Sybase IQ User Administration version 12.6 is a subset of Sybase IQ that provides a set of stored procedures that allow users to set, reset, and test the password expiration date. Sybase IQ provides relational database technology designed as an extended version of Adaptive Server Anywhere (ASA) version 9.0.1. Sybase ASA is a separate evaluation.
\r\nThe Sybase IQ User Administration extensions are realized as a set of stored procedures and supporting database tables. These stored procedures can be used to configure the security functions of the TOE and can also be invoked by ASIQ to invoke the security functions of the TOE. The TOE stores configuration and other data to support the implementation of its security functions in Sybase IQ database tables.
\r\nThe set of operating systems included in the evaluation are Microsoft Windows 2000, XP and Server 2003, Sun Solaris 8, HP-UX, and Redhat Linux Advanced Server 2.1. The TOE was tested on all platforms by the vendor as part of the evaluation. The evaluation team ran its tests on the Windows 2000 and Solaris 8 platforms since the code is unchanged on all platforms.
","evaluation_configuration":null,"security_evaluation_summary":"The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which Sybase IQ User Administration TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.1 and International Interpretations effective on April 1, 2004. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 1.0. Science Applications International Corporation (SAIC) determined that the evaluation assurance level (EAL) for the product is EAL 3 augmented with ALC_FLR.2. The product, when configured as specified in the Supplement for Installing Sybase IQ for Common Criteria Configuration, Document ID: DC00230-01-1260-01, Last revised: November 20, 2004, satisfies all of the security functional requirements stated in the Sybase IQ User Administration Security Target (Version 1.0). Two validators on behalf of the CCEVS Validation Body monitored the evaluation carried out by SAIC. The evaluation was completed in November 2004. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report, (report number CCEVS-VR-05-0084, dated 11 February 2005) prepared by CCEVS.","environmental_strengths":"Sybase IQ User Administration extensions consist of a set of stored procedures and associated database tables that provide the following two security functions.
\r\nSecurity management: Sybase IQ User Administration provides a set of stored procedures that allow users to set and reset password expiration dates, and to check a given password's expiration date.
\r\nTOE access: Sybase IQ User Administration provides a set of stored procedures that can be invoked to reset password aging information (such as when a password is changed) and to determine whether a given password has expired (to be used during session establishment to impose this restriction). It does not enforce the password change, it simply calculates the expiration period when invoked.
\r\n","features":[]}