NIAP: View Active Technical Decisions

»»

View Active Technical Decisions

Technical Decisions (TDs) are issued to correct errors or clarify Security Functional Requirements (SFRs) and Assurance Activities within NIAP-approved Protection Profiles (PPs). Technical Decisions are effective upon publication and must be incorporated into all current and future evaluations. Current evaluations include all evaluations except those for which a complete Check-Out package has been submitted to NIAP for final validation team review.

In the rare case that a TD is issued which includes new SFRs or AAs, NIAP will make the determination for when products in evaluation must comply and include an effective date in the TD.

Item	Title	Protection Profiles	References	Publication Date
TD0319	Updates to FMT_SMF.1 in VPN Gateway EP	EP_VPN_GW_V2.1	FMT_SMF.1	2018.04.23
TD0318	Move RSA Ciphers from Mandatory to Selectable in MDM	PP_MDM_V3.0	FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1	2018.04.24
TD0317	FMT_MOF.1/Services and FMT_MTD.1/CryptoKeys	EP_VPN_GW_V2.1	FMT_MOF.1/Services, FMT_MTD.1/CryptoKeys	2018.04.23
TD0316	Update to FPT_TST_EXT.2.1	EP_VPN_GW_V2.1	FPT_TST_EXT.2.1, FPT_TST_EXT.3.1	2018.04.20
TD0314	Modifications to support Selection Based requirements	EP_WIDS_V1.0	FAU_SAA.1.2, FAU_GEN.1.1/WIDS, FAU_GEN.2.1//WIDS, FMT_SMF.1/WIDS	2018.04.26
TD0313	Correction to Algorithm Selection in FCS_SSHS_EXT.1.4	PP_SSH_EP_v1.0	FCS_SSHS_EXT.1.4	2018.04.20
TD0312	FIT Technical Decision for Key and Key Material Protection	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FPT_KYP_EXT.1.1	2018.04.17
TD0310	FIT Technical Decision for Firmware Update Authentication	CPP_FDE_EE_V2.0	FPT_FUA_EXT.1	2018.04.17
TD0309	FIT Technical Decision for Random Bit Generation	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FCS_RBG_EXT.1	2018.04.17
TD0308	FIT Technical Decision for Cryptographic Operation Signature Verification and Hash Algorithm	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FCS_COP.1(a), FCS_COP.1(b)	2018.04.17
TD0307	Modification of FTP_ITC_EXT.1.1	EP_VPN_GW_V2.1	FTP_ITC_EXT.1.1, FTP_ITC.1.1	2018.04.18
TD0305	Handling of TLS connections with and without mutual authentication	PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1	FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.4.1	2018.04.04
TD0304	Update to FCS_TLSC_EXT.1.2	PP_APP_v1.2, PP_MD_V3.1, PP_MDM_V3.0, PP_OS_V4.1	FCS_TLSC_EXT.1.2	2018.04.04
TD0303	IKEv1 and support for XAUTH	MOD_VPN_CLI_V2.1	FCS_IPSEC_EXT.1.5	2018.03.29
TD0302	Update to FAU_ARP.1	EP_SBC_V1.1	FAU_ARP.1	2018.03.29
TD0301	Updates to Administrator Management and Biometric Authenication	PP_MD_V3.1	FMT_SMF_EXT.3, FIA_BMG_EXT.1.1	2018.04.04
TD0300	Sensitive Data in FDP_DAR_EXT.1	PP_APP_v1.2	FDP_DAR_EXT.1	2018.03.16
TD0299	Update to FCS_CKM.4 Assurance Activities	PP_HCD_V1.0	FCS_CKM.4	2018.03.16
TD0298	Update to FDP_IFF.1 Assurance Activities	PP_PSS_V3.0	FDP_IFF.1.5(2)	2018.03.09
TD0296	Update to FCS_HTTPS_EXT.1.3	PP_APP_v1.2	FCS_HTTPS_EXT.1.3	2018.03.14
