1 Scope
This Standard specifies testing and evaluation approaches of network and terminal separation products according to technical requirements of GB/T 20279-2015.
This Standard is applicable to testing and evaluation of network and terminal separation products developed according to security class requirements of GB/T 20279-2015.
2 Normative References
The following documents for the application of this document are essential. For dated reference, only the edition cited applies. For undated reference, the latest edition of the normative document (including any amendments) applies.
GB 17859-1999 Classified Criteria for Security Protection of Computer Information System
GB/T 20279-2015 Information Security Technology - Security Technical Requirements of Network and Terminal Separation Products
GB/T 25069-2010 Information Security Technology - Glossary
3 Terms and Definitions
For the purpose of this Standard, terms and definitions established in GB 17859-1999, GB/T 25069-2010 and GB/T 20279-2015 apply.
4 Testing Environment and Tool
4.1 Security Function and Environmental Adaptation Testing Environment
4.1.1 Terminal separation products
Security function and environmental adaptation testing environment are shown in Figure 1.
... ...
... ...
Contents
Foreword I
1 Scope
2 Normative References
3 Terms and Definitions
4 Testing Environment and Tool
4.1 Security Function and Environmental Adaptation Testing Environment
4.2 Performance Testing Environment
5 Security Function Testing
5.1 Overall Description
5.2 Terminal Separation Products
5.3 Network Separation Products
5.4 Network Unilateral Transmission Products
6 Assessment of Security Assurance Requirements
6.1 Base-level Testing
6.2 Enhanced-Level Testing
7 Environmental Adaptation Testing
7.1 Next Generation Internet Support
7.2 IPv6 Transition Network Environment Support
8 Performance Testing
8.1 Exchange Rate
8.2 Hardware Switching Time
Bibliography