search

McAfee HARDWARE 1.4 Guide d'installation Page 53

  • Télécharger
  • Ajouter à mon manuel
  • Imprimer
  • Page
    / 61
  • Table des matières
  • MARQUE LIVRES
    • Noté. / 5. Basé sur avis des utilisateurs
Vue de la page 52
McAfee Email Gateway
Security Target
McAfee Incorporated
Page 53 of 61
6 TOE Summary Specification
6.1 TOE Security Functions
The TOE consists of 4 Security Functions:
Security Management
Identification and Authentication
Audit
Cryptographic Support
6.1.1 Security Management
The McAfee MEG TOE provides security management functions and tools to manage the security
features described within this security target.
There are three methods of accessing the User Interface framework:
1. Browser-based session on the web console machine. This provides access to the GUI used to
configure all aspects of the appliance behaviour.
2. Serial port access. This provides access to a restricted console interface that can be used only to
configure the limited settings of the appliance to allow access to configure the appliance over the
network. This serial based access is typically only used during installation for initial configuration, and
use for any other purpose is not covered in the CC evaluated configuration.
3. Direct monitor/keyboard/pointing device connection. This provides access to the restricted console
interface as described for serial port access above.
Regardless of the physical mode of accessing the appliance, the User Interface Framework provides the
primary administrator interface into the TOE, providing TOE Administrators with GUI access to: the
appliance configuration files; the appliance console (as described above); and the logging subsystem,
which manages access to appliance audit logs and reports.
The browser-based user interface is implemented in javascript and HTML, and connections (HTTPS over
TLS) are managed by Apache Web Server Software. Sessions are encrypted using a self-signed
certificate. Commands and data are transferred over HTTPS using Direct Internet Message
Encapsulation (DIME) as the encoding mechanism. An Apache module has been written specifically for
the appliance to handle the decoding of DIME, and to invoke the appropriate system commands, to
update or retrieve configuration files and to retrieve audit records.
Configuration data managed through this security function is managed and stored in the file system
supported by the underlying MEG Operating System. The TOE enforces Identification and
Authentication prior to allowing access to TOE Security Management functions.
FTP_TRP.1 Trusted path
Administrator access to the TOE is managed within the internal or external network via a web browser
over a HTTPS protocol connection. The secure connection helps to assure integrity and confidentiality.
FMT_SMR.2 Role Based Access
The TOE supports role based access to the MEG appliance through a number of default roles (which are
configurable). These roles can be used both locally and remotely. It also provides the facility to create
Vue de la page 52
1 2 ... 48 49 50 51 52 53 54 55 56 57 58 59 60 61

Commentaires sur ces manuels

Pas de commentaire
Produits connexes et manuels pour Composants des dispositifs de sécurité McAfee HARDWARE 1.4
Composants des dispositifs de sécurité McAfee EPOLICY ORCHESTRATOR 4.5 RELEA Guide d'installation   (9 pages)
  • Interact-TV Atas MMATS Professional Audio Warsanis American Machine & Tool
  • Pioneer Serre-câbles Panasonic Tapis de course Delfield Séchoirs à tambour Linksys Lecteurs de médias numériques Epson Composants des dispositifs de sécurité
  • Electrolux EN3887AOX Canon CR-190i Sony DSC-H3 Viking VGCC5364GSS Sven SPS-818
  • Centurion D3 Guide de l'utilisateur Electrolux ERN34800 Manuel de l'utilisateur Carrier 59MN7 Brochure Hp iPAQ 114 Manuel de l'utilisateur Samsung GT-S6102 Galaxy Y Duos Manuel de l'utilisateur