TD0295	Update to FPT_AEX_EXT.1.3 Assurance Activities	PP_APP_v1.2	FPT_AEX_EXT.1.3	2018.03.08
TD0294	Correction of TLS SFRs in CA PP ver 2.1	PP_CA_V2.1	FCS_TLSC_EXT.2, FCS_TLSS_EXT.1, FCS_TLSS_EXT.2	2018.04.18
TD0293	Update to FCS_CKM.1(1)	PP_APP_v1.2	FCS_CKM.1(1)	2018.02.16
TD0291	NIT technical decision for DH14 and FCS_CKM.1	CPP_FW_V1.0, CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_CKM.1.1, ND SD V1.0, ND SD V2.0	2018.02.03
TD0290	NIT technical decision for physical interruption of trusted path/channel.	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FTP_ITC.1, FTP_TRP.1, FPT_ITT.1, ND SD V1.0, ND SD V2.0	2018.02.03
TD0289	NIT technical decision for FCS_TLSC_EXT.x.1 Test 5e	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_DTLSC_EXT.1.1 (only ND SD V2.0), FCS_DTLSC_EXT.2.1 (only ND SD V2.0)	2018.02.03
TD0288	Support for Single-User File Encryption	PP_APP_SWFE_EP_v1.0	FIA_AUT_EXT.1, FIA_FCT_EXT.1(3), FCS_CKM_EXT.1.1, FMT_SMF.1	2018.01.26
TD0287	FAU_STG.4 Testing	PP_CA_V2.1	FAU_STG.4	2018.01.25
TD0286	Audit Events for FPT_RCV.1	PP_CA_V2.1	FPT_RCV.1	2018.01.25
TD0285	Test for Key Wrap using RSA-OAEP	PP_APP_SWFE_EP_v1.0	FCS_COP.1(5)	2018.01.19
TD0284	Tests for FCS_SRTP_EXT.1	EP_SBC_V1.1	FCS_SRTP_EXT.1	2018.01.18
TD0283	Cipher Suites for TLS in SWApp v1.2	PP_APP_v1.2	FCS_TLSC_EXT.1; FCS_TLSS_EXT.1	2018.01.26
TD0282	Test Activities added for Key Distribution and Key Generation	PP_WLAN_AS_EP_V1.0	FCS_CKM.1(2). FCS_CKM.2(3)	2018.01.19
TD0281	NIT Technical Decision for Testing both thresholds for SSH rekey	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8, ND SD V1.0, ND SD V2.0	2018.01.05
TD0280	Selection added to allow for keys to be stored in the underlying platform keystore	PP_APP_SWFE_EP_v1.0	FPT_KYP_EXT.1	2018.01.02
TD0279	Ciphersuites for SRTP	EP_SBC_V1.1, EP_VVOIP_V1.0	FCS_SRTP_EXT.1.2	2018.01.03
TD0278	Clarification of Role for Managing Manual Certificate Requests	PP_CA_V2.1	FMT_MOF.1(1); FMT_MOF.1(3)	2017.12.21
TD0277	Pre-Shared Key Composition	PP_WLAN_AS_EP_V1.0	FIA_PSK_EXT.1	2017.12.20
TD0276	X.509 Code Signing on TOE Updates	PP_CA_V2.1	FIA_X509_EXT.2.1	2017.12.19
TD0275	Corrections to FAU_WID_EXT.2.1 and FAU_WID_EXT.3.1	EP_WIDS_V1.0	FAU_WID_EXT.2.1, FAU_WID_EXT.3.1	2017.12.20
TD0273	Rekey after CAK expiration	PP_NDCPP_MACSEC_EP_V1.2	FCS_MACSEC_EXT.4	2017.12.20
TD0272	Update to FMT_SMF.1	PP_NDCPP_MACSEC_EP_V1.2	FMT.SMF.1	2017.12.20
TD0271	RADsec as alternative to IPsec	PP_WLAN_AS_EP_V1.0	FTP_ITC.1	2018.04.26
TD0270	Protection of System Time updates	EP_ESC_V1.0	FPT_STM_EXT.1, FMT_SMF.1	2017.12.20
TD0268	FMT_MEC_EXT.1 Clarification	PP_APP_v1.2	FMT_MEC_EXT.1	2017.12.15
TD0267	TLSS testing - Empty Certificate Authorities list	PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MDM_V3.0	FCS_TLSS_EXT.1.5, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.1.4	2017.12.08
TD0266	Password/passphrase min vs max value for FCS_CKM_EXT.5.1	PP_APP_EMAILCLIENT_EP_v2.0	FCS_CKM_EXT.5.1	2017.12.08
TD0265	Audit of TLS and HTTPS Session Terminations	PP_BASE_VIRTUALIZATION_V1.0	FCS_TLSS_EXT.1, FCS_TLSC_EXT.1, FCS_HTTPS_EXT.1	2017.12.04
