NIAP: View Active Technical Decisions
  NIAP  »»  Protection Profiles  »»  View Active Technical Decisions  
View Active Technical Decisions

Technical Decisions (TDs) are issued to correct errors or clarify Security Functional Requirements (SFRs) and Assurance Activities within NIAP-approved Protection Profiles (PPs).  Technical Decisions are effective upon publication and must be incorporated into all current and future evaluations.  Current evaluations include all evaluations except those for which a complete Check-Out package has been submitted to NIAP for final validation team review. 

In the rare case that a TD is issued which includes new SFRs or AAs, NIAP will make the determination for when products in evaluation must comply and include an effective date in the TD. 

Item Title Protection Profiles References Publication
TD0416 new Correction to FCS_RBG_EXT.1 Test Activity PP_APP_v1.3 FCS_RBG_EXT.1.1 2019.04.24
TD0415 new Trusted Update Test 4 Conditional PP_CA_V2.1 FPT_TUD_EXT.1 2019.04.04
TD0414 new FTP_ITC_EXT1. Tests 1 and 2 PP_APP_EMAILCLIENT_EP_v2.0 FTP_ITC_EXT.1 2019.04.04
TD0413   Conformance Claim to allow for a PP-Module PP_MD_V3.1 2019.03.22
TD0412   NIT Technical Decision for FCS_SSHS_EXT.1.5 SFR and AA discrepancy CPP_FW_V2.0E, CPP_ND_V2.0, CPP_ND_V2.1 FCS_SSHS_EXT.1.5, ND SD V2.0e, ND SD V2.1 2019.03.22
TD0411   NIT Technical Decision for FCS_SSHC_EXT.1.5, Test 1 - Server and client side seem to be confused CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1 FCS_SSHC_EXT.1.5, ND SD V2.0E, ND SD V2.1 2019.03.22
TD0410   NIT technical decision for Redundant assurance activities associated with FAU_GEN.1 CPP_ND_V1.0, CPP_ND_V2.0E, CPP_ND_V2.1 FAU_GEN.1, ND SD V1.0, ND SD V2.0e, ND SD V2.1 2019.03.22
TD0409   NIT decision for Applicability of FIA_AFL.1 to key-based SSH authentication CPP_ND_V2.0E, CPP_ND_V2.1 FIA_AFL.1, ND SD v2.0e, ND SD v2.1 2019.03.22
TD0408   NIT Technical Decision for local vs. remote administrator accounts CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1 FIA_AFL.1, FIA_UAU_EXT.2, FMT_SMF.1 2019.03.22
TD0407   NIT Technical Decision for handling Certification of Cloud Deployments CPP_ND_V2.0E, CPP_ND_V2.1 2019.03.22
TD0406   FDP_IFF.1.5 Tests 1 and 2 EP_VVOIP_V1.0 FDP_IFF.1.5 2019.03.13
TD0405   FIA_SASL_EXT.1 Testing PP_APP_EMAILCLIENT_EP_v2.0 FIA_SASL_EXT.1 2019.03.20
TD0403 new Conditional Testing with TLS Session IDs PP_BASE_VIRTUALIZATION_V1.0 FCS_TLSS_EXT.1; FCS_TLSS_EXT.2.1 2019.04.12
TD0402   NIT Technical Decision for RSA-based FCS_CKM.2 Selection CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1 FCS_CKM.2, ND SD V2.0E, ND SD V2.1 2019.02.24
TD0401   NIT Technical Decision for Reliance on external servers to meet SFRs CPP_ND_V2.0E, CPP_ND_V2.1 FTP_ITC.1 2019.02.24
TD0400   NIT Technical Decision for FCS_CKM.2 and elliptic curve-based key establishment CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1 FCS_CKM.1, FCS_CKM.2 2019.02.24
TD0399   NIT Technical Decision for Manual installation of CRL (FIA_X509_EXT.2) CPP_ND_V2.0E, CPP_ND_V2.1 FIA_X509_EXT.2, ND SD V2.0E, ND SD V2.1 2019.02.24
TD0398   NIT Technical Decision for FCS_SSH*EXT.1.1 RFCs for AES-CTR CPP_FW_V2.0E, CPP_ND_V2.0E, CPP_ND_V2.1 FCS_SSHC_EXT.1.1, FCS_SSHS_EXT.1.1 2019.02.24
TD0397   NIT Technical Decision for Fixing AES-CTR Mode Tests CPP_ND_V2.0E, CPP_ND_V2.1 FCS_COP.1/DataEncryption, ND SD V2.0E, ND SD V2.1 2019.02.24
TD0396   NIT Technical Decision for FCS_TLSC_EXT.1.1, Test 2 CPP_ND_V2.0E, CPP_ND_V2.1 FCS_DTLSC_EXT.1.1, FCS_DTLSC_EXT.2.1, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, ND SD V2.0E, ND SD V2.1 2019.02.24
TD0395   NIT Technical Decision for Different Handling of TLS1.1 and TLS1.2 CPP_ND_V2.0E, CPP_ND_V2.1 FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5, ND SD V2.0E, ND SD V2.1 2019.02.24
TD0394   NIT Technical Decision for Audit of Management Activities related to Cryptographic Keys CPP_FW_V2.0E, CPP_ND_V2.0E FAU_GEN.1, ND SD v2.0E 2019.02.24
TD0393   Require FTP_TRP.1(b) only for printing PP_HCD_V1.0 FTP_TRP.1(b) 2019.02.26
TD0392   FCS_TLSC_EXT.1.2 Wildcard Checking PP_APP_v1.2 FCS_TLSC_EXT.1.2 2019.02.24
TD0391   Intermediate certificate requirements PP_MDM_V3.0 FIA_X509_EXT.1.1 2019.02.24
TD0390   Cryptographically Secure RNG PP_APP_v1.2 FCS_RBG_EXT.1 2019.02.24
TD0389   Handling of SSH EP claim for platform PP_APP_v1.2 FTP_DIT_EXT.1 2019.02.01
TD0387   VPN Client Required SFR for GPOS as Base PP MOD_VPN_CLI_V2.1 Section 5.1.1 2019.01.29
TD0386   Platform-Provided Verification of Update PP_OS_V4.2 FPT_TUD_EXT.1.2 2019.02.07
TD0385   FTP_DIT_EXT.1 Assurance Activity Clarification MOD_VPN_CLI_V2.1, PP_APP_v1.2 FTP_DIT_EXT.1 2019.01.08
TD0384   FIT Technical Decision for Use of SHA-384 CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0 FCS_PCC_EXT.1.1, FCS_RBG_EXT.1.2, FCS_SMC_EXT.1.1 2018.12.21
TD0383   FIT Technical Decision for Updating FCS_CKM.4(b) Tests CPP_FDE_EE_V2.0 CPP_FDE_EE_V2.0-SD, FCS_CKM.4(b) 2018.12.21
TD0382   Configuration Storage Options for Apps PP_APP_v1.2 FMT_MEC_EXT.1 2019.01.03
TD0381   FCS_SMIME_EXT.1 Test 3 PP_APP_EMAILCLIENT_EP_v2.0 FCS_SMIME_EXT.1.1 2018.12.27
TD0380   Linux Keyring Requirement in FCS_STO_EXT.1 PP_APP_v1.2 FCO_STO_EXT.1 2019.01.08
TD0379   Updated FCS_IPSEC_EXT.1.11 Tests for VPN Client MOD_VPN_CLI_V2.1 FCS_IPSEC_EXT.1.11 2018.12.20
TD0378   TOE/TOE Platform Selection in FCS_IPSEC_EXT.1 SFRs MOD_VPN_CLI_V2.1 FCS_IPSEC_EXT.1.12, FCS_IPSEC_EXT.1.13 2018.12.13
TD0377   Tests for MDM unique certificates EP_MDM_AGENT_V3.0, PP_MDM_V3.0 FIA_X509_EXT.2.3 2018.12.12
TD0376   Audit record entry for FMT_SMF.1 in FAU_GEN.1.2/VOIP EP_VVOIP_V1.0 FAU_GEN.1.2/VVOIP 2018.11.29
TD0375   FMT_MOF.1(4) selection PP_CA_V2.1 FMT_MOF.1 2018.11.27
TD0374   GCM ciphersuite PP_OS_V4.2 FCS_TLSC_EXT.1.1 2018.11.27
TD0373   RSA-based Key Establishment MOD_VPN_CLI_V2.1 FCS_CKM.1.1, FCS_CKM.2.1 2018.12.11
TD0372   Auditing in VVOIP EP_VVOIP_V1.0 FAU_GEN.1/VVOIP, FAU_STG_EXT.1 2018.11.27
TD0371   Section F.2 [Use Case 2] PP_MD_V3.1 2018.11.21
TD0370   Management Function Update PP_MDM_V3.0 FMT_SMF.1.1(2) 2018.11.16
TD0369   Long-term trusted channel key material PP_MD_V3.1 FCS_STG_EXT.2.1, FCS_STG_EXT.2.2, FCS_STG_EXT.3.1 2018.10.17
TD0368   Audit Generation required in VVOIP EP_VVOIP_V1.0 FAU_GEN.1/VVOIP, FAU_STG_EXT.1 2018.10.12
TD0367   Trusted Updates EP_VVOIP_V1.0 FPT_TUD_EXT.1 2018.10.12
TD0366   Flexibility in Password Conditioning in FCS_COP.1(5) PP_MD_V3.1 FCS_COP.1.1(5), FCS_CKM_EXT.3.2 2018.10.12
TD0365   FCS_CKM_EXT.4 selections PP_OS_V4.2 FCS_CKM_EXT.4 2018.10.12
TD0364   Android mmap testing for FPT_AEX_EXT.1.1 PP_APP_v1.2 FPT_AEX_EXT.1.1 2018.10.09
TD0363   Access Banner and applicability to programmatic interfaces PP_BASE_VIRTUALIZATION_V1.0 FTA_TAB.1 2018.10.05
TD0362   "Failure of the randomization process" audit MOD_VPN_CLI_V2.1 FCS_RBG_EXT.1, FIA_PSK_EXT.1 2018.10.03
TD0360   AD Server configuration in FMT_MOF_EXT.1 EP_CV_V1.0, EP_SV_V1.0, PP_BASE_VIRTUALIZATION_V1.0 FMT_MOF_EXT.1.2, FIA_UAU.5.1 2018.09.28
TD0359   Buffer Protection PP_APP_v1.2 FPT_AEX_EXT.1.5 2018.09.21
TD0358   Cipher Suites for TLS in SWApp v1.2 PP_APP_v1.2 FCS_TLSC_EXT.1; FCS_TLSS_EXT.1 2018.09.24
TD0357   AES Modes for the MACsec EP PP_NDCPP_MACSEC_EP_V1.2 FCS_COP.1 2018.10.01
