Security Requirements for the IT Environment
Appendix
A
Common Criteria Environment: Security Requirements
673
FMT_MTD.1.1
The IT environment shall restrict the ability to view (read) or
delete the audit logs to Auditors.
FMT_SMR.2 Restrictions on security roles
FMT_SMR.2.1
The IT environment shall maintain the roles: Administrator,
Auditor, and Officer.
FMT_SMR.2.2
The IT environment shall be able to associate users with roles.
FMT_SMR.2.3
The IT environment shall ensure that:
1.
no identity is authorized to assume both an Administrator and an Officer role;
2.
no identity is authorized to assume both an Auditor and an Officer role; and
3.
no identity is authorized to assume both an Administrator and an Auditor role.
Protection of the TSF (FPT)
FPT_AMT.1 Abstract machine testing
FPT_AMT.1.1
The IT environment shall run a suite of tests [other conditions:
during initial start-up, periodically during normal operation, or at the request of
an authorized user
] to demonstrate the correct operation of the security
assumptions provided by the abstract machine that underlies the IT environment.
FPT_ITC.1 Inter-TSF confidentiality during transmission (iteration 1)
FPT_ITC.1.1
The IT environment shall protect confidential IT environment data
transmitted from the
IT environment to a remote trusted IT product from unauthorized disclosure
during transmission.
NOTE
The role definitions are listed below:
1.
Administrator – role authorized to install, configure, and
maintain the CIMC; establish and maintain user accounts;
configure profiles and audit parameters; and generate
Component keys.
2.
Officer – role authorized to request or approve certificates or
certificate revocations.
3.
Auditor – role authorized to view and maintain audit logs.
Содержание Certificate Management System 6.1
Страница 1: ...Administrator s Guide Netscape Certificate Management System Version6 1 February 2003...
Страница 28: ...Documentation 28 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 68: ...Support for Open Standards 68 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 82: ...Uninstalling CMS 82 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 166: ...How a Registration Manager Works 166 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 382: ...ACL Reference 382 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 566: ...Managing Policy Plug in Modules 566 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 710: ...1 3 Organization Security Policies 710 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 716: ...Object Identifiers 716 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 762: ...DNs in Certificate Management System 762 Netscape Certificate Management System Administrator s Guide February 2003...
Страница 794: ...Managing Certificates 794 Managing Servers with Netscape Console December 2001...
Страница 810: ...The SSL Handshake 810 Managing Servers with Netscape Console December 2001...
Страница 828: ...828 Netscape Certificate Management System Administrator s Guide February 2003...