Brocade Communications Systems NetIron CER Series Manual download pdf (Page 21)

Version 1.1, 03/31/2015

2.2.7.2 FCS_HTTPS_EXT.1.2

TSS Assurance Activities: None Defined

Guidance Assurance Activities: None Defined

Testing Assurance Activities: None Defined

Component Assurance Activities: The evaluator shall check the TSS to ensure that it is clear on how HTTPS uses

TLS to establish an administrative session, focusing on any client authentication required by the TLS protocol vs.

security administrator authentication which may be done at a different level of the processing stack.

Section 6.8 indicates that when a client attempts to connect to the TOE using TLS/HTTPS, the TOE and client will

negotiate the most secure algorithm supported by both ends. RSA is used for key exchange and authentication.

Only once a session is successfully negotiated and established will the TOE require the administrator to login. If

that fails, the session is dropped.

Note that section 6.2 also identified RFC 2246 and RFC 2818 conformance for TLS and HTTPS respectively.

Testing for this activity is done as part of the TLS testing; this may result in additional testing if the TLS tests are

done at the TLS protocol level.

The web interface was tested with to ensure that an administrator could make a connection with each of the

claimed ciphers. This testing was performed as part of the TLS tests.

2.2.8 EXTENDED: CRYPTOGRAPHIC OPERATION (RANDOM BIT GENERATION)

(FCS_RBG_EXT.1)

2.2.8.1 FCS_RBG_EXT.1.1

TSS Assurance Activities: None Defined

1 2 ... 16 17 18 19 20 21 22 23 24 25 26 ... 55 56

No comments

Brocade Communications Systems NetIron CER Series Manual Page 21