TD0389
|
Handling of SSH EP claim for platform
|
PP_APP_v1.2
|
FTP_DIT_EXT.1
|
2019.02.01
|
|
TD0387
|
VPN Client Required SFR for GPOS as Base PP
|
MOD_VPN_CLI_V2.1
|
Section 5.1.1
|
2019.01.29
|
|
TD0386
|
Platform-Provided Verification of Update
|
PP_OS_V4.2
|
FPT_TUD_EXT.1.2
|
2019.02.07
|
|
TD0385
|
FTP_DIT_EXT.1 Assurance Activity Clarification
|
MOD_VPN_CLI_V2.1, PP_APP_v1.2
|
FTP_DIT_EXT.1
|
2019.01.08
|
|
TD0384
|
FIT Technical Decision for Use of SHA-384
|
CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0
|
FCS_PCC_EXT.1.1, FCS_RBG_EXT.1.2, FCS_SMC_EXT.1.1
|
2018.12.21
|
|
TD0383
|
FIT Technical Decision for Updating FCS_CKM.4(b) Tests
|
CPP_FDE_EE_V2.0
|
CPP_FDE_EE_V2.0-SD, FCS_CKM.4(b)
|
2018.12.21
|
|
TD0382
|
Configuration Storage Options for Apps
|
PP_APP_v1.2
|
FMT_MEC_EXT.1
|
2019.01.03
|
|
TD0381
|
FCS_SMIME_EXT.1 Test 3
|
PP_APP_EMAILCLIENT_EP_v2.0
|
FCS_SMIME_EXT.1.1
|
2018.12.27
|
|
TD0380
|
Linux Keyring Requirement in FCS_STO_EXT.1
|
PP_APP_v1.2
|
FCO_STO_EXT.1
|
2019.01.08
|
|
TD0379
|
Updated FCS_IPSEC_EXT.1.11 Tests for VPN Client
|
MOD_VPN_CLI_V2.1
|
FCS_IPSEC_EXT.1.11
|
2018.12.20
|
|
TD0378
|
TOE/TOE Platform Selection in FCS_IPSEC_EXT.1 SFRs
|
MOD_VPN_CLI_V2.1
|
FCS_IPSEC_EXT.1.12, FCS_IPSEC_EXT.1.13
|
2018.12.13
|
|
TD0377
|
Tests for MDM unique certificates
|
EP_MDM_AGENT_V3.0, PP_MDM_V3.0
|
FIA_X509_EXT.2.3
|
2018.12.12
|
|
TD0376
|
Audit record entry for FMT_SMF.1 in FAU_GEN.1.2/VOIP
|
EP_VVOIP_V1.0
|
FAU_GEN.1.2/VVOIP
|
2018.11.29
|
|
TD0375
|
FMT_MOF.1(4) selection
|
PP_CA_V2.1
|
FMT_MOF.1
|
2018.11.27
|
|
TD0374
|
GCM ciphersuite
|
PP_OS_V4.2
|
FCS_TLSC_EXT.1.1
|
2018.11.27
|
|
TD0373
|
RSA-based Key Establishment
|
MOD_VPN_CLI_V2.1
|
FCS_CKM.1.1, FCS_CKM.2.1
|
2018.12.11
|
|
TD0372
|
Auditing in VVOIP
|
EP_VVOIP_V1.0
|
FAU_GEN.1/VVOIP, FAU_STG_EXT.1
|
2018.11.27
|
|
TD0371
|
Section F.2 [Use Case 2]
|
PP_MD_V3.1
|
|
2018.11.21
|
|
TD0370
|
Management Function Update
|
PP_MDM_V3.0
|
FMT_SMF.1.1(2)
|
2018.11.16
|
|
TD0369
|
Long-term trusted channel key material
|
PP_MD_V3.1
|
FCS_STG_EXT.2.1, FCS_STG_EXT.2.2, FCS_STG_EXT.3.1
|
2018.10.17
|
|
TD0368
|
Audit Generation required in VVOIP
|
EP_VVOIP_V1.0
|
FAU_GEN.1/VVOIP, FAU_STG_EXT.1
|
2018.10.12
|
|
TD0367
|
Trusted Updates
|
EP_VVOIP_V1.0
|
FPT_TUD_EXT.1
|
2018.10.12
|
|
TD0366
|
Flexibility in Password Conditioning in FCS_COP.1(5)
|
PP_MD_V3.1
|
FCS_COP.1.1(5), FCS_CKM_EXT.3.2
|
2018.10.12
|
|
TD0365
|
FCS_CKM_EXT.4 selections
|
PP_OS_V4.2
|
FCS_CKM_EXT.4
|
2018.10.12
|
|
TD0364
|
Android mmap testing for FPT_AEX_EXT.1.1
|
PP_APP_v1.2
|
FPT_AEX_EXT.1.1
|
2018.10.09
|
|
TD0363
|
Access Banner and applicability to programmatic interfaces
|
PP_BASE_VIRTUALIZATION_V1.0
|
FTA_TAB.1
|
2018.10.05
|
|
TD0362
|
"Failure of the randomization process" audit
|
MOD_VPN_CLI_V2.1
|
FCS_RBG_EXT.1, FIA_PSK_EXT.1
|
2018.10.03
|
|
TD0360
|
AD Server configuration in FMT_MOF_EXT.1
|
EP_CV_V1.0, EP_SV_V1.0, PP_BASE_VIRTUALIZATION_V1.0
|
FMT_MOF_EXT.1.2, FIA_UAU.5.1
|
2018.09.28
|
|
TD0359
|
Buffer Protection
|
PP_APP_v1.2
|
FPT_AEX_EXT.1.5
|
2018.09.21
|
|
TD0358
|
Cipher Suites for TLS in SWApp v1.2
|
PP_APP_v1.2
|
FCS_TLSC_EXT.1; FCS_TLSS_EXT.1
|
2018.09.24
|
|
TD0357
|
AES Modes for the MACsec EP
|
PP_NDCPP_MACSEC_EP_V1.2
|
FCS_COP.1
|
2018.10.01
|
|
TD0356
|
OE.CONNECTIONS added to VPN GW v2.1
|
EP_VPN_GW_V2.1
|
|
2018.09.20
|
|
TD0355
|
