Archived TD0091: Modification of High-Security Use Case in MDF PP v2.0
The FCS_TLSC_EXT.2.6 requirement essentially limits the mobile devices to using TLS 1.2. Because TLS 1.2 does not support SHA-1, and because SHA-1 is used broadly throughout the Internet, the requirement makes it ineffective to browse the web.
FCS_TLSC_EXT.2.6 is no longer required to meet Use Case #2 (“Enterprise-owned device for specialized, high-security use”), as detailed in section G.2 of the Protection Profile for Mobile Devices v2.0.
See issue description.