![[Public Interpretations Database]](http://www.niap-ccevs.org/assets/images/precedent-db.jpg){kind=small}
PD-0026: Typographical error in the ALFWPP-MED with respect to FDP_IFF.1(1) and FDP_IFF.1(2)
This decision represents a long-term technical decision based on an OD, and may not be the same as the final results of the source OD. With respect to published criteria documentation and scheme documents, it provides suggested guidance on evaluation direction, but is not authoritative. Authoritative decisions are provided through the published criteria documents and published scheme and international interpretations thereof. With respect to published PPs, PDs are authoritative corrections to the PP, based on input from the PP author (if available), that are in force until the publication of the next revision of that PP.
| Effective Date: | 2002-03-11 |
| Last Modified | 2006-08-02 |
Issue
There is a typographical error in the AFLWPP-MED with respect to FDP_IFF.1(1) and FDP_IFF.1(2). The PP authors have included the phrase, "the human user initiating the information flow authenticates according to FIA_UAU.5," in FDP_IFF.1.2(1) UNAUTHENTICATED SFPs and it is absent in FDP_IFF.1.2(2) AUTHENTICATED SFPs, where it really belongs.
Resolution
The error appears to be the result of a cut-and-paste error that occurred during PP development. The first bulleted item in FDP_IFF.1.2a for the UNAUTHENTICATED SFP, "the human user initiating the information flow authenticates according to FIA_UAU.5," should be removed and placed instead as the first bulleted item in FDP_IFF.1.2a for the AUTHENTICATED SFP.
Until it is corrected, developers and evaluators should proceed as if the correction has been made (i.e., the security target should reflect a correction.)
Modification History:
- 2004-08-12
- Updated effective date to reflect the date the PD was issued. (August 2004 NIB 6.c.xiv)
References:
- CC v2.1 August 1999
Related NIs:
- None
Related CCIMB-INTERPs:
- None
Source OD: 0191