Aruba 620 Specifikace stáhnout pdf (Strana 24)

Security Target Version 1.0 9/29/2014

24

Requirement Auditable Events

Additional Audit

Record Content

Guidance Notes

FCS_CKM.1(2)

Failure of the key

generation activity.

None

See [SYSLOG] message ID

103094

FCS_CKM.2(1)

Failure of the key

generation activity.

None

See [SYSLOG] message ID

524143

FCS_CKM.2(2)

Failure of the key

distribution activity,

including failures related to

wrapping the GTK.

Identifier(s) for intended

recipients of wrapped

key.

See [SYSLOG] message ID

124866

FCS_CKM_EXT.4

Failure of the key

zeroization process.

Identity of subject

requesting or causing

zeroization, identity of

object or entity being

cleared.

N/A for this TOE. It is not

possible for key zeroization to

fail without a fatal kernel crash

occurring.

FCS_COP.1(1)

Failure of encryption or

decryption.

Cryptographic mode of

operation,

name/identifier of object

being

encrypted/decrypted.

N/A. TOE does not implement.

FCS_COP.1(2)

Failure of cryptographic

signature.

Cryptographic mode of

operation,

name/identifier of object

being signed/verified.

See [SYSLOG] message ID

103097, 103098, 103099,

103100

FCS_COP.1(3)

Failure of hashing function.

Cryptographic mode of

operation,

name/identifier of object

being hashed.

See [SYSLOG] message ID

103096

FCS_COP.1(4)

Failure in Cryptographic

Hashing for Non-Data

Integrity.

Cryptographic mode of

operation,

name/identifier of object

being hashed.

See [SYSLOG] message ID

103095

FCS_COP.1(5)

Failure of WPA2

encryption or decryption.

Cryptographic mode of

operation,

name/identifier of object

being

encrypted/decrypted,

non-TOE endpoint of

connection (IP address).

N/A. TOE does not implement.

FCS_HTTPS_EXT.1

Protocol failures.

Establishment/Termination

of a HTTPS session.

Reason for failure.

Non-TOE endpoint of

connection (IP address)

for both successes and

failures.

See [SYSLOG] message ID

125022

See [SYSLOG] – Security -

Warnings

FCS_IPSEC_EXT.1

Protocol failures.

Establishment/Termination

of an IPsec SA.

Negotiation “down” from

an IKEv2 to IKEv1

exchange.

Reason for failure.

Non-TOE endpoint of

connection (IP address)

for both successes and

failures.

See [SYSLOG] message ID

103001 through 103092

See [SYSLOG] message ID

103009, 103077

No “negotiation down” in IKE is

possible, so no audit message is

provided.

FCS_RBG_EXT.1

Failure of the

randomization process.

None

See [SYSLOG] message ID

303087, 303088, 303090.

1 2 ... 19 20 21 22 23 24 25 26 27 28 29 ... 92 93

Komentáře k této Příručce

Žádné komentáře