Technical Decisions (TDs) are issued to correct errors or clarify Security Functional Requirements (SFRs) and Assurance Activities within NIAP-approved Protection Profiles (PPs).  Technical Decisions are effective upon publication and must be incorporated into all current and future evaluations.  Current evaluations include all evaluations except those for which a complete Check-Out package has been submitted to NIAP for final validation team review. 

In the rare case that a TD is issued which includes new SFRs or AAs, NIAP will make the determination for when products in evaluation must comply and include an effective date in the TD. 

Item	Title	Protection Profiles	References	Publication Date
TD0427	Reliable Time Source	PP_APP_v1.2, PP_APP_v1.3	A.Platform	2019.06.11
TD0425	NIT Technical Decision for Cut-and-paste Error for Guidance AA	CPP_ND_V2.0E, CPP_ND_V2.1	ND SD V2.0e, ND SD V2.1, FTA_SSL.3	2019.05.31
TD0424	NIT Technical Decision for NDcPP v2.1 Clarification - FCS_SSHC/S_EXT1.5	CPP_ND_V2.1	ND SD V2.1, FCS_SSHC_EXT.1.5, FCS_SSHS_EXT.1.5	2019.05.31
TD0423	NIT Technical Decision for Clarification about application of RfI#201726rev2	CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1	ND SD V2.0E, FW SD V2.0E, ND SD V2.1	2019.05.31
TD0422	FCS_SRTP_EXT.1 Test 2	EP_SBC_V1.1	FCS_SRTP_EXT.1	2019.05.16
TD0420	Conflict in FCS_SSHC_EXT.1.1 and FCS_SSHS_EXT.1.1	PP_SSH_EP_v1.0	FCS_SSHC_EXT.1.1, FCS_SSHS_EXT.1.1	2019.05.10
TD0419	FAU_GEN.1 Audit for FMT_SMF.1	EP_ESC_V1.0	FAU_GEN.1	2019.05.02
TD0418	Clarifications for ESC EP	EP_ESC_V1.0	FAU_STG.1/VVR, FAU_STG_EXT.1, FMT_SMF.1, FTP_ITC.1	2019.05.03
TD0417	Updates to FDP_IFF.1 and FIA_UAU.2	EP_ESC_V1.0	FDP_IFF.1, FIA_UAU.2.1/TC, FIA_UAU.2/VVoIP	2019.04.30
TD0416	Correction to FCS_RBG_EXT.1 Test Activity	PP_APP_v1.3	FCS_RBG_EXT.1.1	2019.04.24
TD0415	Trusted Update Test 4 Conditional	PP_CA_V2.1	FPT_TUD_EXT.1	2019.04.04
TD0414	FTP_ITC_EXT1. Tests 1 and 2	PP_APP_EMAILCLIENT_EP_v2.0	FTP_ITC_EXT.1	2019.04.04
TD0413	Conformance Claim to allow for a PP-Module	PP_MD_V3.1		2019.03.22
TD0412	NIT Technical Decision for FCS_SSHS_EXT.1.5 SFR and AA discrepancy	CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1	FCS_SSHS_EXT.1.5, ND SD V2.0e, ND SD V2.1	2019.03.22
TD0411	NIT Technical Decision for FCS_SSHC_EXT.1.5, Test 1 - Server and client side seem to be confused	CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1	FCS_SSHC_EXT.1.5, ND SD V2.0E, ND SD V2.1	2019.03.22
TD0410	NIT technical decision for Redundant assurance activities associated with FAU_GEN.1	CPP_ND_V1.0, CPP_ND_V2.0E, CPP_ND_V2.1	FAU_GEN.1, ND SD V1.0, ND SD V2.0e, ND SD V2.1	2019.03.22
TD0409	NIT decision for Applicability of FIA_AFL.1 to key-based SSH authentication	CPP_ND_V2.0E, CPP_ND_V2.1	FIA_AFL.1, ND SD v2.0e, ND SD v2.1	2019.03.22
TD0408	NIT Technical Decision for local vs. remote administrator accounts	CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1	FIA_AFL.1, FIA_UAU_EXT.2, FMT_SMF.1	2019.03.22
TD0407	NIT Technical Decision for handling Certification of Cloud Deployments	CPP_ND_V2.0E, CPP_ND_V2.1		2019.03.22
TD0406	FDP_IFF.1.5 Tests 1 and 2	EP_VVOIP_V1.0	FDP_IFF.1.5	2019.03.13
TD0405	FIA_SASL_EXT.1 Testing	PP_APP_EMAILCLIENT_EP_v2.0	FIA_SASL_EXT.1	2019.03.20
TD0403	Conditional Testing with TLS Session IDs	PP_BASE_VIRTUALIZATION_V1.0	FCS_TLSS_EXT.1; FCS_TLSS_EXT.2.1	2019.04.12
TD0402	NIT Technical Decision for RSA-based FCS_CKM.2 Selection	CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1	FCS_CKM.2, ND SD V2.0E, ND SD V2.1	2019.02.24
TD0401	NIT Technical Decision for Reliance on external servers to meet SFRs	CPP_ND_V2.0E, CPP_ND_V2.1	FTP_ITC.1	2019.02.24
