National Information Assurance Partnership
Common Criteria Evaluation and Validation Scheme
Validation Report
for
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3,
GCS13xxTAA3, and GCS14xxTAA3)
Report Number: CCEVS-VR-11047-2020
Dated: May 1, 2020
Version: 1.1
National Institute of Standards and Technology National Security Agency
Information Technology Laboratory Information Assurance Directorate
100 Bureau Drive 9800 Savage Road STE 6940
Gaithersburg, MD 20899 Fort George G. Meade, MD 20755-6940
®
TM
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
ii
ACKNOWLEDGEMENTS
Validation Team
Daniel Faigin
The Aerospace Corporation
John Butterworth
Patrick Mallett, PhD
Paul Bicknell
The MITRE Corporation
Common Criteria Testing Laboratory
Leidos
Columbia, MD
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
iii
Table of Contents
1 Executive Summary...................................................................................................................1
2 Identification..............................................................................................................................4
2.1 Threats...............................................................................................................................4
2.2 Organizational Security Policies.......................................................................................4
3 Architectural Information ..........................................................................................................5
4 Assumptions...............................................................................................................................8
4.1 Clarification of Scope .......................................................................................................8
5 Security Policy...........................................................................................................................9
5.1 Security Audit...................................................................................................................9
5.2 User Data Protection.........................................................................................................9
5.3 Identification and Authentication ...................................................................................10
5.4 Security Management .....................................................................................................10
5.5 Protection of the TSF......................................................................................................10
5.6 TOE Access ....................................................................................................................10
6 Documentation.........................................................................................................................11
7 Independent Testing.................................................................................................................12
7.1 Evaluation team independent testing ..............................................................................12
7.2 Vulnerability Survey.......................................................................................................12
8 Evaluated Configuration ..........................................................................................................14
9 Results of the Evaluation .........................................................................................................15
10 Validator Comments/Recommendations .................................................................................16
11 Annexes....................................................................................................................................16
12 Security Target.........................................................................................................................18
13 Abbreviations and Acronyms ..................................................................................................19
14 Bibliography ............................................................................................................................21
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
iv
List of Figures
Figure 1 Simplified block diagram of a 2-Port KVM TOE............................................................ 6
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
v
List of Tables
Table 1: IOGEAR Secure KVM Switch Series TOE Models ........................................................ 2
Table 2: Evaluation Details............................................................................................................. 3
Table 3: TOE Security Assurance Requirements ......................................................................... 15
Table 4: Security Target Identification......................................................................................... 18
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
1
1 Executive Summary
This report is intended to assist the end-user of this product and any security certification agent
for that end-user to determine the suitability of this Information Technology (IT) product in their
environment. End-users should review the Security Target (ST) [5]1
, (which is where specific
security claims are made) as well as this Validation Report (VR) (which describes how those
security claims were evaluated, tested, and any restrictions that may be imposed upon the
evaluated configuration) to help in that determination. Prospective users should carefully read
the Assumptions and Clarification of Scope in section 4 and the Validator Comments in section
10, where any restrictions on the evaluated configuration are highlighted.
This report documents the National Information Assurance Partnership (NIAP) assessment of the
evaluation of the IOGEAR Secure KVM Switch Series (models GCS12xxTAA3,
GCS13xxTAA3, and GCS14xxTAA3) of peripheral sharing switches. It presents the evaluation
results, their justifications, and the conformance results. This VR is not an endorsement of the
Target of Evaluation (TOE) by any agency of the U.S. Government and no warranty of the TOE
is either expressed or implied. This VR applies only to the specific version and configuration of
the product as evaluated and as documented in the ST.
