Class fia: identification and authentication – Nortel Networks Nortel Network VPN Router and Client Workstation 7.05 User Manual
Page 31
Security Target, Version 3.9
March 18, 2008
Nortel VPN Router v7.05 and Client Workstation v7.11
Page 31 of 67
© 2008 Nortel Networks
5.1.4 Class FIA: Identification and Authentication
FIA_UAU.1 Timing of authentication
Hierarchical to: No other components.
FIA_UAU.1.1
The TSF shall allow [
o connection configuration,
o username entry,
o password entry,
o destination selection,
o authentication options (digital certificates, username, password),
o keepalive options,
o autoconnect,
o name server options
] on behalf of the user to be performed before the user is authenticated.
FIA_UAU.1.2
The TSF shall require each user to be successfully authenticated before allowing any other TSF-mediated
actions on behalf of that user.
Dependencies: FIA_UID.1 Timing of identification
FIA_UAU.5 Multiple authentication mechanisms
Hierarchical to: No other components.
FIA_UAU.5.1
The TSF shall provide [username and password (for administrators), RSA Digital Certificates] to support
user authentication.
FIA_UAU.5.2
The TSF shall authenticate any user’s claimed identity according to the [configurations as defined by
administrators and these configurations include:
o Username and Password (for administrators)
o RSA Digital Certificates].
Dependencies: No dependencies
FIA_UID.2
User identification before any action
Hierarchical to: FIA_UID.1
FIA_UID.2.1