Product Name: Lucent Managed Firewall,
v 4.0, Build 199

Product Type: Firewall

Date: February 2000

Conformance Claim: EAL 2

PP Identifier: U.S. Government Traffic-filter
Firewall Protection Profile for Low Risk
Environments, Version 1.1

Security Target:

Validation Report:

Key Words: firewall

Vendor: Lucent Technologies

POC:

Phone:

Fax:

Email:

Web:

CC Testing Lab: Computer Sciences Corporation

PRODUCT DESCRIPTION:

The purpose of the Lucent Managed Firewall is to provide controlled and audited access to specific Internet Protocol (IP) services, both from inside and outside an organization's network, by allowing, denying, and/or redirecting the flow of data through the firewall. The Lucent Managed Firewall selectively routes information flows among internal and external networks according to a site's security policy rules. By default, these security policy rules deny all inbound information flows. Only an authorized administrator has the authority to change the security policy rules. The Lucent Managed Firewall has the ability to make filtering decisions based on the source IP address, destination IP address, transport layer protocol, source port, destination port, and on the interface on which the packet arrives or goes out.

A Lucent Managed Firewall System Administrator configures the networking parameters of the firewall and creates Zone Administrator accounts. One or more Zone Administrators implement the site's security policies by defining a set of rules within their security zone. Each security zone is then applied to a physical network interface or to a contiguous range of IP addresses processed by the physical network interface. In this manner, a single Lucent Managed Firewall can enforce multiple, separately managed security policies.

The Lucent Managed Firewall provides controlled and centralized auditing functionality through a management server. All audit records are stamped with a dependable date and time. Auditable events include, but are not limited to, modifications to the group of users associated with the authorized administrator role, all use of the identification and authentication mechanisms, and all information flow control decisions made by the Lucent Managed Firewall according to the security policy rules. The Lucent Managed Firewall includes a reporting tool that allows real time reporting and searching and sorting of the collected audit trail data. The firewall can be configured to halt traffic should the audit trail become full on the management server.

The Lucent Managed Firewall architecture consists of two physically distinct components: the firewall appliance, which controls the flow of traffic between network interfaces; and the Security Management Server, which allows the System Administrators and Zone Administrators to manage the firewall appliance. The firewall function is physically separated from its management server, with the firewall code running on Inferno(TM), a Bell Labs-developed operating system. The evaluated Lucent Managed Firewall Security Management Server runs on the Windows NT(TM) platform. A non-evaluated version of the Security Management Server is available for the Sun Solaris Operating System.

EVALUATION SUMMARY

The evaluation was carried out in accordance to the Trust Technology Assessment Program (TTAP) process and scheme. The purpose of the evaluation was to demonstrate that the Lucent Managed Firewall Version 4.0 meets the security requirements contained in the Security Target. The criteria against which the Lucent Managed Firewall Version 4.0 was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.0. The evaluation methodology used the the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 0.6. Computer Science Corporation has determined that the Security Target is conformant to the U.S. Government Traffic-Filter Firewall Protection Profile for Low Risk Environments, Version 1.1. In addition, Computer Sciences Corporation has determined that the evaluation assurance level (EAL) for the product, as specified in the Security Target, is EAL2 and the product configured as described in the Lucent Managed Firewall Version 4.0, Delivery, Installation, Generation, and Startup Procedures satisfies all the security functional requirements stated in the Security Target. Two certifiers on behalf of the TTAP Oversight Board monitored the evaluation carried out by Computer Sciences Corporation. The evaluation was completed in February 2000. Results of the evaluation can be found in the Evaluation Technical Report Lucent Technologies Lucent Managed Firewall Version 4.0 prepared by Computer Sciences Corporation.

ENVIRONMENTAL STRENGTHS

It is assumed the Lucent Managed Firewall is located within a controlled access facility that mitigates unauthorized, physical access and the Lucent Managed Firewall is only used for firewall functionality. The Lucent Managed Firewall administrator is the only person allowed access to the Lucent Managed Firewall; there are no non-administrative accounts on the Lucent Managed Firewall. The administrator is assumed to be trustworthy and trained on security policies and practices of the environment for which the Lucent Managed Firewall is intended to protect. The Lucent Managed Firewall is intended to be used either in environments in which, at most, sensitive but unclassified information is processed, or the sensitivity level of the information in both the internal and external networks is equivalent (i.e., the Lucent Managed Firewall is not intended to separate information of different classification levels).