NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
TD0236:  FCS_TLSC_EXT.2.1 - TLS Client Curve Limitation

Publication Date
2017.09.08

Protection Profiles
PP_MD_V3.1

Other References
FCS_TLSC_EXT.2.1; PP_MD_V3.1

Issue Description

While the MD PP v3.1 does not limit the ciphersuites that the client can propose, the PP still needs to limit the curves.

Resolution

The SFR for FCS_TLSC_EXT.2.1 in PP_MD_V3.1 should state:

The TSF shall present the Supported Elliptic Curves Extension in the Client Hello handshake message with the following NIST curves: [selection: secp256r1, secp384r1, secp521r1] and no other curves.

Justification

Consistency across PPs.

 
 
Site Map              Contact Us              Home