The MOD_VPN_CLI_V2.1 Supporting Document states for the FTP_DIT_EXT.1 Assurance Activity to refer to the Assurance Activity for FTP_DIT_EXT.1 in the App PP.    In MOD_VPN_CLI_V2.1, FTP_DIT_EXT.1 makes IPsec mandatory; however, IPsec is not identified in the SW APP Protection Profile.   The required assurance activity is not clear.

Section 2.3.3.1.1 for FTP_DIT_EXT.1 in the MOD_VPN_CLI_V2.1 SD will be updated with the following underlined text:

For IPsec, refer to the Assurance Activity for FCS_IPSEC_EXT.1 in the MOD_VPN_CLI_V2.1 Supporting Document. If other protocols are selected for FTP_DIT_EXT.1, refer to the Assurance Activity for FTP_DIT_EXT.1 in the App PP.

See issue description.