Cisco Cisco IOS Software Release 12.4(23)
5. IT Security Requirements
Document Organization
21
Security Target For Cisco IOS IPSec
5.1.10 - Simple security attributes (FDP_IFF.1)
The TSF shall enforce the [information flow control SFP] based on the following types of subject and
information security attributes: [
information security attributes: [
Subject (TOE instance) Security Attributes
•
Policy settings
•
TOE identity credentials
Information Security Attributes
•
Receiving/transmitting interface;
•
Source/destination IP address;
•
Source/destination port number;
•
IPSec attributes (such as ESP header)].
FDP_IFF.1.1
The TSF shall permit an information flow between a controlled subjects and of controlled information
via a controlled operation if the following rules hold: [if one TOE instance (subject) can authenticate
another TOE instance (subject) through the establishment of an IPSec Security Association using the
configured policy and identity credentials of the TOE instances].
via a controlled operation if the following rules hold: [if one TOE instance (subject) can authenticate
another TOE instance (subject) through the establishment of an IPSec Security Association using the
configured policy and identity credentials of the TOE instances].
FDP_IFF.1.2
The TSF shall enforce [no additional information flow control SFP rules].
FDP_IFF.1.3
The TSF shall provide the following [inbound packet filtering] additional capabilities.
FDP_IFF.1.4
The TSF shall explicitly authorize an information flow based on the following rules: [none].
FDP_IFF.1.5
The TSF shall explicitly deny an information flow based on the following rules:[the
administrator-configured explicit “deny” rules based on the above Information Security
Attributes].
administrator-configured explicit “deny” rules based on the above Information Security
Attributes].
FDP_IFF.1.6
5.1.11 - Basic data exchange confidentiality (FDP_UCT.1)
The TSF shall enforce the [information flow control SFP] to be able to [transmit and receive] objects in
a manner protected from unauthorized disclosure.
a manner protected from unauthorized disclosure.
FDP_UCT.1.1
5.1.12 - Data exchange integrity (FDP_UIT.1)
The TSF shall enforce the [information flow control SFP] to be able to [transmit and receive] user data
packet flows in a manner protected from [modification, insertion and replay] errors.
packet flows in a manner protected from [modification, insertion and replay] errors.
FDP_UIT.1.1
The TSF shall be able to determine on receipt of user data a packet flow, whether [modification, insertion
and replay] has occurred.
and replay] has occurred.
FDP_UIT.1.2
5.1.13 - User authentication before any action (FIA_UAU.2)
The TSF shall require each user to be successfully authenticated before allowing any other
TSF-mediated actions on behalf of that user.
TSF-mediated actions on behalf of that user.
FIA_UAU.2.1
5.1.14 - Multiple authentication mechanisms (FIA_UAU.5)
The TSF shall provide [password only mechanism; or the combination of username with matching
password] to support user authentication.
password] to support user authentication.
FIA_UAU.5.1