Archived TD0214: FCS_CKM.1 & FCS_CKM_EXT.5 - Selectable Audit Events
The audit requirement for FCS_CKM.1 mandates the auditing of a failing key generation operation. Due to the FIPS 140-2 power-on self test, the mathematical operation is tested during boot time. If that test would fail, booting of the device would be halted. Additionally to cause a failure during runtime it would require decomposing the TOE. FCS_CKM_EXT.5 mandates the auditing of a failing wipe of the device. This failure would be caused by other failures that are already audited. Tests for an audit function that requires inducing errors where an error cannot be induced without decomposing the TOE should be disregarded and should be removed in future versions of the PP.
Requirement Auditable Event Additional Audit Record Contents
FCS_CKM_EXT.5 [selection: Failure of the wipe, None]. No additional information.
For these particular SFRs, the failure that would cause these SFRs to fail would be audited by a different requirement; thus if the initial failure can be audited, then these resulting failures caused by the ripple effect do not need to be audited.