Product Name: Cisco PIX Firewall 520, v
4.3(1)

Product Type: Firewall

Date: December 31, 1998

Conformance Claim: EAL 2

PP Identifier: U.S. Government Traffic-Filter
Firewall Protection Profile for Low Risk
Environments, Version 1.c

Security Target:

Validation Report:

Key Words: firewall, packet-filtering, stateful, IP,

Vendor: Cisco Systems, Inc.

POC:

Phone:

Fax:

Email:

Web:

CC Testing Lab: Computer Sciences Corporation

PRODUCT DESCRIPTION

The evaluated Cisco PIX Firewall 520 Version 4.3(1) is referred to as the Target of Evaluation (TOE). The PIX Firewall is a stateful packet filtering firewall. A stateful packet filtering firewall controls the flow of IP traffic by matching information contained in the headers of connection- oriented or connectionless IP packets against a set of rules specified by the firewall's administrator. The PIX Firewall is administered from a separate platform referred to as the NT Workstation. The TOE provides access control policies, identification and authentication of authorized users, and auditing capability. The firewall detects the occurrence of selected events, gathers information concerning them, and sends that information to the NT Workstation where it is stored. The NT Workstation also detects the occurrence of selected events (e.g., security administrator actions), gathers information concerning them, and records it. Audit records can then be sorted and reviewed. It is assumed the TOE is located within a controlled access facility that mitigates unauthorized, physical access and the TOE is only used for firewall functionality. The TOE administrator is the only person allowed access to the TOE; there are no non-administrative accounts on the TOE. The administrator is assumed to be trustworthy and trained on security policies and practices of the environment for which the TOE is intended to protect.

EVALUATION SUMMARY

The evaluation was carried out in accordance to the Trust Technology Assessment Program (TTAP) process and scheme described in Proposed TTAP Process for Common Criteria EAL 1&2 Evaluations and TTAP Scheme. The purpose of the evaluation was to demonstrate that the PIX Firewall meets the security requirements contained in the Security Target. The criteria against which the PIX Firewall was judged are described in the Common Criteria for Information Technology Security Evaluation. Computer Sciences Corporation has determined that the Security Target is conformant to the U.S. Government Traffic-Filter Firewall Protection Profile for Low Risk Environments, Version 1.c. Computer Sciences Corporation has determined that the evaluation assurance level (EAL) for the product, as specified in the Security Target, is EAL2 and the product configured as described in the Cisco PIX Firewall 520 Version 4.3(1) Installation and Configuration White Paper satisfies all the security functional requirements stated in the Security Target. Four certifiers on behalf of the TTAP Oversight Board monitored the evaluation carried out by Computer Sciences Corporation. The evaluation was completed in December 1998. Results of the evaluation can be found in the Final Evaluation Report Cisco Systems, Inc. Cisco PIX Firewall 520 Version 4.3(1) prepared by Computer Sciences Corporation.

ENVIRONMENTAL STRENGTHS

The PIX Firewall limits connections between networks to only those which are authorized. The PIX Firewall forms the boundary between the internal network and the external networks. All traffic between the internal and external networks must flow through the PIX Firewall to maintain security. The PIX Firewall is intended for use in environments in which, at most, sensitive but unclassified information is processed, or the sensitivity level of information in both the internal and external networks is the same.