Nortel-networks Nortel Network VPN Router and Client Workstation 7 Instrukcja Użytkownika Strona 17
- Strona / 67
- Spis treści
- BOOKMARKI
Oceniono. / 5. Na podstawie oceny klientów
Security Target, Version 3.9
March 18, 2008
Nortel VPN Router v7.05 and Client Workstation v7.11
Page 17 of 67
© 2008 Nortel Networks
Attackers who are not TOE users: These attackers have no knowledge of how the TOE operates and are
assumed to possess a low skill level, a low level of motivation, limited resources to alter TOE configuration
settings/parameters, and no physical access to the TOE.
TOE users: These attackers have extensive knowledge of how the TOE operates and are assumed to
possess a high skill level, moderate resources to alter TOE configuration settings/parameters, and physical
access to the TOE, but no motivation to do so.
The threats are mitigated through the objectives identified in Section 4 - Security Objectives.
3.2.1 Threats Addressed by the TOE
The following threats are to be addressed by the TOE:
T.UNDETECT
An attacker may gain undetected access due to missing, weak, and/or incorrectly
implemented access controls for the restricted files or TSF Data in order to cause
violations of integrity, confidentiality, or availability of the information protected by and
flowing through the TOE.
T.AUTH-ERROR
An authorized user may accidentally alter the configuration of a policy that permits or
denies information flow through the TOE, thereby affecting the integrity of the transmitted
information.
T.DATA-MOD
An attacker may intercept and alter the data transmitted between the Nortel VPN Client
and the Nortel VPN Router, and/or between two Nortel VPN Routers, in order to deceive
the intended recipient.
T. HACK-CRYPTO
An attacker may successfully intercept and decrypt, then recover and modify the encrypted
data that is in transit between the Nortel VPN Router and VPN Client, and/or between two
Nortel VPN Routers.
T.HACK
An attacker may use malformed IP packets or similar attack methods against the TSF or
user data protected by the TOE in order to corrupt normal operation.
3.2.2 Threats Addressed by the TOE Environment
The following threats are addressed by the TOE environment:
TE.PHYSICAL
An attacker may physically attack the Hardware appliance in order to compromise its
secure operation.
TE.AUDIT_FAILURE
An attacker may conduct an undetected attack on the information protected by the TOE
as a result of unreliable time stamps used by the audit mechanism, which may result in
failure to prevent further attacks using the same method.
TE.BAD_CERT
An attacker may successfully authenticate to the VPN Router using a revoked, expired
or untrusted certificate in order to gain access to information residing on the private
network.
- Nortel Networks 1
- VPN Router v7.05 and Client 1
- Workstation v7.11 1
- Security Target 1
- Revision History 2
- Table of Contents 3
- Table of Figures 4
- Table of Tables 4
- 1.1 Purpose 5
- 1.3.1 Conventions 6
- 1.3.2 Terminology 6
- 2 TOE Description 8
- Page 9 of 67 9
- 2.3.1 Physical Boundary 10
- 2.3.2 Logical Boundary 11
- © 2008 Nortel Networks 12
- Security Target, Version 3.9 12
- March 18, 2008 12
- Page 12 of 67 12
- Page 13 of 67 13
- Page 14 of 67 14
- Page 15 of 67 15
- 3 TOE Security Environment 16
- Page 17 of 67 17
- 4 Security Objectives 18
- Page 19 of 67 19
- 5 IT Security Requirements 20
- FAU_SAR.1 Audit review 22
- Page 23 of 67 23
- Page 24 of 67 24
- Page 25 of 67 25
- Page 26 of 67 26
- Page 27 of 67 27
- Page 28 of 67 28
- Page 29 of 67 29
- Page 30 of 67 30
- Page 31 of 67 31
- Page 32 of 67 32
- Page 33 of 67 33
- Page 34 of 67 34
- FMT_SMR.1 Security roles 35
- FMT_SMR.1.2 36
- FPT_RPL.1 Replay detection 37
- FPT_TST.1 TSF testing 37
- FTP_TRP.1 Trusted path 38
- Page 40 of 67 40
- 5.3 Assurance Requirements 41
- 6 TOE Summary Specification 42
- 6.1.1 Security Audit 43
- Page 44 of 67 44
- 6.1.2 Cryptographic Support 45
- 6.1.3 User Data Protection 46
- 6.1.5 Security Management 47
- Page 48 of 67 48
- 6.1.7 Trusted Path/Channels 49
- 7 Protection Profile Claims 51
- 8 Rationale 52
- Page 53 of 67 53
- Page 54 of 67 54
- Page 55 of 67 55
- Page 58 of 67 58
- Page 59 of 67 59
- 8.5 Dependency Rationale 60
- Requirements 62
- Page 64 of 67 64
- 8.7 Strength of Function 65
- 9 Acronyms 66
Powiązane produkty i podręczniki dla Sprzęt komputerowy Nortel-networks Nortel Network VPN Router and Client Workstation 7
(34 strony)
(102 strony)© 2020, manymanuals.pl. Wszelkie prawa zastrzeżone. | 0.063 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji