Archived TD0101: TOE Access Banner Configuration as Management Function in SVPP
If the optional requirement FTA_TAB.1 is included in the Security Target (ST), it specifies that “the TSF shall display an advisory warning message regarding unauthorized use of the TOE”. And, its Assurance Activity specifies that the evaluator shall configure the TOE to display the advisory warning message “TEST TEST Warning Message TEST TEST”.
FMT_MOF_EXT.1.1 lists the management functions that controlled by authorized administrators. However, it does not include the configuration of the TOE Access Banner.
TOE Access Banner configuration is being added to the selection in #12 of FMT_MOF_EXT.1.1 so that it must be selected if FTA_TAB.1 is included in the ST. The additional bullet in that selection is as follows:
Ability to configure advisory warning message in banner, as described in FTA_TAB.1.
Additionally, the following statement is to be added to the Application Note in FMT_MOF_EXT.1.1:
If FTA_TAB.1 is included in the ST, then the “Ability to configure advisory warning message in banner, as described in FTA_TAB.1” selection in #12 must be selected.
Finally, an Application Note is to be added to FTA_TAB.1:
If FTA_TAB.1 is included in the ST, then the “Ability to configure advisory warning message in banner, as described in FTA_TAB.1” selection in #12 of FMT_MOF_EXT.1.1 must be selected.
These changes make it explicit that the Administrator must be able to configure the TOE Access Banner if FTA_TAB.1 is selected.