{"product_id":1021,"v_id":1021,"product_name":"Tenix Interactive Link Version 5.1","certification_status":"Not Certified","certification_date":"2005-08-19T00:08:00Z","tech_type":"Multiple Domain Solution","vendor_id":{"name":"BAE Systems Information and Electronic Systems, Inc.","website":"www.baesystems.com"},"vendor_poc":"BoB Jones","vendor_phone":"703-413-6680","vendor_email":"Interactivelinkus@BAEsystems.com","assigned_lab":{"cctl_name":"COACT, Inc. Labs"},"product_description":"<p>The Interactive Link provides users with a Multiple Single Level security capability. Users working on a classified system can interact with a lower classified system and display both high and low side environments on their Commercial Off The Shelf (COTS) classified workstation but not simultaneously. This occurs while maintaining the Confidentiality of the higher classified system. No high side information can pass to the lower classified system. </p>\r\n<p>The Interactive Link consists of the Interactive Link Data Diode Device (IL-DDD) and the Interactive Link Keyboard Switch (IL-KBS). The IL-DDD allows the lower classified session, display information, to be forwarded to the user&rsquo;s higher classified workstation while preventing information from flowing in the opposite direction (from high to low). The IL-KBS allows the user&rsquo;s keyboard and mouse data to interact with the classified workstation or to flow to the lower classified network and interact with a session running on a low side server. Purpose built software (which is not part of the TOE) forwards the display information of the low side session to the higher classified network and displays it on the user&rsquo;s workstation. </p>\r\n<p>The Target of Evaluation (TOE) of the Interactive Link solution consists of hardware and firmware components (the Keyboard Switch and Data Diode Device). These hardware and firmware components satisfy the security objectives of the TOE. Additional software and hardware that are not part of the TOE are required for the full functionality of the system to be realized. </p>\r\n<p>The IL-KBS security functions have been implemented in firmware and hardware. Key features include: </p>\r\n<ul>\r\n    <li>Keyboard buffers are protected from clandestine listeners on either side of the switch; </li>\r\n    <li>The user changes the mode, direction of the keyboard and mouse data, by pushing the function switches on the front of the unit. </li>\r\n    <li>Data flows to the high or low side dependent upon the mode and cannot flow into keyboard from the high or low side. </li>\r\n    <li>The keyboard cannot determine what mode the IL-KBS is in. </li>\r\n    <li>Visual indicators above the switches define the mode and the network connected. </li>\r\n</ul>\r\n<p>The IL-DDD, is implemented solely in hardware and is a trusted platform providing a unidirectional data path from the low side network to the high side network. Key features include: </p>\r\n<ul>\r\n    <li>Data transfer over the diode is sent without acknowledgment; </li>\r\n    <li>Strategic redundancy and load management algorithms maximize reliability;<strong></strong> </li>\r\n    <li>Multiple workstations or PCs can share a single Data Diode. </li>\r\n</ul>\r\n<p>The Interactive Link provides a one-way data flow from the low side network to the high side network via the IL-DDD. Purpose-built software and hardware outside of the TOE provide the method for the keyboard and mouse data to interact with a low side window session. The output is then packaged for transmission to the high side where it is forwarded to the user&rsquo;s high side window server. The hardware provides the physical media for the Interactive Link operation and all the security functionality. Users can interact with applications and information on either the high side network or the low side network by having the keyboard and mouse data switched to the appropriate output port of the IL-KBS. </p>\r\n<p>The Tenix Interactive Link provides the following security functions: </p>\r\n<p><strong>Data Diode Function</strong>: The Data Diode Device prevents data from being transmitted from the high side network to the low side network, while allowing data to be transmitted from the low side network to the high side network.</p>\r\n<p><strong>Data Path Switch Function</strong> : The Keyboard Switch controls and performs the transfer of data from the keyboard and mouse to either the user&rsquo;s high side window server or the low side network according to the mode selected by the user.</p>","evaluation_configuration":null,"security_evaluation_summary":"<p>The evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The evaluation demonstrated that the Tenix Interactive Link TOE meets the security requirements contained in the Security Target. </p>\r\n<p>The criteria against which the Tenix Interactive Link TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.1. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 1.0. The COACT, Inc. CAFE Lab and the National Security Agency (NSA) determined that the evaluation assurance level (EAL) for the Tenix Interactive Link TOE is EAL 5 augmented with AVA_CCA.2. The TOE, configured as specified in the installation guide, satisfies all of the security functional requirements stated in the Security Target.</p>","environmental_strengths":"<p>The Tenix Interactive Link is delivered as ready-to-use hardware units. Neither the Keyboard Switch nor the Data Diode Device requires any configuration beyond connection of cables to other hardware components in the IT Environment.</p>\r\n<!-- InstanceEndEditable -->","features":[]}