- Product Name :
- WebOTX Application Server High reliability unit
- Version of TOE :
- 7.11
- Product Type :
- Application Server
- Certification No. :
- C0157
- Date :
- 2008-04-25
- Conformance Claim :
- EAL2 Augmented with ALC_FLR.1
- PP Identifier :
- None
- Vendor :
- NEC Corporation
-
- POC :
- Takumi Kubota
- Division :
- Third IT Software Division
- Phone :
- +81-44-431-7632
- E-mail :
- Evaluation Facility :
- Electronic Commerce Security Technology Laboratory Inc.
Evaluation Center
PRODUCT DESCRIPTION
Description of TOE
TOE is a part of the web application server "WebOTX Application Server" that is a J2EE 1.4 (Java TM 2 platform Enterprise Edition Specification V1.4) compliant.
TOE security functionality
TOE provides following security functions :
-
- Identification and authentification function to the general user.
- Access control function to the general user.
- Identification and authentification function to the WebOTX administrator.
- User management function to the WebOTX administrator.
- Deployment control function of user application to the WebOTX Administrator.
- Recovery function of user application.
Security functional requirements
This TOE implements the following security functional requirements.
| Security audit | Non-repudiation of origin/receipt | Cryptographic functionality | Access control |
| Data authentication | Export data protection | Information flow control | Import data protection |
| Internal transfer data protection | Residual information protection | Rollback | Stored data integrity |
| Transfer data confidentiality | Transfer data integrity | Identification and authentication | Security management |
| Privacy Control | Security functionality protection | Resource utilisation management | TOE access control |
| Trusted path/channels |