TD0356   OE.CONNECTIONS added to VPN GW v2.1 EP_VPN_GW_V2.1 2018.09.20
TD0355   FCS_CKM.1/VPN for IKE authentication MOD_VPN_CLI_V2.1 FCS_CKM.1/VPN 2018.09.20
TD0354   MDM CRLsign exceptions PP_MDM_V3.0 FIA_X509_EXT.1 2018.09.20
TD0353   Guidance for Certificate Profiles PP_CA_V2.1 FDP_CER_EXT.1.1 2018.09.18
TD0352   Added key destruction options PP_APP_EMAILCLIENT_EP_v2.0 FCS_CKM_EXT.4 2018.09.18
TD0351   Additional methods for DEK formation PP_MD_V3.1 FCS_CKM_EXT.2.1 2018.09.20
TD0350   Recording of voice and video call data EP_ESC_V1.0 FAU_STG.1/VVR, FAU_STG_EXT.1, FMT_SMF.1.1 2018.09.06
TD0349   Update to FPT_MCD_EXT.1.2 PP_APP_WEBBROWSER_EP_v2.0 FPT_MCD_EXT.1.2 2018.08.31
TD0348   FCS_TLSS_EXT.2.4 for TLS 1.2 or higher PP_CA_V2.1 FCS_TLSS_EXT.2.4 2018.08.28
TD0347   Update of Use Case 2 in MDF PP PP_MD_V3.1 Section F.2 [Use Case 2] 2018.08.23
TD0346   Revision of FMT_SMF_EXT.2 in MDF PP PP_MD_V3.1 FMT_SMF_EXT.2 2018.08.23
TD0345   FIT Technical Decision for Key Destruction and KMD Documentation CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0 CPP_FDE_AA_V2.0-SD, CPP_FDE_EE_V2.0-SD, FCS_CKM_EXT.4(b), FPT_PWR_EXT.1, FPT_PWR_EXT.2, FCS_CKM.1.1(b), C.2 Extended Component Definitions 2018.08.17
TD0344   FIT Technical Decision for Updating FCS_CKM.4(a) Tests CPP_FDE_AA_V2.0 FCS_CKM.4(a), CPP_FDE_AA_V2.0-SD 2018.08.17
TD0343   NIT Technical Decision for Updating FCS_IPSEC_EXT.1.14 Tests CPP_FW_V2.0E, CPP_ND_V2.0E ND SD V2.0, FCS_IPSEC_EXT.1.14 2018.08.02
TD0342   NIT Technical Decision for TLS and DTLS Server Tests CPP_ND_V2.0E ND SD V2.0, FCS_DTLSS_EXT.1, FCS_DTLSS_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2 2018.08.02
TD0341   NIT Technical Decision for TLS wildcard checking CPP_ND_V2.0E ND SD V2.0, FCS_TLSC_EXT.1.2, FCS_TLSC_EXT.2.2, FCS_DTLSC_EXT.1.2, FCS_DTLSC_EXT.2.2, 2018.08.02
TD0340   NIT Technical Decision for Handling of the basicConstraints extension in CA and leaf certificates CPP_FW_V2.0E, CPP_ND_V2.0E FIA_X509_EXT.1.1 2018.08.02
TD0339   NIT Technical Decision for Making password-based authentication optional in FCS_SSHS_EXT.1.2 CPP_FW_V2.0E, CPP_ND_V2.0E ND SD V2.0, FCS_SSHS_EXT.1.2 2018.08.02
TD0338   NIT Technical Decision for Access Banner Verification CPP_ND_V2.0E ND SD V2.0, FTA_TAB.1 2018.08.02
TD0337   NIT Technical Decision for Selections in FCS_SSH*_EXT.1.6 CPP_FW_V2.0E, CPP_ND_V2.0E ND SD V2.0, FCS_SSHC_EXT.1, FCS_SSHS_EXT.1 2018.08.02
TD0336   NIT Technical Decision for Audit requirements for FCS_SSH*_EXT.1.8 CPP_ND_V2.0E ND SD V2.0, FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8 2018.08.01
TD0335   NIT Technical Decision for FCS_DTLS Mandatory Cipher Suites CPP_FW_V2.0E, CPP_ND_V2.0E FCS_DTLSC_EXT.1.1, FCS_DTLSC_EXT.2.1, FCS_DTLSS_EXT.1.1, FCS_DTLSS_EXT.2.1, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_TLSS_EXT.1.1, FCS_TLSS_EXT.2.1 2018.08.01
TD0334   NIT Technical Decision for Testing SSH when password-based authentication is not supported CPP_ND_V2.0E ND SD V2.0, FCS_SSHC_EXT.1.9 2018.08.01
TD0333   NIT Technical Decision for Applicability of FIA_X509_EXT.3 CPP_FW_V2.0E, CPP_ND_V2.0E ND SD V2.0, FIA_X509_EXT 2018.08.01
TD0332   Support for RSA SHA2 host keys PP_SSH_EP_v1.0 FCS_SSHC_EXT.1.4, FCS_SSHS_EXT.1.4 2018.06.08
TD0331   SSH Rekey Testing PP_SSH_EP_v1.0 FCS_SSHS_EXT.1.7, FCS_SSHC_EXT.1.7 2018.06.01
TD0330   Curve25519 scheme moved to optional and FFC scheme using DH Group 14 added MOD_VPN_CLI_V2.1 FCS_CKM.1.1 2018.06.01
TD0329   IPSEC X.509 Authentication Requirements EP_VPN_GW_V2.1 FIA_X509_EXT.4, FCS_IPSEC_EXT.1.14 2018.05.31
TD0328   Split Knowledge Procedures distinction PP_CA_V2.1 FPT_SKY_EXT.1 2018.06.07