TD0264	Clarification of Auditable Events for FPT_RDM_EXT.1	PP_BASE_VIRTUALIZATION_V1.0	PP_BASE_VIRTUALIZATION_V1.0, FPT_RDM_EXT.1	2017.12.07
TD0263	Specification of key generation and use requirements in the Software File Encryption EP	PP_APP_SWFE_EP_v1.0	FCS_COP.1(5); FCS_CKM.1(1); FCS_KYC_EXT.1	2017.11.29
TD0262	NIT Technical Decision for TLS server testing - Empty Certificate Authorities list	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	ND SD V.1.0, ND SD V2.0, FCS_TLSS_EXT.2.4, FCS_TLSS_EXT.2.5	2017.11.13
TD0261	Destruction of CSPs in flash	PP_HCD_V1.0	FCS_CKM.4	2017.11.14
TD0260	NIT Technical Decision for Typo in FCS_SSHS_EXT.1.4	CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_SSHS_EXT.1.4	2017.11.13
TD0259	NIT Technical Decision for Support for X509 ssh rsa authentication IAW RFC 6187	CPP_FW_v2.0, CPP_FW_V2.0E, CPP_ND_V2.0, CPP_ND_V2.0E	FCS_SSHC_EXT.1.5/FCS_SSHS_EXT.1.5	2017.11.13
TD0257	NIT Technical Decision for Updating FCS_DTLSC_EXT.x.2/FCS_TLSC_EXT.x.2 Tests 1-4	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.1.2/FCS_DTLSC_EXT.2.2 Tests 1-4 (ND SD V2.0), FCS_TLSC_EXT.1.2/FCS_TLSC_EXT.2.2, Tests 1-4 (ND SD V1.0, ND SD V2.0)	2017.11.13
TD0256	NIT Technical Decision for Handling of TLS connections with and without mutual authentication	CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	ND SD V1.0, ND SD V2.0, FCS_DTLSC_EXT.2.5 (ND SD V2.0), FCS_TLSC_EXT.2 (ND SD V1.0, ND SD V2.0)	2017.11.13
TD0254	Algorithms in FCS_SMIME_EXT.1.4	PP_APP_EMAILCLIENT_EP_v2.0	FCS_SMIME_EXT.1.4	2017.11.08
TD0253	Assurance Activities for Key Transport	PP_HCD_V1.0	FCS_COP.1.1(i)	2017.11.08
TD0252	Inaccurate statement in application note of FCS_TLSC_EXT.2.4	PP_BASE_VIRTUALIZATION_V1.0	FCS_TLSC_EXT.2.4	2017.10.31
TD0251	FMT_MOF.1.1 - Added Assignment	PP_PSS_V3.0	FMT_MOF.1.1; PP_PSS_V3.0	2017.10.26
TD0250	Hypercall Controls - FPT_HCL_EXT.1 Clarification	PP_BASE_VIRTUALIZATION_V1.0	FPT_HCL_EXT.1	2017.11.14
TD0249	Applicability of FTP_ITC_EXT.1	PP_BASE_VIRTUALIZATION_V1.0	FTP_ITC_EXT.1.1	2017.11.14
TD0248	FAU_GEN.1 Guidance Activity	EP_VPN_GW_V2.1	FAU_GEN.1	2017.10.20
TD0247	FPT_VDP_EXT.1 Clarification for Assurance Activity	PP_BASE_VIRTUALIZATION_V1.0	FPT_VDP_EXT.1	2017.11.29
TD0246	Assurance Activity for FIA_UAU.5.2	PP_OS_V4.1	FIA_UAU.5.2	2017.10.31
TD0245	Updates to FTP_ITC and FTP_TRP for ESM PPs	PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1	FTP_ITC.1, FTP_TRP.1	2017.10.03
TD0244	FCS_TLSC_EXT - TLS Client Curves Allowed	PP_APP_v1.2, PP_BASE_VIRTUALIZATION_V1.0, PP_MD_V3.1, PP_OS_V4.1, PP_WLAN_CLI_EP_V1.0	FCS_TLSC_EXT.2.1, FCS_TLSC_EXT.4.1, FCS_TLSC_EXT.1.4, FCS_TLSC_EXT.2/WLAN	2017.11.16
TD0243	SSH Key-Based Authentication	PP_OS_V4.1	FIA_UAU.5.1	2017.10.03
TD0242	FPF_RUL_EXT.1.7, Test 3 - Logging Dropped Packets	EP_VPN_GW_V2.1	FPF_RUL_EXT.1.7	2017.11.08
TD0241	Removal of Test 4.1 in FCS_TLSS_EXT.1.1	PP_APP_v1.2	FCS_TLSS_EXT.1.1, PP_APP_v1.2	2017.09.29
TD0240	FCS_COP.1.1(1) Platform provided crypto for encryption/decryption	PP_SSH_EP_v1.0	FCS_COP.1.1(1)	2017.11.27
