Validated Product - Cybex SwitchView SC Series SwitchesCertificate Date: 30 January 2008 Validation Report Number: CCEVS-VR-VID10250-2008 Product Type: Peripheral Switch Conformance Claim: EAL4 Augmented with ALC_FLR.2 PP Identifier: Peripheral Sharing Switch for Human Interface Devices Protection Profile, Version 1.0 (Archived) CC Testing Lab: Computer Sciences Corporation
Maintenance Releases:
PRODUCT DESCRIPTIONThe TOE, called the Peripheral Sharing Switch (PSS), or simply switch, permits a single set of human interface devices, keyboard, video, mouse, audio, to be shared among two or more computers. Users who access various networks from one set of peripherals can rely on the SwitchView SC series of switches’ unique architecture to keep their private data separate. There is no software to install or boards to configure. Various models of the SwitchView SC series of switches work with IBM PC/AT, PS/2 and Sun systems with support for VGA and DVI-I video as well as audio (speakers and microphone). PS/2 or USB keyboard and mouse peripherals are supported through the rear of the unit. Each switch has either a single “select” button that allows the user to cycle through the available computer channels, or a “select” button associated with each specific port. SECURITY EVALUATION SUMMARYThe evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The evaluation demonstrated that the product meets the security requirements contained in the Security Target. The criteria against which the Cybex SwitchView SC 4-port (Models 520-147-004, 520-147-005, 520-147-505), SC 8-port (Models 520-319-003, 520-319-503), SC8 DVI (Models 520-446-001, 520-446-501), SC4 UAD (Models 520-456-502, 520-456-504, 520-456-506), SC4 PDV (Models 520-457-501, 520-457-502) were judged as described in the Common Criteria for Information Technology Security Evaluation, Version 2.3. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.3. Computer Sciences Corporation determined that the evaluation assurance level (EAL) for the product is EAL 4+. The product satisfies all of the security functional requirements stated in the Security Target. A validator, on behalf of the CCEVS Validation Body, monitored the evaluation carried out by Computer Sciences Corporation. The evaluation was completed in December 2007. Results of the evaluation can be found in the Evaluation Technical Report for a Target of Evaluation for Cybex SwitchView SC 4-port, SC 8-port, SC8 DVI, SC4 UAD, SC4 PDV Switches prepared by Computer Sciences Corporation. ENVIRONMENTAL STRENGTHSThe TOE provides the following security features: Data Separation (TSF_DSP): Signals processed by the TOE are keyboard data, mouse data, keyboard LED data, Data Display Channel information, analog video signals and USB status. Specific versions of the TOE accommodate subsets of the listed signals to support popular types of computers. In all cases, the TOE ensures data separation for all signal paths using both hardware and firmware. The basic arrangement of the microprocessors used for keyboard and mouse data ensures data separation in hardware by physical separation of the microprocessors connected to the user’s peripheral devices from the microprocessors connected to the attached computers. In operation, the main processor moves data received from the shared keyboard and mouse to the microprocessor corresponding to the selected computer. The processor dedicated to the selected computer sends data to the computer. Separation is ensured in hardware by use of separate microprocessors for each of the computers and for the shared user peripheral devices. Separation in firmware is ensured by firmware design consisting of fixed polling loops, dedicated functions and static memory assignment with no third-party library functions or multitasking executives. This basic design results in a straightforward implementation suitable for independent verification to provide assurance of data separation. In operation the TOE is not concerned with the content of user information flowing between the shared peripherals and the switched computers. It only provides a single logical connection between the shared peripheral group and the one selected computer supporting the Data Separation Security Functional Policy – “the TOE shall allow peripheral data and state information to be transferred only between peripheral port groups with the same ID.” The TOE interfaces ensure that confidentiality of information is not violated by isolating signals electrically and through firmware modules that ensure that information is passed only between the user peripherals and the selected computer. Keyboard LED status for each computer is stored by the processor associated with each computer. The TOE does not have software to install, or boards to configure. The logic contained within the TOE is protected from unauthorized modification through the use of discrete components. Security Management (TSF_MGT): The TOE allows for the connected computers to be powered-up all-at-once or one at a time. The green LEDs over each channel will light, indicating that the attached computer is powered on. To select or switch computers, the TOE provides port-specific switches, that allow(s) the human user to explicitly determine to which computer the shared set of peripherals is connected. This connection is visually displayed by an amber LED over the selected channel. |
![[X]](/assets/images/button_close.gif){kind=small}
![[PDF]](http://www.niap-ccevs.org:80/assets/images/icon_pdf.gif){kind=icon}