FCS_CKM.1/VPN for IKE authentication
|
MOD_VPN_CLI_V2.1
|
FCS_CKM.1/VPN
|
2018.09.20
|
|
TD0354
|
MDM CRLsign exceptions
|
PP_MDM_V3.0
|
FIA_X509_EXT.1
|
2018.09.20
|
|
TD0353
|
Guidance for Certificate Profiles
|
PP_CA_V2.1
|
FDP_CER_EXT.1.1
|
2018.09.18
|
|
TD0352
|
Added key destruction options
|
PP_APP_EMAILCLIENT_EP_v2.0
|
FCS_CKM_EXT.4
|
2018.09.18
|
|
TD0351
|
Additional methods for DEK formation
|
PP_MD_V3.1
|
FCS_CKM_EXT.2.1
|
2018.09.20
|
|
TD0350
|
Recording of voice and video call data
|
EP_ESC_V1.0
|
FAU_STG.1/VVR, FAU_STG_EXT.1, FMT_SMF.1.1
|
2018.09.06
|
|
TD0349
|
Update to FPT_MCD_EXT.1.2
|
PP_APP_WEBBROWSER_EP_v2.0
|
FPT_MCD_EXT.1.2
|
2018.08.31
|
|
TD0348
|
FCS_TLSS_EXT.2.4 for TLS 1.2 or higher
|
PP_CA_V2.1
|
FCS_TLSS_EXT.2.4
|
2018.08.28
|
|
TD0347
|
Update of Use Case 2 in MDF PP
|
PP_MD_V3.1
|
Section F.2 [Use Case 2]
|
2018.08.23
|
|
TD0346
|
Revision of FMT_SMF_EXT.2 in MDF PP
|
PP_MD_V3.1
|
FMT_SMF_EXT.2
|
2018.08.23
|
|
TD0345
|
FIT Technical Decision for Key Destruction and KMD Documentation
|
CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0
|
CPP_FDE_AA_V2.0-SD, CPP_FDE_EE_V2.0-SD, FCS_CKM_EXT.4(b), FPT_PWR_EXT.1, FPT_PWR_EXT.2, FCS_CKM.1.1(b), C.2 Extended Component Definitions
|
2018.08.17
|
|
TD0344
|
FIT Technical Decision for Updating FCS_CKM.4(a) Tests
|
CPP_FDE_AA_V2.0
|
FCS_CKM.4(a), CPP_FDE_AA_V2.0-SD
|
2018.08.17
|
|
TD0343
|
NIT Technical Decision for Updating FCS_IPSEC_EXT.1.14 Tests
|
CPP_FW_V2.0E, CPP_ND_V2.0E
|
ND SD V2.0, FCS_IPSEC_EXT.1.14
|
2018.08.02
|
|
TD0342
|
NIT Technical Decision for TLS and DTLS Server Tests
|
CPP_ND_V2.0E
|
ND SD V2.0, FCS_DTLSS_EXT.1, FCS_DTLSS_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2
|
2018.08.02
|
|
TD0341
|
NIT Technical Decision for TLS wildcard checking
|
CPP_ND_V2.0E
|
ND SD V2.0, FCS_TLSC_EXT.1.2, FCS_TLSC_EXT.2.2, FCS_DTLSC_EXT.1.2, FCS_DTLSC_EXT.2.2,
|
2018.08.02
|
|
TD0340
|
NIT Technical Decision for Handling of the basicConstraints extension in CA and leaf certificates
|
CPP_FW_V2.0E, CPP_ND_V2.0E
|
FIA_X509_EXT.1.1
|
2018.08.02
|
|
TD0339
|
NIT Technical Decision for Making password-based authentication optional in FCS_SSHS_EXT.1.2
|
CPP_FW_V2.0E, CPP_ND_V2.0E
|
ND SD V2.0, FCS_SSHS_EXT.1.2
|
2018.08.02
|
|
TD0338
|
NIT Technical Decision for Access Banner Verification
|
CPP_ND_V2.0E
|
ND SD V2.0, FTA_TAB.1
|
2018.08.02
|
|
TD0337
|
NIT Technical Decision for Selections in FCS_SSH*_EXT.1.6
|
CPP_FW_V2.0E, CPP_ND_V2.0E
|
ND SD V2.0, FCS_SSHC_EXT.1, FCS_SSHS_EXT.1
|
2018.08.02
|
|
TD0336
|
NIT Technical Decision for Audit requirements for FCS_SSH*_EXT.1.8
|
CPP_ND_V2.0E
|
ND SD V2.0, FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8
|
2018.08.01
|
|
TD0335
|
NIT Technical Decision for FCS_DTLS Mandatory Cipher Suites
|
CPP_FW_V2.0E, CPP_ND_V2.0E
|
FCS_DTLSC_EXT.1.1, FCS_DTLSC_EXT.2.1, FCS_DTLSS_EXT.1.1, FCS_DTLSS_EXT.2.1, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_TLSS_EXT.1.1, FCS_TLSS_EXT.2.1
|
2018.08.01
|
|
TD0334
|
NIT Technical Decision for Testing SSH when password-based authentication is not supported
|
CPP_ND_V2.0E
|
ND SD V2.0, FCS_SSHC_EXT.1.9
|
2018.08.01
|
|
TD0333
|
NIT Technical Decision for Applicability of FIA_X509_EXT.3
|
CPP_FW_V2.0E, CPP_ND_V2.0E
|
ND SD V2.0, FIA_X509_EXT
|
2018.08.01
|
|
TD0332
|
Support for RSA SHA2 host keys
|
PP_SSH_EP_v1.0
|
FCS_SSHC_EXT.1.4, FCS_SSHS_EXT.1.4
|
2018.06.08
|
|
TD0331
|
