NIAP: Compliant Product
NIAP/CCEVS
  NIAP  »»  Product Compliant List  »»  Compliant Product  
Compliant Product - Raritan Secure KVM Switch Series (model RSS-102, RSS-102C, RSS-104, RSS-104C)

Certificate Date:  2018.02.13

Validation Report Number:  CCEVS-VR-VID10865-2018

Product Type:    Peripheral Switch

Conformance Claim:  Protection Profile Compliant

PP Identifier:    Protection Profile for Peripheral Sharing Switch Version 3.0

CC Testing Lab:  Leidos Common Criteria Testing Laboratory


CC Certificate [PDF] Security Target [PDF] Validation Report [PDF]

Assurance Activity [PDF]

Administrative Guide [PDF]


Product Description

The Raritan Secure KVM Switch products allow for the connection of a mouse, keyboard, user authentication device such as smart card or CAC reader (optional), speaker, and a video display, which is then connected to 2, or up to 4 separate computers (depending on specific TOE device type). The user can then switch the connected peripherals between any of the connected computers using a push button on the front of the device. The selected device is always identifiable by a green LED associated with the applicable selection button.

The TOE is the following models of the Raritan Secure KVM Switch Series.

Table 1 Raritan Secure KVM Switch Series TOE Models

TOE Model

Ports

Interfaces

RSS-102

2

Dual Link DVI-I, USB Keyboard, USB mouse, Analog Audio output (ex: Speaker), Switch Buttons, LED indicators, Power Switch and Reset Button.

RSS-104

4

Dual Link DVI-I, USB Keyboard, USB mouse, Analog Audio output (ex: Speaker), Switch Buttons, LED indicators, Power Switch and Reset Button.

RSS-102C

2

Dual Link DVI-I, USB Keyboard, USB mouse, Analog Audio output (ex: Speaker), USB CID/CAC, Switch Buttons, LED indicators, Power Switch and Reset Button.

RSS-104C

4

Dual Link DVI-I, USB Keyboard, USB mouse, Analog Audio output (ex: Speaker), USB CID/CAC, Switch Buttons, LED indicators, Power Switch and Reset Button.


Evaluated Configuration


Security Evaluation Summary

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Raritan Secure KVM Switch Series devices were judged are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 4.  The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 rev 4.   The product satisfies all of the security functional requirements stated in the Raritan Secure KVM Switch Series Security Target, version 0.6, October 24, 2017, when delivered and configured as identified in the product documentation listed in the aforementioned security target.

The evaluation underwent CCEVS Validator review.  The evaluation was completed in February 2018.  Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report prepared by CCEVS.


Environmental Strengths

Raritan Secure KVM Switch series devices enforce the following TOE security functional policies as specified in the ST.

Security Audit

The TOE generates audit records for the authorized administrator actions. Each audit record records a standard set of information such as date and time of the event, type of event, subject identity (if applicable), and the outcome (success or failure) of the event.

User Data Protection

The TOE controls and isolates information flowing between the peripheral device interfaces and a computer interface.  The peripheral devices supported include keyboard, DVI-I, mouse, audio out, and CAC. 

The TOE authorizes peripheral device connections with the TOE console ports based on the peripheral device type. 

The TOE ensures that any previous information content of a resource is made unavailable upon the deallocation of the resource from a TOE computer interface immediately after TOE switch to another selected computer; and on start-up of the TOE.

Identification and Authentication

The TOE provides an identification and authentication function for the administrative user to perform administrative functions such as configuring the user authentication (CDF) whitelist and blacklist. The authorized administrator must logon by providing a valid password.  The logon function provides authentication failure handling.    

Security Management

The TOE supports configurable device filtration. This function is restricted to the authorized administrator and allows the TOE to be configured to accept or reject specific USB devices using CDF whitelist and blacklist parameters.  Additionally, the TOE provides security management functions to Reset to Factory Default and to change the administrator password.

Protection of the TSF

The TOE runs a suite of self-tests during initial startup and activating the reset button that includes a test of the basic TOE hardware and firmware integrity; a test of the basic computer-to-computer isolation; and a test of critical security functions (i.e., user control and anti-tampering).  The TOE provides users with the capability to verify the integrity of the TSF and the TSF functionality.

The TOE resists physical attacks on the TOE enclosure for the purpose of gaining access to the internal components, or to damage the anti-tampering battery by becoming permanently disabled.  The TOE preserves a secure state by disabling the TOE when there is a failure of the power on self-test, or a failure of the anti-tampering function.

The TOE provides unambiguous detection of physical tampering that might compromise the TSF.  The TSF provides the capability to determine whether physical tampering with the TSF's devices or TSF's elements has occurred.  

TOE Access

The TOE displays a continuous visual indication of the computer to which the user is currently connected, including on power up, and on reset.


Vendor Information

Logo
Raritan, Inc.
Richard Dominach
(732) 764-8886
(732) 764-8887
Richard.Dominach@raritan.com

http://www.raritan.com/
Site Map              Contact Us              Home