Archived
TD0214: FCS_CKM.1 & FCS_CKM_EXT.5 - Selectable Audit Events
Publication Date
2017.06.13
Protection Profiles
PP_MD_v3.0
Other References
FCS_CKM.1; FCS_CKM_EXT.5
Issue Description
The audit requirement for FCS_CKM.1 mandates the auditing of a failing key generation operation. Due to the FIPS 140-2 power-on self test, the mathematical operation is tested during boot time. If that test would fail, booting of the device would be halted. Additionally to cause a failure during runtime it would require decomposing the TOE. FCS_CKM_EXT.5 mandates the auditing of a failing wipe of the device. This failure would be caused by other failures that are already audited. Tests for an audit function that requires inducing errors where an error cannot be induced without decomposing the TOE should be disregarded and should be removed in future versions of the PP. Resolution
Requirement Auditable Event Additional Audit Record Contents FCS_CKM_EXT.5 [selection: Failure of the wipe, None]. No additional information. Justification
For these particular SFRs, the failure that would cause these SFRs to fail would be audited by a different requirement; thus if the initial failure can be audited, then these resulting failures caused by the ripple effect do not need to be audited. |