SSH Rekey Testing
|
PP_SSH_EP_v1.0
|
FCS_SSHS_EXT.1.7, FCS_SSHC_EXT.1.7
|
2018.06.01
|
|
TD0330
|
Curve25519 scheme moved to optional and FFC scheme using DH Group 14 added
|
MOD_VPN_CLI_V2.1
|
FCS_CKM.1.1
|
2018.06.01
|
|
TD0329
|
IPSEC X.509 Authentication Requirements
|
EP_VPN_GW_V2.1
|
FIA_X509_EXT.4, FCS_IPSEC_EXT.1.14
|
2018.05.31
|
|
TD0328
|
Split Knowledge Procedures distinction
|
PP_CA_V2.1
|
FPT_SKY_EXT.1
|
2018.06.07
|
|
TD0327
|
Default file permissions for FMT_CFG_EXT.1.2
|
PP_APP_v1.2
|
FMT_CFG_EXT.1.2
|
2018.05.23
|
|
TD0326
|
RSA-based key establishment schemes
|
PP_APP_v1.2
|
FCS_CKM.1, FCS_CKM.2, FCS_TLSS_EXT.1.3
|
2018.05.21
|
|
TD0325
|
Inline mode for Signature-based IPS policies
|
EP_IPS_V2.11
|
IPS_SBD_EXT.1.5
|
2018.05.21
|
|
TD0324
|
NIT Technical Decision for Correction of section numbers in SD Table 1
|
CPP_ND_V2.0E
|
Table 1
|
2018.05.18
|
|
TD0323
|
NIT Technical Decision for DTLS server testing - Empty Certificate Authorities list
|
CPP_ND_V2.0E
|
ND SD V2.0, FCS_DTLSS_EXT.2.7, FCS_DTLSS_EXT.2.8
|
2018.05.18
|
|
TD0322
|
NIT Technical Decision for TLS server testing - Empty Certificate Authorities list
|
CPP_ND_V2.0E
|
ND SD V.1.0, ND SD V2.0, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5
|
2018.05.18
|
|
TD0321
|
Protection of NTP communications
|
CPP_FW_V2.0E, CPP_ND_V2.0E
|
FTP_ITC.1, FPT_STM_EXT.1
|
2018.05.21
|
|
TD0320
|
TLS ciphers in ESM PPs
|
PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1
|
FCS_TLS_EXT.1.1
|
2018.05.03
|
|
TD0319
|
Updates to FMT_SMF.1 in VPN Gateway EP
|
EP_VPN_GW_V2.1
|
FMT_SMF.1
|
2018.04.23
|
|
TD0318
|
Move RSA Ciphers from Mandatory to Selectable in MDM
|
PP_MDM_V3.0
|
FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1
|
2018.04.24
|
|
TD0317
|
FMT_MOF.1/Services and FMT_MTD.1/CryptoKeys
|
EP_VPN_GW_V2.1
|
FMT_MOF.1/Services, FMT_MTD.1/CryptoKeys
|
2018.04.23
|
|
TD0316
|
Update to FPT_TST_EXT.2.1
|
EP_VPN_GW_V2.1
|
FPT_TST_EXT.2.1, FPT_TST_EXT.3.1
|
2018.04.20
|
|
TD0315
|
Clarification of test for FCS_CKM.2.1(3)
|
PP_WLAN_AS_EP_V1.0
|
FCS_CKM.2.1(3)
|
2018.05.03
|
|
TD0314
|
Modifications to support Selection Based requirements
|
EP_WIDS_V1.0
|
FAU_SAA.1.2, FAU_GEN.1.1/WIDS, FAU_GEN.2.1//WIDS, FMT_SMF.1/WIDS
|
2018.04.26
|
|
TD0312
|
FIT Technical Decision for Key and Key Material Protection
|
CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0
|
FPT_KYP_EXT.1.1
|
2018.04.17
|
|
TD0311
|
FIT Technical Decision on CC Conformance Claims
|
CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0
|
|
2018.12.21
|
|
TD0310
|
FIT Technical Decision for Firmware Update Authentication
|
CPP_FDE_EE_V2.0
|
FPT_FUA_EXT.1
|
2018.04.17
|
|
TD0309
|
FIT Technical Decision for Random Bit Generation
|
CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0
|
FCS_RBG_EXT.1
|
2018.04.17
|
|
TD0308
|
FIT Technical Decision for Cryptographic Operation Signature Verification and Hash Algorithm
|
CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0
|
FCS_COP.1(a), FCS_COP.1(b)
|
2018.04.17
|
|
TD0307
|
Modification of FTP_ITC_EXT.1.1
|
EP_VPN_GW_V2.1
|
FTP_ITC_EXT.1.1, FTP_ITC.1.1
|
2018.04.18
|
|
TD0306
|
Update to FAU_WID_EXT.2.1 and FAU_WID_EXT.2.2
|
EP_WIDS_V1.0
|
FAU_WID_EXT.2.1, FAU_WID_EXT.2.2
|
2018.05.22
|
|
TD0305
|
Handling of TLS connections with and without mutual authentication
|
PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1
|
FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.4.1
|
2018.04.04
|
|
TD0304
|
Update to FCS_TLSC_EXT.1.2
|
PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1
|
FCS_TLSC_EXT.1.2
|
2018.04.04
|
|
TD0303
|
IKEv1 and support for XAUTH
|
MOD_VPN_CLI_V2.1
|
FCS_IPSEC_EXT.1.5
|
2018.03.29
|
|
TD0302
|
Update to FAU_ARP.1
|
EP_SBC_V1.1
|
FAU_ARP.1
|
2018.03.29
|
|
TD0301
|
Updates to Administrator Management and Biometric Authenication
|
PP_MD_V3.1
|
FMT_SMF_EXT.3, FIA_BMG_EXT.1.1
|
2018.04.04
|
|
TD0300
|
Sensitive Data in FDP_DAR_EXT.1
|
PP_APP_v1.2
|
FDP_DAR_EXT.1
|
2018.03.16
|
|
TD0299
|
Update to FCS_CKM.4 Assurance Activities
|
PP_HCD_V1.0
|
FCS_CKM.4
|
2018.03.16
|
|
TD0298
|
Update to FDP_IFF.1 Assurance Activities
|
PP_PSS_V3.0
|
FDP_IFF.1.5(2)
|
2018.03.09
|
|
TD0297
|
Reliable Time Stamps and Protection of System Time Updates
|
EP_SBC_V1.1
|
FTP_STM.1.1, FMT_MTD.1.1, FTP_ITC.1, FPT_STM_EXT.1, FMT_SMF.1
|
2018.05.31
|
|
TD0296
|
Update to FCS_HTTPS_EXT.1.3
|
PP_APP_v1.2
|
FCS_HTTPS_EXT.1.3
|
2018.03.14
|
|
TD0295
|
Update to FPT_AEX_EXT.1.3 Assurance Activities
|
PP_APP_v1.2
|
FPT_AEX_EXT.1.3
|
2018.03.08
|
|
TD0294
|
Correction of TLS SFRs in CA PP ver 2.1
|
PP_CA_V2.1
|
FCS_TLSC_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2
|
2018.04.18
|
|
TD0291
|
NIT technical decision for DH14 and FCS_CKM.1
|
CPP_FW_V1.0, CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E
|
FCS_CKM.1.1, ND SD V1.0, ND SD V2.0
|
2018.02.03
|
|
TD0290
|
NIT technical decision for physical interruption of trusted path/channel.
|
CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E
|
FTP_ITC.1, FTP_TRP.1, FPT_ITT.1, ND SD V1.0, ND SD V2.0
|
2018.02.03
|
|
TD0289
|
NIT technical decision for FCS_TLSC_EXT.x.1 Test 5e
|
CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E
|
FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_DTLSC_EXT.1.1 (only ND SD V2.0), FCS_DTLSC_EXT.2.1 (only ND SD V2.0)
|
2018.02.03
|
|
TD0288
|
Support for Single-User File Encryption
|
PP_APP_SWFE_EP_v1.0
|
FIA_AUT_EXT.1, FIA_FCT_EXT.1(3), FCS_CKM_EXT.1.1, FMT_SMF.1
|
2018.01.26
|
|
TD0287
|
FAU_STG.4 Testing
|
PP_CA_V2.1
|
FAU_STG.4
|
2018.01.25
|
|
TD0286
|
Audit Events for FPT_RCV.1
|
PP_CA_V2.1
|
FPT_RCV.1
|
2018.01.25
|
|
TD0285
|
Test for Key Wrap using RSA-OAEP
|
PP_APP_SWFE_EP_v1.0
|
FCS_COP.1(5)
|
2018.01.19
|
|
TD0284
|
Tests for FCS_SRTP_EXT.1
|
EP_SBC_V1.1
|
FCS_SRTP_EXT.1
|
2018.01.18
|
|
TD0282
|
Test Activities added for Key Distribution and Key Generation
|
PP_WLAN_AS_EP_V1.0
|
FCS_CKM.1(2). FCS_CKM.2(3)
|
2018.01.19
|
|
TD0281
|
NIT Technical Decision for Testing both thresholds for SSH rekey
|
CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E
|
FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8, ND SD V1.0, ND SD V2.0
|
2018.01.05
|
|
TD0280
|
Selection added to allow for keys to be stored in the underlying platform keystore
|
PP_APP_SWFE_EP_v1.0
|
FPT_KYP_EXT.1
|
2018.01.02
|
|
TD0279
|
Ciphersuites for SRTP
|
EP_SBC_V1.1, EP_VVOIP_V1.0
|
FCS_SRTP_EXT.1.2
|
2018.01.03
|
|
TD0278
|
Clarification of Role for Managing Manual Certificate Requests
|
PP_CA_V2.1
|
FMT_MOF.1(1); FMT_MOF.1(3)
|
2017.12.21
|
|
TD0277
|
Pre-Shared Key Composition
|
PP_WLAN_AS_EP_V1.0
|
FIA_PSK_EXT.1
|
2017.12.20
|
|
TD0276
|
X.509 Code Signing on TOE Updates
|
PP_CA_V2.1
|
FIA_X509_EXT.2.1
|
2017.12.19
|
|
TD0275
|
Corrections to FAU_WID_EXT.2.1 and FAU_WID_EXT.3.1
