- Product Name :
- WebSAM SystemManager
- Version of TOE :
- 5.2.1
- Product Type :
- other
- Certification No. :
- C0193
- Date :
- 2008-10-30
- Version of Common Criteria:
- 3.1
- Conformance Claim :
- EAL1
- PP Identifier :
- None
- Vendor :
- NEC Corporation
-
- POC :
- Hideaki Imada
- Division :
- 2nd IT Software Division
- Phone :
- +81-44-431-7549
- E-mail :
-
- Evaluation Facility :
- Electronic Commerce Security Technology Laboratory Inc. Evaluation Center
PRODUCT DESCRIPTION
Description of TOE
WebSAM SystemManager, TOE, is software product to collect and manage configuration information, failure information, and performance data of the monitored servers.
WebSAM SystemManager consists of WebSAM SystemManager Agent which is installed on the monitored servers, WebSAM SystemManager Manager which is installed on the monitoring server, and WebSAM SystemManager Monitoring Terminal which is installed on the monitoring terminal computer.
The monitoring server stores configuration information, failure information, and performance data sent by the monitored servers. WebSAM SystemManager enable users, such as administrators and operators, to access the configuration information, failure information, and performance information stored on the monitoring server according to the user’s scope of authority assigned to its role via the Monitoring Terminal.
TOE Security functions
The range of security functions of TOE in this assessment is specified as the following functions to match with the purpose: correct users (such as administrators and operators) are identified and, without fault, obtain access to information (such as configuration information, failure information, and performance data) stored on the monitoring server according to the user’s scope of authority assigned to its role.
-
- Identity authentication function to identify and authenticate users.
- Access control function to restrict access to information according to the user’s
scope of authority assigned to its role.
-User information management function to manage user information and authority
information required to the identity authentication and access control mentioned above.
TOE security function targets that correct users only can access (refer, update, and delete) information according to the user scope of authority assigned to its role without improper use.