Assumption
|
Rationale for security objectives for the environment
|
A.LIMITED_FUNCTIONALITY
|
The assumption that the TOE does not provide any general purpose computing capabilities is addressed by the corresponding requirement in OE.NO_GENERAL_PURPOSE.
|
A.TRUSTED_ADMINISTRATOR
|
The assumption that the Security Administrator is trusted is addressed by the corresponding requirement in OE.TRUSTED_ADMIN.
|
A.REGULAR_UPDATES
|
The assumption that the devices firmware and software is updated regularly is addressed by the corresponding requirement in OE.UPDATES.
|
A.ADMIN_CREDENTIALS_SECURE
|
The assumption that the Security Administrator’s credentials are protected by the platform they are stored on is addressed by the corresponding requirement in OE.ADMIN_CREDENTIALS_SECURE.
|
A.COMPONENTS_RUNNING
|
The assumption that each component of a distributed system is functioning properly is satisfied by the fact that this is specified as an expectation by OE.COMPONENTS_RUNNING.
|
A.RESIDUAL_INFORMATION
|
The assumption that the Security Administrator must ensure that there is no unauthorized access possible for sensitive residual information is addressed by the corresponding requirement in OE.RESIDUAL_INFORMATION.
|
A.VS_TRUSTED_ADMINISTRATOR
(applies to vNDs only)
|
The assumption that the Security Administrator for the VS is trusted is addressed by the corresponding requirement in OE.TRUSTED_ADMIN.
|
A.VS_REGULAR_UPDATES (applies to vNDs only)
|
The assumption that the VS software is updated regularly is addressed by the corresponding requirement in OE.UPDATES.
|