TD0327   Default file permissions for FMT_CFG_EXT.1.2 PP_APP_v1.2 FMT_CFG_EXT.1.2 2018.05.23
TD0326   RSA-based key establishment schemes PP_APP_v1.2 FCS_CKM.1, FCS_CKM.2, FCS_TLSS_EXT.1.3 2018.05.21
TD0325   Inline mode for Signature-based IPS policies EP_IPS_V2.11 IPS_SBD_EXT.1.5 2018.05.21
TD0324   NIT Technical Decision for Correction of section numbers in SD Table 1 CPP_ND_V2.0E Table 1 2018.05.18
TD0323   NIT Technical Decision for DTLS server testing - Empty Certificate Authorities list CPP_ND_V2.0E ND SD V2.0, FCS_DTLSS_EXT.2.7, FCS_DTLSS_EXT.2.8 2018.05.18
TD0322   NIT Technical Decision for TLS server testing - Empty Certificate Authorities list CPP_ND_V2.0E ND SD V.1.0, ND SD V2.0, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5 2018.05.18
TD0321   Protection of NTP communications CPP_FW_V2.0E, CPP_ND_V2.0E FTP_ITC.1, FPT_STM_EXT.1 2018.05.21
TD0320   TLS ciphers in ESM PPs PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1 FCS_TLS_EXT.1.1 2018.05.03
TD0319   Updates to FMT_SMF.1 in VPN Gateway EP EP_VPN_GW_V2.1 FMT_SMF.1 2018.04.23
TD0318   Move RSA Ciphers from Mandatory to Selectable in MDM PP_MDM_V3.0 FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1 2018.04.24
TD0317   FMT_MOF.1/Services and FMT_MTD.1/CryptoKeys EP_VPN_GW_V2.1 FMT_MOF.1/Services, FMT_MTD.1/CryptoKeys 2018.04.23
TD0316   Update to FPT_TST_EXT.2.1 EP_VPN_GW_V2.1 FPT_TST_EXT.2.1, FPT_TST_EXT.3.1 2018.04.20
TD0315   Clarification of test for FCS_CKM.2.1(3) PP_WLAN_AS_EP_V1.0 FCS_CKM.2.1(3) 2018.05.03
TD0314   Modifications to support Selection Based requirements EP_WIDS_V1.0 FAU_SAA.1.2, FAU_GEN.1.1/WIDS, FAU_GEN.2.1//WIDS, FMT_SMF.1/WIDS 2018.04.26
TD0312   FIT Technical Decision for Key and Key Material Protection CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0 FPT_KYP_EXT.1.1 2018.04.17
TD0311   FIT Technical Decision on CC Conformance Claims CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0 2018.12.21
TD0310   FIT Technical Decision for Firmware Update Authentication CPP_FDE_EE_V2.0 FPT_FUA_EXT.1 2018.04.17
TD0309   FIT Technical Decision for Random Bit Generation CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0 FCS_RBG_EXT.1 2018.04.17
TD0308   FIT Technical Decision for Cryptographic Operation Signature Verification and Hash Algorithm CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0 FCS_COP.1(a), FCS_COP.1(b) 2018.04.17
TD0307   Modification of FTP_ITC_EXT.1.1 EP_VPN_GW_V2.1 FTP_ITC_EXT.1.1, FTP_ITC.1.1 2018.04.18
TD0306   Update to FAU_WID_EXT.2.1 and FAU_WID_EXT.2.2 EP_WIDS_V1.0 FAU_WID_EXT.2.1, FAU_WID_EXT.2.2 2018.05.22
TD0305   Handling of TLS connections with and without mutual authentication PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1 FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.4.1 2018.04.04
TD0304   Update to FCS_TLSC_EXT.1.2 PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1 FCS_TLSC_EXT.1.2 2018.04.04
TD0303   IKEv1 and support for XAUTH MOD_VPN_CLI_V2.1 FCS_IPSEC_EXT.1.5 2018.03.29
TD0302   Update to FAU_ARP.1 EP_SBC_V1.1 FAU_ARP.1 2018.03.29
TD0301   Updates to Administrator Management and Biometric Authenication PP_MD_V3.1 FMT_SMF_EXT.3, FIA_BMG_EXT.1.1 2018.04.04
TD0300   Sensitive Data in FDP_DAR_EXT.1 PP_APP_v1.2 FDP_DAR_EXT.1 2018.03.16
TD0299   Update to FCS_CKM.4 Assurance Activities PP_HCD_V1.0 FCS_CKM.4 2018.03.16
TD0298   Update to FDP_IFF.1 Assurance Activities PP_PSS_V3.0 FDP_IFF.1.5(2) 2018.03.09
TD0297   Reliable Time Stamps and Protection of System Time Updates EP_SBC_V1.1 FTP_STM.1.1, FMT_MTD.1.1, FTP_ITC.1, FPT_STM_EXT.1, FMT_SMF.1 2018.05.31
TD0296   Update to FCS_HTTPS_EXT.1.3 PP_APP_v1.2 FCS_HTTPS_EXT.1.3 2018.03.14
