PRODUCT DESCRIPTION

The TOE is a rack mounted secure access control appliance. The TOE provides remote IT support and monitoring to remote sites or local office locations via a Java enabled web browser. Common environments for use are datacenter branches and hosting/co-location facilities where network access methods, monitoring, and security are essential.

SECURITY EVALUATION SUMMARY

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Xceedium TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.3 and International Interpretations effective on 12, January 2007. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 1.0. Science Applications International Corporation (SAIC) determined that the evaluation assurance level (EAL) for the product is EAL 3 family of assurance requirements. The product, when configured as specified in the installation guides and user guides, satisfies all of the security functional requirements stated in the Xceedium GateKeeper Version 4.0 Security Target. A validator on behalf of the CCEVS Validation Body monitored the evaluation carried out by SAIC. The evaluation was completed in February 2007. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report for Xceedium GateKeeper Version 4.0 prepared by CCEVS.

ENVIRONMENTAL STRENGTHS

The Xceedium GateKeeper is a commercial IT management appliance that provides identification and authentication, audit, protection of security functions and security management.