FMT_MOF.1.1 is a selection with one option, which is unsuitable for an optional requirement. Completion of operations in FMT_MOF.1.1 precludes the security target author from restricting TOE management operations specified in FMT_SMF.1 to authorized administrators.

The test assurance activities for FMT_MOF.1 and FMT_SMF.1 refer to “Test F1."  "Test F1" doesn't exist.

The following updates are made to PP_PSS_V3.0:

FMT_MOF.1.1

The TSF shall restrict the ability to [modify] the [behaviour of] the functions to [Security Administrators].

Application Note:  If there are additional management functions performed by the TOE (including those specified in Section 4.2.4, FMT_SMF), they should be added in the assignment.

Test

The testing for this SFR is covered in Test 4.5, Part 5.

FMT_SMF.1.1a Test

The testing for this SFR is covered in:

• FMT_SMF.1.1 a - Test 4.5, Part 5

Test 4.5, Part 5

SFRs mapped to the following test steps:

• CDF management: FMT_SMF.1.1 a and FMT_SMF.1.1 b

FMT_MOF.1 should include an assignment to allow the security target author to restrict TOE management functions specified in FMT_SMF.1.

Incorrect test mapping of the SFRs.