The evaluation of the IOGEAR Secure KVM Switch Series of peripheral sharing switches was
performed by Leidos Common Criteria Testing Laboratory (CCTL) in Columbia, Maryland, in
the United States and was completed in May 2020. The evaluation was conducted in accordance
with the requirements of the Common Criteria and Common Methodology for IT Security
Evaluation (CEM), version 3.1, revision 4 [4] and the assurance activities specified in the
Protection Profile for Peripheral Sharing Switch, Version 3.0 [5]. Leidos performed an analysis
of the NIAP Technical Decisions (https://www.niap-
ccevs.org/Documents_and_Guidance/view_tds.cfm). Leidos determined Technical Decisions
TD0083, TD0086, TD0136, TD0144, TD0251, TD0298, and TD0421 applied to this evaluation.
The evaluation was consistent with NIAP Common Criteria Evaluation and Validation Scheme
(CCEVS) policies and practices as described on their web site (www.niap-ccevs.org).
The Leidos evaluation team determined that the IOGEAR Secure KVM Switch Series of
peripheral sharing switches is conformant to the claimed Protection Profile (PP) and, when
installed, configured and operated as specified in the evaluated guidance documentation,
satisfied all of the security functional requirements stated in the ST. The information in this VR
is largely derived from the publicly available Assurance Activities Report (AAR) [7] and the
associated proprietary test report [8] produced by the Leidos evaluation team.
1
See section 14 Bibliography.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
2
Each device in the IOGEAR Secure KVM Switch series is a peripheral sharing switch that
allows for securely sharing one set of peripherals between multiple computers. A user may
connect a mouse, keyboard, user authentication device (for example, CAC reader), speaker, and
one or two video displays to a Secure KVM Switch. The user may switch the set of peripherals
between connected computers. The maximum number of connected computers is two, four, or
eight depending on model. The user can switch the peripherals between any of the connected
computers while preventing unauthorized data flows or leakage between computers.
The TOE is the following models of the IOGEAR Secure KVM Switch Series. The firmware
version for all models is v1.1.101.
Table 1: IOGEAR Secure KVM Switch Series TOE Models
Configuration 2-Port 4-Port 8-Port
DisplayPort
Single Head GCS1412TAA3 GCS1414TAA3 GCS1418TAA3
Dual Head GCS1422TAA3 GCS1424TAA3 GCS1428TAA3
HDMI
Single Head GCS1312TAA3 GCS1314TAA3 GCS1318TAA3
Dual Head GCS1322TAA3 GCS1324TAA3 GCS1328TAA3
DVI
Single Head GCS1212TAA3 GCS1214TAA3 GCS1218TAA3
Dual Head GCS1222TAA3 GCS1224TAA3 GCS1228TAA3
In Table 1, DisplayPort and HDMI configurations support HDMI monitor peripherals. DVI
configurations support DVI monitors. All TOE devices support both USB and PS/2 keyboards
and mice.
The validation team monitored the activities of the evaluation team, examined evaluation
evidence, provided guidance on technical issues and evaluation processes, and reviewed the
evaluation results produced by the evaluation team. The validation team found that the
evaluation results showed that all assurance activities specified in the claimed PP had been
completed successfully and that the product satisfied all of the security functional and assurance
requirements as stated in the ST.
Therefore the validation team concludes that the testing laboratory’s findings are accurate, the
conclusions justified, and the conformance results are correct. The conclusions of the testing
laboratory in the evaluation technical report are consistent with the evidence produced.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
3
The products, when configured as specified in the guidance documentation, satisfy all of the
security functional requirements stated in the IOGEAR Secure KVM Switch Series (models
GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3) Security Target.
Item Identifier
Evaluated Product IOGEAR Secure KVM Switches Series (models GCS12xxTAA3,
GCS13xxTAA3, and GCS14xxTAA3)
Sponsor & Developer IOGEAR
15365 Barranca Pkwy,
Irvine, CA 92618
CCTL Leidos
Common Criteria Testing Laboratory
6841 Benjamin Franklin Drive
Columbia, MD 21046
Completion Date May 1, 2020
CC Common Criteria for Information Technology Security Evaluation, Version
3.1, Revision 4, September 2012
Interpretations There were no applicable interpretations used for this evaluation.
