NIAP: U.S. Government Approved Protection Profile - PP-Module for Voice and Video over IP (VVoIP) Version 1.0

NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems

NIAP

»»

Protection Profiles

»»

Approved PPs

»»

Details

U.S. Government Approved Protection Profile - PP-Module for Voice and Video over IP (VVoIP) Version 1.0

Short Name: mod_vvoip_v1.0

Technology Type: VoIP

CC Version: 3.1

Date: 2020.10.28

Preceded By: ep_vvoip_v1.0

Conformance Claim: None

Protection Profile [PDF]

Supporting Docs [PDF]

PP Configuration for APP-VVOIP_v1.0 [PDF]

PP Configuration for ND-VVOIP_v1.0 [PDF]

PP Configuration for APP-VVoIP_v1.1 [PDF]

Control Mapping [PDF]

PP Configuration Document for NDcPP-VVOIP_v2.0 [PDF]

PP OVERVIEW

This PP-Module specifically addresses a dedicated network device or software application that facilitates the exchange of voice or video communication across an Internet Protocol (IP) network. The endpoint is a client (TOE) that communicates with a VVoIP call control server and may serve as its own call control server when using P2P. The VVoIP endpoint shall be able to secure file download from a file server to update VVoIP endpoint software and configuration, to establish secure communication for call control with the call control server, and to secure streaming media to other devices.

The combination of the NDcPP and this PP-Module is a network device that provides VVoIP endpoint functionality in addition to all of the security functionality expected of a network device as mandated by the NDcPP. The combination of the App PP and this PP-Module is a software application running on a general-purpose operating system that includes VVoIP endpoint capabilities in addition to all of the security functionality expected of a software application as mandated by the App PP.

This PP-Module describes the functional requirements and threats specific to the VVoIP endpoint. The most notable additions are requirements for the call control protocol (SIP, H.323) and streaming media protocol (SRTP, RTP). A conformant TOE is expected to be a standalone device or application; distributed TOE’s are not permitted.

Assigned to the following Validated Products

Active Related Technical Decisions

0834 – Aligning MOD_VVOIP 1.0 with NDcPP 3.0E
- References: Section 1.1, MOD_VVOIP_V1.0-SD
0785 – Terminology Change in MOD_VVoIP: Extended to Functional Package
- References: Conformance Claims, FTP_DIT_EXT.1.1
0730 – Clarification on Trusted Update sources for VVoIP Applications
- References: FPT_TUD_EXT.1, MOD_VVOIP_V1.0-SD
0718 – Format changes for MOD_VVoIP_V1.0
- References: FDP_IFF.1.2, FTP_ITC.1/Control, FTP_ITC.1.1/Media
0684 – VVoIP PP-Module Updated to Allow for App PP v1.4 as Base PP
- References: Section 1, Section 2, MOD_VVoIP_v1.0-sd
0589 – Reliable Time for VVoIP Software TOEs
- References: FPT_STM_EXT.1/VVoIP

Archived Related Technical Decision

0688 – MOD_VVoIP FTP_DIT_EXT.1 Alignment for PP_APP_V1.4

Please forward any Protection Profile specific comments to the applicable Technical Rapid Response Team (TRRT).

Please forward any general questions to our Q&A tool.

Site Map Contact Us Home