Manuals / Motorola / Computer Equipment / Network Router

Motorola S2500 manual Services to CSP Access mapping, Key entry, Reboot, Zeroization, Enable Ports

Models: S2500

1 18

Download 18 pages 22.72 Kb

Page 14

Image 14

MNR S2500 Security Policy

Version 1.3, Revision Date: 1/13/2009

CSP

Firmware Update

Key entry

User Management

IKE

Ipsec tunnel establishment

FRF.17 tunnel establishment

SSH

Reboot

Zeroization

Crypto Configuration

Network Configuration

Enable Ports

File System

Authenticated Show Status

Access Control

KEK

IKE Pre-shared

Key

SKEYID

SKEYID_d

SKEYID_a

SKEYID_e

Ephemeral DH

Phase-1 private

key

Ephemeral Phase-

2 DH private key

IPSEC Session

Keys

FRF.17 Session

Keys

SSH-RSA Private

Key

SSH-DSA Private

Key

SSH Session Keys

SSH DH Private

Key

Root Password

User(Admin)

User Accounts

RNG Seed

Table 10 – Services to CSP Access mapping

Page 14

Image 14

Motorola S2500 Services to CSP Access mapping, Key entry, Reboot, Zeroization, Enable Ports, File System, Access Control

Contents

Motorola Network Router MNR S2500 Security Policy Document Version Revision Date 1/13/2009MNR S2500 Security Policy TABLE OF CONTENTSPage Version 1.3, Revision Date 1/13/2009not included in cryptographic module boundary 1. Module OverviewOptional Interface Cards Security Requirements Section 2. Security Level3. Modes of Operation LevelNon-FIPS approved algorithms Firmware ImplementationsAllowed Algorithms Table 3 - FIPS Approved mode configuration Entering FIPS ModeSETDefault !portlist -CRYPTO CONTrol = Enabled StepSHOW -CRYPTO CONFiguration MNR S2500 Security Policy Version 1.3, Revision Date 1/13/2009Assumption of roles 5. Identification and Authentication Policy4. Ports and Interfaces The definition of all supported roles is shown in Table 5 below Unauthenticated Services 6. Access Control PolicyAuthenticated Services Admin Roles and ServicesService MaintenanceDescription/Usage Definition of Critical Security Parameters CSPsThe following CSPs are contained within the module Table 8 - Critical Security Parameters CSPsDefinition of CSPs Modes of Access Definition of Public KeysEnable Ports Table 10 - Services to CSP Access mappingReboot Access Control7. Operational Environment 8. Security Rules9. Crypto Officer Guidance 12. Definitions and Acronyms 10. Physical Security Policy11. Mitigation of Other Attacks Policy Physical Security MechanismsSNMP - Simple Network Management Protocol PFS - Perfect Forward Secrecy RNG - Random Number GeneratorSHA - Secure Hash Algorithm SSH - Secure Shell Page