CEM Common Methodology for Information Technology Security Evaluation:
Version 3.1, Revision 4, September 2012
PP Protection Profile for Peripheral Sharing Switch, Version 3.0
Disclaimer The information contained in this Validation Report is not an endorsement of
the IOGEAR Secure KVM Switch Series by any agency of the U.S.
Government and no warranty of the IOGEAR Secure KVM Switch Series is
either expressed or implied.
Evaluation Personnel Gregory Beaver
Justin Fisher
Allen Sant
Furukh Siddique
Kevin Steiner
Validation Personnel John Butterworth, Lead Validator
Patrick Mallett, ECR Team,
Paul Bicknell, Senior Validator
Daniel Faigin, Senior Validator
Table 2: Evaluation Details
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
4
2 Identification
The CCEVS is a joint National Security Agency (NSA) and National Institute of Standards and
Technology (NIST) effort to establish commercial facilities to perform trusted product
evaluations. Under this program, security evaluations are conducted by commercial testing
laboratories called Common Criteria Testing Laboratories (CCTLs) in accordance with National
Voluntary Laboratory Assessment Program (NVLAP) accreditation.
The NIAP Validation Body assigns validators to monitor the CCTLs to ensure quality and
consistency across evaluations. Developers of information technology products desiring a
security evaluation contract with a CCTL and pay a fee for their product’s evaluation. Upon
successful completion of the evaluation, the product is added to NIAP’s Product Compliant List
(PCL) (https://www.niap-ccevs.org/Product/).
The following table identifies the evaluated Security Target and TOE.
Name Description
ST Title IOGEAR Secure KVM Switch Series (models GCS12xxTAA3,
GCS13xxTAA3, and GCS14xxTAA3) Security Target
ST Version v1.0
Publication Date March 6, 2020
Vendor and ST
Author
IOGEAR
TOE Reference IOGEAR Secure KVM Switch Series identified in Table 1
TOE Software
Version
Firmware version v1.1.101
Keywords KVM Switch, Peripheral Sharing Switch
2.1 Threats
The Threats addressed by the TOE are those contained in the Protection Profile for Peripheral
Sharing Switch [5].
2.2 Organizational Security Policies
There are no Organizational Security Policies for the Protection Profile for Peripheral Sharing
Switch [5].
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
5
3 Architectural Information
The IOGEAR Secure KVM Switch series are keyboard, video, mouse (KVM) switches with the
following characteristics:
 2/4/8 port USB HDMI single and dual display for DisplayPort (6 devices)
 2/4/8 port USB HDMI single and dual display for HDMI (6 devices)
 2/4/8 port USB DVI single and dual display for DVI (6 devices).
IOGEAR Secure KVM Switch series devices allow for the connection of a mouse, keyboard,
user authentication device such as smart card or CAC reader (optional), speaker (optional), and
one or two video displays (depending on specific model) to the Secure KVM Switch console
ports. The Secure KVM Switch computer ports are then connected to up to 2, 4, or 8 separate
computers (depending on specific model). The user can then switch the peripherals that are
connected to the console ports between any of computers connected to the computer ports using
a push button on the front of the device. The selected computer is always identifiable by a bright
orange LED associated with the applicable selection button.
The Secure KVM Switch products support analog audio output and USB connections for the
keyboard, mouse, and user authentication device for the computer ports. Depending on model,
they support DisplayPort, DVI-I, or HDMI for the computer video display interface. The
switched peripherals on the console side are analog audio output, USB or PS/2 keyboard and
mouse, USB user authentication device, and HDMI or DVI-I video output (depending on model).
Separate USB cables are used to connect the keyboard/mouse combination and the user
authentication device to the connected computers. Models that support DisplayPort video on the
computer sider convert the DisplayPort video signal to HDMI for output to the connected
display(s) on the console port(s). IOGEAR Secure KVM Switch series devices also support
audio output connections from the computers to a connected audio output device. Only speaker
connections are supported and the use of an analog microphone or line-in audio device is
prohibited.
