NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
TD0402:  NIT Technical Decision for RSA-based FCS_CKM.2 Selection

Publication Date
2019.02.24

Protection Profiles

Other References
FCS_CKM.2, ND SD V2.0E, ND SD V2.1

Issue Description

The NIT issued a technial decision for RSA-based FCS_CKM.2 Selection.

Resolution

Updated 3/13/2019 to also apply to NDcPP V2.1 and ND SD V2.1

 

In FCS_CKM.2, the selection option for RSA SP800-56B is replaced by:

“RSA-based key establishment schemes that meet the following: RSAES-PKCS1-v1_5 as specified in Section 7.2 of RFC 8017, “Public-Key Cryptography Standards (PKCS) #1: RSA Cryptography Specifications Version 2.1”

The test requirements in the Supporting Document for FCS_CKM.2, SP800-56B Key Establishment Schemes is replaced by:

 “The evaluator shall verify the correctness of the TSF’s implementation of RSAES-PKCS1-v1_5 by using a known good implementation for each protocol selected in FTP_TRP.1/Admin, FTP_TRP.1/Join, FTP_ITC.1 and FPT_ITT.1 that uses RSAES-PKCS1-v1_5.”

For further information, please see the NIT interpretation at: https://www.niap-ccevs.org/Documents_and_Guidance/ccevs/NITDecisionRfI201835.pdf

Justification

See issue description.

 
 
Site Map              Contact Us              Home