|
EP_WIDS_V1.0
|
FAU_WID_EXT.2.1, FAU_WID_EXT.3.1
|
2017.12.20
|
|
TD0273
|
Rekey after CAK expiration
|
PP_NDCPP_MACSEC_EP_V1.2
|
FCS_MACSEC_EXT.4
|
2017.12.20
|
|
TD0272
|
Update to FMT_SMF.1
|
PP_NDCPP_MACSEC_EP_V1.2
|
FMT.SMF.1
|
2017.12.20
|
|
TD0271
|
RADsec as alternative to IPsec
|
PP_WLAN_AS_EP_V1.0
|
FTP_ITC.1
|
2018.04.26
|
|
TD0270
|
Protection of System Time updates
|
EP_ESC_V1.0
|
FPT_STM_EXT.1, FMT_SMF.1
|
2017.12.20
|
|
TD0268
|
FMT_MEC_EXT.1 Clarification
|
PP_APP_v1.2
|
FMT_MEC_EXT.1
|
2017.12.15
|
|
TD0267
|
TLSS testing - Empty Certificate Authorities list
|
PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MDM_V3.0
|
FCS_TLSS_EXT.1.5, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.1.4
|
2017.12.08
|
|
TD0266
|
Password/passphrase min vs max value for FCS_CKM_EXT.5.1
|
PP_APP_EMAILCLIENT_EP_v2.0
|
FCS_CKM_EXT.5.1
|
2017.12.08
|
|
TD0265
|
Audit of TLS and HTTPS Session Terminations
|
PP_BASE_VIRTUALIZATION_V1.0
|
FCS_TLSS_EXT.1, FCS_TLSC_EXT.1, FCS_HTTPS_EXT.1
|
2017.12.04
|
|
TD0264
|
Clarification of Auditable Events for FPT_RDM_EXT.1
|
PP_BASE_VIRTUALIZATION_V1.0
|
PP_BASE_VIRTUALIZATION_V1.0, FPT_RDM_EXT.1
|
2017.12.07
|
|
TD0263
|
Specification of key generation and use requirements in the Software File Encryption EP
|
PP_APP_SWFE_EP_v1.0
|
FCS_COP.1(5); FCS_CKM.1(1); FCS_KYC_EXT.1
|
2017.11.29
|
|
TD0261
|
Destruction of CSPs in flash
|
PP_HCD_V1.0
|
FCS_CKM.4
|
2017.11.14
|
|
TD0259
|
NIT Technical Decision for Support for X509 ssh rsa authentication IAW RFC 6187
|
CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V2.0, CPP_ND_V2.0E
|
FCS_SSHC_EXT.1.5/FCS_SSHS_EXT.1.5
|
2017.11.13
|
|
TD0257
|
NIT Technical Decision for Updating FCS_DTLSC_EXT.x.2/FCS_TLSC_EXT.x.2 Tests 1-4
|
CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E
|
ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.1.2/FCS_DTLSC_EXT.2.2 Tests 1-4 (ND SD V2.0), FCS_TLSC_EXT.1.2/FCS_TLSC_EXT.2.2, Tests 1-4 (ND SD V1.0, ND SD V2.0)
|
2017.11.13
|
|
TD0256
|
NIT Technical Decision for Handling of TLS connections with and without mutual authentication
|
CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E
|
ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.2.5 (ND SD V2.0), FCS_TLSC_EXT.2 (ND SD V1.0, ND SD V2.0)
|
2017.11.13
|
|
TD0254
|
Algorithms in FCS_SMIME_EXT.1.4
|
PP_APP_EMAILCLIENT_EP_v2.0
|
FCS_SMIME_EXT.1.4
|
2017.11.08
|
|
TD0253
|
Assurance Activities for Key Transport
|
PP_HCD_V1.0
|
FCS_COP.1.1(i)
|
2017.11.08
|
|
TD0252
|
Inaccurate statement in application note of FCS_TLSC_EXT.2.4
|
PP_BASE_VIRTUALIZATION_V1.0
|
FCS_TLSC_EXT.2.4
|
2017.10.31
|
|
TD0251
|
FMT_MOF.1.1 - Added Assignment
|
PP_PSS_V3.0
|
FMT_MOF.1.1; PP_PSS_V3.0
|
2017.10.26
|
|
TD0250
|
Hypercall Controls - FPT_HCL_EXT.1 Clarification
|
PP_BASE_VIRTUALIZATION_V1.0
|
FPT_HCL_EXT.1
|
2017.11.14
|
|
TD0249
|
Applicability of FTP_ITC_EXT.1
|
PP_BASE_VIRTUALIZATION_V1.0
|
FTP_ITC_EXT.1.1
|
2017.11.14
|
|
TD0248
|
FAU_GEN.1 Guidance Activity
|
EP_VPN_GW_V2.1
|
FAU_GEN.1
|
2017.10.20
|
|
TD0247
|
FPT_VDP_EXT.1 Clarification for Assurance Activity
|
PP_BASE_VIRTUALIZATION_V1.0
|
FPT_VDP_EXT.1
|
2017.11.29
|
|
TD0246
|
Assurance Activity for FIA_UAU.5.2
|
PP_OS_V4.1
|
FIA_UAU.5.2
|
2017.10.31
|
|
TD0245
|
Updates to FTP_ITC and FTP_TRP for ESM PPs
|
PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1
|
FTP_ITC.1, FTP_TRP.1
|
2017.10.03
|
|
TD0244
