Archived U.S. Government Approved Protection Profile - Network Device Protection Profile (NDPP) Extended Package VPN Gateway Version 1.1
Short Name: pp_nd_vpn_gw_ep_v1.1
Technology Type: Virtual Private Network
CC Version: 3.1
Preceded By: pp_nd_vpn_gw_ep_v1.0
Succeeded By: pp_ndcpp_vpn_gw_ep_v2.0
Sunset Date: 2016.02.27
Conformance Claim: NoneProtection Profile
This Extended Package (EP) describes security requirements for a VPN Gateway (defined to be a device at the edge of a private network that terminates an IPsec tunnel, which provides device authentication, confidentiality, and integrity of information traversing a public or untrusted network) and is intended to provide a minimal, baseline set of requirements that are targeted at mitigating well defined and described threats. However, this EP is not complete in itself, but rather extends the Security Requirements for Network Devices protection profile (NDPP). This introduction will describe the features of a compliant Target of Evaluation (TOE), and will also discuss how this EP is to be used in conjunction with the NDPP.
SECURITY EVALUATION SUMMARY
The Security Requirements for Network Devices Protection Profile (NDPP) defines the baseline Security Functional Requirements (SFRs) and Security Assurance Requirements (SARs) for network infrastructure devices in general. This EP serves to extend the NDPP baseline with additional SFRs and associated ‘Assurance Activities’ specific to VPN Gateway network infrastructure devices. Assurance Activities are the actions that the evaluator performs in order to determine a TOE’s compliance to the SFRs.
Assigned to the following Validated Product
Active Related Technical Decisions
Archived Related Technical Decisions
Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).
Please forward any general questions to our Q&A tool.