TD0375: FMT_MOF.1(4) selection
Publication Date
2018.11.27
Protection Profiles
PP_CA_V2.1
Other References
FMT_MOF.1
Issue Description
Since the functions in the selection of FMT_MOF.1(4) are all optional, the "no other function" selection should also exist in FMT_MOF.1(4). Resolution
FMT_MOF.1(4) is modified as follows: FMT_MOF.1(4).1: Refinement: The [selection: TSF, Operational Environment] shall restrict the ability to 1. perform destruction of sensitive data when no longer needed; [selection: 2. participate as a second party for archival and recovery, 3. import a key share to support recovery of a CA signing key, 4. perform encrypted export of private or secret key or critical data 5. no other function] to [selection: Administrators, Auditor, CA Operations staff]. Justification
See issue description. |