NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
TD0298:  Update to FDP_IFF.1 Assurance Activities

Publication Date
2018.03.09

Protection Profiles
PP_PSS_V3.0

Other References
FDP_IFF.1.5(2)

Issue Description

Test 4.4 - Part 2, step #25 requires the evaluator to place the DisplayPort AUX Channel sniffer between the display peripheral and the TOE video output. This test is insufficient, as it does not consider the signals between the TOE and connected computer. 

Resolution

The following change will be made to PSS PP ver 3.0:

Section 4.2.13, Test 4.4, Part 2, Steps 25 to 32 will be modified as follows:

 

 

25. Disconnect the video cable from the computer video output and connect it to the TOE video output. Reconnect the TOE video input on computer #1 to the video output on computer #1, using a second DisplayPort AUX channel analyzer. If a second AUX channel analyzer is not available, steps 25 to 27 must be repeated with the single AUX channel analyzer between the TOE and the display and between the TOE and computer #1. For simplicity, two AUX channel analyzers are recommended.

26. Turn on the TOE and check that there is a stable image shown on the user display.

27. Check the AUX channel analyzer(s) to verify that the link is forced to version 1.1 only. If confirmed, then the test is successfully completed (no further testing required – continue to step 33 below). If version 1.2 or higher is detected, then continue with test steps 28 to 38.

 

In the following steps the evaluator shall verify that a TOE capable of transferring DisplayPort version 1.2 and higher protocol properly blocks unauthorized transactions.

 

28. Replace computer #1 with a DisplayPort source device capable of generating version 1.2 or higher traffic.

29. Connect the AUX channel analyzer between the TOE and the display. If a second AUX channel analyzer was used in step 25, disconnect the video input to the TOE and connect it to the AUX analyzer input. Connect the AUX analyzer output to the TOE video input.

30. Program the DisplayPort source device to simulate multiple display interactions. As a minimum, the evaluator shall simulate: HDMI Ethernet Audio Control (HEAC), Ethernet and USB.

31. Verify at the AUX channel analyzer that all transactions except for link negotiation, link training and EDID reading are blocked by the TOE. (These are the minimal set of DisplayPort transaction types required to establish video display link. All other transaction types must be blocked by the TOE).

Note that detailed information regarding these transactions can be found in VESA DisplayPort standard version 1.3 or higher.

32. Repeat Steps 28 to 31 for each TOE computer video interface. 

Justification

See issue description.

 
 
Site Map              Contact Us              Home