NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems

Short Name: pp_nd_vpn_gw_ep_v1.0

Technology Type: Virtual Private Network

CC Version: 3.1

Date: 2012.12.12

Succeeded By: pp_nd_vpn_gw_ep_v1.1

Sunset Date: 2013.04.15

Conformance Claim: None

Protection Profile 

PP OVERVIEW

This Extended Package (EP) describes security requirements for a VPN Gateway (defined to be a device at the edge of a private network that terminates an IPsec tunnel, which provides device authentication, confidentiality, and integrity of information traversing a public or untrusted network) and is intended to provide a minimal, baseline set of requirements that are targeted at mitigating well defined and described threats. However, this EP is not complete in itself, but rather extends the Security Requirements for Network Devices protection profile (NDPP). This introduction will describe the features of a compliant Target of Evaluation (TOE), and will also discuss how this EP is to be used in conjunction with the NDPP.

SECURITY EVALUATION SUMMARY

The Security Requirements for Network Devices Protection Profile (NDPP) defines the baseline Security Functional Requirements (SFRs) and Security Assurance Requirements (SARs) for network infrastructure devices in general. This EP serves to extend the NDPP baseline with additional SFRs and associated ‘Assurance Activities’ specific to VPN Gateway network infrastructure devices. Assurance Activities are the actions that the evaluator performs in order to determine a TOE’s compliance to the SFRs.

This EP conforms to Common Criteria for Information Technology Security Evaluation, Version 3.1, Revision 4. It is CC Part 2 extended and CC Part 3 conformant.

ENVIRONMENTAL STRENGTHS

ASSURANCE MAINTENANCE

This U.S. Government Approved Protection Profile is not assigned to any Validated Products

This U.S. Government Approved Protection Profile does not have any related Technical Decisions