TD0239	Cryptographic Key Destruction in OS PP	PP_OS_V4.1	FCS_CKM_EXT.3, FCS_CKM.4	2017.09.22
TD0238	User-modifiable files FPT_AEX_EXT.1.4	PP_APP_v1.2	FPT_AEX_EXT.1.4	2017.09.21
TD0237	FAU_GEN.1.1(2) - FMT_UNR_EXT.1 Audit Record Selection-Based	EP_MDM_AGENT_V3.0	FAU_GEN.1.1(2); FMT_UNR_EXT.1	2017.09.26
TD0235	NIT Technical Decision adding DH group 14 to the selection in FCS_CKM.2	CPP_FW_V1.0, CPP_ND_V1.0	ND SD V1.0, FCS_IPSEC_EXT.1.11, FCS_CKM.2.1	2017.09.06
TD0234	Appendix H - TLS Mapping Table	PP_MDM_V2.0, PP_MDM_V3.0	Annex H	2017.09.08
TD0233	FIT Technical Decision for Contents in Selected Long Message Test – Bit-oriented Mode	CPP_FDE_AA_V2.0, CPP_FDE_EE_V2.0	FDE_AA_SD_V2.0, FDE_EE_SD_V2.0, FCS_COP.1( b )	2017.08.25
TD0232	FIA_X509_EXT.1.1 - Compliance to RFC5759 and RFC5280 for using CRLs	PP_MDM_V3.0	FIA_X509_EXT.1.1	2017.08.28
TD0231	FCS_TLSS_EXT.1.2 - Removal of SSL 1.0	PP_MDM_V3.0	FCS_TLSS_EXT.1.2	2017.08.28
TD0230	ALC Assurance Activities for Server Virtualization and Base Virtualization PPs	PP_BASE_VIRTUALIZATION_V1.0, PP_SV_V1.1	ALC_CMC.1, ALC_CMS.1	2017.09.06
TD0229	FIT Technical Decision for Validation attemp threshold config.	CPP_FDE_AA_V1.0, CPP_FDE_AA_V2.0, CPP_FDE_EE_V1.0, CPP_FDE_EE_V2.0	FDE AA SD V1.0, FDE EE SD V1.0, FDE AA SD V2.0, FDE EE SD V2.0, FCS_SMV_EXT.1.2, FCS_SMV_EXT.1, FCS_VAL_EXT.1.3, FCS_VAL_EXT.1	2017.07.28
TD0228	NIT Technical Decision for CA certificates - basicConstraints validation	CPP_FW_V1.0, CPP_ND_V1.0, CPP_ND_V2.0, CPP_ND_V2.0E	ND SD V1.0, ND SD V2.0, FIA_X509_EXT.1.2	2017.07.28
TD0227	NIT Technical Decision for TOE acting as a TLS Client and RSA key generation	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FCS_CKM.1	2017.07.28
TD0226	NIT Technical Decision for TLS Encryption Algorithms	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FCS_TLSC_EXT.1.1, FCS_TLSC_EXT.2.1, FCS_TLSS_EXT.1.1, FCS_TLSS_EXT.2.1, FCS_TLSS_EXT.1.3, FCS_TLSS_EXT.2.3	2017.07.28
TD0225	NIT Technical Decision for Make CBC cipher suites optional in IPsec	CPP_FW_V1.0, CPP_ND_V1.0	ND SD V1.0	2017.07.27
TD0224	NIT Technical Decision Making DH Group 14 optional in FCS_IPSEC_EXT.1.11	CPP_FW_V1.0, CPP_ND_V1.0	CPP_ND_V1.0, FCS_IPSEC_EXT.1.11	2017.07.27
TD0223	NIT Technical Decision for "Expected" vs "unexpected" DNs for IPsec Communications	CPP_FW_V1.0, CPP_ND_V1.0	CPP_ND_V1.0, FCS_IPSEC_EXT.1.14	2017.07.27
TD0222	Use of RF Jammer for DoS testing in WIDS EP	EP_WIDS_V1.0	FAU_WID_EXT.3	2017.07.27
TD0221	FMT_SMF.1.1 - Assignments moved to Selections	PP_APP_SWFE_EP_v1.0, PP_APP_v1.2	FMT_SMF.1.1	2017.07.12
TD0219	NIAP Endorsement of Errata for HCD PP v1.0	PP_HCD_V1.0		2017.07.07
TD0217	Compliance to RFC5759 and RFC5280 for using CRLs	PP_APP_v1.2	FIA_X509_EXT.1.1	2017.06.16
TD0215	Update to FCS_HTTPS_EXT.1.2	PP_APP_v1.2	FCS_HTTPS_EXT.1.2	2017.06.16
TD0214	FCS_CKM.1 & FCS_CKM_EXT.5 - Selectable Audit Events	PP_MD_v3.0	FCS_CKM.1; FCS_CKM_EXT.5	2017.06.13
TD0213	Corrections to App Note references to FCS_TLS, FCS_IPSEC, and FTP_ITC	PP_BASE_VIRTUALIZATION_V1.0	FCS_TLSS_EXT.1, FCS_TLSS_EXT.2,	2017.07.19
