Validated Product - Sun Java System Identity ManagerCertificate Date: 24 August 2005 Validation Report Number: CCEVS-VR-05-0117 Product Type: IDS/IPS Conformance Claim: EAL2 PP Identifiers: None CC Testing Lab: CygnaCom Solutions, Inc
PRODUCT DESCRIPTIONThe TOE is Sun Java™ System Identity Manager, which is a server application that provides password management, automated user provisioning, and identity data synchronization capabilities in a single, converged solution. Identity Manager allows system administrators to leverage a consistent interface for updating user accounts and configuration information across many target systems, including all of the leading operating systems, databases, directories, enterprise business applications, security managers, and access management systems. With role and rule based provisioning, this solution automates the activities associated with granting, managing, and revoking user access privileges. The main security service provided by Sun Java™ System Identity Manager is to manage user identities. The Identity Manager server maintains information on users and the resources they can access using the Virtual Identity Manager (VIM). This enables the collection of key information on managed accounts, without duplicating the entire account back to a private, centralized repository. The data-sparse model helps ensure the security of the identity management process by lessening the requirement for data synchronization as the data stays in the native format. The Identity Manager Administrator Interface provides a single web-based interface for authorized administrators to grant, manage, and revoke user access privileges. Sun Java™ System Identity Manager provides the following security functions:
The evaluated configuration includes the following:
The TOE includes the Identity Manager Server and the Administrator/User Interface. SECURITY EVALUATION SUMMARYThe evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) processes and procedures. Sun Java™ System Identity Manager was evaluated against the criteria contained in the Common Criteria for Information Technology Security Evaluation, Version 2.2. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.2. CygnaCom Solutions has determined that the product meets the security criteria in the Security Target, which specifies an assurance level of EAL2. A validator, on behalf of the CCEVS Validation Body, monitored the evaluation. The evaluation was completed in August 2005. ENVIRONMENTAL STRENGTHSSun Java™ System Identity Manager (IDM) is an identity management system that enables authorized administrators to securely and efficiently manage access to accounts and resources. Identity Manager is a server application that provides a consistent interface for system administrators to update user account and other configuration information in many target systems of various kinds. |
![[X]](/assets/images/button_close.gif){kind=small}
![[PDF]](http://www.niap-ccevs.org:80/assets/images/icon_pdf.gif){kind=icon}
