NIAP: U.S. Government Approved Protection Profile - Protection Profile for Application Software Version 1.2
NIAP/CCEVS

Short Name: pp_app_v1.2

Technology Type: Application Software

CC Version: 3.1

Date: 25 April 2016

Transition End Date: 25 October 2016

Preceded By: pp_app_v1.1

Conformance Claim: None





 

PP OVERVIEW

The scope of this Protection Profile (PP) is to describe the security functionality of application software in terms of [CC] and to define functional and assurance requirements for such software. In recent years, software attacks have shifted from targeting operating systems to targeting applications. This has been the natural response to improvements in operating system security and development processes. As a result, it is paramount that the security of applications be improved to reduce the risk of compromise.

Assigned to the following Validated Products

Related Technical Decisions

  • 0305 – Handling of TLS connections with and without mutual authentication
  • 0304 – Update to FCS_TLSC_EXT.1.2
  • 0300 – Sensitive Data in FDP_DAR_EXT.1
  • 0296 – Update to FCS_HTTPS_EXT.1.3
  • 0295 – Update to FPT_AEX_EXT.1.3 Assurance Activities
  • 0293 – Update to FCS_CKM.1(1)
  • 0283 – Cipher Suites for TLS in SWApp v1.2
  • 0269 – Update to FPT_AEX_EXT.1.3 Assurance Activity
  • 0268 – FMT_MEC_EXT.1 Clarification
  • 0267 – TLSS testing - Empty Certificate Authorities list
  • 0244 – FCS_TLSC_EXT - TLS Client Curves Allowed
  • 0241 – Removal of Test 4.1 in FCS_TLSS_EXT.1.1
  • 0238 – User-modifiable files FPT_AEX_EXT.1.4
  • 0221 – FMT_SMF.1.1 - Assignments moved to Selections
  • 0218 – Update to FPT_AEX_EXT.1.3 Assurance Activity
  • 0217 – Compliance to RFC5759 and RFC5280 for using CRLs
  • 0215 – Update to FCS_HTTPS_EXT.1.2
  • 0192 – Update to FCS_STO_EXT.1 Application Note
  • 0178 – Integrity for installation tests in AppSW PP
  • 0177 – FCS_TLSS_EXT.1 Application Note Update
  • 0174 – Optional Ciphersuites for TLS
  • 0172 – Additional APIs added to FCS_RBG_EXT.1.1
  • 0163 – Update to FCS_TLSC_EXT.1.1 Test 5.4 and FCS_TLSS_EXT.1.1 Test
  • 0131 – Update to FCS_TLSS_EXT.1.1 Test 4.5
  • 0122 – FMT_SMF.1.1 Assignments moved to Selections
  • 0121 – FMT_MEC_EXT.1.1 Configuration Options
  • 0119 – FCS_STO_EXT.1.1 in PP_APP_v1.2
  • 0107 – FCS_CKM - ANSI X9.31-1998, Section 4.1.for Cryptographic Key Generation

Please forward any questions or comments to pp-comments@niap-ccevs.org

Site Map              Contact Us              Home