Product Type: Network Security

Certificate Details: CCEVS-VR-04-0062

Assurance Level: CC EAL 2

Evaluation Facility: Cable & Wireless

Manufacturer/Vendor/Distributor: Cisco Systems, Inc.

Level 1, 18 & 20 Brindabella Circuit
Canberra International Airport ACT 2609
Contact: Tony Hall
Federal Security Policy Systems Engineer
Sales / Channels
Phone: +61 2 6216 0647
Mobile: +61 401 890 577
Fax: +61 2 6247 3422
Email: anthhall@cisco.com
Web: www.cisco.com

	Security Target [1.46MB]
	Certification Report [362KB]
	Certificate Image [115KB]

The Cisco Intrusion Detection System v4.1(3) from Cisco Systems is a network-based Intrusion Detection System. The Cisco IDS v4.1(3) can analyse both the header and content of each packet. The Cisco IDS v4.1(3) can analyse single packets or a complete flow for attacks while maintaining flow state, allowing for the detection of multi-packet attacks. The Cisco IDS v4.1(3) uses a rule-based expert system to interrogate the packet information to determine the type of attack, be it simple or complex.

The Cisco IDS-4200 series appliance products are a stand alone product series in that all data collection and analysis is performed on one dedicated hardware platform. These units are to be placed at strategic points throughout a target IT system and interrogate passing network traffic. In response to an attack, the Cisco IDS v4.1(3) has several options that include generating an alarm, logging the alarm event, and killing TCP sessions.

CAVEAT:
The TOE evaluation did not include assessments of the cryptographic functions provided by the Secure Web Server (TLS) and the Secure Shell (SSH) remote management components. Australian Government agencies should refer to ACSI33 for policy on the use of these protocols.

New Zealand Government agencies should refer to the Government Communications Security Bureau.