NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems
Questions?  We're here to help
  NIAP  »»  Protection Profiles  »»  Archived PPs  »»  Details  
Archived U.S. Government Approved Protection Profile - Extended Package for Authentication Servers Version 1.0

Short Name: pp_ndcpp_app_authsvr_ep_v1.0

Technology Type: Network Device

CC Version: 3.1

Date: 2015.08.07

Succeeded By: mod_authsvr_v1.0

Sunset Date: 2023.07.25 [Sunset Icon]

Conformance Claim: None

Protection Profile [PDF]

Control Mapping [PDF]



This Extended Package (EP) describes security requirements for an authentication server and is intended to provide a minimal baseline set of requirements that are targeted at mitigating well defined and described threats. Authentication server products allow enterprises to provide a centralized and standardized method of evaluating user authentication requests made throughout the enterprise. This enables centralized definition of user identity and credential data and allows for uniform application of authentication policies that define what credentials and user attributes are necessary to gain access to various systems and applications in the enterprise environment. This EP focuses specifically on RADIUS authentication servers.

This introduction describes the features of a compliant Target of Evaluation (TOE) and discusses how this EP is to be used in conjunction with the Network Device collaborative Protection Profile (NDcPP) or the Application Software Protection Profile (App PP).

Assigned to the following Validated Products

Active Related Technical Decisions

Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).

Please forward any general questions to our Q&A tool.

Site Map              Contact Us              Home