Evaluated Product - Details

Return to the EPL index

HP OpenView Select Access

Product type: Network and Network Related Devices and Systems
Product Status: Archived
Assurance Level: EAL2

Version: 5.2

Product Details

Product Description

Certification Country: AUSTRALIA/NEW ZEALAND (2006)
Certificate Details: 2006/37, Apr 06
Certification Method: CC
Crypt Evaluation: Completed
Evaluation Facility: Logica
Manufacturer/Vendor/Distributor: Hewlett Packard

Hewlett Packard

901 King Street
West Toronto Canada
Product Website: http://www.openview.hp.com


Nicholas Baron
Product Manager

Phone: +416 309 5207
Fax: +416 309 5052
Email: nicholas.baron@hp.com


Certification Report
Security Target

HP OpenView Select Access is an authorisation management product utilising an XML-based architecture that provides a Privilege Management Infrastructure (PMI), allowing the administration and enforcement of user privileges and transaction entitlements to enterprise resources in a distributed environment.

HP OpenView Select Access integrates with Web and Java2 Enterprise (J2EE) application servers. All HP OpenView Select Access policies are stored and accessed directly using LDAP to a range of directory servers.

HP OpenView Select Access provides a centralised user, resource and policy management capability. Authorisation rules may be defined down to the URL, object or transaction level. Authorisation decisions are based on role-based identities. A policy inheritance scheme exists for users and resource groups, which reduces management overhead.

Authentication support is provided for multiple techniques including passwords and X.509 certificates. Secure session-based credentials are created and maintained by HP OpenView Select Access to allow users a “single sign-on like” capability.

A browser-based administration interface is provided to centrally administer and configure all of the distributed components of HP OpenView Select Access. Support is also provided for multi-level delegated administration to provide users with the capability to administer groups of users and/or resources for which they are responsible.

The HP OpenView Select Access Secure Audit Server consolidates runtime and policy administration logs with digitally signed entries to ensure the integrity of audit data stored.