requirements claimed in
this Security Target. The order of precedence followed in case of duplicate requirements is as
follows - VPNGWEP v1.1 > NDPP Errata#2 > NDPPv1.1. As such the dependencies are not
applicable since the PP and EP have been approved.