Validated Product - AirDefense Enterprise 7.2

PRODUCT DESCRIPTION

The AirDefense Enterprise 7.2 (ADE 7.2) is a wireless network security solution designed to remotely monitor the traffic received from any 802.11 source. By monitoring this traffic, the AirDefense Enterprise 7.2 system can detect identity theft attacks and violations of site-specific wireless security policies defined within the ADE 7.2 user interface. The AirDefense Enterprise 7.2 includes the 2270 Server appliance, the M510 and M520 sensor appliances, and the AirDefense Enterprise 7.2 software.

SECURITY EVALUATION SUMMARY

The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the AirDefense Enterprise 7.2 TOE was judged are described in the Common Criteria for Information Technology Security Evaluation, Version 2.3. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 1.0. SAIC determined that the evaluation assurance level (EAL) for the product is the EAL 2 family of assurance requirements. The product, when configured as specified in the installation guides and user guides, satisfies all of the security functional requirements stated in the AirDefense Enterprise 7.2 Security Target. A validator on behalf of the CCEVS Validation Body monitored the evaluation carried out by SAIC. The evaluation was completed in October 2007. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report for AirDefense Enterprise 7.2 prepared by CCEVS.

ENVIRONMENTAL STRENGTHS

 The AirDefense Enterprise 7.2 is a commercial Wireless Network Security Solution that provides security audit, identification and authentication, security management, traffic analysis, and protection of security functions.