Archived
TD0362: "Failure of the randomization process" audit
Publication Date
2018.10.03
Protection Profiles
MOD_VPN_CLI_V2.1
Other References
FCS_RBG_EXT.1, FIA_PSK_EXT.1
Issue Description
For FAU_GEN.1.1, the "failure of the randomization process" audit for FIA_PSK_EXT.1 is intended for when the PSK is generated by the RBG and should be audited in association with FCS_RBG. However, the Base-PPs may not mandate audit of FCS_RBG SFRs. Resolution
In Section C.1, FAU_GEN.1 Table C-1 will be modified as follows: Requirement Auditable Events Additional Audit Record Contents FIA_PSK_EXT.1 | Failure of the randomization process. | None Add: Requirement Auditable Events Additional Audit Record Contents FCS_RBG_EXT.1 | Failure of the randomization process (Optional). | None Justification
See issue description. |