Netscape MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR Administrator's Manual page 667

FAU_GEN.1.1 The IT environment shall be able to generate an audit record of the
following auditable events:
Start-up and shutdown of the audit functions;
1.
All auditable events for the minimum level of audit; and
2.
The events listed in Table 2 below.
3.
FAU_GEN.1.2 The IT environment shall record within each audit record at least
the following information:
Date and time of the event, type of event, subject identity, and the outcome
1.
(success or failure) of the event; and
For each audit event type, the information specified in the Additional Details
2.
column in Table A-2 below.
Additionally, the audit shall not include plaintext private or secret keys or other
critical security parameters.
Table A-2 Auditable Events and Audit Data
Section/Function Component
Security Audit FAU_GEN.1 Audit data
generation (iteration 1)
Identification and FIA_ATD.1 User attribute
Authentication definition
FIA_AFL.1 Authentication
failure handling
FIA_AFL.1 Authentication
failure handling
FIA_AFL.1 Authentication
failure handling
Event
Any changes to the audit
parameters, e.g., audit
frequency, type of event
audited
Any attempt to delete the audit
log
Successful and unsuccessful
attempts to assume a role
The value of maximum
authentication attempts is
changed
Maximum authentication attempts
unsuccessful authentication
attempts occur during user
login
An Administrator unlocks an
account that has been locked as
a result of unsuccessful
authentication attempts
Appendix A Common Criteria Environment: Security Requirements
Security Requirements for the IT Environment
Additional Details
667