TD0212	FCS_HTTPS_EXT.1.3 - TLS Mutual Authentication Update	PP_MDM_V2.0, PP_MDM_V3.0	FCS_HTTPS_EXT.1.3	2017.09.21
TD0211	FPT_TUD_EXT.1 - VVoIP Endpoints Optional	EP_ESC_V1.0	FPT_TUD_EXT.1	2017.06.13
TD0210	FIA_BMG_EXT.1.2 - SAFAR Update	PP_MD_v3.0	FIA_BMG_EXT.1.2	2017.06.07
TD0209	Additional DH Group added as selection for IKE Protocols	EP_VPN_GW_V2.1	FCS_IPSEC_EXT.1.11	2017.06.09
TD0208	Remote Users in OSPP	PP_OS_V4.1	FTP_TRP.1.1	2017.06.09
TD0207	Audit generation of ephemeral keys	PP_CA_v2.0	FAU_GEN.1	2017.05.08
TD0206	Testing for Non-Existence of Disconnected Virtual Devices	PP_BASE_VIRTUALIZATION_V1.0	FPT_DVD_EXT.1	2017.05.05
TD0204	Protection of Selected User Data	PP_APP_SWFE_EP_v1.0	FDP_PRT_EXT	2017.05.08
TD0203	Adding Missing FCS_TLSS_EXT.1.4 Component	PP_CA_v2.0	FCS_TLSS_EXT.1	2017.05.11
TD0202	TLS_RSA_WITH_AES_128_CBC_SHA ciphersuite made a selection in FCS_TLSS_EXT.1	PP_CA_v2.0	FCS_TLSS_EXT.1	2017.05.03
TD0201	NIT Technical Decision for Use of intermediate CA certificates and certificate hierarchy depth	CPP_FW_V1.0, CPP_ND_V1.0	ND SD v1.0, FIA_X509_EXT.1.1, FIA_X509_EXT.1.2	2017.05.03
TD0200	NIT Technical Decision for Password authentication for SSH clients	CPP_FW_V1.0, CPP_ND_V1.0	ND SD v1.0, FCS_SSHC_EXT.1.2	2017.05.01
TD0199	NIT Technical Decision for Elliptic Curves for Signatures	CPP_FW_V1.0, CPP_ND_V1.0	FCS_COP.1	2017.05.01
TD0197	Resolve conflict between elements of FCS_TLSS_EXT.1 regarding selecting TLS	PP_CA_v2.0	FCS_TLSS_EXT.1.1, FCS_TLSS_EXT.1.2	2017.05.03
TD0196	Clarification for FCO_NRO_EXT.2.5 when selecting EST	PP_CA_v2.0	FCO_NRO_EXT.2.5	2017.05.04
TD0194	Update to Audit of FTP_ITC_EXT.1/WLAN	PP_WLAN_CLI_EP_V1.0	FAU_GEN.1, FTP_ITC_EXT.1/WLAN	2017.04.11
TD0193	Selection-Based FCS_COP.1 Added to VVoip EP to include AES-CTR Mode	EP_VVOIP_V1.0	FCS_COP.1	2017.04.20
TD0192	Update to FCS_STO_EXT.1 Application Note	PP_APP_v1.2	FCS_STO_EXT.1	2017.04.11
TD0190	FPT_FLS.1(2)/SelfTest Failure with Preservation of Secure State and Modular Network Devices	PP_NDCPP_MACSEC_EP_V1.2	FPT_FLS.1(2)/SelfTest	2017.04.11
TD0189	NIT Technical Decision for SSH Server Encryption Algorithms	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FCS_SSHC_EXT.1.4, FCS_SSHS_EXT.1.4	2017.04.10
TD0188	NIT Technical Decision for Optional use of X.509 certificates for digital signatures	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FPT_TUD_EXT.1, FPT_TUD_EXT.2	2017.04.10
TD0187	NIT Technical Decision for Clarifying FIA_X509_EXT.1 test 1	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, ND SD v1.0, FIA_X509_EXT.1.1	2017.04.10
TD0186	NIT Technical Decision for Applicability of X.509 certificate testing to IPsec	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FIA_X509_EXT.1.1	2017.04.10
TD0185	NIT Technical Decision for Channel for Secure Update.	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FPT_TUD_EXT.1, FTP_ITC.1	2017.04.10
TD0184	NIT Technical Decision for Mandatory use of X.509 certificates	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FIA_X509_EXT.1, FIA_X509_EXT.2, FIA_X509_EXT.3	2017.04.10