IOGEAR Secure KVM Switch series devices implement a secure isolation design for all 2/4/8-
Port and DVI/HDMI/DisplayPort models to share a single set of peripheral components. Each
peripheral has its own dedicated data path. USB keyboard and mouse peripherals are filtered and
emulated. The USB authentication device connection is on a separate circuit from the keyboard
and mouse and, after filtering for qualification, has a direct connection path to the selected
computer. The TOE does not emulate the user authentication device function. DisplayPort video
from the selected computer is converted to HDMI for communication with the connected video
display and the AUX channel is monitored and converted to video.
IOGEAR Secure KVM Switch series devices are designed to enforce the allowed and disallowed
data flows between user peripheral devices and connected computers as specified in [5]. Data
leakage is prevented across the TOE to avoid compromise of the user's information. Modern
KVM security approaches address the risk of TOE local user data leakage through remote attacks
to coupled networks in addition to protecting user information passing through the TOE.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
6
IOGEAR Secure KVM Switch series devices automatically clear the internal TOE keyboard and
mouse buffers.
The following figure shows the data path design using a 2-Port KVM as an example.
Figure 1 Simplified block diagram of a 2-Port KVM TOE
The data flow of USB and PS/2 keyboard/mouse is controlled by two types of host controller for
console human interface device (HID) keyboard and pointing devices: USB host controller and
PS/2 host controller. Details of the data flow architecture are provided in the proprietary
IOGEAR Secure KVM Switch Isolation Document. All keyboard and mouse connections are
filtered first, and only authorized devices will be allowed. The TOE emulates data from
authorized USB or PS/2 keyboard and mouse to USB data for computer sources.
The TOEs proprietary design ensures there is no possibility of data leakage from a user’s
peripheral output device to the input device; ensures that no unauthorized data flows from the
monitor to a connected computer; and unidirectional buffers ensure that the audio data can travel
only from the selected computer to the audio device. There is no possibility of data leakage
between computers or from a peripheral device connected to a console port to a non-selected
computer. Each connected computer has its own independent Device Controller, power circuit,
and EEPROM. Additionally, keyboard and mouse are always switched together.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
7
All IOGEAR Secure KVM Switch series devices feature hardware security mechanisms
including tamper-evident labels, always active chassis-intrusion detection, and tamper-proof
hardware construction. Software security includes restricted USB connectivity (non-HID are
ignored when switching), an isolated channel per port that makes it impossible for data to be
communicated between computers, and automatic clearing of the keyboard and mouse buffer.
IOGEAR Secure KVM Switch series devices are compatible with standard personal/portable
computers, servers or thin-clients.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
8
4 Assumptions
The Assumptions that exist for the TOE are those contained in the Protection Profile for
Peripheral Sharing Switch [5].
4.1 Clarification of Scope
All evaluations (and all products) have limitations, as well as potential misconceptions that need
clarification. This text covers some of the more important limitations and clarifications of this
evaluation. Note that:
1. As with any evaluation, this evaluation only shows that the evaluated configuration meets
the security claims made, with a certain level of assurance (the assurance activities
specified in the claimed PPs and performed by the evaluation team).
2. This evaluation covers only the specific hardware products, and firmware versions
identified in this document, and not any earlier or later versions released or in process.
3. The evaluation of security functionality of the product was limited to the functionality
specified in the claimed PPs. Any additional security related functional capabilities of the
product were not covered by this evaluation. Any additional non-security related
functional capabilities of the product, even those described in the ST, were not covered
by this evaluation.
4. This evaluation did not specifically search for, nor attempt to exploit, vulnerabilities that
were not “obvious” or vulnerabilities to objectives not claimed in the ST. The CEM [4]
defines an “obvious” vulnerability as one that is easily exploited with a minimum of
understanding of the TOE, technical sophistication and resources.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
9
5 Security Policy
IOGEAR Secure KVM Switch series devices enforce the following TOE security functional
policies as specified in the ST.
