Class fpt: protection of the tsf – Nortel Networks Nortel Network VPN Router and Client Workstation 7.05 User Manual
Page 37

Security Target, Version 3.9
March 18, 2008
Nortel VPN Router v7.05 and Client Workstation v7.11
Page 37 of 67
© 2008 Nortel Networks
5.1.6 Class FPT: Protection of the TSF
FPT_AMT.1 Abstract machine testing
Hierarchical to: No other components.
FPT_AMT.1.1
The TSF shall run a suite of tests [during initial start-up, periodically during normal operation] to
demonstrate the correct operation of the security assumptions provided by the abstract machine that
underlies the TSF.
Dependencies: No dependencies
FPT_RPL.1 Replay detection
Hierarchical to: No other components.
FPT_RPL.1.1
The TSF shall detect replay for the following entities: [the IPSec sessions].
FPT_RPL.1.2
The TSF shall perform [drop packets] when replay is detected.
Dependencies: No dependencies
FPT_TST.1 TSF testing
Hierarchical to: No other components.
FPT_TST.1.1
The TSF shall run a suite of self tests [during initial start-up, at the conditions [when running in Normal
mode]] to demonstrate the correct operation of [the TSF].
FPT_TST.1.2
The TSF shall provide authorised users with the capability to verify the integrity of [TSF data].
FPT_TST.1.3
The TSF shall provide authorised users with the capability to verify the integrity of stored TSF executable
code.
Dependencies: FPT_AMT.1 Abstract machine testing