Cisco Cisco IOS Software Release 12.4(23)
4. Security Objectives
Document Organization
18
Security Target For Cisco IOS IPSec
4.2 Security Objectives for the Environment
Table 10
Security Objectives for the Environment
Name
Description
OE.Policy
Those responsible for the administration of the
TOE must provide a policy that specifies
TOE must provide a policy that specifies
•
Whether networks connected to the TOE are
trusted or untrusted
trusted or untrusted
•
The packet flows that are to be protected by
the TOE
the TOE
•
The peer TOE that will encrypt/decrypt each
packet flow
packet flow
OE.Secure-Management
Those responsible for the operation of the TOE
must ensure that the TOE environment is
physically secure, and that management and
configuration of the security functions of the TOE
are:
must ensure that the TOE environment is
physically secure, and that management and
configuration of the security functions of the TOE
are:
•
Initiated from a management station that is
connected to a trusted network and protected
using the security functions of the TOE
connected to a trusted network and protected
using the security functions of the TOE
•
Undertaken by trusted staff trained in the
secure operation of the TOE
secure operation of the TOE
•
Implemented in conjunction with an
evaluated or trusted Certificate Authority
(CA), if digital certificates are used for TOE
authentication
evaluated or trusted Certificate Authority
(CA), if digital certificates are used for TOE
authentication
•
Configured to interface only to trusted clock
sources.
sources.