5.1 Security Audit
The TOE generates audit records for the authorized administrator actions. Each audit record
records a standard set of information such as date and time of the event, type of event, and the
outcome (success or failure) of the event.
5.2 User Data Protection
The TOE controls and isolates information flowing between the peripheral device interfaces and
a computer interface. The peripheral devices supported include:
 USB keyboard,
 USB mouse,
 PS/2 keyboard,
 PS/2 mouse,
 USB authentication device (CAC reader or smart card reader),
 Audio output, and
 DVI or HDMI video (depending on device type).
Some TOE models accept DisplayPort signals at the computer interface and convert the signals
to HDMI signals at the console interface.
The TOE only supports USB keyboard/mouse at the computer interface.
The TOE authorizes peripheral device connections with the TOE console ports based on the
peripheral device type.
The TOE ensures that any previous information content of a resource is made unavailable upon
the deallocation of the resource from a TOE computer interface immediately after the TOE
switch to another selected computer and on start-up of the TOE.
The TOE provides a Reset to Factory Default function allowing authenticated authorized
Administrators to remove all settings previously configured by the Administrator (such as USB
device whitelist/blacklist). Once the Reset to Factory Default function has been completed, the
Secure KVM will terminate the Administrator Logon mode, purge keyboard/mouse buffer, and
power cycle the Secure KVM automatically.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
10
5.3 Identification and Authentication
The TOE provides an identification and authentication function for the administrative user to
perform administrative functions such as configuring the user authentication device filtering
whitelist and blacklist (configurable device filtration). The authorized administrator must logon
by providing a valid password.
5.4 Security Management
The TOE supports configurable device filtration (CDF). This function is restricted to the
authorized administrator and allows the TOE to be configured to accept or reject specific USB
devices using CDF whitelist and blacklist parameters. Additionally, the TOE provides security
management functions to reset to factory default and to change the administrator password.
5.5 Protection of the TSF
The TOE runs a suite of self-tests during initial startup and after activating the reset button. The
suite includes:
 Test of the basic TOE hardware and firmware integrity,
 Test of the basic computer-to-computer isolation, and
 Test of critical security functions (i.e., user control and anti-tampering).
The TOE provides users with the capability to verify the integrity of the TSF and the TSF
functionality.
The TOE resists physical attacks on the TOE enclosure for the purpose of gaining access to the
internal components or to damage the anti-tampering battery by becoming permanently disabled
when tampering is detected. The TOE preserves a secure state by disabling the TOE when there
is a failure of the power on self-test or a failure of the anti-tampering function.
The TOE provides unambiguous detection of physical tampering that might compromise the
TSF. The TSF provides the capability to determine whether physical tampering with the TSF's
devices or TSF's elements has occurred.
5.6 TOE Access
The TOE displays a continuous visual indication of the computer to which the user is currently
connected, including on power up, and on reset.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
11
6 Documentation
The guidance documentation examined during the course of the evaluation and delivered with the
TOE is as follows:
 IOGEAR 2/4/8-Port USB DVI/HDMI/DisplayPort, Single/Dual View Secure KVM Switch
Administrator’s Guide v1.06, 06 March 2020
 IOGEAR 2/4/8-Port USB DVI/HDMI/DisplayPort, Single/Dual View Secure KVM Switch
User Manual v1.07, 06 March 2020
 IOGEAR 2/4/8-Port USB DVI/HDMI/DisplayPort, Single/Dual View Secure KVM Switch
Port Authentication Utility Guide v1.06, 06 March 2020
 IOGEAR 2/4/8-Port USB DVI/HDMI/DisplayPort, Single/Dual View Secure KVM Switch
Admin Log Audit Code, IOGEAR Proprietary Document v1.06, 06 March 2020
o Note: The Administrator’s Guide, Port Authentication Utility Guide, and Admin
Log Audit Code documents are provided only to registered customers.
The above documents are considered to be part of the evaluated TOE. The documentation is
available by download from www.iogear.com.
