{"product_id":10116,"v_id":10116,"product_name":"Cisco IOS IPSec on the Integrated Services Routers, VPN Services Module (VPNSM) and IPSec VPN Shared Port Adapter (SPA), including VLAN Separation","certification_status":"Not Certified","certification_date":"2008-05-31T00:05:00Z","tech_type":"Network Switch, Router","vendor_id":{"name":"Cisco Systems, Inc.","website":"https://www.cisco.com"},"vendor_poc":null,"vendor_phone":"+1 410 309 4862","vendor_email":"certteam@cisco.com","assigned_lab":{"cctl_name":"Arca CCTL"},"product_description":"

The TOE consists of hardware and software used to construct Virtual Private Networks (VPNs) between networks or a remote access client. The TOE is made up of a Cisco router or Catalyst 6500 switch, inclusive of IOS software and hardware modules used to accelerate the performance of the IPSec protocol. The included Cisco hardware provides options for deploying VPNs from the small office to the large Enterprise. IPSec provides confidentiality, authenticity and integrity for IP data transmitted between trusted (private) networks or remote clients over untrusted (public) links or networks.

","evaluation_configuration":null,"security_evaluation_summary":"

 

\r\n
The evaluation was carried out in accordance with the Arca Common Criteria Test Laboratory processes and procedures that are compliant with the Common Criteria Evaluation and Validation Scheme (CCEVS). The evaluation demonstrated that Cisco IOS-IPSec meets the security requirements contained in the Security Target. The criteria against which the Cisco IOS-IPSec TOE was evaluated are described in the Common Criteria for Information Technology Security Evaluation, Version 2.3 Parts 2 and 3 and the International Interpretations effective on 8 August 2005. The evaluation methodology used by the Evaluation Team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.3. Arca CCTL determined that the evaluation assurance level (EAL) for the product is EAL 4 set of assurance components augmented with ALC_FLR.1. The product, when configured as specified in the installation guide, satisfies all of the security functional requirements stated in the IOS-IPSec Security Target, Version 1.0. The evaluation was completed in April 2008. Results of the evaluation can be found in the Validation Report prepared by the National Information Assurance Partnership (NIAP) CCEVS Validation Team.
\r\n
 
\r\n

For this evaluation, it was appropriate for the Security Target to claim compliance with the external standard for FIPS 140 for the definition of the encryption algorithm. There are many ways of determining compliance with a standard. Cisco IOS IPSec has chosen to make a developer claim of compliance. This means that there has been no independent verification (by either the evaluators or a third party standards body, such as a FIPS laboratory) that the implementation of the cryptographic algorithms actually meets the claimed standards. Potential users of this product should confirm that the cryptographic capabilities are suitable to meet the user's requirements.

","environmental_strengths":"

 

\r\n
The TOE provides confidentiality, authenticity and integrity for IP data transmitted between a combination of Cisco Systems routers, Catalyst switches, and VPN clients (located in IT Environment).
\r\n
 
\r\n
Specifically, the TOE ensures:
\r\n\r\n
 
\r\n
Consumers of the product are expected to do the following:
\r\n","features":[]}