[Public Interpretations Database]

I-0416: Association Of Access Control Attributes With Subjects And Objects

 
TYPE:                 NIAP Interpretation
NUMBER:               I-0416
STATUS:               Formally Superseded

TITLE:                Association Of Access Control Attributes With Subjects And
                      Objects
SUPERSEDES:
     I-0353           Association Of Access Control Attributes With Subjects And Objects
SUPERSEDED BY:        
     CCIMB-INTERP-0103

EFFECTIVE:            2000-12-05
SUPERSEDED:           2003-07-15

SOURCE REFERENCE:     CC v2.1 Part 2 Subclause 6.2 FDP_ACF.1
                      CC v2.1 Part 2 Subclause F.2 FDP_ACF.1
RELATED TO:
     I-0353           Association Of Access Control Attributes With Subjects And Objects
     I-0354           Association Of Information Flow Attributes W/Subjects And Information
     I-0417           Association Of Information Flow Attributes W/Subjects And Information
CCIMB ENTRY:          CCIMB-INTERP-0103

ISSUE:

The Common Criteria does not currently provide functional requirements for identifying the clear association of controlled entities (subjects, information) with relevant security attributes. The existing FDP_ACF family provides only for a simple list of security attributes, without the ability to describe the required association to controlled entities.

STATEMENT

The CC is modified so that the statement of Access Control Policy provides a clear association of controlled entities (subjects, objects) with relevant security attributes.

RECOMMENDED CRITERIA CHANGES

To address this interpretation, the following changes are made to CC v2.1, Part 2: (additions marked thusly; deletions marked thusly):

  • The FDP_ACF.1 component is relabeled as FDP_ACF.1-NIAP-0416. Unless otherwise noted in these changes, all normative and informative material associated with FDP_ACF.1 is incorporated unchanged into FDP_ACF.1-NIAP-0416, and all references to FDP_ACF.1 in the CC, CEM, or other Common Criteria documentation is changed to refer to FDP_ACF.1-NIAP-0416.

  • The FDP_ACF.1.1 element is replaced with FDP_ACF.1.1-NIAP-0416, as follows:

    FDP_ACF.1.1-NIAP-0416: The TSF shall enforce the [assignment: access control SFP] to objects based on the following: [assignment: list of subjects and objects controlled under the indicated SFP, and for each, the SFP-relevant security attributes, or named groups of SFP-relevant security attributes]

  • In Subclause F.2, the first sentence in paragraph 763 is replaced with:

    In FDP_ACF.1.1-NIAP-0416, the PP/ST author should specify, for each controlled subject and object, the security attributes and/or named groups of security attributes that the function will use in the specification of the rules.

SUPPORT:

This interpretation makes it clear that an appropriate assignment is one that provides, for each controlled entity, the SFP-relevant security attributes of that entity. This can be clearly provided as a two column table: one column is the controlled entity (subject, object), the other is a list of SFP-relevant security attributes for that controlled entity.

Note: This interpretation is superseding a previously-approved formal interpretation primarily to reflect modifications to the interpretation format. The intent of the interpretation has not been changed, although some specifics of the criteria changes or the support may have been clarified or corrected.