Homework # 8b
Evaluation and Classified Systems
Due April 6, 2005
CS 996—Spring 2005
Information Security Management
SUBMIT THIS AND ALL HOMEWORKS TO:
NOTE: This counts as a full week’s assignment, half of a week’s assignment (there’s enough work to do on this)!!!
Part I:
Download the Firewall Protection Profile for Medium Robustness environments from the NIST web site shown in the lecture slides. Scan this to become familiar with what the major sections are and where to find the actual security capabilities for the Protection Profile.
Now, assume you have a simple packet filtering firewall for your PC/laptop. Assume all it does is filter based on source (IP, port) and destination (IP, port) based on rules you set up when you are logged into the PC as administrator. Assume also that you can define rules to log events, including access, denials, and successful access attempts by source and port Ids. Assume nothing else about your firewall.
Look over the list of TOE Functional Security Requirements listed in section 5.1 and described in sections 5.1.1 thru 5.1.9
Which of these services does your firewall definitely provide? Explain.
Which do you think it might provide, but can’t tell without detailed knowledge of your OS. Explain how the OS might provide these.
Part II
Read Anderson, section 7.4 (Examples of MLS Systems), and review the Orange Book and Common Criteria assurance levels.
For the following figure from the lecture (with red arrows added):
For the two boxes labeled “G” with red arrow pointing to them, what minimal level
“Orange Book” rating is required? Minimal Common Criteria rating? For the “F” box, What is the minimal Orange Book and Common Criteria Rating? Explain your answers.
What 2 examples of MLS components mentioned in Anderson might be used for the “G” boxes?
For the following figure adapted from the lecture:
What is the minimum Orange Book and Common Criteria rating for each of the components marked with an arrow?
What MLS products in Anderson might be used for the MLS Workstation?