NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
Archived TD0049:  Clarification of FAU_GEN.1 Requirements

Publication Date
2015.06.17

Protection Profiles
PP_ND_VPN_GW_EP_v1.1

Other References
PP_ND_VPN_GW_EP_v1.1

Issue Description

Clarification of "Additional Audit Record Contents" for Requirements for FAU_GEN.1 Audit Event and Details is needed. Current wording states:

Requirement

Auditable Events

Additional Audit Record Contents

FCS_IPSEC_EXT.1

Session Establishment with peer

Source and destination addresses

Source and destination ports

TOE Interface

FIA_X509_EXT.1

Establishing session with CA

Source and destination addresses

Source and destination ports

TOE Interface

FPF_RUL_EXT.1

Application of rules configured with the ‘log’ operation

Source and destination addresses

Source and destination ports

Transport Layer Protocol

TOE Interface

Indication of packets dropped due to too much network traffic

TOE interface that is unable to process packets

 

Resolution

Revised wording for requirements under "Additional Audit Record Contents" 

Requirement

Auditable Events

Additional Audit Record Contents

FCS_IPSEC_EXT.1

Session Establishment with peer

Entire packet contents of packets transmitted/received during session establishment

FIA_X509_EXT.1

Establishing session with CA

Entire packet contents of packets transmitted/received during session establishment

FPF_RUL_EXT.1

Application of rules configured with the ‘log’ operation

Source and destination addresses

Source and destination ports

Transport Layer Protocol

TOE Interface

Indication of packets dropped due to too much network traffic

TOE interface that is unable to process packets

 

Justification

Clarification of "Additional Audit Record Contents"

 
 
Site Map              Contact Us              Home