Automated Privilege Password Management v4.0.01

 
PROJECT ID
C082
ASSURANCE LEVEL
EAL2
Security Target (ST)
 
Certification Report (CR)
 
PRODUCT NAME AND VERSION
Automated Privilege Password Management v4.0.01
PRODUCT TYPE
A management of the issuance of One Time Password
PRODUCT SPONSOR / DEVELOPER

SecureKi Sdn. Bhd.

PRODUCT SPONSOR / DEVELOPER CONTACT DETAILS

SecureKi Sdn. Bhd.
DF2-09-03A (Unit No.2),
Level 9, Persoft Tower,
Persiaran Tropicana,

URL: www.secureki.com
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Phone: +603 7652 1188

The TOE is a solution to manage the issuance of One Time Password access credentials and permissions on Unix servers, Linux servers, Windows servers, network devices and other relevant applications for the assigned/registered privileged accounts in these stated components.

The TOE primary features include:

  • Security Audit: The TOE will generate audit records for selected security events in several log files and categories. Each audited event will be recorded along with date and time of event, user accounts that performed the event, event name and other event details.
  • Authentication and Identification: All TOE Administrator (Super User) must have a valid username/user ID inclusive of password to access and OTP. TOE Administrator (Super User) must login to APPM to manage all the connected devices (IT entities) as well as credentials of accessing these IT entities. Thus, configurations of these IT entities required to be registered in the APPM system, plus configuration policy of managing the access credentials of the IT entities shall be defined.
  • User Data Protection: User data and credentials including TOE Administrator (Super User) information is protected by ensuring that specific TOE Administrator (Super User) that is assigned with roles and privilege scan only access specific web pages/portals and hence the data associated with the web pages/portal. The accessibility of the pages/portals is protected based upon the access control policy.
  • Security Management: TOE Administrator (Super User) has access to all TOE features, that applicable to be managed through web application portal hosted by TOE. TOE is able to provide accessibility of account that has access privilege, similar or limited, to “Super User” account. In which, Super User account has the full access rights, role and privileges to the TOE.