Security Target, Version 3.9 March 18, 2008Nortel VPN Router v7.05 and Client Workstation v7.11 Page 18 of 67© 2008 Nortel Networks4 Security ObjectivesThis section identifies the security objectives for the TOE and its supporting environment. The security objectivesidentify the responsibilities of the TOE and its environment in meeting the security needs.4.1 Security Objectives for the TOEThe specific security objectives are as follows:O.I&A The TOE must be able to identify and authenticate users prior to allowing access to TOEfunctions and data.O.AUDIT The TOE must record audit records for data accesses and use of the System functions.O.SELFPROTECT The TOE must protect itself from unauthorized modifications and access to its functionsand data.O.FUNCTIONS The TOE must provide functionality that enables only authorized users to establish VPNsessions with the TOE using the IPSec protocol.O.ADMIN The TOE must provide facilities to enable an authorized administrator to effectivelymanage the TOE and its security function, and must ensure that only authorizedadministrators are able to access such functionality.O.TEST The TOE must provide functionality that enables testing of its correct functioning andintegrity.O.REPLAY The TOE must provide functionality that enables detection of replay attack and takeappropriate action if an attack is detected.O.CONFIDENT The TOE must use the IPSec tunneling protocol to ensure confidentiality of datatransmitted between the Nortel VPN Client and the Nortel VPN Router, and/or betweentwo Nortel VPN Routers.O.INTEGRITY The TOE must use the IPSec tunneling protocol to ensure integrity of data transmittedbetween the Nortel VPN Client and the Nortel VPN Router, and/or between two NortelVPN Routers.O.FILTER The TOE must filter all incoming and outgoing packets that pass through it, and accept orreject packets based on their attributes.