Product Name Huawei PEUa Part Number PEUa Manufacturer HUAWEI Application BSC Condition New The major security features implemented by BSC6900 software and subject to evaluation are: 1. Authentication: Operators accessing the TOE in order to execute device management functions are identified by individual user names and authenticated by passwords. Also, the TOE connects with the M2000 entity (external management element of the whole communication solution). The communication with the M2000 is protected connection using the SSL/TLS. Also an additional private arithmetic process common to both parties is applied before the authentication. Once the M2000 is properly connected the interaction with the TOE is made by the utilization of a special user (EMSCOMM) registered in the BSC6900 software. 2. Role-based access control: The TOE implements role-based access control, limiting access to different management functionality to different roles. 3. Auditing: Audit records are created for security-relevant events related to the use of BSC6900 software. Huawei BSC6900 Multimode Base Station Controller Software Security Target 2011-12-20 Huawei BSC6900 Multimode Base Station Controller Software Security Target Page 7/ 58 4. Communications security: BSC6900 software provides SSL/TLS channels (for FTP, HTTP, MML, BIN) to access the TOE. 5. Management of security functionality: The TOE offers management functionality for its security functionality. 6. Digital signature: For the installation of GBTS managed element, the TOE is able to check the software integrity of the package previous to the installation of the element in order to verify its integrity.