TD0400	NIT Technical Decision for FCS_CKM.2 and elliptic curve-based key establishment	CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1	FCS_CKM.1, FCS_CKM.2	2019.02.24
TD0399	NIT Technical Decision for Manual installation of CRL (FIA_X509_EXT.2)	CPP_ND_V2.0E, CPP_ND_V2.1	FIA_X509_EXT.2, ND SD V2.0E, ND SD V2.1	2019.02.24
TD0398	NIT Technical Decision for FCS_SSH*EXT.1.1 RFCs for AES-CTR	CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1	FCS_SSHC_EXT.1.1, FCS_SSHS_EXT.1.1	2019.02.24
TD0397	NIT Technical Decision for Fixing AES-CTR Mode Tests	CPP_ND_V2.0E, CPP_ND_V2.1	FCS_COP.1/DataEncryption, ND SD V2.0E, ND SD V2.1	2019.02.24
TD0396	NIT Technical Decision for FCS_TLSC_EXT.1.1, Test 2	CPP_ND_V2.0E, CPP_ND_V2.1	FCS_DTLSC_EXT.1.1, FCS_DTLSC_EXT.2.1, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, ND SD V2.0E, ND SD V2.1	2019.02.24
TD0395	NIT Technical Decision for Different Handling of TLS1.1 and TLS1.2	CPP_ND_V2.0E, CPP_ND_V2.1	FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5, ND SD V2.0E, ND SD V2.1	2019.02.24
TD0394	NIT Technical Decision for Audit of Management Activities related to Cryptographic Keys	CPP_FW_V2.0E, CPP_ND_V2.0E	FAU_GEN.1, ND SD v2.0E	2019.02.24
TD0393	Require FTP_TRP.1(b) only for printing	PP_HCD_V1.0	FTP_TRP.1(b)	2019.02.26
TD0392	FCS_TLSC_EXT.1.2 Wildcard Checking	PP_APP_v1.2	FCS_TLSC_EXT.1.2	2019.02.24
TD0391	Intermediate certificate requirements	PP_MDM_V3.0	FIA_X509_EXT.1.1	2019.02.24
TD0390	Cryptographically Secure RNG	PP_APP_v1.2	FCS_RBG_EXT.1	2019.02.24
TD0389	Handling of SSH EP claim for platform	PP_APP_v1.2	FTP_DIT_EXT.1	2019.02.01
TD0387	VPN Client Required SFR for GPOS as Base PP	MOD_VPN_CLI_V2.1	Section 5.1.1	2019.01.29
TD0386	Platform-Provided Verification of Update	PP_OS_V4.2, PP_OS_V4.2.1	FPT_TUD_EXT.1.2	2019.02.07
TD0385	FTP_DIT_EXT.1 Assurance Activity Clarification	MOD_VPN_CLI_V2.1, PP_APP_v1.2	FTP_DIT_EXT.1	2019.01.08
TD0384	FIT Technical Decision for Use of SHA-384	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FCS_PCC_EXT.1.1, FCS_RBG_EXT.1.2, FCS_SMC_EXT.1.1	2018.12.21
TD0383	FIT Technical Decision for Updating FCS_CKM.4(b) Tests	CPP_FDE_EE_V2.0	CPP_FDE_EE_V2.0-SD, FCS_CKM.4(b)	2018.12.21
TD0382	Configuration Storage Options for Apps	PP_APP_v1.2	FMT_MEC_EXT.1	2019.01.03
TD0381	FCS_SMIME_EXT.1 Test 3	PP_APP_EMAILCLIENT_EP_v2.0	FCS_SMIME_EXT.1.1	2018.12.27
TD0380	Linux Keyring Requirement in FCS_STO_EXT.1	PP_APP_v1.2	FCO_STO_EXT.1	2019.01.08
TD0379	Updated FCS_IPSEC_EXT.1.11 Tests for VPN Client	MOD_VPN_CLI_V2.1	FCS_IPSEC_EXT.1.11	2018.12.20
TD0378	TOE/TOE Platform Selection in FCS_IPSEC_EXT.1 SFRs	MOD_VPN_CLI_V2.1	FCS_IPSEC_EXT.1.12, FCS_IPSEC_EXT.1.13	2018.12.13
TD0377	Tests for MDM unique certificates	EP_MDM_AGENT_V3.0, PP_MDM_V3.0	FIA_X509_EXT.2.3	2018.12.12
TD0376	Audit record entry for FMT_SMF.1 in FAU_GEN.1.2/VOIP	EP_VVOIP_V1.0	FAU_GEN.1.2/VVOIP	2018.11.29
TD0375	FMT_MOF.1(4) selection	PP_CA_V2.1	FMT_MOF.1	2018.11.27
TD0374	GCM ciphersuite	PP_OS_V4.2, PP_OS_V4.2.1	FCS_TLSC_EXT.1.1	2018.11.27
TD0373	RSA-based Key Establishment	MOD_VPN_CLI_V2.1	FCS_CKM.1.1, FCS_CKM.2.1	2018.12.11
TD0372	Auditing in VVOIP	EP_VVOIP_V1.0	FAU_GEN.1/VVOIP, FAU_STG_EXT.1	2018.11.27
TD0371	Section F.2 [Use Case 2]	PP_MD_V3.1		2018.11.21
TD0370	Management Function Update	PP_MDM_V3.0	FMT_SMF.1.1(2)	2018.11.16
TD0369	Long-term trusted channel key material	PP_MD_V3.1	FCS_STG_EXT.2.1, FCS_STG_EXT.2.2, FCS_STG_EXT.3.1	2018.10.17
TD0368	Audit Generation required in VVOIP	EP_VVOIP_V1.0	FAU_GEN.1/VVOIP, FAU_STG_EXT.1	2018.10.12
TD0367	Trusted Updates	EP_VVOIP_V1.0	FPT_TUD_EXT.1	2018.10.12
TD0366	Flexibility in Password Conditioning in FCS_COP.1(5)	PP_MD_V3.1	FCS_COP.1.1(5), FCS_CKM_EXT.3.2	2018.10.12
