Validated Product - Computer Associates eTrust® Admin Version 8.0 with CAM v1.11 patch

Certificate Date: 03 February 2006

Validation Report Number: CCEVS-VR-06-0008

Product Type: System Access Control

Conformance Claim: EAL2

PP Identifiers: None

CC Testing Lab: CygnaCom Solutions, Inc

Subsequent Maintenance Release(s):

  • None
Security Target [PDF]
Validation Report [PDF]
CC Certificate [PDF]

PRODUCT DESCRIPTION

The eTrust Admin product consists of an eTrust Admin Server, Administrator Interface, Web-based Interface, and eTrust Directory. Briefly, the TOE includes the eTrust Admin Server software, the Administrator Interface, and the Web-based Interface. The eTrust Directory and the Windows 2000 OS, upon which the eTrust Admin Server runs, are included in the IT Environment.

The TOE is a software-only TOE which consists of:

  • eTrust Admin Server, which implements all evaluated security functionality
  • Administrator Interface CLI/GUI (i.e.: Manager and Batch Utility) and
  • Admin Web-based Interface software.

The TOE includes eTrust Admin Options (part of eTrust Admin Server) to communicate with managed systems. Only the Windows OS option was tested during the evaluation.

eTrust Admin provides the following security features:

  • Security audit
  • Identification and authentication (I&A)
  • Security management

SECURITY EVALUATION SUMMARY

The evaluation was carried out in accordance to the Common Criteria Evaluation and Validation Scheme (CCEVS) processes and procedures. The TOE was evaluated against the criteria contained in the Common Criteria for Information Technology Security Evaluation, Version 2.2. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.2. CygnaCom Solutions has determined that the product meets the security criteria in the Security Target, which specifies an assurance level of EAL 2.

A validator, on behalf of the CCEVS Validation Body, monitored the evaluation. The evaluation was completed in November 2005.

Test Configuration for Evaluation

TOE Component eTrust Admin Server 8.0 eTrust Admin Manager eTrust Admin Web Server 8.0
eTrust Admin Web Interface 8.0
eTrust Admin Workflow Web Interface 8.0
Operating System Microsoft Windows 2000, Service Pack 4 Microsoft Windows XP, Service Pack 2 Microsoft Windows 2000, Service Pack 4
Other Software eTrust Directory 4.1 Build 175
Java Runtime Environments JRE 1.3.1 and JRE 1.4.1
 NONE Microsoft IIS Version 5.0
JRUN 4.0
eTrust Directory 4.1 Build 175
Java Runtime Environments JRE 1.3.1 and JRE 1.4.1
Hardware Pentium 1 GHz Processor
128 MB Memory
300 MB Disk Space 		Pentium 1 GHz Processor
256 MB Memory
100 MB Disk Space 		Pentium 1 GHz Processor
256 MB Memory
1000 MB Disk Space

ENVIRONMENTAL STRENGTHS

The TOE provides the following security functionality: security audit, identification and authentication, secure management, and partial protection of the TOE security functions.

The main security service provided by eTrust Admin is enablement of user life-cycle management across disparate systems, applications, physical resources, and Web services. Based on user roles, eTrust Admin automatically creates, modifies, and deletes user accounts on multiple, heterogeneous systems or applications. It integrates with human resources systems to achieve completely automated user account management.

CA, Inc.

William F. Clark
703-708-3501
703-708-3683 (Fax)
william.clark@ca.com

http://www.ca.com