NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
Archived TD0362:  "Failure of the randomization process" audit

Publication Date
2018.10.03

Protection Profiles
MOD_VPN_CLI_V2.1

Other References
FCS_RBG_EXT.1, FIA_PSK_EXT.1

Issue Description

For FAU_GEN.1.1, the "failure of the randomization process" audit for FIA_PSK_EXT.1 is intended for when the PSK is generated by the RBG and should be audited in association with FCS_RBG. However, the Base-PPs may not mandate audit of FCS_RBG SFRs.

Resolution

In Section C.1, FAU_GEN.1 Table C-1 will be modified as follows:

Remove:

Requirement               Auditable Events                              Additional Audit Record Contents

FIA_PSK_EXT.1      |    Failure of the randomization process. | None

Add:

Requirement               Auditable Events                                             Additional Audit Record Contents

FCS_RBG_EXT.1    |    Failure of the randomization process (Optional). | None

Justification

See issue description.

 
 
Site Map              Contact Us              Home