{"product_id":10465,"v_id":10465,"product_name":"Infoblox Trinzic Appliances with NIOS v6.3","certification_status":"Not Certified","certification_date":"2012-12-17T00:12:00Z","tech_type":"Network Device","vendor_id":{"name":"Infoblox Inc.","website":"www.infoblox.com"},"vendor_poc":"William Lane","vendor_phone":"408-625-4200","vendor_email":"blane@infoblox.com","assigned_lab":{"cctl_name":"DXC.technology"},"product_description":"<p>Infoblox Trinzic Appliances with NIOS v6.3 (Models: IB-810, IB-820, IB-1400, IB-1410, IB-1420, IB-2200, IB-2210, IB-2220, IB-4000 and IB-4010) are a family of network appliances which consolidate the delivery and management of core IP network services historically provided by multiple general purpose operating systems and servers (core IP network services include DNS, DHCP, IPAM, FTP, TFTP, and HTTP).</p>","evaluation_configuration":null,"security_evaluation_summary":"<p>The evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The evaluation demonstrated that the product meets the security requirements contained in the Security Target. The criteria against which the Infoblox Trinzic Appliances with NIOS v6.3 (Models: IB-810, IB-820, IB-1400, IB-1410, IB-1420, IB-2200, IB-2210, IB-2220, IB-4000 and IB-4010) were judged are described in the <em>Common Criteria for Information Technology Security Evaluation, Version 3.1, Revision 3.</em> The evaluation methodology used by the evaluation team to conduct the evaluation is the <em>Common Methodology for Information Technology Security Evaluation, Version 3.1, Revision 3.</em> Computer Sciences Corporation determined that the evaluation assurance level (EAL) for the product is EAL 2+.&nbsp; The product satisfies all of the security functional requirements stated in the Security Target. A team of validators, on behalf of the CCEVS Validation Body, monitored the evaluation carried out by Computer Sciences Corporation. The evaluation was completed in November 2012.</p>","environmental_strengths":"<p>The TOE provides the following security features:<strong></strong></p>\r\n<p><strong>Secure Management</strong></p>\r\n<p>Administrators manage the TOE via a TLS protected web GUI or via the CLI console port. &nbsp;The TOE implements role based access control, password based authentication and auditing of management functions. Communication with the TOE&rsquo;s API interface is protected by TLS.</p>\r\n<p><strong>High Availability</strong></p>\r\n<p>The TOE enforces quotas on exhaustible resources thereby preventing failover due to resource exhaustion.</p>\r\n<p><strong>Trusted Updates</strong></p>\r\n<p>The TOE uses digital signatures to verify updates prior to installation.</p>\r\n<p><strong>Self protection</strong></p>\r\n<p>The TOE performs self-test at startup to verify the integrity of hardware components and the cryptographic module.</p>\r\n<p><strong>Secure DNS</strong></p>\r\n<p>The TOE employs secure DNS protocols to verify and authenticate DNS updates.</p>\r\n<p><strong>Secure Grid</strong></p>\r\n<p>The TOE uses an SSL/TLS VPN to protect communication between itself and other TOE instances when deployed in a grid.</p>","features":[]}