Assurance Activity Report for Arista Networks Switches Running EOS
Total Page:16
File Type:pdf, Size:1020Kb
Assurance Activity Report For Arista Networks Switches Running EOS Version 1.4 12/03/2019 Certification Reference: 383-4-483 Produced by: 1000 Innovation Drive Ottawa ON K2K 3E7 Prepared for: Canadian Common Criteria Scheme (CCCS) Arista Networks Switches Running EOS Assurance Activity Report The Developer of the TOE: Arista Networks, Inc. The Security Target Developed By: Arista Networks, Inc. 5453 Great America Parkway Santa Clara, CA 95054 The TOE Evaluation Sponsored By: Arista Networks, Inc. 2 of 86 Arista Networks Switches Running EOS Assurance Activity Report Table of Contents 1 INTRODUCTION ............................................................................................................................... 8 1.1 REFERENCES ............................................................................................................................. 8 1.2 TARGET OF EVALUATION ............................................................................................................. 8 1.2.1 Platform Equivalence .........................................................................................................11 1.2.2 Tested Platforms Subset ....................................................................................................13 2 SECURITY FUNCTIONAL REQUIREMENTS ...............................................................................14 2.1 SECURITY AUDIT (FAU) ............................................................................................................14 2.1.1 FAU_GEN.1 Audit Data Generation ..................................................................................14 2.1.1.1 TSS Assurance Activities ....................................................................................................... 14 2.1.1.2 Guidance Assurance Activities ............................................................................................... 14 2.1.1.3 Testing Assurance Activities .................................................................................................. 26 2.1.2 FAU_GEN.2 User Identity Association ..............................................................................26 2.1.2.1 TSS Assurance Activities ....................................................................................................... 26 2.1.2.2 Guidance Assurance Activities ............................................................................................... 26 2.1.2.3 Testing Assurance Activities .................................................................................................. 26 2.1.3 FAU_STG_EXT.1 Protected Audit Event Storage .............................................................27 2.1.3.1 TSS Assurance Activities ....................................................................................................... 27 2.1.3.2 Guidance Assurance Activities ............................................................................................... 27 2.1.3.3 Testing Assurance Activities .................................................................................................. 28 2.2 CRYPTOGRAPHIC SUPPORT (FCS) ............................................................................................29 2.2.1 FCS_CKM.1 Cryptographic Key Generation .....................................................................29 2.2.1.1 TSS Assurance Activities ....................................................................................................... 29 2.2.1.2 Guidance Assurance Activities ............................................................................................... 29 2.2.1.3 Testing Assurance Activities .................................................................................................. 30 2.2.2 FCS_CKM.2 Cryptographic Key Establishment .................................................................30 2.2.2.1 TSS Assurance Activities ....................................................................................................... 30 2.2.2.2 Guidance Assurance Activities ............................................................................................... 30 2.2.2.3 Testing Assurance Activities .................................................................................................. 31 2.2.3 FCS_CKM.4 Cryptographic Key Destruction .....................................................................31 2.2.3.1 TSS Assurance Activities ....................................................................................................... 31 2.2.3.2 Guidance Assurance Activities ............................................................................................... 33 2.2.3.3 Testing Assurance Activities .................................................................................................. 33 2.2.4 FCS_COP.1/DataEncryption Cryptographic Operation (AES Data Encryption/Decryption) 33 2.2.4.1 TSS Assurance Activities ....................................................................................................... 33 2.2.4.2 Guidance Assurance Activities ............................................................................................... 33 2.2.4.3 Testing Assurance Activities .................................................................................................. 33 2.2.5 FCS_COP.1/SigGen Cryptographic Operation (Signature Generation and Verification ...33 2.2.5.1 TSS Assurance Activities ....................................................................................................... 33 2.2.5.2 Guidance Assurance Activities ............................................................................................... 34 2.2.5.3 Testing Assurance Activities .................................................................................................. 34 2.2.6 FCS_COP.1/Hash Cryptographic Operation (Hash Algorithm) .........................................34 2.2.6.1 TSS Assurance Activities ....................................................................................................... 34 2.2.6.2 Guidance Assurance Activities ............................................................................................... 34 2.2.6.3 Testing Assurance Activities .................................................................................................. 34 2.2.7 FCS_COP.1/KeyedHash Cryptographic Operation (Keyed Hash Algorithm) ....................35 2.2.7.1 TSS Assurance Activities ....................................................................................................... 35 2.2.7.2 Guidance Assurance Activities ............................................................................................... 35 2.2.7.3 Testing Assurance Activities .................................................................................................. 35 2.2.8 FCS_RBG_EXT.1 Extended: Cryptographic Operation (Random Bit Generation) ...........36 2.2.8.1 TSS Assurance Activities ....................................................................................................... 36 2.2.8.2 Guidance Assurance Activities ............................................................................................... 36 2.2.8.3 Testing Assurance Activities .................................................................................................. 36 2.2.9 FCS_SSHC_EXT.1 SSH Client .........................................................................................36 2.2.9.1 FCS_SSHC_EXT.1.2 ............................................................................................................. 36 3 of 86 Arista Networks Switches Running EOS Assurance Activity Report 2.2.9.1.1 TSS Assurance Activities .................................................................................................. 36 2.2.9.1.2 Guidance Assurance Activities .......................................................................................... 37 2.2.9.1.3 Testing Assurance Activities ............................................................................................. 37 2.2.9.2 FCS_SSHC_EXT.1.3 ............................................................................................................. 37 2.2.9.2.1 TSS Assurance Activities .................................................................................................. 37 2.2.9.2.2 Guidance Assurance Activities .......................................................................................... 37 2.2.9.2.3 Testing Assurance Activities ............................................................................................. 37 2.2.9.3 FCS_SSHC_EXT.1.4 ............................................................................................................. 38 2.2.9.3.1 TSS Assurance Activities .................................................................................................. 38 2.2.9.3.2 Guidance Assurance Activities .......................................................................................... 38 2.2.9.3.3 Testing Assurance Activities ............................................................................................. 38 2.2.9.4 FCS_SSHC_EXT.1.5 ............................................................................................................. 39 2.2.9.4.1 TSS Assurance Activities .................................................................................................. 39 2.2.9.4.2 Guidance Assurance Activities .........................................................................................