|
FCS_TLSC_EXT - TLS Client Curves Allowed
|
PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MD_V3.1, PP_OS_V4.1, PP_WLAN_CLI_EP_V1.0
|
FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.4.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.2/WLAN
|
2017.11.16
|
|
TD0243
|
SSH Key-Based Authentication
|
PP_OS_V4.1
|
FIA_UAU.5.1
|
2017.10.03
|
|
TD0242
|
FPF_RUL_EXT.1.7, Test 3 - Logging Dropped Packets
|
EP_VPN_GW_V2.1
|
FPF_RUL_EXT.1.7
|
2017.11.08
|
|
TD0241
|
Removal of Test 4.1 in FCS_TLSS_EXT.1.1
|
PP_APP_v1.2
|
FCS_TLSS_EXT.1.1, PP_APP_v1.2
|
2017.09.29
|
|
TD0240
|
FCS_COP.1.1(1) Platform provided crypto for encryption/decryption
|
PP_SSH_EP_v1.0
|
FCS_COP.1.1(1)
|
2017.11.27
|
|
TD0239
|
Cryptographic Key Destruction in OS PP
|
PP_OS_V4.1
|
FCS_CKM_EXT.3, FCS_CKM.4
|
2017.09.22
|
|
TD0238
|
User-modifiable files FPT_AEX_EXT.1.4
|
PP_APP_v1.2
|
FPT_AEX_EXT.1.4
|
2017.09.21
|
|
TD0237
|
FAU_GEN.1.1(2) - FMT_UNR_EXT.1 Audit Record Selection-Based
|
EP_MDM_AGENT_V3.0
|
FAU_GEN.1.1(2); FMT_UNR_EXT.1
|
2017.09.26
|
|
TD0234
|
Appendix H - TLS Mapping Table
|
PP_MDM_V2.0, PP_MDM_V3.0
|
Annex H
|
2017.09.08
|
|
TD0233
|
FIT Technical Decision for Contents in Selected Long Message Test – Bit-oriented Mode
|
CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0
|
FDE_AA_SD_V2.0, FDE_EE_SD_V2.0, FCS_COP.1( b )
|
2017.08.25
|
|
TD0232
|
FIA_X509_EXT.1.1 - Compliance to RFC5759 and RFC5280 for using CRLs
|
PP_MDM_V3.0
|
FIA_X509_EXT.1.1
|
2017.08.28
|
|
TD0231
|
FCS_TLSS_EXT.1.2 - Removal of SSL 1.0
|
PP_MDM_V3.0
|
FCS_TLSS_EXT.1.2
|
2017.08.28
|
|
TD0230
|
ALC Assurance Activities for Server Virtualization and Base Virtualization PPs
|
PP_BASE_VIRTUALIZATION_V1.0, PP_SV_V1.1
|
ALC_CMC.1, ALC_CMS.1
|
2017.09.06
|
|
TD0229
|
FIT Technical Decision for Validation attemp threshold config.
|
CPP_FDE_AA_V1.0, CPP_FDE_AA_V2.0, CPP_FDE_EE_V1.0, CPP_FDE_EE_V2.0
|
FDE AA SD V1.0, FDE EE SD V1.0, FDE AA SD V2.0, FDE EE SD V2.0, FCS_SMV_EXT.1.2, FCS_SMV_EXT.1, FCS_VAL_EXT.1.3, FCS_VAL_EXT.1
|
2017.07.28
|
|
TD0228
|
NIT Technical Decision for CA certificates - basicConstraints validation
|
CPP_FW_V1.0, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E
|
ND SD V1.0, ND SD V2.0, FIA_X509_EXT.1.2
|
2018.06.15
|
|
TD0222
|
Use of RF Jammer for DoS testing in WIDS EP
|
EP_WIDS_V1.0
|
FAU_WID_EXT.3
|
2017.07.27
|
|
TD0221
|
FMT_SMF.1.1 - Assignments moved to Selections
|
PP_APP_SWFE_EP_v1.0, PP_APP_v1.2
|
FMT_SMF.1.1
|
2017.07.12
|
|
TD0219
|
NIAP Endorsement of Errata for HCD PP v1.0
|
PP_HCD_V1.0
|
|
2017.07.07
|
|
TD0217
|
Compliance to RFC5759 and RFC5280 for using CRLs
|
PP_APP_v1.2
|
FIA_X509_EXT.1.1
|
2017.06.16
|
|
TD0215
|
Update to FCS_HTTPS_EXT.1.2
|
PP_APP_v1.2
|
FCS_HTTPS_EXT.1.2
|
2017.06.16
|
|
TD0214
|
FCS_CKM.1 & FCS_CKM_EXT.5 - Selectable Audit Events
|
PP_MD_v3.0
|
FCS_CKM.1; FCS_CKM_EXT.5
|
2017.06.13
|
|
TD0213
|
Corrections to App Note references to FCS_TLS, FCS_IPSEC, and FTP_ITC
|
PP_BASE_VIRTUALIZATION_V1.0
|
FCS_TLSS_EXT.1, FCS_TLSS_EXT.2,
|
2017.07.19
|
|
TD0212
|
FCS_HTTPS_EXT.1.3 - TLS Mutual Authentication Update
|
PP_MDM_V2.0, PP_MDM_V3.0
|
FCS_HTTPS_EXT.1.3
|
2017.09.21
|
|
TD0211
|
FPT_TUD_EXT.1 - VVoIP Endpoints Optional
|
EP_ESC_V1.0
|
FPT_TUD_EXT.1
|
2017.06.13
|
|
TD0210
|
FIA_BMG_EXT.1.2 - SAFAR Update
|
PP_MD_v3.0
|
FIA_BMG_EXT.1.2
|
2017.06.07
|
|
TD0209
|
Additional DH Group added as selection for IKE Protocols
