The Target of Evaluation (TOE) is Quintessence Trusted Security Foundation 400, v3.2. The TOE is a standalone physical network appliance that provides external key management functionality using the Key Management Interoperability Protocol (KMIP), which is implemented through a mutually-authenticated TLS channel. The TOE contains a qStream 100 quantum random number generator to provide cryptographically secure key generation services for KMIP keys.
\r\nThe focus of the evaluation was on functionality meeting the requirements specified in collaborative Protection Profile for Network Devices, Version 2.2e, including: protection of communications between the TOE and trusted external IT entities; identification and authentication of administrators; auditing of security-relevant events; verification of the source and integrity of updates to the TOE; and use of approved cryptographic mechanisms.
\r\nThe TOE provides authorized administrators with an HTTPS web GUI interface, an HTTPS REST API interface, and an SSH command-line interface. Local access is also provided via direct console connection.
\r\nThe TOE is based on a Dell R6615 chassis with an AMD EPYC 9224 processor (Zen 4 microarchitecture) and runs on a purpose-build distribution of Red Hat Enterprise Linux (RHEL) 8.8. The TOE also includes the qStream 100 quantum random number generator and an Entrust nShield 5s hardware security module (HSM).
","evaluation_configuration":"The TOE is based on a Dell R6615 chassis with an AMD EPYC 9224 processor (Zen 4 microarchitecture) and runs on a purpose-build distribution of Red Hat Enterprise Linux (RHEL) 8.8. The TOE also includes the qStream 100 quantum random number generator and an Entrust nShield 5s hardware security module (HSM).
\r\nThe TOE is placed into its evaluated configuration by enabling Common Criteria mode through its web UI as specified in the configuration guidance.
\r\nThe TOE in its evaluated configuration may require the following components in its operational environment:
\r\nAnother instance of the Trusted Security Foundation 400 to or from which configuration data can be replicated
","security_evaluation_summary":"The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) requirements and guidance. The criteria against which the TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1, Revision 5, September 2017. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 release 5. The product, when delivered and configured as identified in the guidance documentation, satisfies all the security functional requirements stated in the QuintessenceLabs Trusted Security Foundation 400, Version 3.2 Security Target. The evaluation was completed in 2025. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report prepared by CCEVS.
","environmental_strengths":"Security Audit
\r\nThe TOE generates audit events associated with identification and authentication, management, updates, and user sessions. The TOE can store the events in a local log and export them to a syslog server using a TLS protected channel. The TOE protects stored audit records from unauthorized modification and deletion.
\r\nCryptographic Support
\r\nThe TOE provides CAVP certified cryptography in support of its SSH, TLS, and NTP implementations and for verifying TOE update packages. Cryptographic services include key management, random bit generation, symmetric encryption and decryption, digital signature, and secure hashing.
\r\nIdentification and Authentication
\r\nThe TOE requires users to be identified and authenticated before they can use functions mediated by the TOE, with the exception of reading the login banner. The TOE authenticates a user’s credentials (password, key) using a local mechanism provided by the TOE and supports external LDAP authentication. The TOE also provides X.509 certificate checking for its TLS connections.
\r\nSecurity Management
\r\nThe TOE provides CLI, web-based UI, and RESTful API management interfaces that an administrator can access remotely via a network port. The CLI can also be accessed locally by directly connecting to the appliances via USB port. Remote connections to the management interface are protected with SSH for the CLI and HTTPS for web-based. The management interface is limited to the authorized administrator.
\r\nProtection of the TSF
\r\nThe TOE implements various self-protection mechanisms. The TOE performs self-tests that cover the correct operation of the TOE. It provides functions necessary to securely update the TOE. It relies upon either manually provided time or an NTP server in its environment to ensure reliable timestamps. It encrypts sensitive data such as passwords and cryptographic keys stored within it.
\r\nTOE Access
\r\nThe TOE terminates local and remote interactive sessions after a configurable period of inactivity. The TOE additionally provides the capability for administrators to terminate their own interactive sessions. The TOE can be configured to display an advisory and consent warning message before establishing a user session.
\r\nTrusted Path/Channels
\r\nThe TOE protects interactive communication with remote administrators using SSH (for remote access to the CLI) and HTTPS (for remote access to the Admin UI and RESTful API).
\r\nThe TOE protects communications with authorized external IT entities using TLS and SSH. The TOE uses TLS to protect communications with external syslog, LDAP, and SMTP servers and external KMIP clients. The TOE can also transmit or receive replicated information from an external copy of the product in its operational environment over TLS. The TOE uses SSH to transmit backup data to an external backup server.
","features":[{"id":234,"feature_name":"Asymmetric Key Generation"},{"id":231,"feature_name":"Auditing"},{"id":247,"feature_name":"Certificate Authentication"},{"id":239,"feature_name":"Certificate Validation"},{"id":237,"feature_name":"Cryptographic Hashing"},{"id":235,"feature_name":"Cryptographic Key Establishment"},{"id":236,"feature_name":"Cryptographic Signature Verification"},{"id":233,"feature_name":"DRBG"},{"id":246,"feature_name":"HTTPS Client"},{"id":1543,"feature_name":"HTTPS Server with Mutual Authentication"},{"id":232,"feature_name":"Key Destruction"},{"id":238,"feature_name":"Keyed-hash message authentication"},{"id":243,"feature_name":"SSH Client"},{"id":244,"feature_name":"SSH Server"},{"id":241,"feature_name":"TLS 1.2"},{"id":242,"feature_name":"TLS Client"},{"id":240,"feature_name":"TLS Server with Mutual Authentication"}]}