TD0365	FCS_CKM_EXT.4 selections	PP_OS_V4.2, PP_OS_V4.2.1	FCS_CKM_EXT.4	2018.10.12
TD0364	Android mmap testing for FPT_AEX_EXT.1.1	PP_APP_v1.2	FPT_AEX_EXT.1.1	2018.10.09
TD0363	Access Banner and applicability to programmatic interfaces	PP_BASE_VIRTUALIZATION_V1.0	FTA_TAB.1	2018.10.05
TD0362	"Failure of the randomization process" audit	MOD_VPN_CLI_V2.1	FCS_RBG_EXT.1, FIA_PSK_EXT.1	2018.10.03
TD0360	AD Server configuration in FMT_MOF_EXT.1	EP_CV_V1.0, EP_SV_V1.0, PP_BASE_VIRTUALIZATION_V1.0	FMT_MOF_EXT.1.2, FIA_UAU.5.1	2018.09.28
TD0359	Buffer Protection	PP_APP_v1.2	FPT_AEX_EXT.1.5	2018.09.21
TD0358	Cipher Suites for TLS in SWApp v1.2	PP_APP_v1.2	FCS_TLSC_EXT.1; FCS_TLSS_EXT.1	2018.09.24
TD0357	AES Modes for the MACsec EP	PP_NDCPP_MACSEC_EP_V1.2	FCS_COP.1	2018.10.01
TD0356	OE.CONNECTIONS added to VPN GW v2.1	EP_VPN_GW_V2.1		2018.09.20
TD0355	FCS_CKM.1/VPN for IKE authentication	MOD_VPN_CLI_V2.1	FCS_CKM.1/VPN	2018.09.20
TD0354	MDM CRLsign exceptions	PP_MDM_V3.0	FIA_X509_EXT.1	2018.09.20
TD0353	Guidance for Certificate Profiles	PP_CA_V2.1	FDP_CER_EXT.1.1	2018.09.18
TD0352	Added key destruction options	PP_APP_EMAILCLIENT_EP_v2.0	FCS_CKM_EXT.4	2018.09.18
TD0351	Additional methods for DEK formation	PP_MD_V3.1	FCS_CKM_EXT.2.1	2018.09.20
TD0349	Update to FPT_MCD_EXT.1.2	PP_APP_WEBBROWSER_EP_v2.0	FPT_MCD_EXT.1.2	2018.08.31
TD0348	FCS_TLSS_EXT.2.4 for TLS 1.2 or higher	PP_CA_V2.1	FCS_TLSS_EXT.2.4	2018.08.28
TD0347	Update of Use Case 2 in MDF PP	PP_MD_V3.1	Section F.2 [Use Case 2]	2018.08.23
TD0346	Revision of FMT_SMF_EXT.2 in MDF PP	PP_MD_V3.1	FMT_SMF_EXT.2	2018.08.23
TD0345	FIT Technical Decision for Key Destruction and KMD Documentation	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	CPP_FDE_AA_V2.0-SD, CPP_FDE_EE_V2.0-SD, FCS_CKM_EXT.4(b), FPT_PWR_EXT.1, FPT_PWR_EXT.2, FCS_CKM.1.1(b), C.2 Extended Component Definitions	2018.08.17
TD0344	FIT Technical Decision for Updating FCS_CKM.4(a) Tests	CPP_FDE_AA_V2.0	FCS_CKM.4(a), CPP_FDE_AA_V2.0-SD	2018.08.17
TD0343	NIT Technical Decision for Updating FCS_IPSEC_EXT.1.14 Tests	CPP_FW_V2.0E, CPP_ND_V2.0E	ND SD V2.0, FCS_IPSEC_EXT.1.14	2018.08.02
TD0342	NIT Technical Decision for TLS and DTLS Server Tests	CPP_ND_V2.0E	ND SD V2.0, FCS_DTLSS_EXT.1, FCS_DTLSS_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2	2018.08.02
TD0341	NIT Technical Decision for TLS wildcard checking	CPP_ND_V2.0E	ND SD V2.0, FCS_TLSC_EXT.1.2, FCS_TLSC_EXT.2.2, FCS_DTLSC_EXT.1.2, FCS_DTLSC_EXT.2.2,	2018.08.02
TD0340	NIT Technical Decision for Handling of the basicConstraints extension in CA and leaf certificates	CPP_FW_V2.0E, CPP_ND_V2.0E	FIA_X509_EXT.1.1	2018.08.02
TD0339	NIT Technical Decision for Making password-based authentication optional in FCS_SSHS_EXT.1.2	CPP_FW_V2.0E, CPP_ND_V2.0E	ND SD V2.0, FCS_SSHS_EXT.1.2	2018.08.02
TD0338	NIT Technical Decision for Access Banner Verification	CPP_ND_V2.0E	ND SD V2.0, FTA_TAB.1	2018.08.02
TD0337	NIT Technical Decision for Selections in FCS_SSH*_EXT.1.6	CPP_FW_V2.0E, CPP_ND_V2.0E	ND SD V2.0, FCS_SSHC_EXT.1, FCS_SSHS_EXT.1	2018.08.02
TD0336	NIT Technical Decision for Audit requirements for FCS_SSH*_EXT.1.8	CPP_ND_V2.0E	ND SD V2.0, FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8	2018.08.01
TD0335	NIT Technical Decision for FCS_DTLS Mandatory Cipher Suites	CPP_FW_V2.0E, CPP_ND_V2.0E	FCS_DTLSC_EXT.1.1, FCS_DTLSC_EXT.2.1, FCS_DTLSS_EXT.1.1, FCS_DTLSS_EXT.2.1, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_TLSS_EXT.1.1, FCS_TLSS_EXT.2.1	2018.08.01
TD0334	NIT Technical Decision for Testing SSH when password-based authentication is not supported	CPP_ND_V2.0E	ND SD V2.0, FCS_SSHC_EXT.1.9	2018.08.01
