Evaluated Product - Details

Return to the EPL index

Senetas CN Series Application Software v3.0.2 & Senetas CM Management Application Software v7.6.1

Product type: Network and Network Related Devices and Systems
Product Status: Completed
Assurance Level: EAL2+ Augmented with ALC_FLR.2

Version: CN series Application Software version 3.0.2 and CM7 Management Application Software version 7.6.1
Components: See table below

Product Details

Product Description

Certification Country: AUSTRALIA/NEW ZEALAND (2017)
Certification Method: CC
Evaluation Facility: CSC
Manufacturer/Vendor/Distributor: Senetas Security Ltd

Senetas Security Ltd

312 Kings Way
South Melbourne Victoria 3205 Australia
Website: http://www.senetas.com
Product Website: http://www.senetas.com

Contact


John Weston
AU
Phone: (03) 9868 4588
Fax: (03) 9821 4899
Email: John.Weston@senetas.com

Documents

CC Certificate
Certification Report
Security Target
Maintenance Report
Security Target - Updated ST, version 2.4, dated Mar 18

The CN series encryptors are high-speed, standards based multi-protocol encryptors specifically designed to secure voice, data and video information transmitted over Ethernet and Fibre Channel data networks at data rates up to 100 Gigabits per second. It also provides access control facilities using access rules for each defined Ethernet or Fibre Channel connection.

The CM7 management application is a Graphical User Interface (GUI) software package that runs on Windows platforms. It can act as a Certification Authority (CA) for signing X.509 certificates, or alternatively supports the use of external CA PKI environments.  It provides secure remote installation of X.509 certificates into the Senetas encryptors using SNMPv3, and is also used to securely manage the encryptors.

The CN Series Models

ID

Description

A4010B

CN4010 1G ETHERNET (RJ45) UNIT

A4020B

CN4020 1G ETHERNET (SFP) UNIT

A6010B

CN6010 1G ETHERNET (SFP+RJ45) AC UNIT

A6011B

CN6010 1G ETHERNET (SFP+RJ45) DC UNIT

A6012B

CN6010 1G ETHERNET (SFP+RJ45) AC/DC UNIT

A6040B

CN6040 1G ETHERNET + 1/2/4G Fibre Channel (SFP+RJ45) AC UNIT

A6041B

CN6040 1G ETHERNET + 1/2/4G Fibre Channel (SFP+RJ45) DC UNIT

A6042B

CN6040 1G ETHERNET + 1/2/4G Fibre Channel (SFP+RJ45) AC/DC UNIT

A6100B

CN6100 10G ETHERNET (XFP) AC UNIT

A6101B

CN6100 10G ETHERNET (XFP) DC UNIT

A6102B

CN6100 10G ETHERNET (XFP) AC/DC UNIT

A6140B

CN6140 1/10G ETHERNET (SFP+) AC UNIT

A6141B

CN6140 1/10G ETHERNET (SFP+) DC UNIT

A6142B

CN6140 1/10G ETHERNET (SFP+) AC/DC UNIT

A8003-10

CN8000 MULTI-SLOT 1/10G ETHERNET + 4/8G Fibre Channel (SFP+) AC UNIT

A9100B

CN9100 100G ETHERNET (CFP4) UNIT

A9101B

CN9100 100G ETHERNET (CFP4) DC UNIT

A9102B

CN9100 100G ETHERNET (CFP4) AC/DC UNIT

A9120B

CN9120 100G ETHERNET (QSFP28) UNIT

A9121B

CN9120 100G ETHERNET (QSFP28) DC UNIT

A9122B

CN9120 100G ETHERNET (QSFP28) AC/DC UNIT

 

The TOE provides the following security functionality:

  • Audit – The TOE is able to generate auditable data for security relevant events
  • Certificate Management – certificates will be maintained for the use by the product
  • Protected Data Exchange – the confidentiality of packets sent over the untrusted network will be maintained
  • Identification and Authentication – of administrative users who are responsible for the configuration and monitoring of the TOE
  • Key Management – will be used in implementing security functions Information Flow Control – controlling the flow of received Ethernet or Fibre frames from external hosts
  • Role-Based Access Control – restriction of users to different configuration interfaces based on the role they are assigned
  • Secure Remote Management – remote administration by the CM Management Application allows for secure management and configuration of the TOE
  • Self Protection – the TOE will protect against unauthorised access to the physical security of the TOE

14 March 2018: Maintained TOE to version 3.0.2. See maintainenace report and updated ST.