![[Public Interpretations Database]](http://www.niap-ccevs.org/assets/images/precedent-db.jpg){kind=small}
PD-0032: Dependency Correctness for AMA_CAT.1
This decision represents a long-term technical decision based on an OD, and may not be the same as the final results of the source OD. With respect to published criteria documentation and scheme documents, it provides suggested guidance on evaluation direction, but is not authoritative. Authoritative decisions are provided through the published criteria documents and published scheme and international interpretations thereof. With respect to published PPs, PDs are authoritative corrections to the PP, based on input from the PP author (if available), that are in force until the publication of the next revision of that PP.
| Effective Date: | 2002-06-11 |
| Last Modified | 2006-08-02 |
Issue
The assurance component AMA_CAT.1 lists only the dependency ACM_CAP.2 "Configuration items." However, the element AMA_CAT.1.1E states: "The evaluator shall confirm that the categorization of TOE components and tools, and the categorization scheme used, are appropriate and consistent with the evaluation results for the certified version." Consequently, ADV evidence is necessary for the evaluator to confirm the TOE components as either TSP-enforcing or non-TSP enforcing. Therefore, the AMA_CAT family should be revised to reflect the relevant dependencies on ADV documentation.
Resolution
The purpose of a dependency in the CC is not to identify every requirement calling for evaluation evidence that may be of use in performing the required actions; its purpose is to identify the other requirements that must be included in the PP/ST in order to meet the requirement itself. No change to the dependencies is expected.
Support
There is no need to identify as a dependency the requirements calling for evidence that may be used: either the requirement in question is already present as a result of the choice of assurance package (in which case specifying it as a dependency is unnecessary), or else the dependency is not needed (for the requirement is not included in the chosen assurance package). In this particular case, note paragraph 574 in Part 3 of CC v2.1, which begins "The term 'least abstract TSF representation' in AMA_CAT.1.1 refers to the least abstract representation of the TSF that was provided for the level of assurance that is being maintained."
Modification History:
- 2004-08-12
- Updated effective date to reflect the date the PD was issued. (August 2004 NIB 6.c.xiv)
References:
- TFFWPPv1.1
Related NIs:
- None
Related CCIMB-INTERPs:
- None
Source OD: 0161