NIAP Oversees Evaluations of Commercial IT Products for Use in National Security Systems

Short Name: pp_os_v4.2.1

Technology Type: Operating System

CC Version: 3.1

Date: 2019.04.22

Preceded By: pp_os_v4.2

Succeeded By: pp_os_v4.3

Sunset Date: 2023.03.27

Conformance Claim: None

Protection Profile 

Control Mapping 

Configuration Annex 

PP OVERVIEW

This minor version, GPOS PP, Version 4.2.1, has been published solely to address issues identified as a result of the evaluation of the GPOS PP, Version 4.2 . The only changes made were typographical errors related to the CC conventions for indicating assignments, selections, and refinements and updates for incomplete SFR mappings to objectives and their rationale. No additional changes were made and all Technical Decisions published for GPOS PP V4.2 have been updated to apply to this V4.2.1. The Configuration Annex also remains unchanged.

The scope of this Protection Profile (PP) is to describe the security functionality of operating systems in terms of [CC] and to define functional and assurance requirements for such products. An operating system is software that manages computer hardware and software resources, and provides common services for application programs. The hardware it manages may be physical or virtual.

The TOE boundary encompasses the OS kernel and its drivers, shared software libraries, and some application software included with the OS. The applications considered within the TOE are those that provide essential security services, many of which run with elevated privileges. Applications which are covered by more-specific Protection Profiles cannot claim evaluation as part of the OS evaluation, even when it is necessary to evaluate some of their functionality as it relates to their role as part of the OS.

The TOE platform, which consists of the physical or virtual hardware on which the TOE executes, is outside the scope of evaluation. At the same time, the security of the TOE relies upon it. Other hardware components which independently run their own software and are relevant to overall system security are also outside the scope of evaluation.

Assigned to the following Validated Products

• VID11202 – Red Hat Enterprise Linux 8.2
• VID11258 – INTEGRITY Enterprise OS - Archon Edition
• Microsoft Windows 10 version 2004 (May 2020 Update), Microsoft Windows Server version 2004 (May 2020 Update) and others
• IBM AIX 7.2.5, Service Pack 3 (SP3) Standard Edition (SE)
• Microsoft Windows 11, Windows Server 2022, and other Windows OSes
• Oracle Linux 8.4

Active Related Technical Decisions

• 0715 – Updates to FIA_X509_EXT.1 for Exception Processing and Test Conditions
  • References:  FIA_X509_EXT.1
• 0680 – OS 4.2.1 Conformance Claims section updated to allow for MOD_WLAN_CLI_v1.0
  • References:  Section 2
• 0649 – Conformance claims for OS PP v4.2.1
  • References:  Section 2, FDP_IFC_EXT.1, FIA_UAU.5.1, FTP_ITC_EXT.1.1,
• 0630 – FCS_COP.1 requirements for Secure Shell
  • References:  FCS_COP.1.1(1)
• 0600 – Conformance claim sections updated to allow for MOD_VPNC_V2.3
  • References:  Section 2
• 0578 – SHA-1 is no longer mandatory
  • References:  FCS_COP.1.1(2)
• 0501 – Cryptographic selections and updates for OS PP
  • References:  FCS_CKM.1, FCS_CKM.2
• 0493 – X.509v3 certificates when using digital signatures for Boot Integrity
  • References:  FPT_TST_EXT.1.1
• 0463 – Clarification for FPT_TUD_EXT
  • References:  FPT_TUD_EXT.1.1, FPT_TUD_EXT.2.1
• 0441 – Updated TLS Ciphersuites for OS PP
  • References:  FCS_TLSC_EXT.1.1, FCS_TLSS_EXT.1.1, FCS_DTLSC_EXT.1.1, FCS_DTLSS_EXT.1.1
• 0386 – Platform-Provided Verification of Update
  • References:  FPT_TUD_EXT.1.2
• 0365 – FCS_CKM_EXT.4 selections
  • References:  FCS_CKM_EXT.4

Archived Related Technical Decisions

• 0604 – Updates to Certificate Revocation (FIA_X509_EXT.1) for OS PP V4.2.1
• 0525 – Updates to Certificate Revocation (FIA_X509_EXT.1)
• 0496 – GPOS PP adds allow-with statement for VPN Client V2.1
• 0374 – GCM ciphersuite