Validated Product - CA Access Control for Windows r8

PRODUCT DESCRIPTION

CA Access Control for Windows r8 is a security management application that regulates access to the assets, such as documents, executables and registry keys, stored on a computer by providing policy-based control of who can access specific resources, what they can do within them, and when they are allowed access. CA Access Control allows management of user privileges and supports deployment of security policies to control access to selected resources on native operating systems. Policies can be created, managed, and distributed on an enterprise-wide basis, or customized to meet the security requirements of specific applications.

EVALUATED CONFIGURATION

The evaluated configuration of the TOE is specified as the following:

• Host Platform: eTrust Access Control for Windows r8 running on Microsoft Windows 2000 Server SP4 or on Microsoft Windows XP Professional Version 2002 SP2 with a locally connected monitor/terminal.

The TOE test configuration consisted of two machines: The CA Access Control Server and a second workstation that was used for testing remote access of the files residing on the CA Access Control Server. The two machines were configured and pre-loaded with the IT environment software before the TOE installation as follows:

CA Access Control Server

• Hardware:
  • Intel Pentium 4 Processor
  • 3.39 GHz, 2 GB of RAM
  • Physical Address Extension
• Software:
  • Windows XP Professional Version 2002 SP2

Remote Access Workstation

• Hardware:
  • Intel Pentium III Processor
  • 747 MHz, 256 MB of RAM
• Software:
  • Windows XP Professional Version 2002 SP2

The two machines had a direct connection using a communications cable between the two computers.

SECURITY EVALUATION SUMMARY

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) processes and procedures. CA Access Control for Windows r8 was evaluated against the criteria contained in the Common Criteria for Information Technology Security Evaluation, Version 2.2. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.2. CygnaCom Solutions has determined that the product meets the security criteria in the Security Target, which specifies an assurance level of EAL3. A validator, on behalf of the CCEVS Validation Body, monitored the evaluation. The evaluation was completed in April 2007.

ENVIRONMENTAL STRENGTHS

The evaluated configuration of the TOE is specified as the following:

• Host Platform: eTrust Access Control for Windows r8 running on Microsoft Windows 2000 Server SP4 or on Microsoft Windows XP Professional Version 2002 SP2 with a locally connected monitor/terminal.

The TOE test configuration consisted of two machines: The CA Access Control Server and a second workstation that was used for testing remote access of the files residing on the CA Access Control Server. The two machines were configured and pre-loaded with the IT environment software before the TOE installation as follows:

CA Access Control Server

• Hardware:
• Intel Pentium 4 Processor
• 3.39 GHz, 2 GB of RAM
• Physical Address Extension
• Software:
• Windows XP Professional Version 2002 SP2

Remote Access Workstation

• Hardware:
• Intel Pentium III Processor
• 747 MHz, 256 MB of RAM
• Software:
• Windows XP Professional Version 2002 SP2

The two machines had a direct connection using a communications cable between the two computers.