|
EP_VPN_GW_V2.1
|
FCS_IPSEC_EXT.1.11
|
2017.06.09
|
|
TD0208
|
Remote Users in OSPP
|
PP_OS_V4.1
|
FTP_TRP.1.1
|
2017.06.09
|
|
TD0206
|
Testing for Non-Existence of Disconnected Virtual Devices
|
PP_BASE_VIRTUALIZATION_V1.0
|
FPT_DVD_EXT.1
|
2017.05.05
|
|
TD0204
|
Protection of Selected User Data
|
PP_APP_SWFE_EP_v1.0
|
FDP_PRT_EXT
|
2017.05.08
|
|
TD0194
|
Update to Audit of FTP_ITC_EXT.1/WLAN
|
PP_WLAN_CLI_EP_V1.0
|
FAU_GEN.1, FTP_ITC_EXT.1/WLAN
|
2017.04.11
|
|
TD0193
|
Selection-Based FCS_COP.1 Added to VVoip EP to include AES-CTR Mode
|
EP_VVOIP_V1.0
|
FCS_COP.1
|
2017.04.20
|
|
TD0190
|
FPT_FLS.1(2)/SelfTest Failure with Preservation of Secure State and Modular Network Devices
|
PP_NDCPP_MACSEC_EP_V1.2
|
FPT_FLS.1(2)/SelfTest
|
2017.04.11
|
|
TD0180
|
Update to audit of FDP_DAR_EXT.1
|
PP_MD_v3.0
|
FDP_DAR_EXT.1, FAU_GEN.1.2
|
2017.04.10
|
|
TD0179
|
Management Capabilities in VPN GW EP 2.1
|
EP_VPN_GW_V2.1
|
FMT_SMF.1.1
|
2017.04.11
|
|
TD0178
|
Integrity for installation tests in AppSW PP
|
PP_APP_v1.2
|
FPT_TUD_EXT.1.3
|
2017.04.06
|
|
TD0177
|
FCS_TLSS_EXT.1 Application Note Update
|
PP_APP_v1.2
|
FTP_DIT_EXT.1, FCS_TLSS_EXT.1
|
2017.04.06
|
|
TD0176
|
FDP_DSK_EXT.1.2 - SED Testing
|
PP_HCD_V1.0
|
FDP_DSK_EXT.1.2
|
2017.04.11
|
|
TD0175
|
Revision of FCS_CKM_EXT.4 requirement in APP SW FE EP v1.0
|
PP_APP_SWFE_EP_v1.0
|
FCS_CKM_EXT.4
|
2017.04.10
|
|
TD0174
|
Optional Ciphersuites for TLS
|
PP_APP_v1.2, PP_MD_v3.0, PP_NDCPP_APP_AUTHSVR_EP_V1.0
|
FCS_TLSC_EXT.1.1, FCS_EAP-TLS_EXT.1.1,
|
2017.04.10
|
|
TD0172
|
Additional APIs added to FCS_RBG_EXT.1.1
|
PP_APP_v1.2
|
FCS_RBG_EXT.1.1
|
2017.04.11
|
|
TD0171
|
Testing for RADIUS EAP responses and EAP-TLS protocols
|
PP_NDCPP_APP_AUTHSVR_EP_V1.0
|
FCS_RADIUS_EXT.1, FCS_EAP-TLS_EXT.1
|
2017.04.06
|
|
TD0166
|
Optional Authentication of TLS Client
|
PP_BASE_VIRTUALIZATION_V1.0, PP_CA_v2.0
|
FCS_TLSC_EXT.1
|
2017.04.05
|
|
TD0163
|
Update to FCS_TLSC_EXT.1.1 Test 5.4 and FCS_TLSS_EXT.1.1 Test
|
PP_APP_v1.2, PP_CA_v2.0, PP_MDM_V3.0, PP_OS_V4.1, PP_VOIP_V1.3
|
FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1
|
2017.04.05
|
|
TD0159
|
FPT_STM.1.1 - Reliable Time Stamps
|
EP_ESC_V1.0
|
FPT_STM.1.1; FMT_MTD.1; FTP_ITC.1
|
2017.04.11
|
|
TD0158
|
FMT_SMF_EXT.1
|
PP_MD_v3.0
|
FMT_SMF_EXT.1.1
|
2017.03.08
|
|
TD0157
|
FCS_IPSEC_EXT.1.1 - Testing SPDs
|
PP_HCD_V1.0
|
FCS_IPSEC_EXT.1.1
|
2017.06.15
|
|
TD0148
|
Hardware-protected hash in FPT_TST_EXT.2.1
|
PP_MD_v3.0
|
FPT_TST_EXT.2.1
|
2017.02.24
|
|
TD0147
|
FIA_UAU.5.2
|
PP_MD_v3.0
|
FIA_UAU.5.2
|
2017.02.24
|
|
TD0146
|
FCS_STG_EXT.3.1 - Integrity
|
PP_MD_v3.0
|
FCS_STG_EXT.3.1
|
2017.02.24
|
|
TD0145
|
FCS_CKM_EXT.3.1 - Security strength of KEKs
|
PP_MD_v3.0
|
FCS_CKM_EXT.3.1
|
2017.02.10
|
|
TD0144
|
FDP_RIP.1.1 - Purge Memory and Restore Factory Defaults Optional
|
PP_PSS_V3.0
|
FDP_RIP.1.1
|
2017.02.06
|
|
TD0139
|
Clarification of testing for FDP_RIP_EXT.2
|
PP_BASE_VIRTUALIZATION_V1.0
|
FDP_RIP_EXT.2
|
2017.01.19
|
|
TD0137
|
FIA_X509_EXT.2.1 - IPsec Optional Selection
|
EP_ESC_V1.0
|
FIA_X509_EXT.2.1;
|
2016.12.22
|
|
TD0136
|
FDP_RIP.1.1 - Refinement
|
PP_PSS_V3.0
|
FDP_RIP.1.1
|
2016.12.16
|
|
TD0135
|
SNMP in NDcPP MACsec EP v1.2
|
PP_NDCPP_MACSEC_EP_V1.2
|
FMT_SNMP_EXT.1.1, FCS_SNMP_EXT.1.1
|
2017.01.25
|
|
TD0134
|
AES Data Encryption/Decryption in NDcPP MACsec EP v1.2
|
PP_NDCPP_MACSEC_EP_V1.2
|