TD0333	NIT Technical Decision for Applicability of FIA_X509_EXT.3	CPP_FW_V2.0E, CPP_ND_V2.0E	ND SD V2.0, FIA_X509_EXT	2018.08.01
TD0332	Support for RSA SHA2 host keys	PP_SSH_EP_v1.0	FCS_SSHC_EXT.1.4, FCS_SSHS_EXT.1.4	2018.06.08
TD0331	SSH Rekey Testing	PP_SSH_EP_v1.0	FCS_SSHS_EXT.1.7, FCS_SSHC_EXT.1.7	2018.06.01
TD0330	Curve25519 scheme moved to optional and FFC scheme using DH Group 14 added	MOD_VPN_CLI_V2.1	FCS_CKM.1.1	2018.06.01
TD0329	IPSEC X.509 Authentication Requirements	EP_VPN_GW_V2.1	FIA_X509_EXT.4, FCS_IPSEC_EXT.1.14	2018.05.31
TD0328	Split Knowledge Procedures distinction	PP_CA_V2.1	FPT_SKY_EXT.1	2018.06.07
TD0327	Default file permissions for FMT_CFG_EXT.1.2	PP_APP_v1.2	FMT_CFG_EXT.1.2	2018.05.23
TD0326	RSA-based key establishment schemes	PP_APP_v1.2	FCS_CKM.1, FCS_CKM.2, FCS_TLSS_EXT.1.3	2018.05.21
TD0325	Inline mode for Signature-based IPS policies	EP_IPS_V2.11	IPS_SBD_EXT.1.5	2018.05.21
TD0324	NIT Technical Decision for Correction of section numbers in SD Table 1	CPP_ND_V2.0E	Table 1	2018.05.18
TD0323	NIT Technical Decision for DTLS server testing - Empty Certificate Authorities list	CPP_ND_V2.0E	ND SD V2.0, FCS_DTLSS_EXT.2.7, FCS_DTLSS_EXT.2.8	2018.05.18
TD0322	NIT Technical Decision for TLS server testing - Empty Certificate Authorities list	CPP_ND_V2.0E	ND SD V.1.0, ND SD V2.0, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5	2018.05.18
TD0321	Protection of NTP communications	CPP_FW_V2.0E, CPP_ND_V2.0E	FTP_ITC.1, FPT_STM_EXT.1	2018.05.21
TD0320	TLS ciphers in ESM PPs	PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1	FCS_TLS_EXT.1.1	2018.05.03
TD0319	Updates to FMT_SMF.1 in VPN Gateway EP	EP_VPN_GW_V2.1	FMT_SMF.1	2018.04.23
TD0318	Move RSA Ciphers from Mandatory to Selectable in MDM	PP_MDM_V3.0	FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1	2018.04.24
TD0317	FMT_MOF.1/Services and FMT_MTD.1/CryptoKeys	EP_VPN_GW_V2.1	FMT_MOF.1/Services, FMT_MTD.1/CryptoKeys	2018.04.23
TD0316	Update to FPT_TST_EXT.2.1	EP_VPN_GW_V2.1	FPT_TST_EXT.2.1, FPT_TST_EXT.3.1	2018.04.20
TD0315	Clarification of test for FCS_CKM.2.1(3)	PP_WLAN_AS_EP_V1.0	FCS_CKM.2.1(3)	2018.05.03
TD0314	Modifications to support Selection Based requirements	EP_WIDS_V1.0	FAU_SAA.1.2, FAU_GEN.1.1/WIDS, FAU_GEN.2.1//WIDS, FMT_SMF.1/WIDS	2018.04.26
TD0312	FIT Technical Decision for Key and Key Material Protection	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FPT_KYP_EXT.1.1	2018.04.17
TD0311	FIT Technical Decision on CC Conformance Claims	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0		2018.12.21
TD0310	FIT Technical Decision for Firmware Update Authentication	CPP_FDE_EE_V2.0	FPT_FUA_EXT.1	2018.04.17
TD0309	FIT Technical Decision for Random Bit Generation	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FCS_RBG_EXT.1	2018.04.17
TD0308	FIT Technical Decision for Cryptographic Operation Signature Verification and Hash Algorithm	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FCS_COP.1(a), FCS_COP.1(b)	2018.04.17
TD0307	Modification of FTP_ITC_EXT.1.1	EP_VPN_GW_V2.1	FTP_ITC_EXT.1.1, FTP_ITC.1.1	2018.04.18
TD0306	Update to FAU_WID_EXT.2.1 and FAU_WID_EXT.2.2	EP_WIDS_V1.0	FAU_WID_EXT.2.1, FAU_WID_EXT.2.2	2018.05.22
TD0305	Handling of TLS connections with and without mutual authentication	PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1	FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.4.1	2018.04.04
TD0304	Update to FCS_TLSC_EXT.1.2	PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1	FCS_TLSC_EXT.1.2	2018.04.04
TD0303	IKEv1 and support for XAUTH	MOD_VPN_CLI_V2.1	FCS_IPSEC_EXT.1.5	2018.03.29
TD0302	Update to FAU_ARP.1	EP_SBC_V1.1	FAU_ARP.1	2018.03.29
