TD0042: Removal of Low-level Crypto Failure Audit from PPs
Publication Date
2018.06.15
Protection Profiles
PP_CA_v1.0, PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1, PP_SV_V1.0, PP_VOIP_V1.3, PP_VPN_IPSEC_CLIENT_V1.4, PP_WEBBROWSER_v1.0, PP_WLAN_CLI_V1.0
Other References
Issue Description
The Assurance Activity for FAU_GEN.1 requires the developer’s administrative guidance to contain an audit record for the following auditable events:
Documenting the above audit events for administrative guidance is directly dependent on each respective functional component failing. Resolution
06/15/2018: This TD was was archived in error. It is now unarchived as not all PP's associated with it are archived. The “Auditable Events” and “Additional Audit Record Contents” columns should be changed for specific PPs according to the table below.
Justification
In general, products going against many of these PPs are applications, so none of them will be providing their own entropy source; hence, audit of FCS_RBG_EXT.1 is not needed. For some of these applications, the only requirements that may be audited are failure to generate long-term authentication key material. |