![[Public Interpretations Database]](http://www.niap-ccevs.org/assets/images/precedent-db.jpg){kind=small}
PD-0065: Meaning of "access control and/or information flow control SFPs" in FPT_SEP
This decision represents a long-term technical decision based on an OD, and may not be the same as the final results of the source OD. With respect to published criteria documentation and scheme documents, it provides suggested guidance on evaluation direction, but is not authoritative. Authoritative decisions are provided through the published criteria documents and published scheme and international interpretations thereof. With respect to published PPs, PDs are authoritative corrections to the PP, based on input from the PP author (if available), that are in force until the publication of the next revision of that PP.
| Effective Date: | 2002-08-13 |
| Last Modified | 2006-08-02 |
Issue
In CC v2.1, FPT_SEP.3.3 appears to be missing an assignment since it refers to "access control and/or information flow control SFPs" without allowing them to be specified as FPT_SEP.2.3 does.
Resolution
As FPT_SEP.3.3 in CC v2.1 was intended to cover all access control SFPs and all information flow control SFPs, there is no need for listing those SFPs.
Support
Based on an examination of the bolded changes in FPT_SEP.3.3 in CC v2.1, it is clear that the component authors did not want to allow PP or ST writers to exclude any of the access control orinformation flow SFPs from this component.
Modification History:
- 2004-08-12
- Updated effective date to reflect the date the PD was issued. (August 2004 NIB 6.c.xiv)
References:
- None
Related NIs:
- I-0373: FPT_SEP.2 And FPT_SEP.3 Are Not Hierarchical
Related CCIMB-INTERPs:
- None
Source OD: 0137