NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
TD0713:  Functional Package SFR mappings to objectives

Publication Date
2023.01.03

Protection Profiles
PP_OS_V4.3

Other References
Section 5.1.8

Issue Description

PP_OS_V4.3 does not map SFRs from TLS and SSH Functional Packages to security objectives.

Resolution

The following entries are added to the O.PROTECTED_COMMS section of Table 2: SFR Rationale in Section 5.1.8 of PP_OS_V4.3:

 

FCS_DTLSC_EXT.1 (TLS Package)

FCS_DTLSC_EXT.1 supports the objective by defining the TOE's implementation of DTLS as a client if this protocol is used for protected communications.

FCS_DTLSC_EXT.2 (TLS Package)

FCS_DTLSC_EXT.2 supports the objective by defining the TOE's implementation of mutually-authenticated DTLS as a client if this protocol is used for protected communications.

FCS_DTLSS_EXT.1 (TLS Package)

FCS_DTLSS_EXT.1 supports the objective by defining the TOE's implementation of DTLS as a server if this protocol is used for protected communications.

FCS_DTLSS_EXT.2 (TLS Package)

FCS_DTLSC_EXT.2 supports the objective by defining the TOE's implementation of mutually-authenticated DTLS as a server if this protocol is used for protected communications.

FCS_TLS_EXT.1 (TLS Package)

FCS_TLS_EXT.1 supports the objective by defining the TOE’s implementation of TLS and DTLS if this protocol is used for protected communications.

FCS_TLSC_EXT.1 (TLS Package)

FCS_TLSC_EXT.1 supports the objective by defining the TOE's implementation of TLS as a client for protected communications.

FCS_TLSC_EXT.2 (TLS Package)

FCS_TLSC_EXT.2 supports the objective by defining the TOE's implementation of mutually-authenticated TLS as a client for protected communications.

FCS_TLSC_EXT.3 (TLS Package) (Objective)

FCS_TLSC_EXT.3 supports the objective by requiring the TSF to support the TLS signature algorithms extension as part of establishing TLS protected communications.

FCS_TLSC_EXT.4 (TLS Package)

FCS_TLSC_EXT.4 supports the objective by defining the TOE’s implementation of renegotiation for TLS as a client for protected communications.

FCS_TLSC_EXT.5 (TLS Package)

FCS_TLSC_EXT.5 supports the objective be defining the TOE’s implementation of supported groups extension for TLS as a client for protected communications.

FCS_TLSS_EXT.1 (TLS Package)

FCS_TLSS_EXT.1 supports the objective by defining the TOE's implementation of TLS as a server for protected communications.

FCS_TLSS_EXT.2 (TLS Package)

FCS_TLSS_EXT.2 supports the objective by defining the TOE's implementation of mutually-authenticated TLS as a server for protected communications.

FCS_TLSS_EXT.3 (TLS Package) (Objective)

FCS_TLSS_EXT.3 supports the objective by requiring the TSF to support the TLS signature algorithms extension as part of establishing TLS protected communications.

FCS_TLSS_EXT.4 (TLS Package)

FCS_TLSS_EXT.4 supports the objective by defining the TOE’s implementation of renegotiation for TLS as a server for protected communications.

FCS_SSH_EXT.1 (SSH Package)

FCS_SSH_EXT.1 supports the objective by defining the TOE’s implementation of SSH if this protocol is used for protected communications.

FCS_SSHC_EXT.1 (SSH Package)

FCS_SSHC_EXT.1 supports the objective by defining the TOE’s implementation of SSH as a client if this protocol is used for protected communications.

FCS_SSHS_EXT.1 (SSH Package)

FCS_SSHS_EXT.1 supports the objective by defining the TOE’s implementation of SSH as a server if this protocol is used for protected communications.

 

Justification

See issue description.

 
 
Site Map              Contact Us              Home