Archived
TD0026: Update to FPT_TUD_EXT.1
Publication Date
2014.11.26
Protection Profiles
PP_ND_V1.1
Other References
PP_ND_V1.1, requirement FPT_TUD_EXT.1
Issue Description
FPT_TUD_EXT.1 as currently written has a test Assurance Activity that instructs the evaluator to verify that the TOE rejects an illegitimate update. This does not allow for the case where the administrator follows the instructions in the operational guidance and rejects an illegitimate update. Resolution
The Test 2 Assurance Activity should be rewritten as follows:
Justification
The intent of this requirement is that either the TOE rejects the corrupt update without any administrator intervention or the TOE detects a corrupt update and the administrator is instructed by the operational guidance to reject the update. The modification adds the option for administrator intervention. |