TD0295   Update to FPT_AEX_EXT.1.3 Assurance Activities PP_APP_v1.2 FPT_AEX_EXT.1.3 2018.03.08
TD0294   Correction of TLS SFRs in CA PP ver 2.1 PP_CA_V2.1 FCS_TLSC_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2 2018.04.18
TD0291   NIT technical decision for DH14 and FCS_CKM.1 CPP_FW_V1.0, CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E FCS_CKM.1.1, ND SD V1.0, ND SD V2.0 2018.02.03
TD0290   NIT technical decision for physical interruption of trusted path/channel. CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E FTP_ITC.1, FTP_TRP.1, FPT_ITT.1, ND SD V1.0, ND SD V2.0 2018.02.03
TD0289   NIT technical decision for FCS_TLSC_EXT.x.1 Test 5e CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_DTLSC_EXT.1.1 (only ND SD V2.0), FCS_DTLSC_EXT.2.1 (only ND SD V2.0) 2018.02.03
TD0288   Support for Single-User File Encryption PP_APP_SWFE_EP_v1.0 FIA_AUT_EXT.1, FIA_FCT_EXT.1(3), FCS_CKM_EXT.1.1, FMT_SMF.1 2018.01.26
TD0287   FAU_STG.4 Testing PP_CA_V2.1 FAU_STG.4 2018.01.25
TD0286   Audit Events for FPT_RCV.1 PP_CA_V2.1 FPT_RCV.1 2018.01.25
TD0285   Test for Key Wrap using RSA-OAEP PP_APP_SWFE_EP_v1.0 FCS_COP.1(5) 2018.01.19
TD0284   Tests for FCS_SRTP_EXT.1 EP_SBC_V1.1 FCS_SRTP_EXT.1 2018.01.18
TD0282   Test Activities added for Key Distribution and Key Generation PP_WLAN_AS_EP_V1.0 FCS_CKM.1(2). FCS_CKM.2(3) 2018.01.19
TD0281   NIT Technical Decision for Testing both thresholds for SSH rekey CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8, ND SD V1.0, ND SD V2.0 2018.01.05
TD0280   Selection added to allow for keys to be stored in the underlying platform keystore PP_APP_SWFE_EP_v1.0 FPT_KYP_EXT.1 2018.01.02
TD0279   Ciphersuites for SRTP EP_SBC_V1.1, EP_VVOIP_V1.0 FCS_SRTP_EXT.1.2 2018.01.03
TD0278   Clarification of Role for Managing Manual Certificate Requests PP_CA_V2.1 FMT_MOF.1(1); FMT_MOF.1(3) 2017.12.21
TD0277   Pre-Shared Key Composition PP_WLAN_AS_EP_V1.0 FIA_PSK_EXT.1 2017.12.20
TD0276   X.509 Code Signing on TOE Updates PP_CA_V2.1 FIA_X509_EXT.2.1 2017.12.19
TD0275   Corrections to FAU_WID_EXT.2.1 and FAU_WID_EXT.3.1 EP_WIDS_V1.0 FAU_WID_EXT.2.1, FAU_WID_EXT.3.1 2017.12.20
TD0273   Rekey after CAK expiration PP_NDCPP_MACSEC_EP_V1.2 FCS_MACSEC_EXT.4 2017.12.20
TD0272   Update to FMT_SMF.1 PP_NDCPP_MACSEC_EP_V1.2 FMT.SMF.1 2017.12.20
TD0271   RADsec as alternative to IPsec PP_WLAN_AS_EP_V1.0 FTP_ITC.1 2018.04.26
TD0270   Protection of System Time updates EP_ESC_V1.0 FPT_STM_EXT.1, FMT_SMF.1 2017.12.20
TD0268   FMT_MEC_EXT.1 Clarification PP_APP_v1.2 FMT_MEC_EXT.1 2017.12.15
TD0267   TLSS testing - Empty Certificate Authorities list PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MDM_V3.0 FCS_TLSS_EXT.1.5, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.1.4 2017.12.08
TD0266   Password/passphrase min vs max value for FCS_CKM_EXT.5.1 PP_APP_EMAILCLIENT_EP_v2.0 FCS_CKM_EXT.5.1 2017.12.08
TD0265   Audit of TLS and HTTPS Session Terminations PP_BASE_VIRTUALIZATION_V1.0 FCS_TLSS_EXT.1, FCS_TLSC_EXT.1, FCS_HTTPS_EXT.1 2017.12.04
TD0264   Clarification of Auditable Events for FPT_RDM_EXT.1 PP_BASE_VIRTUALIZATION_V1.0 PP_BASE_VIRTUALIZATION_V1.0, FPT_RDM_EXT.1 2017.12.07
TD0263   Specification of key generation and use requirements in the Software File Encryption EP PP_APP_SWFE_EP_v1.0 FCS_COP.1(5); FCS_CKM.1(1); FCS_KYC_EXT.1 2017.11.29
TD0261   Destruction of CSPs in flash PP_HCD_V1.0 FCS_CKM.4 2017.11.14
TD0259   NIT Technical Decision for Support for X509 ssh rsa authentication IAW RFC 6187 CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V2.0, CPP_ND_V2.0E FCS_SSHC_EXT.1.5/FCS_SSHS_EXT.1.5 2017.11.13
