Validated Product - McAfee Firewall Enterprise (Sidewinder) 7.0.0.02 (formerly Sidewinder 7.0.0.02)Certificate Date: 09 November 2007 Validation Report Number: CCEVS-VR-VID10089-2007 Product Type: Firewall Conformance Claim: EAL4 Augmented with ALC_FLR.3 PP Identifier: US Department of Defense Application-Level Firewall Protection Profile for Basic Robustness Environments, Version 1.0 (Archived) CC Testing Lab: SAIC Common Criteria Testing Laboratory
Maintenance Release: PRODUCT DESCRIPTIONThe Sidewinder Target of Evaluation (TOE) consists of the following software and hardware:
Note – Model TNG is also identified as the TNG(Fw), Tactical Network-Layer Gateway (Firewall) and MESHnet Firewall
The Sidewinder Security Appliance, herein called Sidewinder, is a comprehensive network security gateway designed and manufactured by Secure Computing Corporation, headquartered at 4810 Harwood Road, San Jose, CA 95124. Sidewinder consolidates a wide variety of security functions into one Unified Threat Management (UTM) system to reduce the management complexity for IT professionals. As an application-level firewall, Sidewinder employs proxy technology to scrutinize all traffic by reassembling the entire objects and looking at the application content to determine its true makeup, thus protecting against the latest attacks which often occur at the application level. Sidewinder also provides packet filtering, stateful inspection.
The Sidewinder Security Appliance line is comprised of a variety of appliance models which all include the same Sidewinder software. The full line of appliance models ranges from the small remote office and small businesses to enterprise gigabit, large business performance requirements. The appliance line also includes ruggedized offerings. Sidewinder's hardened core, the SecureOS® UNIX operating system, includes patented Type Enforcement® technology and forensic auditing facilities. This provides a secure environment for all application-layer security processing and intrusion prevention. The GUI-based management tools and access controls let organizations implement flexible, site-specific security policies. Sidewinder interoperates with a variety of third-party products, such as strong authentication products, including SafeWord® products from Secure Computing.
The Sidewinder Target of Evaluation (TOE) includes the software and hardware which enforce Information Flow policies upon all data attempting to traverse the Sidewinder appliance. These policies are configurable by an authorized administrator and are based on the presumed source and destination IP addresses, protocol, source and destination interface, and service. In addition, the administrator determines whether controls are applied at the application level or at the IP network layer of the network stack. The administrator may also require user authentication, even “strong” authentication, as a prerequisite for particular proxies. The TOE protects the user data as it flows through the appliance, preventing data leakage from one network message to another.
The Sidewinder TOE requires administrative users to identify and authenticate themselves before they are allowed to exercise administrative control over the appliance. Similarly, the TOE can require communication users (i.e. non-admin users) to authenticate prior to using specified protocols through the firewall. The TOE itself includes a multi-use password mechanism, but interoperates with commercially available single-use authentication servers to provide for strong authentication. A compatible single-use authentication server is part of the environment for the TOE.
Security Management is provided through an admin console with a graphical user interface (GUI). The GUI client software is part of the TOE and only allows authorized users to perform administrative functions. The console platform, a generic computer running a Windows OS, is part of the TOE environment and is physically protected from unauthorized users.
The Sidewinder TOE generates audit records corresponding to identification and authentication, traffic flow, changes to the security policy, and security-relevant changes to the system configuration. The TOE provides interfaces that allow the administrator to review the audit records, including the ability to search and sort audit records. The TOE also provides mechanisms to protect the audit records and to limit the loss of audit data due to storage exhaustion.
The basic integrity of the TOE system operation is provided by the Sidewinder’s Type Enforcement technology facilities which control the range of operation that can be performed by each process. The TOE provides additional protections which include the use of a two state processing model to limit privileged instructions to the SecureOS kernel, separation of process address spaces, and a system clock managed by the administrator for reliable audit timestamps. The TOE includes a separate administrative interface that is not connected to the managed networks and, thus, is immune from general network attacks.
SECURITY EVALUATION SUMMARYThe evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Sidewinder TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.2 and International Interpretations effective on April 5, 2005. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 1.0. Science Applications International Corporation (SAIC) determined that the evaluation assurance level (EAL) for the product is EAL 4 augmented with ALC_FLR.3. The product, when configured as identified in the Common Criteria Evaluated Configuration Guide, 86-0947005-B, July 2007 and Sidewinder v7.0 Startup Guide, SWOP-MN-STRT70-A, March 2007 documents, satisfies all of the security functional requirements stated in the Sidewinder Version 7.0.0.02 Security Target (Version 00-0944961-I). One validator on behalf of the CCEVS Validation Body monitored the evaluation carried out by SAIC and the project underwent two Validation Oversight Review (VOR) panel reviews. The evaluation was completed in September 2007. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report, (report number CCEVS-VR-VID10089-2007, dated 9 November 2007) prepared by CCEVS. ENVIRONMENTAL STRENGTHSThe Sidewinder Security Appliance is a commercial network product that provides identification and authentication, information flow control, and audit capabilities. Compliance with the U.S. DoD Application-Level Firewall Protection Profile demonstrates that Sidewinder provides a level of protection that is appropriate for U. S. Government organizations and others that handle unclassified information in low risk environments. Sidewinder fits within an organization’s overall security defense by isolating internal networks from the Internet or other external networks. The Sidewinder Security Appliance and its administrative console must be appropriately protected from physical attacks within these environments. Vendor Information
McAfee, Inc. (Formerly Secure Computing Corporation) Dwight Colby 651-628-1571 651-628-2701 (Fax) dwight_colby@mcafee.com |
![[X]](/assets/images/button_close.gif){kind=small}
![[PDF]](http://www.niap-ccevs.org:80/assets/images/icon_pdf.gif){kind=icon}