NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
Archived TD0214:  FCS_CKM.1 & FCS_CKM_EXT.5 - Selectable Audit Events

Publication Date
2017.06.13

Protection Profiles
PP_MD_v3.0

Other References
FCS_CKM.1; FCS_CKM_EXT.5

Issue Description

The audit requirement for FCS_CKM.1 mandates the auditing of a failing key generation operation. Due to the FIPS 140-2 power-on self test, the mathematical operation is tested during boot time.  If that test would fail, booting of the device would be halted. Additionally to cause a failure during runtime it would require decomposing the TOE.  FCS_CKM_EXT.5 mandates the auditing of a failing wipe of the device. This failure would be caused by other failures that are already audited. Tests for an audit function that requires inducing errors where an error cannot be induced without decomposing the TOE should be disregarded and should be removed in future versions of the PP.

Resolution

Requirement                  Auditable Event                                                                                                       Additional Audit Record Contents

FCS_CKM_EXT.5            [selection: Failure of the wipe, None].                                                                        No additional information.

FCS_CKM.1                   [selection: Failure of key generation activity for authentication keys, None].                  No additional information.

Justification

For these particular SFRs, the failure that would cause these SFRs to fail would be audited by a different requirement; thus if the initial failure can be audited, then these resulting failures caused by the ripple effect do not need to be audited.

 
 
Site Map              Contact Us              Home