Enterasys Dragon Intrusion Defense System Version 7.2.3 Running on Dragon Appliances
Enterasys Networks, Inc.
50 Minuteman Road
Andover, MA 01810
Enterasys Dragon Intrusion Defense System Version 7.2.3 Running on Dragon Appliances, from Enterasys Networks, Inc., was the subject of a Common Criteria evaluation performed by the Common Criteria Evaluation Facility at DOMUS IT Security Laboratories, Ottawa, Canada. The evaluation was completed in October 2008.
The evaluation of Enterasys Dragon Intrusion Defense System Version 7.2.3 determined that this Information Technology (IT) product can be trusted, to an assurance level of EAL 2 augmented with ALC_FLR.2 to conform to the requirements of the associated security target.
Enterasys Dragon Intrusion Defense System offers the following intrusion detection capabilities: Signature-based, Protocol-based, Anomaly-based and Behavior-based, coupled with intrusion prevention capabilities.
The system uses agents to detect and respond to suspicious activity based on collected forensic data used to determine the impact of network attacks. The intrusion prevention system will alert on the attack, drop the offending packets, terminate the session for TCP- and UDP-based attacks, and dynamically establish firewall rules that can keep the source of the threat off the network indefinitely or for a configurable period of time. Intrusion prevention capabilities allow systems to drop offending packets and neutralize threats after an identified attack, by terminating an attacker's session or establishing firewall access policies.
The product performs both network and host based intrusion detection/prevention. Additionally, the product manages and monitors routers, switches, firewalls, applications, and web servers.
The scope of this evaluation is defined by the security target, which identifies assumptions made during the evaluation, the intended environment for Enterasys Dragon Intrusion Defense System Version 7.2.3, the IT security requirements to be met, and the level of confidence (evaluation assurance level) to which it is asserted that Enterasys Dragon Intrusion Defense System Version 7.2.3 satisfies its IT security requirements.
Consumers are advised to carefully review the certification report to gain an understanding of the security functionality, the evaluated configuration, and the intended operating environment for Enterasys Dragon Intrusion Defense System Version 7.2.3.
Product Type: Intrusion Defence
Security Target: PDF (857KB) * Accessibility Notice * Official Languages Notice