TD0257   NIT Technical Decision for Updating FCS_DTLSC_EXT.x.2/FCS_TLSC_EXT.x.2 Tests 1-4 CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.1.2/FCS_DTLSC_EXT.2.2 Tests 1-4 (ND SD V2.0), FCS_TLSC_EXT.1.2/FCS_TLSC_EXT.2.2, Tests 1-4 (ND SD V1.0, ND SD V2.0) 2017.11.13
TD0256   NIT Technical Decision for Handling of TLS connections with and without mutual authentication CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.2.5 (ND SD V2.0), FCS_TLSC_EXT.2 (ND SD V1.0, ND SD V2.0) 2017.11.13
TD0254   Algorithms in FCS_SMIME_EXT.1.4 PP_APP_EMAILCLIENT_EP_v2.0 FCS_SMIME_EXT.1.4 2017.11.08
TD0253   Assurance Activities for Key Transport PP_HCD_V1.0 FCS_COP.1.1(i) 2017.11.08
TD0252   Inaccurate statement in application note of FCS_TLSC_EXT.2.4 PP_BASE_VIRTUALIZATION_V1.0 FCS_TLSC_EXT.2.4 2017.10.31
TD0251   FMT_MOF.1.1 - Added Assignment PP_PSS_V3.0 FMT_MOF.1.1; PP_PSS_V3.0 2017.10.26
TD0250   Hypercall Controls - FPT_HCL_EXT.1 Clarification PP_BASE_VIRTUALIZATION_V1.0 FPT_HCL_EXT.1 2017.11.14
TD0249   Applicability of FTP_ITC_EXT.1 PP_BASE_VIRTUALIZATION_V1.0 FTP_ITC_EXT.1.1 2017.11.14
TD0248   FAU_GEN.1 Guidance Activity EP_VPN_GW_V2.1 FAU_GEN.1 2017.10.20
TD0247   FPT_VDP_EXT.1 Clarification for Assurance Activity PP_BASE_VIRTUALIZATION_V1.0 FPT_VDP_EXT.1 2017.11.29
TD0246   Assurance Activity for FIA_UAU.5.2 PP_OS_V4.1 FIA_UAU.5.2 2017.10.31
TD0245   Updates to FTP_ITC and FTP_TRP for ESM PPs PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1 FTP_ITC.1, FTP_TRP.1 2017.10.03
TD0244   FCS_TLSC_EXT - TLS Client Curves Allowed PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MD_V3.1, PP_OS_V4.1, PP_WLAN_CLI_EP_V1.0 FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.4.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.2/WLAN 2017.11.16
TD0243   SSH Key-Based Authentication PP_OS_V4.1 FIA_UAU.5.1 2017.10.03
TD0242   FPF_RUL_EXT.1.7, Test 3 - Logging Dropped Packets EP_VPN_GW_V2.1 FPF_RUL_EXT.1.7 2017.11.08
TD0241   Removal of Test 4.1 in FCS_TLSS_EXT.1.1 PP_APP_v1.2 FCS_TLSS_EXT.1.1, PP_APP_v1.2 2017.09.29
TD0240   FCS_COP.1.1(1) Platform provided crypto for encryption/decryption PP_SSH_EP_v1.0 FCS_COP.1.1(1) 2017.11.27
TD0239   Cryptographic Key Destruction in OS PP PP_OS_V4.1 FCS_CKM_EXT.3, FCS_CKM.4 2017.09.22
TD0238   User-modifiable files FPT_AEX_EXT.1.4 PP_APP_v1.2 FPT_AEX_EXT.1.4 2017.09.21
TD0237   FAU_GEN.1.1(2) - FMT_UNR_EXT.1 Audit Record Selection-Based EP_MDM_AGENT_V3.0 FAU_GEN.1.1(2); FMT_UNR_EXT.1 2017.09.26
TD0234   Appendix H - TLS Mapping Table PP_MDM_V2.0, PP_MDM_V3.0 Annex H 2017.09.08
TD0233   FIT Technical Decision for Contents in Selected Long Message Test – Bit-oriented Mode CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0 FDE_AA_SD_V2.0, FDE_EE_SD_V2.0, FCS_COP.1( b ) 2017.08.25
TD0232   FIA_X509_EXT.1.1 - Compliance to RFC5759 and RFC5280 for using CRLs PP_MDM_V3.0 FIA_X509_EXT.1.1 2017.08.28
TD0231   FCS_TLSS_EXT.1.2 - Removal of SSL 1.0 PP_MDM_V3.0 FCS_TLSS_EXT.1.2 2017.08.28
TD0230   ALC Assurance Activities for Server Virtualization and Base Virtualization PPs PP_BASE_VIRTUALIZATION_V1.0, PP_SV_V1.1 ALC_CMC.1, ALC_CMS.1 2017.09.06
TD0229   FIT Technical Decision for Validation attemp threshold config. CPP_FDE_AA_V1.0, CPP_FDE_AA_V2.0, CPP_FDE_EE_V1.0, CPP_FDE_EE_V2.0 FDE AA SD V1.0, FDE EE SD V1.0, FDE AA SD V2.0, FDE EE SD V2.0, FCS_SMV_EXT.1.2, FCS_SMV_EXT.1, FCS_VAL_EXT.1.3, FCS_VAL_EXT.1 2017.07.28
TD0228   NIT Technical Decision for CA certificates - basicConstraints validation CPP_FW_V1.0, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E ND SD V1.0, ND SD V2.0, FIA_X509_EXT.1.2 2018.06.15