Any additional customer documentation delivered with the TOE or made available through
electronic downloads should not be relied upon for using the TOE in its evaluated configuration.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
12
7 Independent Testing
7.1 Evaluation team independent testing
This section describes the testing efforts of the evaluation team. It is derived from information
contained in the following proprietary document:
 IOGEAR Secure KVM Switch Series Common Criteria Test Report and Procedures,
Version 1.1, April 24, 2020 [8]
A non-proprietary summary of the test configuration, test tools, and tests performed may be
found in:
 Assurance Activities Report For IOGEAR Secure KVM Switch Series (models
GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3), Version 1.0, April 24, 2020 [7]
The purpose of the testing activity was to confirm the TOE behaves in accordance with the TOE
security functional requirements as specified in the ST for a product claiming conformance to
Protection Profile for Peripheral Sharing Switch [5].
The evaluation team devised a Test Plan based on the Testing Assurance Activities specified in
Protection Profile for Peripheral Sharing Switch, [5]. The Test Plan described how each test
activity was to be instantiated within the TOE test environment. The evaluation team executed
the tests specified in the Test Plan and documented the results in the team test report listed
above.
Independent testing took place at the Leidos facility in Columbia, Maryland from January 6,
2020 to February 28, 2020.
The evaluators received the TOE in the form that normal customers would receive it, installed
and configured the TOE in accordance with the provided guidance, and exercised the Team Test
Plan on equipment configured in the testing laboratory.
Given the complete set of test results from the test procedures exercised by the evaluators, the
testing requirements for Protection Profile for Peripheral Sharing Switch [5] were fulfilled.
7.2 Vulnerability Survey
Searches of public domain sources for potential vulnerabilities in the TOE were conducted
periodically throughout the evaluation. An initial search was conducted on November 21, 2019,
and a second search was conducted on March 3, 2020. The results of these searches are
documented in [VA].
The product vendor does not publish vulnerability information on its web site, so the
vulnerability search was limited to Google search and the National Vulnerability Database. A
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
13
Google search of the product did not identify any vulnerabilities specific to the TOE (results
were found for IOGEAR IP-based KVM switches but the TOE does not include any such
model).
Vulnerability searches were performed using the terms listed below for the rationale listed
below:
Search Term Search Type Rationale
aten Advanced: Vendor TOE vendor
belkin Advanced: Vendor Comparable vendor
black box Advanced: Vendor Comparable vendor
blackbox Advanced: Vendor Comparable vendor
iogear Advanced: Vendor TOE vendor (OEM)
ipgard Advanced: Vendor Comparable vendor
kvm Basic: Keyword General type
kvm switch Basic: Keyword TOE type
peripheral switch Basic: Keyword TOE type
raritan Advanced: Vendor TOE vendor (OEM)
smartavi Advanced: Vendor Comparable vendor
tripplite Advanced: Vendor Comparable vendor
While some results were returned, no results applied to the specific TOE models or to the
technology used by the TOE (for example, “kvm” returns results for the Linux Kernel-based
Virtual Machine technology which is not applicable to the TOE).
In the absence of public vulnerabilities, the evaluation team determined that the test assurance
activities prescribed by the claimed PP, specifically related to unintended switching, connectivity
of unauthorized peripherals, attempts to reverse audio signal, and attempts to breach the physical
boundary of the TOE demonstrate sufficient resilience of the TOE to an attacker of Basic attack
potential.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
14
8 Evaluated Configuration
The evaluated version of the TOE consists of the IOGEAR Secure KVM Switch series devices
identified in Table 1.
The TOE must be deployed as described in section 4 Assumptions of this document and be
configured in accordance with the documentation identified in Section 6.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
15
9 Results of the Evaluation
The evaluation was conducted based upon the assurance activities specified in Protection Profile
for Peripheral Sharing Switch [5] in conjunction with version 3.1 revision 4 of the CC and the
CEM ([1], [2], [3], and [4]). A verdict for an assurance component is determined by the resulting
verdicts assigned to the corresponding evaluator action elements.
