CC Certificate 

Security Target 

Validation Report 

Assurance Activity 

Administrative Guide 

Administrative Guide 

Administrative Guide 

Administrative Guide 

Administrative Guide 

Figure 1 – KVM Switch Evaluated Configuration

Figure 1 shows a basic evaluated configuration. In the evaluated configuration, the TOE may be connected to four or eight computers.  The video input may be DisplayPort, HDMI or USB-C, and one or two displays may be connected. The peripheral sharing device is connected to speakers or headphones, and a user authentication device.

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Vertiv CYBEX™ SC845DPH, SC945DPH, SC845DPHC, SC945DPHC, SCM145DPH, SCM185DPH, SC985DPH, SCMV245DPH, SCMV285DPH Firmware Version 44444-E7E7 Peripheral Sharing Devices were evaluated are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 5.  The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 rev 5.  Acumen Security determined that the evaluation assurance level (EAL) for the product is EAL 1.  The product, when delivered configured as identified in the following documents, satisfies all of the security functional requirements stated in the Vertiv CYBEX™ SC845DPH, SC945DPH, SC845DPHC, SC945DPHC, SCM145DPH, SCM185DPH, SC985DPH, SCMV245DPH, SCMV285DPH Firmware Version 44444-E7E7 Peripheral Sharing Devices Security Target:

·       CYBEX™ SC SERIES SECURE SWITCHES SC800DPHC/SC900DPHC Quick Install Guide, 590-2284-501B,

·       CYBEX™ SC SERIES SECURE SWITCHES SCM100DPH DESKTOP MATRIX Quick Install Guide, 590-2306-501A,

·       CYBEX™ SC SERIES SECURE SWITCHES SC800/900DPH, SC800/900DVI, and SCKM100PP4 Quick Install Guide, 590-2282-501B,

·       CYBEX™ SC SERIES SECURE SWITCHES SCMV200DPH MULTIVIEWER Quick Install Guide, 590-2307-501B,

·       Cybex™ SC/SCM Switching System Additional Operations and Configuration Technical Bulletin, and 590-1741-501B

·       Vertiv CYBEX™ SC845DPH, SC945DPH, SC845DPHC, SC945DPHC, SCM145DPH, SCM185DPH, SC985DPH, SCMV245DPH, SCMV285DPH Firmware Version 44444-E7E7 Peripheral Sharing Devices Common Criteria Guidance Supplement, Version: 1.7

The project underwent CCEVS Validator review.  The evaluation was completed in June 2022.  Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report prepared by CCEVS.

The TOE is comprised of several security features. Each of the security features identified above consists of several security functionalities, as identified below:

·         Security Audit

·         User Data Protection

·         Identification and Authentication

·         Security Management

·         Protection of the TSF

·         TOE Access

These features are described in more detail in the subsections below.

Security Audit

Audit entries are generated for security related events.

User Data Protection

The TOE provides secure switching capabilities for keyboard and mouse, display, authentication device, and audio output. The TOE ensures that only authorized peripheral devices may be used.

Identification and Authentication

Administrators must be identified and authenticated prior to accessing administrative functions.

Security Management

The TOE provides management capabilities in support of Configurable Device Filtration. The Administrator role restricts this functionality to authorized administrators.

Protection of the TSF

The TOE ensures a secure state in the case of failure, provides only restricted access, and performs self-testing. The TOE provides both passive detection of physical attack, and active resistance to attack (for the SC845DPH, SC945DPH, SC845DPHC, SC945DPHC, SCM145DPH, SCM185DPH, SC985DPH devices only). The TOE provides reliable timestamps in support of the audit function.

TOE Access

The TOE provides a continuous indication of which computer is currently selected.

Vendor Information