TD0301	Updates to Administrator Management and Biometric Authenication	PP_MD_V3.1	FMT_SMF_EXT.3, FIA_BMG_EXT.1.1	2018.04.04
TD0300	Sensitive Data in FDP_DAR_EXT.1	PP_APP_v1.2	FDP_DAR_EXT.1	2018.03.16
TD0299	Update to FCS_CKM.4 Assurance Activities	PP_HCD_V1.0	FCS_CKM.4	2018.03.16
TD0298	Update to FDP_IFF.1 Assurance Activities	PP_PSS_V3.0	FDP_IFF.1.5(2)	2018.03.09
TD0297	Reliable Time Stamps and Protection of System Time Updates	EP_SBC_V1.1	FTP_STM.1.1, FMT_MTD.1.1, FTP_ITC.1, FPT_STM_EXT.1, FMT_SMF.1	2018.05.31
TD0296	Update to FCS_HTTPS_EXT.1.3	PP_APP_v1.2	FCS_HTTPS_EXT.1.3	2018.03.14
TD0295	Update to FPT_AEX_EXT.1.3 Assurance Activities	PP_APP_v1.2	FPT_AEX_EXT.1.3	2018.03.08
TD0294	Correction of TLS SFRs in CA PP ver 2.1	PP_CA_V2.1	FCS_TLSC_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2	2018.04.18
TD0291	NIT technical decision for DH14 and FCS_CKM.1	CPP_FW_V1.0, CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_CKM.1.1, ND SD V1.0, ND SD V2.0	2018.02.03
TD0290	NIT technical decision for physical interruption of trusted path/channel.	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FTP_ITC.1, FTP_TRP.1, FPT_ITT.1, ND SD V1.0, ND SD V2.0	2018.02.03
TD0289	NIT technical decision for FCS_TLSC_EXT.x.1 Test 5e	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_DTLSC_EXT.1.1 (only ND SD V2.0), FCS_DTLSC_EXT.2.1 (only ND SD V2.0)	2018.02.03
TD0288	Support for Single-User File Encryption	PP_APP_SWFE_EP_v1.0	FIA_AUT_EXT.1, FIA_FCT_EXT.1(3), FCS_CKM_EXT.1.1, FMT_SMF.1	2018.01.26
TD0287	FAU_STG.4 Testing	PP_CA_V2.1	FAU_STG.4	2018.01.25
TD0286	Audit Events for FPT_RCV.1	PP_CA_V2.1	FPT_RCV.1	2018.01.25
TD0285	Test for Key Wrap using RSA-OAEP	PP_APP_SWFE_EP_v1.0	FCS_COP.1(5)	2018.01.19
TD0284	Tests for FCS_SRTP_EXT.1	EP_SBC_V1.1	FCS_SRTP_EXT.1	2018.01.18
TD0282	Test Activities added for Key Distribution and Key Generation	PP_WLAN_AS_EP_V1.0	FCS_CKM.1(2). FCS_CKM.2(3)	2018.01.19
TD0281	NIT Technical Decision for Testing both thresholds for SSH rekey	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8, ND SD V1.0, ND SD V2.0	2018.01.05
TD0280	Selection added to allow for keys to be stored in the underlying platform keystore	PP_APP_SWFE_EP_v1.0	FPT_KYP_EXT.1	2018.01.02
TD0279	Ciphersuites for SRTP	EP_SBC_V1.1, EP_VVOIP_V1.0	FCS_SRTP_EXT.1.2	2018.01.03
TD0278	Clarification of Role for Managing Manual Certificate Requests	PP_CA_V2.1	FMT_MOF.1(1); FMT_MOF.1(3)	2017.12.21
TD0277	Pre-Shared Key Composition	PP_WLAN_AS_EP_V1.0	FIA_PSK_EXT.1	2017.12.20
TD0276	X.509 Code Signing on TOE Updates	PP_CA_V2.1	FIA_X509_EXT.2.1	2017.12.19
TD0275	Corrections to FAU_WID_EXT.2.1 and FAU_WID_EXT.3.1	EP_WIDS_V1.0	FAU_WID_EXT.2.1, FAU_WID_EXT.3.1	2017.12.20
TD0273	Rekey after CAK expiration	PP_NDCPP_MACSEC_EP_V1.2	FCS_MACSEC_EXT.4	2017.12.20
TD0272	Update to FMT_SMF.1	PP_NDCPP_MACSEC_EP_V1.2	FMT.SMF.1	2017.12.20
TD0271	RADsec as alternative to IPsec	PP_WLAN_AS_EP_V1.0	FTP_ITC.1	2018.04.26
TD0268	FMT_MEC_EXT.1 Clarification	PP_APP_v1.2	FMT_MEC_EXT.1	2017.12.15
TD0267	TLSS testing - Empty Certificate Authorities list	PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MDM_V3.0	FCS_TLSS_EXT.1.5, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.1.4	2017.12.08
TD0266	Password/passphrase min vs max value for FCS_CKM_EXT.5.1	PP_APP_EMAILCLIENT_EP_v2.0	FCS_CKM_EXT.5.1	2017.12.08
TD0265	Audit of TLS and HTTPS Session Terminations	PP_BASE_VIRTUALIZATION_V1.0	FCS_TLSS_EXT.1, FCS_TLSC_EXT.1, FCS_HTTPS_EXT.1	2017.12.04
TD0264	Clarification of Auditable Events for FPT_RDM_EXT.1	PP_BASE_VIRTUALIZATION_V1.0	PP_BASE_VIRTUALIZATION_V1.0, FPT_RDM_EXT.1	2017.12.07
