The following bullet is found in PP_MDM_v4.0, Section 6.2.2 ‘Security Audit for Distributed TOEs’: “Every component must be able to buffer audit information and forward it to another TOE component and optionally store audit information locally.”

If a distributed TOE contains only one or more MDM Agents and an MDM Server, this requirement can be read as the MDM Server will need to send its audit records to an MDM Agent for the TOE to be a compliant distributed TOE. While it is expected that the MDM Agent will send audit records to the MDM Server, it is not the intent to require the MDM Server to send audit records to an MDM Agent.

For clarity, the second bullet in Section 6.2.2 is changed as follows, with underlines indicating additions and strikethroughs indicating deletions:

Every component must be able to buffer audit information and forward it to another TOE component or an external audit server. and oOptionally, each component may store audit information locally.

See issue description.