Cisco 4503-E - Catalyst Data Bundle Switch, Manual

Page: 86 / 88

Cisco Cat4K NDPP ST 11 March 2014
EDCS-1228241
86
O
.PR
O
TE
C
TE
D
_C
O
MM
U
N
IC
A
TION
S
O
.V
ER
IFIAB
LE
_U
PD
A
TE
S
O
.SY
ST
EM_MON
ITO
R
IN
G
O
.D
ISP
LA
Y
_B
A
N
N
ER
O
.TO
E_A
D
MI
N
IST
R
A
TI
O
N
O
.R
ES
ID
U
A
L_INF
O
R
MAT
IO
N
_C
LE
A
R
IN
G
O
.R
ES
O
U
R
C
E_A
V
A
ILA
B
ILITY
O
.SE
SS
IO
N
_LO
C
K
O
.TS
F_S
EL
F_T
ES
T
FRU_RSA.1
X
FTA_SSL_EXT.1
X X
FTA_SSL.3
X X
FTA_TAB.1
X
FTP_ITC.1(1)
X
FTP_ITC.1(2)
X
FTP_TRP.1(1)
X
FTP_TRP.1(2)
X
Table 26: Objectives to Requirements Rationale
Objective Rationale
Security Functional Requirements Drawn from Security Requirements
for NDPP
O.PROTECTED_COMMUNICA
TIONS The SFRs, FAU_STG_EXT.3, FCS_CKM.1,
FCS_CKM_EXT.4, FCS_COP.1(1), FCS_COP.1(2),
FCS_COP.1(3), FCS_COP.1(4), FCS_RBG_EXT.1,
FCS_COMM_PROT_EXT.1, FCS_IPSEC_EXT.1,
FCS_SSH_EXT.1, FPT_ITT.1(1), FPT_ITT.1(2),
FPT_PTD.1(1), FPT_PTD.1(2), FPT_RPL.1,
FTP_ITC.1(1), FTP_ITC.1(2), FTP_TRP.1(1),
FTP_TRP.1(2) meet this objective by ensuring the
communications between the TOE and endpoints are
secure by implementing the encryption protocols as
defined in the SFRs and as specified by the RFCs.
O.VERIFIABLE_UPDATES The SFRs, FPT_TUD_EXT.1, FCS_COP.1(2),