Brocade Communications Systems FCX Series User Manual download pdf (Page 23)

Version 1.1, 05/19/2014

GSS CCT Evaluation Technical Report Page 23 of 53

Document: AAR-BrocadeFastIron8010

• Additional input: the additional input bit lengths have the same defaults and restrictions as the personalization

string lengths.

The Entropy description is provided in a separate (non-ST) document that has been delivered to CCEVS for

approval. Note that the entropy analysis has been accepted by CCEVS/NSA.

The TOE has been FIPS approved. The CTR_DRBG certificate numbers are 442, 438, 439, 436, 437 covering all

evaluated models.

2.2.8 EXPLICIT: SSH (FCS_SSH_EXT.1)

2.2.8.1 FCS_SSH_EXT.1.1

TSS Assurance Activities: None Defined

Guidance Assurance Activities: None Defined

Testing Assurance Activities: None Defined

2.2.8.2 FCS_SSH_EXT.1.2

TSS Assurance Activities: The evaluator shall check to ensure that the TSS contains a description of the public key

algorithms that are acceptable for use for authentication, that this list conforms to FCS_SSH_EXT.1.5, and ensure

that password-based authentication methods are also allowed.

Section 6.2 indicates the SSH implementation supports AES CBC 128 and 256, HMAC-SHA-1, and RSA. These values

match the SFR. Section 6.2 also indicates that both public-key and password based authentication can be

configured.

Guidance Assurance Activities: None Defined

Testing Assurance Activities: The evaluator shall also perform the following tests:

1 2 ... 18 19 20 21 22 23 24 25 26 27 28 ... 52 53

No comments

Brocade Communications Systems FCX Series User Manual Page 23