Compliant Product - FireEye VX Series Appliances v9.0
Certificate Date:
2021.05.27
CC Certificate Validation Report Number: CCEVS-VR-VID11131-2021 Product Type: Network Device Conformance Claim: Protection Profile Compliant PP Identifier: collaborative Protection Profile for Network Devices Version 2.2e CC Testing Lab: Acumen Security ![]() ![]() ![]() Assurance Activity ![]() Administrative Guide ![]()
Product Description
The TOE is comprised of one of the three models of the FireEye VX Series Appliances as shown below.
Table 1 VX Series Appliances The TOE is a hardware and software solution that is comprised of the security appliance models described above. The TOE guidance documentation that is considered to be part of the TOE is the FireEye VX Series Appliances v9.0 Common Criteria Guidance Addendum document and is downloadable from the FireEye website. The network on which the TOE resides is considered part of the environment. The software is pre-installed and is comprised of only the software versions identified above. In addition, software updates are downloadable from the FireEye website. A login ID and password is required to download the software update.
Evaluated Configuration
Security Evaluation Summary
The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the FireEye VX Series Appliances was evaluated are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 5. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 rev 5. The product, when delivered configured as identified in the FireEye VX Series Appliances v9.0 Common Criteria Guidance Addendum, satisfies all of the security functional requirements stated in the FireEye VX Series Appliances Security Target. The project underwent CCEVS Validator review. The evaluation was completed in May 2021. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report prepared by CCEVS.
Environmental Strengths
o TLS connectivity with the following entities: § Audit Server o SSH connectivity with the following entities: § Management SSH Client
o Local console CLI administration o Remote CLI administration via SSHv2 o Administrator authentication using a local database o Timed user lockout after multiple failed authentication attempts o Password complexity enforcement o Role Based Access Control - the TOE supports several types of administrative user roles. Collectively these sub-roles comprise the “Security Administrator” o Configurable banners to be displayed at login o Timeouts to terminate administrative sessions after a set period of inactivity o Protection of secret keys and passwords
Vendor InformationFireEye, Inc. Steve Lanser 408-321-6300 certifications@fireeye.com www.fireeye.com |