NIAP: View Technical Decision Details
NIAP/CCEVS
  NIAP  »»  Protection Profiles  »»  Technical Decisions  »»  View Details  
TD0374:  GCM ciphersuite

Publication Date
2018.11.27

Protection Profiles
PP_OS_V4.2, PP_OS_V4.2.1

Other References
FCS_TLSC_EXT.1.1

Issue Description

FCS_TLSC_EXT.1.1 in the GP OS PP 4.2 includes an option "TLS_RSA_WITH_AES_256_CBC_SHA384 as defined in RFC 5288". However, RFC 5288 is about AES-GCM cipher suites, so specifying an AES_CBC cipher suite is incorrect.

Resolution

05/01/2019 - Updated to also apply to GPOS PP v4.2.1.

The fourth option in the FCS_TLSC_EXT.1.1 cipher suite selection is changed to:

  • TLS_RSA_WITH_AES_256_GCM_SHA384 as defined in RFC 5288
Justification

See issue description.

 
 
Site Map              Contact Us              Home