FCS_COP.1
|
2016.12.21
|
|
TD0133
|
FAU_GEN.1; FIA_SIPS_EXT.1 - Auditing SIP Register Events
|
CPP_ND_SBC_EP_V1.0
|
FAU_GEN.1; FIA_SIPS_EXT.1
|
2016.12.14
|
|
TD0131
|
Update to FCS_TLSS_EXT.1.1 Test 4.5
|
PP_APP_v1.2
|
|
2016.12.14
|
|
TD0127
|
FIA_SIPT_EXT.1.2 - TLS Client X.509 Certificate Authentication
|
EP_SBC_V1.1
|
FIA_SIPT_EXT.1.2
|
2016.12.21
|
|
TD0123
|
GCM Mode Added to FCS_KYC_EXT.1.1, FCS_COP.1.1(1), FPT_KYP_EXT.1.1
|
PP_APP_SWFE_EP_v1.0
|
FCS_KYC_EXT.1.1; FCS_COP.1.1(1); FPT_KYP_EXT.1.1
|
2016.11.03
|
|
TD0121
|
FMT_MEC_EXT.1.1 Configuration Options
|
PP_APP_SWFE_EP_v1.0, PP_APP_v1.2
|
FMT_MEC_EXT.1.1
|
2016.11.04
|
|
TD0120
|
FMT_SMF_EXT.1, Functions 2 & 5, Users and/or Administrators Configuration
|
PP_MD_v2.0, PP_MD_v3.0
|
FMT_SMF_EXT.1
|
2016.12.01
|
|
TD0119
|
FCS_STO_EXT.1.1 in PP_APP_v1.2
|
PP_APP_v1.2
|
FCS_STO_EXT.1.1
|
2016.10.26
|
|
TD0118
|
FAU_GEN.1 Application of Audit Requirements Update
|
PP_MD_v2.0, PP_MD_v3.0
|
FAU_GEN.1.1; FAU_GEN.1.2
|
2016.10.27
|
|
TD0107
|
FCS_CKM - ANSI X9.31-1998, Section 4.1.for Cryptographic Key Generation
|
PP_APP_v1.1, PP_APP_v1.2, PP_MD_v2.0, PP_MDM_V2.0, PP_ND_VPN_GW_EP_v1.1, PP_NDCPP_VPN_GW_EP_V2.0, PP_OS_v4.0, PP_OS_V4.1, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4
|
|
2016.09.14
|
|
TD0105
|
MACsec Key Agreement
|
PP_NDCPP_MACSEC_EP_V1.2
|
FCS_MKA_EXT.1.2, FCS_MKA_EXT.1.5, FCS_MKA.1.8,
|
2016.09.13
|
|
TD0104
|
FMT_SMF and FMT_MOF in OS PP
|
PP_OS_V4.1
|
FMT_MOF_EXT.1.1, FMT_SMF_EXT.1.1,
|
2016.09.16
|
|
TD0103
|
Access Control Policy Prohibiting Apps Write/Exe Permissions
|
PP_MD_v2.0, PP_MD_v3.0
|
FDP_ACF_EXT.1.3
|
2016.09.23
|
|
TD0097
|
VPN Gateway selection for FCS_IPSEC_EXT.1.14
|
PP_VPN_IPSEC_CLIENT_V1.4
|
FCS_IPSEC_EXT.1.14,
|
2016.08.30
|
|
TD0086
|
DisplayPort to HDMI Conversion Functionality
|
PP_PSS_V3.0
|
FDP_IFF.1.5(2), Rule 10
|
2016.03.10
|
|
TD0083
|
Vulnerability Survey Assurance Component (AVA_VAN.1) in PSS PP v3.0
|
PP_PSS_V3.0
|
|
2016.02.29
|
|
TD0079
|
RBG Cryptographic Transitions per NIST SP 800-131A Revision 1
|
PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_MD_v2.0, PP_MDM_V2.0, PP_ND_VPN_GW_EP_v1.1, PP_OS_v4.0, PP_USB_FD_v1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WLAN_CLI_V1.0
|
PP_APP_v1.1
|
2018.06.15
|
|
TD0074
|
FCS_CKM.1(a) Requirement in HCD PP v1.0
|
PP_HCD_V1.0
|
|
2015.12.15
|
|
TD0071
|
Use of SHA-512 in ESM PPs
|
PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1
|
|
2015.12.03
|
|
TD0069
|
Revision to FCS_COP.1(1) AA in SWFE EP v1.0
|
PP_APP_SWFE_EP_v1.0
|
|
2015.11.20
|
|
TD0068
|
Addition of SRTP Ciphersuites
|
CPP_ND_SBC_EP_V1.0, EP_VVOIP_V1.0, PP_VOIP_V1.3
|
|
2015.10.13
|
|
TD0067
|
Revision to FCS_CKM.1(A) SFR & AA in SWFE EP v1.0
|
PP_APP_SWFE_EP_v1.0
|
PP_APP_SWFE_EP_v1.0
|
2015.10.13
|
|
TD0066
|
Clarification of FAU_STG_EXT.1 Requirement in ESM PPs
|
PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1
|
|
2015.10.08
|
|
TD0065
|
Revision of FDP_PRT_EXT.1.2 requirement in APP SWFE EP v1.0
|
PP_APP_SWFE_EP_v1.0
|
|
2015.10.02
|
|
TD0055
|
Move FTA_TAB.1 to Selection-Based Requirement
|
PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1
|
|
2015.07.30
|
|
TD0042
|
Removal of Low-level Crypto Failure Audit from PPs
|
PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_SV_V1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WEBBROWSER_v1.0, PP_WLAN_CLI_V1.0
|
|
2018.06.15
|