The validation team’s assessment of the evidence provided by the evaluation team is that the
evidence demonstrates the evaluation team performed the assurance activities in the claimed PPs,
and correctly verified that the product meets the claims in the ST.
The details of the evaluation are recorded in the Evaluation Technical Report (ETR) [9], which is
controlled by the Leidos CCTL. The security assurance requirements are listed in the following
table.
Table 3: TOE Security Assurance Requirements
Assurance Component ID Assurance Component Name
ADV_FSP.1 Basic function specification
AGD_OPE.1 Operational user guidance
AGD_PRE.1 Preparative procedures
ALC_CMC.1 Labeling of the TOE
ALC_CMS.1 TOE CM coverage
ATE_IND.1 Independent testing – conformance
AVA_VAN.1 Vulnerability survey
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
16
10 Validator Comments/Recommendations
The validation team notes that the evaluated configuration is dependent upon the TOE being
configured per the evaluated configuration instructions in the documents listed in Section 6. No
versions of the TOE and software, either earlier or later were evaluated.
Please note that the functionality evaluated is scoped exclusively to the security functional
requirements specified in the Security Target. Other functionality included in the product was not
assessed as part of this evaluation.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
17
11 Annexes
Not applicable.
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
18
12 Security Target
Table 4: Security Target Identification
Name Description
ST Title IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3,
and GCS14xxTAA3) Security Target
ST Version v1.0
Publication
Date
March 6, 2020
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
19
13 Abbreviations and Acronyms
AAR Assurance Activity Report
AUX Auxiliary (Channel)
CAC Common Access Card
CC Common Criteria
CCEVS Common Criteria Evaluation and Validation Scheme
CCTL Common Criteria Test Lab
CDF Configurable Device Filtration
CEM Common Evaluation Methodology
DP DisplayPort
DVI Digital Visual Interface
EEPROM Electrically Erasable Programmable Read-Only Memory
ETR Evaluation Technical Report
HDMI High Definition Multimedia Interface
HID Human Interface Device
IT Information Technology
KVM Keyboard, Video and Mouse
LED Light-Emitting Diode
NIAP National Information Assurance Partnership
NIST National Institute of Standards and Technology
NSA National Security Agency
NVLAP National Voluntary Laboratory Assessment Program
PC Personal Computer
PCL Product Compliant List
PP Protection Profile
PSS Peripheral Sharing Switch
ST Security Target
TOE Target of Evaluation
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
20
TSF TOE Security Functions
USB Universal Serial Bus
VR Validation Report
VALIDATION REPORT
IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3)
21
14 Bibliography
The Validation Team used the following documents to produce this Validation Report:
[1] Common Criteria for Information Technology Security Evaluation Part 1:
Introduction, Version 3.1, Revision 4, September 2012.
[2] Common Criteria for Information Technology Security Evaluation Part 2: Security
Functional Requirements, Version 3.1 Revision 4, September 2012.
[3] Common Criteria for Information Technology Security Evaluation Part 3: Security
Assurance Components, Version 3.1 Revision 4, September 2012.
[4] Common Methodology for Information Technology Security Evaluation, Evaluation
Methodology, Version 3.1, Revision 4, September 2012.
[5] Protection Profile for Peripheral Sharing Switch (PSS), Version 3.0, 13 February
2015
[6] IOGEAR Secure KVM Switch Series (models GCS12xxTAA3, GCS13xxTAA3, and
GCS14xxTAA3) Security Target, Version 1.0, March 6, 2020
[7] Assurance Activities Report for IOGEAR Secure KVM Switch Series (models
GCS12xxTAA3, GCS13xxTAA3, and GCS14xxTAA3), Version 1.0, April 24, 2020
[8] IOGEAR Secure KVM Switch Series Common Criteria Test Report and Procedures,
Version 1.1, April 24, 2020
[9] Evaluation Technical Report for IOGEAR Secure KVM Switch, Version 1.0, April
24, 2020