TD0513: CA Certificate loading
Publication Date
2020.05.26
Protection Profiles
PKG_TLS_V1.1
Other References
FCS_TLSC_EXT.1.3
Issue Description
The TLS package does not address the matter of managing trust stores and the test procedures in FCS_TLSC_EXT.1.3 requiring modification of a trust store might impose additional requirements if the PP or PP-Module doesn't require trust store management. Resolution
FCS_TLSC_EXT.1.3, Test 1, is replaced as follows: Test 1a: The evaluator shall demonstrate that a server using a certifcate with a valid certification path successfully connects. Justification
Test 1 is modified to account for TOEs that are able to manage trust stores and those that are not. |