TD0222   Use of RF Jammer for DoS testing in WIDS EP EP_WIDS_V1.0 FAU_WID_EXT.3 2017.07.27
TD0221   FMT_SMF.1.1 - Assignments moved to Selections PP_APP_SWFE_EP_v1.0, PP_APP_v1.2 FMT_SMF.1.1 2017.07.12
TD0219   NIAP Endorsement of Errata for HCD PP v1.0 PP_HCD_V1.0 2017.07.07
TD0217   Compliance to RFC5759 and RFC5280 for using CRLs PP_APP_v1.2 FIA_X509_EXT.1.1 2017.06.16
TD0215   Update to FCS_HTTPS_EXT.1.2 PP_APP_v1.2 FCS_HTTPS_EXT.1.2 2017.06.16
TD0214   FCS_CKM.1 & FCS_CKM_EXT.5 - Selectable Audit Events PP_MD_v3.0 FCS_CKM.1; FCS_CKM_EXT.5 2017.06.13
TD0213   Corrections to App Note references to FCS_TLS, FCS_IPSEC, and FTP_ITC PP_BASE_VIRTUALIZATION_V1.0 FCS_TLSS_EXT.1, FCS_TLSS_EXT.2, 2017.07.19
TD0212   FCS_HTTPS_EXT.1.3 - TLS Mutual Authentication Update PP_MDM_V2.0, PP_MDM_V3.0 FCS_HTTPS_EXT.1.3 2017.09.21
TD0211   FPT_TUD_EXT.1 - VVoIP Endpoints Optional EP_ESC_V1.0 FPT_TUD_EXT.1 2017.06.13
TD0210   FIA_BMG_EXT.1.2 - SAFAR Update PP_MD_v3.0 FIA_BMG_EXT.1.2 2017.06.07
TD0209   Additional DH Group added as selection for IKE Protocols EP_VPN_GW_V2.1 FCS_IPSEC_EXT.1.11 2017.06.09
TD0208   Remote Users in OSPP PP_OS_V4.1 FTP_TRP.1.1 2017.06.09
TD0206   Testing for Non-Existence of Disconnected Virtual Devices PP_BASE_VIRTUALIZATION_V1.0 FPT_DVD_EXT.1 2017.05.05
TD0204   Protection of Selected User Data PP_APP_SWFE_EP_v1.0 FDP_PRT_EXT 2017.05.08
TD0194   Update to Audit of FTP_ITC_EXT.1/WLAN PP_WLAN_CLI_EP_V1.0 FAU_GEN.1, FTP_ITC_EXT.1/WLAN 2017.04.11
TD0193   Selection-Based FCS_COP.1 Added to VVoip EP to include AES-CTR Mode EP_VVOIP_V1.0 FCS_COP.1 2017.04.20
TD0190   FPT_FLS.1(2)/SelfTest Failure with Preservation of Secure State and Modular Network Devices PP_NDCPP_MACSEC_EP_V1.2 FPT_FLS.1(2)/SelfTest 2017.04.11
TD0180   Update to audit of FDP_DAR_EXT.1 PP_MD_v3.0 FDP_DAR_EXT.1, FAU_GEN.1.2 2017.04.10
TD0179   Management Capabilities in VPN GW EP 2.1 EP_VPN_GW_V2.1 FMT_SMF.1.1 2017.04.11
TD0178   Integrity for installation tests in AppSW PP PP_APP_v1.2 FPT_TUD_EXT.1.3 2017.04.06
TD0177   FCS_TLSS_EXT.1 Application Note Update PP_APP_v1.2 FTP_DIT_EXT.1, FCS_TLSS_EXT.1 2017.04.06
TD0176   FDP_DSK_EXT.1.2 - SED Testing PP_HCD_V1.0 FDP_DSK_EXT.1.2 2017.04.11
TD0175   Revision of FCS_CKM_EXT.4 requirement in APP SW FE EP v1.0 PP_APP_SWFE_EP_v1.0 FCS_CKM_EXT.4 2017.04.10
TD0174   Optional Ciphersuites for TLS PP_APP_v1.2, PP_MD_v3.0, PP_NDCPP_APP_AUTHSVR_EP_V1.0 FCS_TLSC_EXT.1.1, FCS_EAP-TLS_EXT.1.1, 2017.04.10
TD0172   Additional APIs added to FCS_RBG_EXT.1.1 PP_APP_v1.2 FCS_RBG_EXT.1.1 2017.04.11
TD0171   Testing for RADIUS EAP responses and EAP-TLS protocols PP_NDCPP_APP_AUTHSVR_EP_V1.0 FCS_RADIUS_EXT.1, FCS_EAP-TLS_EXT.1 2017.04.06
TD0166   Optional Authentication of TLS Client PP_BASE_VIRTUALIZATION_V1.0, PP_CA_v2.0 FCS_TLSC_EXT.1 2017.04.05
TD0163   Update to FCS_TLSC_EXT.1.1 Test 5.4 and FCS_TLSS_EXT.1.1 Test PP_APP_v1.2, PP_CA_v2.0, PP_MDM_V3.0, PP_OS_V4.1, PP_VOIP_V1.3 FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1 2017.04.05
TD0159   FPT_STM.1.1 - Reliable Time Stamps EP_ESC_V1.0 FPT_STM.1.1; FMT_MTD.1; FTP_ITC.1 2017.04.11
TD0158   FMT_SMF_EXT.1 PP_MD_v3.0 FMT_SMF_EXT.1.1 2017.03.08
TD0157   FCS_IPSEC_EXT.1.1 - Testing SPDs PP_HCD_V1.0 FCS_IPSEC_EXT.1.1 2017.06.15
TD0148   Hardware-protected hash in FPT_TST_EXT.2.1 PP_MD_v3.0 FPT_TST_EXT.2.1 2017.02.24
TD0147   FIA_UAU.5.2 PP_MD_v3.0 FIA_UAU.5.2 2017.02.24
TD0146   FCS_STG_EXT.3.1 - Integrity PP_MD_v3.0 FCS_STG_EXT.3.1 2017.02.24
TD0145   FCS_CKM_EXT.3.1 - Security strength of KEKs PP_MD_v3.0 FCS_CKM_EXT.3.1 2017.02.10
TD0144   FDP_RIP.1.1 - Purge Memory and Restore Factory Defaults Optional PP_PSS_V3.0 FDP_RIP.1.1 2017.02.06
