Cisco Cisco IOS Software Release 12.4(23)
5. IT Security Requirements
Document Organization
24
Security Target For Cisco IOS IPSec
5.1.26 - TSF testing (FPT_TST.1)
The TSF shall run a suite of self tests [during initial start-up] to demonstrate the correct operation of [the
TSF].
TSF].
FPT_TST.1.1
The TSF shall provide authorized users with the capability to verify the integrity of [TSF data].
FPT_TST.1.2
The TSF shall provide authorized users with the capability to verify the integrity of stored TSF
executable code.
executable code.
FPT_TST.1.3
5.1.27 - TOE session establishment (FTA_TSE.1)
The TSF shall be able to deny session establishment based on [access control list specifying a
combination of source/destination IP address and source/destination TCP/UDP port number].
combination of source/destination IP address and source/destination TCP/UDP port number].
FTA_TSE.1.1
5.1.28 - Inter-TSF trusted channel (FTP_ITC.1)
The TSF shall provide a communication channel between itself and a remote trusted IT product that is
logically distinct from other communication channels and provides assured identification of its end
points and protection of the channel data from modification or disclosure.
logically distinct from other communication channels and provides assured identification of its end
points and protection of the channel data from modification or disclosure.
FTP_ITC.1.1
The TSF shall permit [the TSF] to initiate communication via the trusted channel.
FTP_ITC.1.2
The TSF shall initiate communication via the trusted channel for [the secure transmission of packet
flows between trusted networks, and secure administration and operation of the TOE].
flows between trusted networks, and secure administration and operation of the TOE].
FTP_ITC.1.3
5.2 TOE Security Assurance Requirements
The TOE meets all the Assurance Requirements prescribed by EAL2 in Part 3 of the CC. The
requirements are summarized by Assurance Class in
requirements are summarized by Assurance Class in
.
Table 11
Assurance Requirements:EAL2
Assurance Class
Assurance Components
ACM
ACM_CAP.2
ADO
ADO_DEL.1 ADO_IGS.1
ADV
ADV_FSP.1 ADV_HLD.1 ADV_RCR.1
AGD
AGD_ADM.1 AGD_USR.1
ATE
ATE_COV.1 ATE_FUN.1 ATE_IND.2
AVA
AVA_SOF.1 AVA_VLA.1