TD0263	Specification of key generation and use requirements in the Software File Encryption EP	PP_APP_SWFE_EP_v1.0	FCS_COP.1(5); FCS_CKM.1(1); FCS_KYC_EXT.1	2017.11.29
TD0261	Destruction of CSPs in flash	PP_HCD_V1.0	FCS_CKM.4	2017.11.14
TD0259	NIT Technical Decision for Support for X509 ssh rsa authentication IAW RFC 6187	CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_SSHC_EXT.1.5/FCS_SSHS_EXT.1.5	2017.11.13
TD0257	NIT Technical Decision for Updating FCS_DTLSC_EXT.x.2/FCS_TLSC_EXT.x.2 Tests 1-4	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.1.2/FCS_DTLSC_EXT.2.2 Tests 1-4 (ND SD V2.0), FCS_TLSC_EXT.1.2/FCS_TLSC_EXT.2.2, Tests 1-4 (ND SD V1.0, ND SD V2.0)	2017.11.13
TD0256	NIT Technical Decision for Handling of TLS connections with and without mutual authentication	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.2.5 (ND SD V2.0), FCS_TLSC_EXT.2 (ND SD V1.0, ND SD V2.0)	2017.11.13
TD0254	Algorithms in FCS_SMIME_EXT.1.4	PP_APP_EMAILCLIENT_EP_v2.0	FCS_SMIME_EXT.1.4	2017.11.08
TD0253	Assurance Activities for Key Transport	PP_HCD_V1.0	FCS_COP.1.1(i)	2017.11.08
TD0252	Inaccurate statement in application note of FCS_TLSC_EXT.2.4	PP_BASE_VIRTUALIZATION_V1.0	FCS_TLSC_EXT.2.4	2017.10.31
TD0251	FMT_MOF.1.1 - Added Assignment	PP_PSS_V3.0	FMT_MOF.1.1; PP_PSS_V3.0	2017.10.26
TD0250	Hypercall Controls - FPT_HCL_EXT.1 Clarification	PP_BASE_VIRTUALIZATION_V1.0	FPT_HCL_EXT.1	2017.11.14
TD0249	Applicability of FTP_ITC_EXT.1	PP_BASE_VIRTUALIZATION_V1.0	FTP_ITC_EXT.1.1	2017.11.14
TD0248	FAU_GEN.1 Guidance Activity	EP_VPN_GW_V2.1	FAU_GEN.1	2017.10.20
TD0247	FPT_VDP_EXT.1 Clarification for Assurance Activity	PP_BASE_VIRTUALIZATION_V1.0	FPT_VDP_EXT.1	2017.11.29
TD0246	Assurance Activity for FIA_UAU.5.2	PP_OS_V4.1	FIA_UAU.5.2	2017.10.31
TD0245	Updates to FTP_ITC and FTP_TRP for ESM PPs	PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1	FTP_ITC.1, FTP_TRP.1	2017.10.03
TD0244	FCS_TLSC_EXT - TLS Client Curves Allowed	PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MD_V3.1, PP_OS_V4.1, PP_WLAN_CLI_EP_V1.0	FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.4.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.2/WLAN	2017.11.16
TD0243	SSH Key-Based Authentication	PP_OS_V4.1	FIA_UAU.5.1	2017.10.03
TD0242	FPF_RUL_EXT.1.7, Test 3 - Logging Dropped Packets	EP_VPN_GW_V2.1	FPF_RUL_EXT.1.7	2017.11.08
TD0241	Removal of Test 4.1 in FCS_TLSS_EXT.1.1	PP_APP_v1.2	FCS_TLSS_EXT.1.1, PP_APP_v1.2	2017.09.29
TD0240	FCS_COP.1.1(1) Platform provided crypto for encryption/decryption	PP_SSH_EP_v1.0	FCS_COP.1.1(1)	2017.11.27
TD0239	Cryptographic Key Destruction in OS PP	PP_OS_V4.1	FCS_CKM_EXT.3, FCS_CKM.4	2017.09.22
TD0238	User-modifiable files FPT_AEX_EXT.1.4	PP_APP_v1.2	FPT_AEX_EXT.1.4	2017.09.21
TD0237	FAU_GEN.1.1(2) - FMT_UNR_EXT.1 Audit Record Selection-Based	EP_MDM_AGENT_V3.0	FAU_GEN.1.1(2); FMT_UNR_EXT.1	2017.09.26
TD0234	Appendix H - TLS Mapping Table	PP_MDM_V2.0, PP_MDM_V3.0	Annex H	2017.09.08
TD0233	FIT Technical Decision for Contents in Selected Long Message Test – Bit-oriented Mode	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FDE_AA_SD_V2.0, FDE_EE_SD_V2.0, FCS_COP.1( b )	2017.08.25
TD0232	FIA_X509_EXT.1.1 - Compliance to RFC5759 and RFC5280 for using CRLs	PP_MDM_V3.0	FIA_X509_EXT.1.1	2017.08.28
TD0231	FCS_TLSS_EXT.1.2 - Removal of SSL 1.0	PP_MDM_V3.0	FCS_TLSS_EXT.1.2	2017.08.28
TD0230	ALC Assurance Activities for Server Virtualization and Base Virtualization PPs	PP_BASE_VIRTUALIZATION_V1.0, PP_SV_V1.1	ALC_CMC.1, ALC_CMS.1	2017.09.06
TD0229	FIT Technical Decision for Validation attemp threshold config.	CPP_FDE_AA_V1.0, CPP_FDE_AA_V2.0, CPP_FDE_EE_V1.0, CPP_FDE_EE_V2.0	FDE AA SD V1.0, FDE EE SD V1.0, FDE AA SD V2.0, FDE EE SD V2.0, FCS_SMV_EXT.1.2, FCS_SMV_EXT.1, FCS_VAL_EXT.1.3, FCS_VAL_EXT.1	2017.07.28
