HP 3PAR InForm OS Common Criteria Administrator's Reference (QL226-96586, October 2012)
Operating in Common Criteria Mode 16
Functionality that is excluded from the CC evaluated
configuration
This section provides details on items excluded from the CC evaluated configuration.
SNMP
Activities in the SNMP agent component are not logged in a manner consistent with the
majority of the InForm OS components. There is minimal visibility to the actions performed
by the SNMP agent in the system audit logs.
The HP 3PAR Storage System SNMP implementation is SNMPv3-compliant as defined in
RFC-3414 and the cryptography implementation complies with RFC-3826. In RFC-3414,
encrypting trap PDUs is optional and the HP 3PAR Storage System does not encrypt the
PDUs. However, the Common Criteria standard requires all communication across the
management network to be encrypted.
For these reasons, SNMP was excluded from the evaluated configuration.
syslog
The HP 3PAR Storage System can export events (excluding debug events) to an external
SYSLOG server, over UDP port 514, using the syslog protocol (RFC 5524). Though the
syslog protocol supports TLS, the HP 3PAR Storage Server does not.
The “debug” version of events in the InForm OS are security relevant (user log in/out).
Though the events can be viewed using the showeventlog –debug CLI command, they
are not exported through syslog.
For these reasons, syslog was excluded from the evaluated configuration.
CIM
The HP 3PAR Storage System supports Common Information Model (CIM) management
capabilities. However, CIM is an application level management interface that, while
configurable to use SSL/TLS, requires custom-built user clients. HP 3PAR does not distribute
clients for CIM.
Similar to SNMP, the CIM server component does not log security-relevant events to the
system audit log in a manner consistent with the majority of InForm OS components, which
could complicate audit functions.
For these reasons, CIM was excluded from the evaluated configuration.