Security Target
Version 1.1
2022-03-08
36
by both Keyboard/ Mouse Ports. The Reset KVM to Default function will clear the blacklist created by the
Secure KVM administrator functions.
The TOE emulates data from authorized USB Keyboard and Mouse protocol interfaces to USB connected
computers.
6.2.5
FDP_FIL_EXT.1/UA
–
Device Filtering (User Authentication Devices)
All TOE Secure KVM Switch models support configurable USB authentication device (CAC reader and smart
card) peripheral devices.
The authorized user authentication devices are identified using whitelist and the TOE allows blacklist
configuration for user authentication device profiling (filtering). The KVM includes a built-in default
whitelist for USB CAC Port, as to allow only authentication devices (e.g. Smartcard/CAC reader). This built-
in default whitelist cannot be deleted or revised.
The TOE provides Administrator Functions that include CDF configuration. Administrators can use the
Configuration Menu to Configure CAC filters. Configuration options are limited to allowing or blocking
currently connected device on all ports; and resetting the Admin CAC Allow and Block lists. The blacklist
and whitelist defined by this function always supersedes the filtering list created by the Port
Authentication Utility.
The Port Authentication Utility tool is used to define or modify a whitelist and/or blacklist for the TOE.
The Port Authentication Utility is installed on a secure source computer using an installation Wizard. This
secure source computer is for management only, and has its own monitor, keyboard, and mouse
connected for installation and operation.
The Port Authentication Utility has its own default password and like the password for the TOE
Administrator Logon function should be changed after first logon. Guidance instructs the administrator
not to use the same password as was used for the TOE Administrator Logon functions.
After the secure source computer is connected to the TOE and the authorized administrator has
authenticated to the utility, the administrator uses the utility GUI commands to configure the filter list. A
filtering rule is defined by USB (Base) Class ID, Sub-Class, Protocol, VID (Vendor ID) and PID (Product ID)
of a USB device. For example, a Base Class ID of a Smart Card device is 0Bh. By completing the Class ID,
Sub-Class, Protocol, VID and PID field of a filtering rule, the administrator can assign this filtering rule to a
blacklist or to a whitelist to block or allow a device. Four digit PID values are required. A wildcard character
asterisk “*” can be used in the PID field to represent one or more other characters. For example, the PID
filtering rule (5***) would include all the devices whose PID starts with a 5.
After configuring the filter list, the administrator then logs onto the TOE and the filter list is uploaded to
the Secure KVM TOE. The updated Filtering list will take effect after removing the Secure KVM from the
installation and performing a power cycle the Secure KVM. The Secure KVM allows or blocks USB devices
on the USB CAC Port based on the updated blacklist/whitelist.
Whitelist/blacklist interaction and priority is as follows. The blacklist and whitelist defined by
Administrator Functions (Configuration Menu) always supersedes the default blacklist and whitelist
filtering lists created by the Port Authentication Utility. For example, if a device was by default blacklisted
by the Port Authentication Utility, it will be allowed if it has been whitelisted by Administrator-defined list.