The Microsoft Windows Server 2003 Certificate Server (henceforth referred to as Certificate Server) is a Certificate Issuing and Management Component (CIMC) that facilitates the use of public key cryptography by issuing, revoking, and managing public key certificates and certificate status information. To achieve this goal, Certificate Server implements the following core functional components:
\r\nCertificate Server comprises executables and dlls that implement certificate issuance enforcement, certificate and CRL publication, a database manager, and several Microsoft Management Console (MMC) snap-ins (Certificate Authority, Certificate Server, and Certificate Template). To interact with the services of the aforementioned functional components, Certificate Server provides authorized users of different roles with Graphic User Interface based and command-line based tools that can be executed remotely or locally. These tools use the underlying network based programmatic interfaces implemented by the TOE. This set of programmatic interfaces is able to support automatic certificate enrollment for both user and computer accounts defined for a distributed Windows Operating System environment within the same network of the TOE.
\r\nCertificate Server is available on server class hardware running Microsoft Windows Server 2003 Enterprise Edition (32-bit) Operating System software. Additionally, Certificate Server must be installed in the Enterprise mode.
","evaluation_configuration":null,"security_evaluation_summary":"The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the Microsoft Windows Server 2003 Certificate Server TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.1. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 1.0. Science Applications International Corporation (SAIC) determined that the evaluation assurance level (EAL) for the product is EAL 4 with the additional augmentation of the CC Flaw Remediation (ALC_FLR) family of assurance requirements. The product, when configured as specified in the Windows Server 2003 Certificate Server Security Configuration Guide (version 1.0), satisfies all of the security functional requirements stated in the Windows Server 2003 Certificate Server Security Target (Version 1.0) and is conformant to the CIMC SL 3 PP. Three validators on behalf of the CCEVS Validation Body monitored the evaluation carried out by SAIC. The evaluation was completed in November 2005. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report, (report number CCEVS-VR-05-0134, dated 14 November 2005) prepared by CCEVS. The guidance documentation can be downloaded from http://www.microsoft.com/technet/security/prodtech/windowsxp/ccc/default.mspx.
","environmental_strengths":"The logical boundaries of Certificate Server can be characterized as the set of security functions available at its physical interfaces. Each of these security functions is summarized below.
\r\nCertificate Server generates certificates according to the following standard which provides a verification of origin framework for users of certificates:
\r\nThe CRLs generated by the TOE are in a format specified in RFC3280 with the following exception: the critical Issuing Distribution extension is not asserted in specific circumstances when the CRL does not cover certificates where the CA key signing the certificates is different from the CA key signing the CRL. Thus, the CRL should be used only by those relying parties that require the certificate and CRL to be signed using the same key. Alternatively, the Certificate Server should be operated so that a CA is never re-keyed. When there is a need to stop using the CA key, a new CA with a new Distinguished Name and a new Key is created.
\r\nSupport for Auto-Enrollment – As Active Directory can define the permission for a specific account to enroll to a certificate template, the use of certificate templates in Certificate Server allows automatic certificate issuing based on the certificate profile information contained in a particular certificate template that a certificate requester has permission to enroll to.
","features":[]}