NIT Technical Decision for Clarification for NTP MAC Keys.

The SFRs FAU_GEN.1, FCS_CKM.4 and FPT_SKP_EXT.1 shall be applied to all cryptographic keys that are related to secure communication (i.e. related to FTP_TRP.1, FTP_ITC.1, FPT_ITT.1). The NTP requirements have been introduced in NDcPP V2.1 as a rather 'standalone' set of requirements with 'no audit requirements' specified in the ECD section for FCS_NTP_EXT.1 and no dependencies on FCS_CKM - in contrast to the corresponding sections for secure communication protocols like TLS. As NTP keys are not intended to be used for encryption of sensitive information, the level of protection is different compared to other pre-shared keys. It has therefore not been intended that NTP keys are treated as other pre-shared keys in the context of NDcPP.

For further information, please see NIT Interpretation at: https://www.niap-ccevs.org/Documents_and_Guidance/ccevs/NITDecisionRFI202109.pdf

See Issue Description.