Validated Product - Enterasys Dragon-EALT Intrusion Defense System Version 1.0Certificate Date: 30 August 2004 Validation Report Number: CCEVS-VR-04-0075 Product Type: IDS/IPS Conformance Claim: EAL2 PP Identifier: Intrusion Detection System System Protection Profile, Version 1.4 (Archived) CC Testing Lab: Arca CCTL PRODUCT DESCRIPTIONThis TOE is the Dragon-EALT Intrusion Defense System (IDS), a self-contained appliance manufactured by Enterasys Networks. The TOE is an Intrusion Detection System, which uses scanners and sensors to collect information about target systems and/or networks, and an analyzer component to support interpretation of the data and initiate actions in response to its findings. The TOE provides integrated network and host intrusion detection. It supports monitoring of routers, switches, firewalls, applications, web servers, the appliance itself, and other intrusion detection products. The Host Sensor monitors activity on the TOE, collecting information about events. The Network Sensor collects network packets from configured network connections. The data collected is processed by analyzer functions. Analysis methods include pattern matching, protocol decoding, and anomaly detection. TOE users called analysts access the collected and interpreted data to do forensic and trending analysis. The Dragon Enterprise Management System (EMS) provides policy management and centralized management of monitoring data collection and analysis. It provides high visibility into the state of the network and historical forensics. The reporting system provides executive-level reporting with summarized, printable network security reports for easy interpretation.
|
![[X]](/assets/images/button_close.gif){kind=small}
![[PDF]](http://www.niap-ccevs.org/assets/images/icon_pdf.gif){kind=icon}