TD0139   Clarification of testing for FDP_RIP_EXT.2 PP_BASE_VIRTUALIZATION_V1.0 FDP_RIP_EXT.2 2017.01.19
TD0137   FIA_X509_EXT.2.1 - IPsec Optional Selection EP_ESC_V1.0 FIA_X509_EXT.2.1; 2016.12.22
TD0136   FDP_RIP.1.1 - Refinement PP_PSS_V3.0 FDP_RIP.1.1 2016.12.16
TD0135   SNMP in NDcPP MACsec EP v1.2 PP_NDCPP_MACSEC_EP_V1.2 FMT_SNMP_EXT.1.1, FCS_SNMP_EXT.1.1 2017.01.25
TD0134   AES Data Encryption/Decryption in NDcPP MACsec EP v1.2 PP_NDCPP_MACSEC_EP_V1.2 FCS_COP.1 2016.12.21
TD0133   FAU_GEN.1; FIA_SIPS_EXT.1 - Auditing SIP Register Events CPP_ND_SBC_EP_V1.0 FAU_GEN.1; FIA_SIPS_EXT.1 2016.12.14
TD0131   Update to FCS_TLSS_EXT.1.1 Test 4.5 PP_APP_v1.2 2016.12.14
TD0127   FIA_SIPT_EXT.1.2 - TLS Client X.509 Certificate Authentication EP_SBC_V1.1 FIA_SIPT_EXT.1.2 2016.12.21
TD0123   GCM Mode Added to FCS_KYC_EXT.1.1, FCS_COP.1.1(1), FPT_KYP_EXT.1.1 PP_APP_SWFE_EP_v1.0 FCS_KYC_EXT.1.1; FCS_COP.1.1(1); FPT_KYP_EXT.1.1 2016.11.03
TD0121   FMT_MEC_EXT.1.1 Configuration Options PP_APP_SWFE_EP_v1.0, PP_APP_v1.2 FMT_MEC_EXT.1.1 2016.11.04
TD0120   FMT_SMF_EXT.1, Functions 2 & 5, Users and/or Administrators Configuration PP_MD_v2.0, PP_MD_v3.0 FMT_SMF_EXT.1 2016.12.01
TD0119   FCS_STO_EXT.1.1 in PP_APP_v1.2 PP_APP_v1.2 FCS_STO_EXT.1.1 2016.10.26
TD0118   FAU_GEN.1 Application of Audit Requirements Update PP_MD_v2.0, PP_MD_v3.0 FAU_GEN.1.1; FAU_GEN.1.2 2016.10.27
TD0107   FCS_CKM - ANSI X9.31-1998, Section 4.1.for Cryptographic Key Generation PP_APP_v1.1, PP_APP_v1.2, PP_MD_v2.0, PP_MDM_V2.0, PP_ND_VPN_GW_EP_v1.1, PP_NDCPP_VPN_GW_EP_V2.0, PP_OS_v4.0, PP_OS_V4.1, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4 2016.09.14
TD0105   MACsec Key Agreement PP_NDCPP_MACSEC_EP_V1.2 FCS_MKA_EXT.1.2, FCS_MKA_EXT.1.5, FCS_MKA.1.8, 2016.09.13
TD0104   FMT_SMF and FMT_MOF in OS PP PP_OS_V4.1 FMT_MOF_EXT.1.1, FMT_SMF_EXT.1.1, 2016.09.16
TD0103   Access Control Policy Prohibiting Apps Write/Exe Permissions PP_MD_v2.0, PP_MD_v3.0 FDP_ACF_EXT.1.3 2016.09.23
TD0097   VPN Gateway selection for FCS_IPSEC_EXT.1.14 PP_VPN_IPSEC_CLIENT_V1.4 FCS_IPSEC_EXT.1.14, 2016.08.30
TD0086   DisplayPort to HDMI Conversion Functionality PP_PSS_V3.0 FDP_IFF.1.5(2), Rule 10 2016.03.10
TD0083   Vulnerability Survey Assurance Component (AVA_VAN.1) in PSS PP v3.0 PP_PSS_V3.0 2016.02.29
TD0079   RBG Cryptographic Transitions per NIST SP 800-131A Revision 1 PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_MD_v2.0, PP_MDM_V2.0, PP_ND_VPN_GW_EP_v1.1, PP_OS_v4.0, PP_USB_FD_v1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WLAN_CLI_V1.0 PP_APP_v1.1 2018.06.15
TD0074   FCS_CKM.1(a) Requirement in HCD PP v1.0 PP_HCD_V1.0 2015.12.15
TD0071   Use of SHA-512 in ESM PPs PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1 2015.12.03
TD0069   Revision to FCS_COP.1(1) AA in SWFE EP v1.0 PP_APP_SWFE_EP_v1.0 2015.11.20
TD0067   Revision to FCS_CKM.1(A) SFR & AA in SWFE EP v1.0 PP_APP_SWFE_EP_v1.0 PP_APP_SWFE_EP_v1.0 2015.10.13
TD0066   Clarification of FAU_STG_EXT.1 Requirement in ESM PPs PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1 2015.10.08
TD0065   Revision of FDP_PRT_EXT.1.2 requirement in APP SWFE EP v1.0 PP_APP_SWFE_EP_v1.0 2015.10.02
TD0055   Move FTA_TAB.1 to Selection-Based Requirement PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1 2015.07.30
TD0042   Removal of Low-level Crypto Failure Audit from PPs PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_SV_V1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WEBBROWSER_v1.0, PP_WLAN_CLI_V1.0 2018.06.15

References:    (free match)  Tip

Click this button to restore all default options to this page: 
Site Map              Contact Us              Home