Installation guide

ManualsBrandsMotorola ManualsComputer equipmentRFS7000 Series

Motorola WS5100 Wireless Switch and RFS7000 RF Switch Security Target

Page 47 of 85

8 Rationale

This section describes the rationale for the Security Objectives, Security Functional Requirements

and TOE Summary Specification. Additionally, this section describes the rationale for not satisfying

all of the dependencies and the rationale for the strength of function (SOF) claim. Table 8-1

illustrates the mapping from Security Objectives to Threats and Policies. It is identical to that of the

WLANAS PP.

8.1 Rationale for Security Objectives

Table 8-1 Security Objectives to Threats and Policies Mappings

Threat/Policy

Objectives Addressing the

Threat

Rationale

T.ACCIDENTAL_ADMIN_

ERROR

An administrator may incorrectly

install or configure the TOE

resulting in ineffective security

mechanisms.

O.ADMIN_GUIDANCE

The TOE will provide

administrators with the

necessary information for

secure management.

O.MANAGE

The TOE will provide those

functions and facilities

necessary to support the

administrators in their

management of the security

of the TOE.

OE.NO_EVIL

Sites using the TOE shall

ensure that administrators

are non-hostile, appropriately

trained and follow all

administrator guidance.

OE.NO_GENERAL_PURPO

There are no general-

purpose computing or

storage repository

capabilities (e.g., compilers,

editors, or user applications)

available on the TOE.

O.ADMIN_GUIDANCE helps to

mitigate this threat by ensuring

the TOE administrators have

guidance that instructs them

how to administer the TOE in a

secure manner. Having this

guidance helps to reduce the

mistakes that an administrator

might make that could cause

the TOE to be configured in a

way that is insecure.

O.MANAGE also contributes to

mitigating this threat by

providing administrators the

capability to view and manage

configuration settings. For

example, if the administrator

made a mistake when

configuring the set of permitted

users’ authentication

credentials, providing the

capability to view the lists of

authentication credentials

affords them the ability to

review the list and discover any

mistakes that might have been

made.

OE.NO_EVIL contributes to

mitigating this threat by

ensuring that the

administrators are non-hostile