{"product_id":10023,"v_id":10023,"product_name":"Network Appliance Data ONTAP 6.5.2R1","certification_status":"Not Certified","certification_date":"2005-09-29T00:09:00Z","tech_type":"Operating System","vendor_id":{"name":"Network Appliance","website":"http://www.netapp.com"},"vendor_poc":"Ken Bradley","vendor_phone":"703.918.7353","vendor_email":"kenneth.bradley@netapp.com","assigned_lab":{"cctl_name":"COACT, Inc. Labs"},"product_description":"<p>The evaluated product consists of two software modules within Data ONTAP - a proprietary microkernel operating system developed by Network Appliance.&nbsp; The microkernel is included in the distribution of Network Appliance&rsquo;s NearStore, gFiler, and Filer families of storage solution products.&nbsp; The evaluated portion of Data ONTAP (the TOE) provides data management functions that include providing secure data storage and multi-protocol access.&nbsp; Secure storage is provided by the TOE by implementing strict access control rules to data managed by Data ONTAP.&nbsp; Multi-protocol access support is provided by TOE by supporting both NFS and CIFS clients and providing transparent access to data including cross-protocol support.</p>","evaluation_configuration":null,"security_evaluation_summary":"<p>The evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The evaluation demonstrated that the Network Appliance Data ONTAP 6.5.2R1 TOE meets the security requirements contained in the Security Target. <br />\r\nThe criteria against which the Network Appliance Data ONTAP 6.5.2R1 TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.2. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.2. The COACT, Inc. CAFE Lab determined that the evaluation assurance level (EAL) for the Network Appliance Data ONTAP 6.5.2R1 TOE is EAL 2. The TOE, configured as specified in the installation guide, satisfies all of the security functional requirements stated in the Security Target. </p>\r\nA Validator on behalf of the CCEVS Validation Body monitored the evaluation carried out by the COACT, Inc. CAFE Lab. The evaluation was completed in August 2005. Results of the evaluation and associated validation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report, CCEVS-VR-05-0122 dated 29 September 2005.","environmental_strengths":"<p>The Network Appliance Data ONTAP 6.5.2R1 TOE provides security audit, discretionary access policy, identification and authentication, and security information management features as they relate to enterprise security information management. <br />\r\n<strong>Discretionary Access Control - </strong>The DAC includes enforcing access rules to data based on client type, client security attributes, file type, file security attributes and operation.</p>\r\n<strong>Administration- </strong>The Administrative functionality provided by the TOE includes supporting operator functions including enforcing identification and authentication, user roles and providing the necessary user interface commands that enable an operator to support the TOE&rsquo;s security functionality.","features":[]}