TD0228	NIT Technical Decision for CA certificates - basicConstraints validation	CPP_FW_V1.0, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	ND SD V1.0, ND SD V2.0, FIA_X509_EXT.1.2	2018.06.15
TD0222	Use of RF Jammer for DoS testing in WIDS EP	EP_WIDS_V1.0	FAU_WID_EXT.3	2017.07.27
TD0221	FMT_SMF.1.1 - Assignments moved to Selections	PP_APP_SWFE_EP_v1.0, PP_APP_v1.2	FMT_SMF.1.1	2017.07.12
TD0219	NIAP Endorsement of Errata for HCD PP v1.0	PP_HCD_V1.0		2017.07.07
TD0217	Compliance to RFC5759 and RFC5280 for using CRLs	PP_APP_v1.2	FIA_X509_EXT.1.1	2017.06.16
TD0215	Update to FCS_HTTPS_EXT.1.2	PP_APP_v1.2	FCS_HTTPS_EXT.1.2	2017.06.16
TD0214	FCS_CKM.1 & FCS_CKM_EXT.5 - Selectable Audit Events	PP_MD_v3.0	FCS_CKM.1; FCS_CKM_EXT.5	2017.06.13
TD0213	Corrections to App Note references to FCS_TLS, FCS_IPSEC, and FTP_ITC	PP_BASE_VIRTUALIZATION_V1.0	FCS_TLSS_EXT.1, FCS_TLSS_EXT.2,	2017.07.19
TD0212	FCS_HTTPS_EXT.1.3 - TLS Mutual Authentication Update	PP_MDM_V2.0, PP_MDM_V3.0	FCS_HTTPS_EXT.1.3	2017.09.21
TD0211	FPT_TUD_EXT.1 - VVoIP Endpoints Optional	EP_ESC_V1.0	FPT_TUD_EXT.1	2017.06.13
TD0210	FIA_BMG_EXT.1.2 - SAFAR Update	PP_MD_v3.0	FIA_BMG_EXT.1.2	2017.06.07
TD0209	Additional DH Group added as selection for IKE Protocols	EP_VPN_GW_V2.1	FCS_IPSEC_EXT.1.11	2017.06.09
TD0208	Remote Users in OSPP	PP_OS_V4.1	FTP_TRP.1.1	2017.06.09
TD0206	Testing for Non-Existence of Disconnected Virtual Devices	PP_BASE_VIRTUALIZATION_V1.0	FPT_DVD_EXT.1	2017.05.05
TD0204	Protection of Selected User Data	PP_APP_SWFE_EP_v1.0	FDP_PRT_EXT	2017.05.08
TD0194	Update to Audit of FTP_ITC_EXT.1/WLAN	PP_WLAN_CLI_EP_V1.0	FAU_GEN.1, FTP_ITC_EXT.1/WLAN	2017.04.11
TD0193	Selection-Based FCS_COP.1 Added to VVoip EP to include AES-CTR Mode	EP_VVOIP_V1.0	FCS_COP.1	2017.04.20
TD0190	FPT_FLS.1(2)/SelfTest Failure with Preservation of Secure State and Modular Network Devices	PP_NDCPP_MACSEC_EP_V1.2	FPT_FLS.1(2)/SelfTest	2017.04.11
TD0180	Update to audit of FDP_DAR_EXT.1	PP_MD_v3.0	FDP_DAR_EXT.1, FAU_GEN.1.2	2017.04.10
TD0179	Management Capabilities in VPN GW EP 2.1	EP_VPN_GW_V2.1	FMT_SMF.1.1	2017.04.11
TD0178	Integrity for installation tests in AppSW PP	PP_APP_v1.2	FPT_TUD_EXT.1.3	2017.04.06
TD0177	FCS_TLSS_EXT.1 Application Note Update	PP_APP_v1.2	FTP_DIT_EXT.1, FCS_TLSS_EXT.1	2017.04.06
TD0176	FDP_DSK_EXT.1.2 - SED Testing	PP_HCD_V1.0	FDP_DSK_EXT.1.2	2017.04.11
TD0175	Revision of FCS_CKM_EXT.4 requirement in APP SW FE EP v1.0	PP_APP_SWFE_EP_v1.0	FCS_CKM_EXT.4	2017.04.10
TD0174	Optional Ciphersuites for TLS	PP_APP_v1.2, PP_MD_v3.0, PP_NDCPP_APP_AUTHSVR_EP_V1.0	FCS_TLSC_EXT.1.1, FCS_EAP-TLS_EXT.1.1,	2017.04.10
TD0172	Additional APIs added to FCS_RBG_EXT.1.1	PP_APP_v1.2	FCS_RBG_EXT.1.1	2017.04.11
TD0171	Testing for RADIUS EAP responses and EAP-TLS protocols	PP_NDCPP_APP_AUTHSVR_EP_V1.0	FCS_RADIUS_EXT.1, FCS_EAP-TLS_EXT.1	2017.04.06
TD0166	Optional Authentication of TLS Client	PP_BASE_VIRTUALIZATION_V1.0, PP_CA_v2.0	FCS_TLSC_EXT.1	2017.04.05
TD0163	Update to FCS_TLSC_EXT.1.1 Test 5.4 and FCS_TLSS_EXT.1.1 Test	PP_APP_v1.2, PP_CA_v2.0, PP_MDM_V3.0, PP_OS_V4.1, PP_VOIP_V1.3	FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1	2017.04.05
TD0158	FMT_SMF_EXT.1	PP_MD_v3.0	FMT_SMF_EXT.1.1	2017.03.08
TD0157	FCS_IPSEC_EXT.1.1 - Testing SPDs	PP_HCD_V1.0	FCS_IPSEC_EXT.1.1	2017.06.15
TD0148	Hardware-protected hash in FPT_TST_EXT.2.1	PP_MD_v3.0	FPT_TST_EXT.2.1	2017.02.24
TD0147	FIA_UAU.5.2	PP_MD_v3.0	FIA_UAU.5.2	2017.02.24
TD0146	FCS_STG_EXT.3.1 - Integrity	PP_MD_v3.0	FCS_STG_EXT.3.1	2017.02.24
TD0145	FCS_CKM_EXT.3.1 - Security strength of KEKs	PP_MD_v3.0	FCS_CKM_EXT.3.1	2017.02.10