TD0183	NIT Technical Decision for Use of the Supporting Document	CPP_FW_V1.0, CPP_ND_V1.0	NDSD V1.0, FWSD V1.0	2017.04.10
TD0182	NIT Technical Decision for Handling of X.509 certificates related to ssh-rsa and remote comms.	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, FIA_X509_EXT.1, FIA_X509_EXT.2, FIA_X509_EXT.3	2017.04.10
TD0181	NIT Technical Decision for Self-testing of integrity of firmware and software.	CPP_FW_V1.0, CPP_ND_V1.0	NDcPP V1.0, FWcPP V1.0, ND SD V1.0, FPT_TST_EXT.1	2017.04.10
TD0180	Update to audit of FDP_DAR_EXT.1	PP_MD_v3.0	FDP_DAR_EXT.1, FAU_GEN.1.2	2017.04.10
TD0179	Management Capabilities in VPN GW EP 2.1	EP_VPN_GW_V2.1	FMT_SMF.1.1	2017.04.11
TD0178	Integrity for installation tests in AppSW PP	PP_APP_v1.2	FPT_TUD_EXT.1.3	2017.04.06
TD0177	FCS_TLSS_EXT.1 Application Note Update	PP_APP_v1.2	FTP_DIT_EXT.1, FCS_TLSS_EXT.1	2017.04.06
TD0176	FDP_DSK_EXT.1.2 - SED Testing	PP_HCD_V1.0	FDP_DSK_EXT.1.2	2017.04.11
TD0175	Revision of FCS_CKM_EXT.4 requirement in APP SW FE EP v1.0	PP_APP_SWFE_EP_v1.0	FCS_CKM_EXT.4	2017.04.10
TD0174	Optional Ciphersuites for TLS	PP_APP_v1.2, PP_MD_v3.0, PP_NDCPP_APP_AUTHSVR_EP_V1.0	FCS_TLSC_EXT.1.1, FCS_EAP-TLS_EXT.1.1,	2017.04.10
TD0172	Additional APIs added to FCS_RBG_EXT.1.1	PP_APP_v1.2	FCS_RBG_EXT.1.1	2017.04.11
TD0171	Testing for RADIUS EAP responses and EAP-TLS protocols	PP_NDCPP_APP_AUTHSVR_EP_V1.0	FCS_RADIUS_EXT.1, FCS_EAP-TLS_EXT.1	2017.04.06
TD0170	NIT Technical Decision for SNMPv3 Support	CPP_FW_V1.0, CPP_ND_V1.0	FTP_TRP.1	2017.04.04
TD0169	NIT Technical Decision for Compliance to RFC5759 and RFC5280 for using CRLs	CPP_FW_V1.0, CPP_ND_V1.0	FIA_X509_EXT.1.1	2017.04.04
TD0168	NIT Technical Decision for Mandatory requirement for CSR generation	CPP_FW_V1.0, CPP_ND_V1.0	FIA_X509_EXT.3	2017.04.04
TD0167	NIT Technical Decision for Testing SSH 2^28 packets	CPP_FW_V1.0, CPP_ND_V1.0	ND SD V1.0, FCS_SSHC_EXT.1.8, FCS_SSHS_EXT.1.8, FMT_SMF.1	2017.04.04
TD0166	Optional Authentication of TLS Client	PP_BASE_VIRTUALIZATION_V1.0, PP_CA_v2.0	FCS_TLSC_EXT.1	2017.04.05
TD0163	Update to FCS_TLSC_EXT.1.1 Test 5.4 and FCS_TLSS_EXT.1.1 Test	PP_APP_v1.2, PP_CA_v2.0, PP_MDM_V3.0, PP_OS_V4.1, PP_VOIP_V1.3	FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1	2017.04.05
TD0160	NIT Technical Decision for Transport mode and tunnel mode in IPSEC communications	CPP_FW_V1.0, CPP_ND_V1.0	FCS_IPSEC_EXT.1.3	2017.03.08
TD0159	FPT_STM.1.1 - Reliable Time Stamps	EP_ESC_V1.0	FPT_STM.1.1; FMT_MTD.1; FTP_ITC.1	2017.04.11
TD0158	FMT_SMF_EXT.1	PP_MD_v3.0	FMT_SMF_EXT.1.1	2017.03.08
TD0157	FCS_IPSEC_EXT.1.1 - Testing SPDs	PP_HCD_V1.0	FCS_IPSEC_EXT.1.1	2017.06.15
TD0156	NIT Technical Decision for SSL/TLS Version Testing in the NDcPP v1.0 and FW cPP v1.0	CPP_FW_V1.0, CPP_ND_V1.0, PP_SV_V1.1	ND SD V1.0, FCS_TLSS_EXT1.2, FCS_TLSS_EXT.2.2	2017.03.15
TD0154	NIT Technical Decision for Versions of TOE Software in the NDcPP v1.0 and FW cPP v1.0	CPP_FW_V1.0, CPP_ND_V1.0	FPT_TUD_EXT.1	2017.03.01
TD0153	NIT Technical Decision for Auditing of NTP Time Changes in the NDcPP v1.0 and FW cPP v1.0	CPP_FW_V1.0, CPP_ND_V1.0	FAU_GEN.1, FPT_STM.1	2017.03.01
TD0152	NIT Technical Decision for Reference identifiers for TLS in the NDcPP v1.0 and FW cPP v1.0	CPP_FW_V1.0, CPP_ND_V1.0	ND SD V1.0, FCS_TLSC_EXT.1, FCS_TLSC_EXT.2	2017.03.01
TD0150	NIT Technical Decision for Removal of SSH re-key audit events in the NDcPP v1.0 and FW cPP v1.0	CPP_FW_V1.0, CPP_ND_V1.0	FAU_GEN.1	2017.03.01
TD0148	Hardware-protected hash in FPT_TST_EXT.2.1	PP_MD_v3.0	FPT_TST_EXT.2.1	2017.02.24
TD0147	FIA_UAU.5.2	PP_MD_v3.0	FIA_UAU.5.2	2017.02.24
TD0146	FCS_STG_EXT.3.1 - Integrity	PP_MD_v3.0	FCS_STG_EXT.3.1	2017.02.24
TD0145	FCS_CKM_EXT.3.1 - Security strength of KEKs	PP_MD_v3.0	FCS_CKM_EXT.3.1	2017.02.10
TD0144	FDP_RIP.1.1 - Purge Memory and Restore Factory Defaults Optional	PP_PSS_V3.0	FDP_RIP.1.1	2017.02.06
TD0143	NIT Technical Decision for Failure testing for TLS session establishment in NDcPP and FWcPP	CPP_FW_V1.0, CPP_ND_V1.0	FCS_TLSS_EXT.1.1	2017.01.18
TD0142	FAU_STG_EXT.1 - Optional Requirement	EP_VVOIP_V1.0	FAU_STG_EXT.1	2017.01.20
TD0139	Clarification of testing for FDP_RIP_EXT.2	PP_BASE_VIRTUALIZATION_V1.0	FDP_RIP_EXT.2	2017.01.19
TD0137	FIA_X509_EXT.2.1 - IPsec Optional Selection	EP_ESC_V1.0	FIA_X509_EXT.2.1;	2016.12.22
TD0136	FDP_RIP.1.1 - Refinement	PP_PSS_V3.0	FDP_RIP.1.1	2016.12.16
TD0135	SNMP in NDcPP MACsec EP v1.2	PP_NDCPP_MACSEC_EP_V1.2	FMT_SNMP_EXT.1.1, FCS_SNMP_EXT.1.1	2017.01.25
TD0134	AES Data Encryption/Decryption in NDcPP MACsec EP v1.2	PP_NDCPP_MACSEC_EP_V1.2	FCS_COP.1	2016.12.21
TD0133	FAU_GEN.1; FIA_SIPS_EXT.1 - Auditing SIP Register Events	CPP_ND_SBC_EP_V1.0	FAU_GEN.1; FIA_SIPS_EXT.1	2016.12.14
TD0131	Update to FCS_TLSS_EXT.1.1 Test 4.5	PP_APP_v1.2		2016.12.14
TD0130	NIT Technical Decision for Requirements for Destruction of Cryptographic Keys	CPP_FW_V1.0, CPP_ND_V1.0	FCS_CKM.4	2016.12.08
TD0127	FIA_SIPT_EXT.1.2 - TLS Client X.509 Certificate Authentication	EP_SBC_V1.1	FIA_SIPT_EXT.1.2	2016.12.21
TD0126	NIT Technical Decision for TLS Mutual Authentication	CPP_FW_V1.0, CPP_ND_V1.0	FTP_ITC.1, FCS_TLSC_EXT.1	2016.11.30
TD0125	NIT Technical Decision for Checking validity of peer certificates for HTTPS servers	CPP_FW_V1.0, CPP_ND_V1.0	ND SD v1.0, FCS_HTTPS_EXT.1.3	2016.11.15
TD0123	GCM Mode Added to FCS_KYC_EXT.1.1, FCS_COP.1.1(1), FPT_KYP_EXT.1.1	PP_APP_SWFE_EP_v1.0	FCS_KYC_EXT.1.1; FCS_COP.1.1(1); FPT_KYP_EXT.1.1	2016.11.03
TD0121	FMT_MEC_EXT.1.1 Configuration Options	PP_APP_SWFE_EP_v1.0, PP_APP_v1.2	FMT_MEC_EXT.1.1	2016.11.04
TD0120	FMT_SMF_EXT.1, Functions 2 & 5, Users and/or Administrators Configuration	PP_MD_v2.0, PP_MD_v3.0	FMT_SMF_EXT.1	2016.12.01
TD0119	FCS_STO_EXT.1.1 in PP_APP_v1.2	PP_APP_v1.2	FCS_STO_EXT.1.1	2016.10.26
TD0118	FAU_GEN.1 Application of Audit Requirements Update	PP_MD_v2.0, PP_MD_v3.0	FAU_GEN.1.1; FAU_GEN.1.2	2016.10.27
TD0117	NIT Technical Decision for FIA_X509_EXT.1.1 Requirement in NDcPP	CPP_FW_V1.0, CPP_ND_V1.0	FIA_X509_EXT, FPT_TST_EXT, FPT_TUD_EXT	2016.10.13
