NIAP: Compliant Product
  NIAP  »»  Product Compliant List  »»  Compliant Product  
Compliant Product - AlienVault USM for Government v4.12 and RT Logic CyberC4: Alert v4.12

Certificate Date:  2015.10.29

Validation Report Number:  CCEVS-VR-VID10548-2015

Product Type:    Network Device

Conformance Claim:  Protection Profile Compliant

PP Identifier:    Protection Profile for Network Devices Version 1.1

CC Testing Lab:  CygnaCom Solutions, Inc

CC Certificate [PDF] Security Target [PDF] Validation Report [PDF]

Assurance Activity [PDF]

Administrative Guide [PDF]

Product Description

The TOE is AlienVault’s Unified Security Management (USM) for Government v4.12.

CyberC4:Alert is an OEM version of USM for Government.  The products are identical in terms of hardware, code, functionality.  There are no differences between the two.  CyberC4:Alert is simply rebranded under RT Logic's product offerings using the same documentation for as USM for Government v4.12.

The TOE is a network appliance that provides centralized network and compliance monitoring functionality. The TOE offers network administrators with the four essential capabilities in a single platform: asset discovery, behavioral monitoring, vulnerability monitoring, and network security monitoring.

The TOE does not implement a proactive response capability and is purely a monitoring system. The TOE is capable of integrating with external security tools to create a unified monitoring solution, but such external tools are considered part of the operational environment and their use and functionality are outside the scope of this evaluation.

All TOE appliances are shipped ready for immediate access through a remote Web Interface or the local console interface. Some basic features are enabled by default. To ensure secure use, the product must be configured prior to being deployed into a production environment as specified in the user guidance.

Evaluated Configuration

The TOE ships to customers preconfigured in the evaluated configuration, and is therefore PP-compliant out of the box.

Security Evaluation Summary

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) processes and procedures. The TOE was evaluated against the criteria contained in the Common Criteria for Information Technology Security Evaluation, Version 3.1 R4.

The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 R4.

CygnaCom Solutions has determined that the product meets the security criteria in the Security Target, which specifies compliance with [U.S. Government Standard Protection Profile for Network Devices, 08 June 2012, Version 1.1]

A team of validators, on behalf of the CCEVS Validation Body, monitored the evaluation. The evaluation was completed in September 2015.

Environmental Strengths

The logical boundary of the TOE is defined by the implemented security functions:

  • Security audit (date/time, event type, subject identity, outcome of the event)
  • Cryptographic support (secure channel, random bit generation)
  • User data protection (residual information clearing)
  • Identification and authentication (RBAC structure with administrator and operator roles)
  • Security management (secure remote access to a Web Interface)
  • Protection of the TSF (cryptographically-protected connections, self-tests, timestamps)
  • TOE access (restricted to identified, authenticated, authorized users)
  • Trusted path/channels (HTTPS/TLS is used to protect remote administrative sessions)

Vendor Information

AlienVault, Inc.
Jim Hansen
Site Map              Contact Us              Home