FPT_TUD_EXT.2 Integrity for Installation and Update requires updating to include for container/container images. 

Cited example: A vendor is preparing to evaluate a product against ASPP14. Their application runs solely as part of a docker container on Ubuntu; it cannot be installed directly on an OS. The docker container is installed as a standard container image format.

In Application Software v1.4 PP, under FPT_TUD_EXT.2 Integrity for Installation and Update, the tests are modified as follows, with strikethroughs denoting deletion and underlines denoting additons:

FPT_TUD_EXT.2.1  The application shall be distributed using [selection: the format of the platform-supported package manager, a container image].

Tests

FPT_TUD_EXT.2.1: If a container image is claimed the evaluator shall verify that application updates are distributed as container images.

If the format of the platform-supported package manager is claimed, the evaluator shall verify that application updates are distributed in the correct format. This varies per platform:

Platforms: Android....

The evaluator shall ensure that the application is packaged in the Android application package (APK) format.

Platforms: Microsoft Windows....

The evaluator shall ensure that the application is packaged in the standard Windows Installer (.MSI) format, the Windows Application Software (.EXE) format signed using the Microsoft Authenticode process, or the Windows Universal Application package (.APPX) format. See https://msdn.microsoft.com/enus/library/ms537364(v=vs.85).aspx for details regarding Authenticode signing.

Platforms: Apple iOS....

The evaluator shall ensure that the application is packaged in the IPA format.

Platforms: Linux....

The evaluator shall ensure that the application is packaged in the format of the package management infrastructure of the chosen distribution. For example, applications running on Red Hat and Red Hat derivatives shall be packaged in RPM format. Applications running on Debian and Debian derivatives shall be packaged in DEB format.

Platforms: Oracle Solaris....

The evaluator shall ensure that the application is packaged in the PKG format.

Platforms: Apple macOS....

The evaluator shall ensure that application is packaged in the DMG format, the PKG format, or the MPKG format.

Need to adapt to a wider use case to include for container/container images.