TD0144	FDP_RIP.1.1 - Purge Memory and Restore Factory Defaults Optional	PP_PSS_V3.0	FDP_RIP.1.1	2017.02.06
TD0139	Clarification of testing for FDP_RIP_EXT.2	PP_BASE_VIRTUALIZATION_V1.0	FDP_RIP_EXT.2	2017.01.19
TD0137	FIA_X509_EXT.2.1 - IPsec Optional Selection	EP_ESC_V1.0	FIA_X509_EXT.2.1;	2016.12.22
TD0136	FDP_RIP.1.1 - Refinement	PP_PSS_V3.0	FDP_RIP.1.1	2016.12.16
TD0135	SNMP in NDcPP MACsec EP v1.2	PP_NDCPP_MACSEC_EP_V1.2	FMT_SNMP_EXT.1.1, FCS_SNMP_EXT.1.1	2017.01.25
TD0134	AES Data Encryption/Decryption in NDcPP MACsec EP v1.2	PP_NDCPP_MACSEC_EP_V1.2	FCS_COP.1	2016.12.21
TD0133	FAU_GEN.1; FIA_SIPS_EXT.1 - Auditing SIP Register Events	CPP_ND_SBC_EP_V1.0	FAU_GEN.1; FIA_SIPS_EXT.1	2016.12.14
TD0131	Update to FCS_TLSS_EXT.1.1 Test 4.5	PP_APP_v1.2		2016.12.14
TD0127	FIA_SIPT_EXT.1.2 - TLS Client X.509 Certificate Authentication	EP_SBC_V1.1	FIA_SIPT_EXT.1.2	2016.12.21
TD0123	GCM Mode Added to FCS_KYC_EXT.1.1, FCS_COP.1.1(1), FPT_KYP_EXT.1.1	PP_APP_SWFE_EP_v1.0	FCS_KYC_EXT.1.1; FCS_COP.1.1(1); FPT_KYP_EXT.1.1	2016.11.03
TD0121	FMT_MEC_EXT.1.1 Configuration Options	PP_APP_SWFE_EP_v1.0, PP_APP_v1.2	FMT_MEC_EXT.1.1	2016.11.04
TD0120	FMT_SMF_EXT.1, Functions 2 & 5, Users and/or Administrators Configuration	PP_MD_v2.0, PP_MD_v3.0	FMT_SMF_EXT.1	2016.12.01
TD0119	FCS_STO_EXT.1.1 in PP_APP_v1.2	PP_APP_v1.2	FCS_STO_EXT.1.1	2016.10.26
TD0118	FAU_GEN.1 Application of Audit Requirements Update	PP_MD_v2.0, PP_MD_v3.0	FAU_GEN.1.1; FAU_GEN.1.2	2016.10.27
TD0107	FCS_CKM - ANSI X9.31-1998, Section 4.1.for Cryptographic Key Generation	PP_APP_v1.1, PP_APP_v1.2, PP_MD_v2.0, PP_MDM_V2.0, PP_ND_VPN_GW_EP_v1.1, PP_NDCPP_VPN_GW_EP_V2.0, PP_OS_v4.0, PP_OS_V4.1, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4		2016.09.14
TD0105	MACsec Key Agreement	PP_NDCPP_MACSEC_EP_V1.2	FCS_MKA_EXT.1.2, FCS_MKA_EXT.1.5, FCS_MKA.1.8,	2016.09.13
TD0104	FMT_SMF and FMT_MOF in OS PP	PP_OS_V4.1	FMT_MOF_EXT.1.1, FMT_SMF_EXT.1.1,	2016.09.16
TD0103	Access Control Policy Prohibiting Apps Write/Exe Permissions	PP_MD_v2.0, PP_MD_v3.0	FDP_ACF_EXT.1.3	2016.09.23
TD0097	VPN Gateway selection for FCS_IPSEC_EXT.1.14	PP_VPN_IPSEC_CLIENT_V1.4	FCS_IPSEC_EXT.1.14,	2016.08.30
TD0086	DisplayPort to HDMI Conversion Functionality	PP_PSS_V3.0	FDP_IFF.1.5(2), Rule 10	2016.03.10
TD0083	Vulnerability Survey Assurance Component (AVA_VAN.1) in PSS PP v3.0	PP_PSS_V3.0		2016.02.29
TD0079	RBG Cryptographic Transitions per NIST SP 800-131A Revision 1	PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_MD_v2.0, PP_MDM_V2.0, PP_ND_VPN_GW_EP_v1.1, PP_OS_v4.0, PP_USB_FD_v1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WLAN_CLI_V1.0	PP_APP_v1.1	2018.06.15
TD0074	FCS_CKM.1(a) Requirement in HCD PP v1.0	PP_HCD_V1.0		2015.12.15
TD0071	Use of SHA-512 in ESM PPs	PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1		2015.12.03
TD0069	Revision to FCS_COP.1(1) AA in SWFE EP v1.0	PP_APP_SWFE_EP_v1.0		2015.11.20
TD0067	Revision to FCS_CKM.1(A) SFR & AA in SWFE EP v1.0	PP_APP_SWFE_EP_v1.0	PP_APP_SWFE_EP_v1.0	2015.10.13
TD0066	Clarification of FAU_STG_EXT.1 Requirement in ESM PPs	PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1		2015.10.08
TD0065	Revision of FDP_PRT_EXT.1.2 requirement in APP SWFE EP v1.0	PP_APP_SWFE_EP_v1.0		2015.10.02
TD0055	Move FTA_TAB.1 to Selection-Based Requirement	PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1		2015.07.30
TD0042	Removal of Low-level Crypto Failure Audit from PPs	PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_SV_V1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WEBBROWSER_v1.0, PP_WLAN_CLI_V1.0		2018.06.15

---

References:

(free match)

---

Click this button to restore all default options to this page: