Security Target, Version 3.9

March 18, 2008

 

 

5.1.4 Class FIA: Identification and Authentication

FIA_UAU.1 Timing of authentication

Hierarchical to: No other components.

FIA_UAU.1.1

The TSF shall allow [

oconnection configuration, o username entry,

o password entry,

o destination selection,

o authentication options (digital certificates, username, password), o keepalive options,

o autoconnect,

o name server options

] on behalf of the user to be performed before the user is authenticated.

FIA_UAU.1.2

The TSF shall require each user to be successfully authenticated before allowing any other TSF-mediated actions on behalf of that user.

Dependencies: FIA_UID.1 Timing of identification

FIA_UAU.5 Multiple authentication mechanisms

Hierarchical to: No other components.

FIA_UAU.5.1

The TSF shall provide [username and password (for administrators), RSA Digital Certificates] to support user authentication.

FIA_UAU.5.2

The TSF shall authenticate any user’s claimed identity according to the [configurations as defined by administrators and these configurations include:

oUsername and Password (for administrators) o RSA Digital Certificates].

Dependencies: No dependencies

FIA_UID.2 User identification before any action

Hierarchical to: FIA_UID.1

FIA_UID.2.1

Nortel VPN Router v7.05 and Client Workstation v7.11

Page 31 of 67

© 2008 Nortel Networks

 

Page 31
Image 31
Nortel Networks 7.11, 7.05 manual Class FIA Identification and Authentication, FIAUAU.1 Timing of authentication