NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
TD0042:  Removal of Low-level Crypto Failure Audit from PPs

Publication Date
2018.06.15

Protection Profiles
PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_SV_V1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WEBBROWSER_v1.0, PP_WLAN_CLI_V1.0

Other References

Issue Description

The Assurance Activity for FAU_GEN.1 requires the developer’s administrative guidance to contain an audit record for the following auditable events:

  • FCS_CKM.1 - Failure of the key generation activity
  • FCS_CKM_EXT.4 - Failure of the key zeroization process
  • FCS_COP.1(*) - Failure of cryptographic functions (encryption. decryption, signature, hashing)
  • FCS_RBG_EXT.1 - Failure of the randomization process

Documenting the above audit events for administrative guidance is directly dependent on each respective functional component failing.
In some cases, it is difficult to cause these functional components to fail as it requires extensive low-level manipulation of the TOE’s operating conditions.

Resolution

06/15/2018: This TD was was archived in error. It is now unarchived as not all PP's associated with it are archived.

The “Auditable Events” and “Additional Audit Record Contents” columns should be changed for specific PPs according to the table below.

For every entry where FCS_CKM.1 failures are audited, the entry in the "Auditable Events" column should state "Failure of key generation activity for authentication keys." and the entry in the "Additional Audit record Contents" column should state "No additional information.". 

For every entry where FCS_RBG_EXT.1 failures are audited, the entry in the "Auditable Events" column should state "Failure of the randomization process." and the entry in the "Additional Audit record Contents" column should state "No additional information.".

 

  FCS_CKM.1 FCS_CKM_EXT.4 FCS_COP(*) FCS_RBG_EXT.1
PP_CA_V1.0 Y N N Y
PP_ESM_AC_V2.1 N N N N
PP_ESM_ICM_V2.1 N N N N
PP_ESM_PM_V2.1 N N N N
PP_SV_V1.0 N N/A N Y
PP_VOIP_V1.3 Y N N Y
PP_VPN_IPSEC_CLIENT_V1.4 Y N N N
PP_WEBBROWSER_V1.0 N N N N
PP_WLAN_CLI_V1.0 N N N N
Justification

In general, products going against many of these PPs are applications, so none of them will be providing their own entropy source; hence, audit of FCS_RBG_EXT.1 is not needed.  For some of these applications, the only requirements that may be audited are failure to generate long-term authentication key material.

 
 
Site Map              Contact Us              Home