Installation guide

ManualsBrandsMotorola ManualsComputer equipmentRFS7000 Series

Motorola WS5100 Wireless Switch and RFS7000 RF Switch Security Target

Page 64 of 85

O.CORRECT_

TSF_OPERATION

The TOE will provide the

capability to test the TSF to

ensure the correct

operation of the TSF at a

customer’s site.

FPT_TST_EXP.1

FPT_TST_EXP.2

FPT_TST_EXP.1 is necessary to ensure the

correct operation TSF hardware. If TSF

software is corrupted it is possible that the

TSF would no longer be able to enforce the

security policies. This also holds true for TSF

data, if TSF data is corrupt the TOE may not

correctly enforce its security policies. The

FPT_TST_EXP.2 functional requirement

addresses the critical nature and specific

handling of the cryptographic related TSF

data. Since the cryptographic TSF data has

specific FIPS PUB requirements associated

with them it is important to ensure that any

fielded testing on the integrity of these data

maintains the same level of scrutiny as

specified in the FCS functional requirements.

O.CRYPTOGRAPHY

The TOE shall provide

cryptographic functions to

maintain the confidentiality

and allow for detection of

modification of user data

that is transmitted between

physically separated

portions of the TOE, or

outside of the TOE.

FCS_BCM_EXP.1

FCS_CKM.1

FCS_CKM_EXP.2

FCS_CKM.4

FCS_COP_EXP.1

FCS_COP_EXP.2

The FCS requirements satisfy this objective by

levying requirements that ensure the

cryptographic standards include the NIST

FIPS publications (wherepossible) and NIST

approved ANSI standards. The intent is to

have the satisfaction of the cryptographic

standards be validated through a NIST FIPS

140-1/2 validation.

FCS_BCM_EXP.1 is an explicit requirement

that specifies the NIST FIPS rating level that

the cryptographic module must satisfy. The

level specifies the degree of testing of the

module. The higher the level, the more

extensively the module is tested.

FCS_CKM.1 ensures that, if necessary, the

TOE is capable of generating cryptographic

keys.

FCS_CKM_EXP.2 Cryptographic Key

Handling and Storage requires that FIPS PUB

140-1/2 be satisfied when performing key

entry and output.

FCS_CKM.4 mandates the standards (FIPS

140-1/2) that must be satisfied when the TOE

performs Cryptographic Key Zeroization.

FCS_COP_EXP.1 requires that a NIST

approved random number generator is used.

FCS_COP_EXP.2 requires for data decryption

and encryption that a NIST approved algorithm

is used, and that the algorithm meets the FIPS

PUB 140-1/2 standard.