Password selection recommendation, Defender elite200 write protect switch – Kanguru Common Criteria Evaluated v1.21 User Manual

28

9. Password Selection Recommendation

The following password policy MUST be enabled for all parts of the TOE where possible (not all parts

or prerequisite software allow the specification of special characters in passwords).

Passwords MUST be at least 12 characters long, containing at least one of each: uppercase character,

lowercase character, number and special character.

It is RECOMMENDED that the life time of a password is no more than 6 months and that passwords not

be re-used for at least six rounds.

The device MUST be disabled or erased after 7 or fewer consecutive unsuccessful events. Note: When

using UKLA or KRMC, the default value consecutive unsuccessful attempts is set to 6 and MUST be

adjusted.

10. Defender Elite200 Write Protect Switch

The Kanguru Defender Elite200 device features a physical write protect switch. When set in the locked

position, the write protect switch will prevent any data from being written to the device.

The Defender Elite200’s write protect switch was not considered for Common Criteria evaluation. For

more information regarding the physical write protect switch, please refer to the Defender Elite200 User

Manual.

Password Selection Policy