Validated Product - Lucent Technologies Lucent VPN Firewall (LVF) version 7.2 with patch 292

Certificate Date: 19 January 2006

Validation Report Number: CCEVS-VR-06-0005

Product Type: Firewall

Conformance Claim: EAL4

PP Identifiers: None

CC Testing Lab: Arca CCTL

CC Certificate [PDF]
Security Target [PDF]
Validation Report [PDF]

PRODUCT DESCRIPTION

The LVF is a traffic-filter firewall with management software. A traffic-filter firewall controls the flow of Internet Protocol (IP) packets by matching information contained in IP and upper layer headers against a set of rules specified by the firewall’s administrator. This header information includes source and destination host IP addresses, source and destination port numbers, and upper level protocol identifier (for Transmission Control Protocol (TCP) or user datagram protocol (UDP), e.g.). Depending upon the rule and the results of the match, the firewall either passes or drops the packet. In addition to protocol header information, traffic-filter firewalls use other information, such as the direction (incoming or outgoing) of the packet on a given firewall interface.

The following features of the LVF are validated in the Common Criteria evaluation:

  • Stateful Packet filtering: Every packet processed by the FA is considered part of a “session”, regardless of IP type or upper-layer protocol instead of processing each and every packet individually.
  • Logging: All logging is done in real-time from the FA to its management server (LSMS application). Apart from the logging events on the FAs the LSMS application also logs administrative events and user authentication events.
  • Policy objects: LSMS resources are divided into groups where each group contains sets of resources. Enterprises can use a single group or multiple LSMS Groups.
  • Reporting: The LSMS application has the ability to generate HTML-based reports and serve them via its own internal secure web server (HTTPS)
  • Remote administration: An LSMS application can manage multiple FAs that are located remotely in a secure manner. An LSMS Remote Navigator can manage an LSMS application remotely in a secure manner.

The physical TOE components include:

  • The LSMS software package consists of the LSMS Software Application, LSMS Command Line Interface and the LSMS Navigator.
  • One or more Firewall Appliances along with the FA operating system, the NICs on Firewall Appliance, and the firewall application software that runs on the FA hardware, and
  • One or more LSMS Remote Navigators.  

The TOE Environment is required to include the following components, which are not part of the TOE:

  • The host machines and the operating systems for the LSMS Remote Navigator and LSMS software package;
  • The NICs on the LSMS host and LSMS Remote Navigator hosts;
  • Following Operating Systems are supported:
    • Windows 2000 Professional and Service Pack 2 or higher,
    • Windows 2000 Server and Service Pack 2 or higher,
    • Windows XP Professional and Service Pack 1,
    • Windows Server 2003, or
    • Solaris 2.9

The IT environment provides these supporting functions that are leveraged by the TOE:

  • Management of TSF Data;
  • Reliable Time Stamps; and
  • Protected Audit Trail Storage.

SECURITY EVALUATION SUMMARY

None

ENVIRONMENTAL STRENGTHS

None

Vendor Information

logo
Lucent Technologies, Inc.
Paul Fowler
732.949.8503 (Fax)
pfowler@lucent.com

http://www.lucent.com