TD0664: Testing activity for FPT_TUD_EXT.2.2
Publication Date
2022.08.26
Protection Profiles
PP_APP_v1.4
Other References
FPT_TUD_EXT.2.2
Issue Description
The testing activity for FPT_TUD_EXT.2.2 incorrectly replicated those of FPT_TUD_EXT.1.3. The correct tests from the PP_APP_v.1.3 need to be included. Resolution
The following modification is made to the Evaluation Activities for FPT_TUD_EXT.2.2 in Section B.3 of PP_APP_v1.4, with strikethroughs denoting deletion and underlines denoting additions: Tests Platforms:Android... The evaluator shall consider the requirement met because the platform forces applications to write all data within the application working directory (sandbox). Platforms:Microsoft Windows... The evaluator shall install the application and then locate all of its executable files. The evaluator shall then, for each file, save off either a hash of the file or a copy of the file itself. The evaluator shall then run the application and exercise all features of the application as described in the ST. The evaluator shall then compare each executable file with the either the saved hash or the saved copy of the files. The evaluator shall verify that these are identical. Platforms:Apple iOS... The evaluator shall consider the requirement met because the platform forces applications to write all data within the application working directory (sandbox). Platforms: Linux The evaluator shall install the application and then locate all of its executable files. The evaluator shall then, for each file, save off either a hash of the file or a copy of the file itself. The evaluator shall then run the application and exercise all features of the application as described in the ST. The evaluator shall then compare each executable file with the either the saved hash or the saved copy of the files. The evaluator shall verify that these are identical. Platforms:Oracle Solaris... The evaluator shall install the application and then locate all of its executable files. The evaluator shall then, for each file, save off either a hash of the file or a copy of the file itself. The evaluator shall then run the application and exercise all features of the application as described in the ST. The evaluator shall then compare each executable file with the either the saved hash or the saved copy of the files. The evaluator shall verify that these are identical. Platforms:Apple MacOS... The evaluator shall install the application and then locate all of its executable files. The evaluator shall then, for each file, save off either a hash of the file or a copy of the file itself. The evaluator shall then run the application and exercise all features of the application as described in the ST. The evaluator shall then compare each executable file with the either the saved hash or the saved copy of the files. The evaluator shall verify that these are identical. All Other Platforms... The evaluator shall record the path of every file on the entire filesystem prior to installation of the application, and then install and run the application. Afterwards, the evaluator shall then uninstall the application, and compare the resulting filesystem to the initial record to verify that no files, other than configuration, output, and audit/log files, have been added to the filesystem.
Justification
See issue description. |