TD0116	NIT Technical Decision for a Typo in reference to RSASSA-PKCS1v1_5 in NDcPP and FWcPP	CPP_FW_V1.0, CPP_ND_V1.0	CPP_ND_V1.0, FCS_COP.1.1(2)	2016.10.13
TD0115	NIT Technical Decision for Transport mode and tunnel mode in IPsec communication in NDcPP and FWcPP	CPP_FW_V1.0, CPP_ND_V1.0	FCS_IPSEC_EXT.1.3	2016.10.13
TD0114	NIT Technical Decision for Re-Use of FIPS test results in NDcPP and FWcPP	CPP_FW_V1.0, CPP_ND_V1.0	FCS_COP.1	2016.10.06
TD0113	NIT Technical Decision for testing and trusted updates in the NDcPP v1.0 and FW cPP v1.0	CPP_FW_V1.0, CPP_ND_V1.0	FPT_TUD_EXT.1	2016.10.06
TD0112	NIT Technical Decision for TLS testing in the NDcPP v1.0 and FW cPP v1.0.	CPP_FW_V1.0, CPP_ND_V1.0	CPP_ND_V1.0, CPP_FW_V1.0	2016.10.06
TD0111	NIT Technical Decision for third party libraries and FCS_CKM.1 in NDcPP and FWcPP	CPP_FW_V1.0, CPP_ND_V1.0	FCS_CKM.1	2016.10.06
TD0107	FCS_CKM - ANSI X9.31-1998, Section 4.1.for Cryptographic Key Generation	PP_APP_v1.1, PP_APP_v1.2, PP_MD_v2.0, PP_MDM_V2.0, PP_ND_VPN_GW_EP_v1.1, PP_NDCPP_VPN_GW_EP_V2.0, PP_OS_v4.0, PP_OS_V4.1, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4		2016.09.14
TD0105	MACsec Key Agreement	PP_NDCPP_MACSEC_EP_V1.2	FCS_MKA_EXT.1.2, FCS_MKA_EXT.1.5, FCS_MKA.1.8,	2016.09.13
TD0104	FMT_SMF and FMT_MOF in OS PP	PP_OS_V4.1	FMT_MOF_EXT.1.1, FMT_SMF_EXT.1.1,	2016.09.16
TD0103	Access Control Policy Prohibiting Apps Write/Exe Permissions	PP_MD_v2.0, PP_MD_v3.0	FDP_ACF_EXT.1.3	2016.09.23
TD0097	VPN Gateway selection for FCS_IPSEC_EXT.1.14	PP_VPN_IPSEC_CLIENT_V1.4	FCS_IPSEC_EXT.1.14,	2016.08.30
TD0095	NIT Technical Interpretations regarding audit, random bit generation, and entropy in NDcPP	CPP_FW_V1.0, CPP_ND_V1.0	FCS_RBG_EXT, FCS_COP, FAU_STG_EXT, Annex D.4	2016.07.16
TD0094	NIT Technical Decision for validating a published hash in NDcPP	CPP_FW_V1.0, CPP_ND_V1.0	FPT_TUD_EXT, FMT_MOF	2016.07.18
TD0090	NIT Technical Decision for FMT_SMF.1.1 Requirement in NDcPP	CPP_FW_V1.0, CPP_ND_V1.0	FMT_SMF.1.1, FPT_TUD_EXT.1.3	2016.06.07
TD0086	DisplayPort to HDMI Conversion Functionality	PP_PSS_V3.0	FDP_IFF.1.5(2), Rule 10	2016.03.10
TD0083	Vulnerability Survey Assurance Component (AVA_VAN.1) in PSS PP v3.0	PP_PSS_V3.0		2016.02.29
TD0074	FCS_CKM.1(a) Requirement in HCD PP v1.0	PP_HCD_V1.0		2015.12.15
TD0071	Use of SHA-512 in ESM PPs	PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1		2015.12.03
TD0069	Revision to FCS_COP.1(1) AA in SWFE EP v1.0	PP_APP_SWFE_EP_v1.0		2015.11.20
TD0068	Addition of SRTP Ciphersuites	CPP_ND_SBC_EP_V1.0, EP_VVOIP_V1.0, PP_VOIP_V1.3		2015.10.13
TD0067	Revision to FCS_CKM.1(A) SFR & AA in SWFE EP v1.0	PP_APP_SWFE_EP_v1.0	PP_APP_SWFE_EP_v1.0	2015.10.13
TD0066	Clarification of FAU_STG_EXT.1 Requirement in ESM PPs	PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1		2015.10.08
TD0065	Revision of FDP_PRT_EXT.1.2 requirement in APP SWFE EP v1.0	PP_APP_SWFE_EP_v1.0		2015.10.02
TD0055	Move FTA_TAB.1 to Selection-Based Requirement	PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1		2015.07.30

References:

(free match)

Site Map Contact Us Home