Belkin® Secure DVI KVM Switch, Secure KM Switch and
Secure Windowing KVM EAL 4 augmented ALC_FLR.3 Security Target
Table 11: SFR and Security Objectives Mapping
Objective
O.CONF
The TOE shall not violate the
confidentiality of
information, which it
processes. Information
generated within any
PERIPHERAL GROUP
COMPUTER CONNECTION
shall not be accessible by any
other PERIPHERAL GROUP‐
COMPUTER CONNECTION
SFR Addressing the
Objective
FDP_ETC.1 (Export of User
Data Without Security
Attributes)
FDP_IFC.1a (Subset
Information Flow Control)
FDP_IFC.1b (Subset
Information Flow Control ‐
Unidirectional Data Flow)
Rationale
FDP_ETC.1: In typical TOE
applications, USER data consists
of HUMAN INTERFACE DEVICE
control
information.
included
is
configuration
information such as KEYBOARD
settings
that
must
reestablished each time the TOE
switches between COMPUTERS.
These DEVICES neither expect
nor
require
any
ATTRIBUTE information. The
information content of the data
passed through a CONNECTION
is ignored.
Note that although this SFR
appears
in
the
Protection Profile, it is not
applicable specifically for the
TOE as it does not handle
HUMAN
INTERFACE
control information or states.
FDP_IFC.1a: This captures the
policy that no information flows
between different
PERIPHERAL PORT GROUP IDS.
FDP_IFC.1b: This captures the
policy that HUMAN INTERFACE
DEVICE data can flow only from
a
device
to
a
COMPUTER, thus preventing
data from one COMPUTER
flowing through the TOE to
another COMPUTER.
FDP_IFF.1a:
Rev. 1.01
Also
be
security
claimed
DEVICE
selected
Page | 51