The current requirement in FDP_VOP_EXT.1.1 states: The VoIP Client Application shall stop the transmission of voice data when a VoIP call is placed on hold, a VoIP call is placed on mute, a VoIP call is not connected, and [assignment: other actions, no other actions].

However, every VoIP Client Application does not have a hold capability. Therefore, this Technical Decision will make the requirements for ‘when a VoIP call is placed on hold’ an optional selection with an Application Note stating that it must be selected if the TOE has a hold capability. The VoIP Client Application is still be required to have a mute capability.

FDP_VOP_EXT.1 Voice Over IP Data Protection is being received to read:

FDP_VOP_EXT.1.1 The VoIP Client Application shall stop the transmission of voice data when a VoIP call is placed on mute, a VoIP call is not connected, [selection: a VoIP call is placed on hold, no other selections] and [assignment: other actions, no other actions].

Assurance Activity:

The evaluator shall examine the TSS to verify that it describes how each of the functions in the requirement is implemented. The evaluator shall also perform the following tests:

·         Test 1: The evaluator shall follow the procedure for initializing the device so that it is ready to receive and place calls. Using a packet capture tool, the evaluator shall verify that no voice traffic is transmitted until a call is placed/received. The evaluator shall place a call and verify that the voice traffic is being sent through the secure channel. The evaluator shall then implement each of the functions listed (mute, hold if selected, disconnect, and any other specified actions) and verify that voice traffic is no longer being transmitted.

·         Test 2: The evaluator shall follow the procedure for initializing the device so that it is ready to receive and place calls. Using a packet capture tool, the evaluator shall verify that no voice traffic is transmitted until a call is placed/received. The evaluator shall receive a call and verify that the voice traffic is being sent through the secure channel. The evaluator shall then implement each of the functions listed (mute, hold if selected, disconnect, and any other specified actions) and verify that voice traffic is no longer being transmitted.

Note: If the VoIP Client Application has a hold capability, the option must be selected.

Moving the requirements in FDP_VOP_EXT.1.1 for a hold capability to an optional selection