OBJECTIVE
|
ADDRESSED
BY
|
RATIONALE
|
O.ACCOUNTABILITY
(GPOS PP only)
|
FAU_GEN.1/BT
|
FAU_GEN.1/BT supports the objective by requiring the TSF to specify the Bluetooth-related auditable events for which it will generate audit records.
|
O.MANAGEMENT
(GPOS PP only)
|
FMT_MOF_EXT.1/BT
|
FMT_MOF_EXT.1/BT supports the objective by restricting the ability to perform Blue-tooth-related management functions to the Administrator.
|
|
FMT_SMF_EXT.1/BT
|
FMT_SMF_EXT.1/BT supports the objective by specifying the Bluetooth-related management functions that the TSF must perform.
|
O.CONFIG
(MDF PP only)
|
FMT_MOF_EXT.1/BT
|
FMT_MOF_EXT.1/BT supports the objective by restricting the ability to perform Blue-tooth-related management functions to the Administrator.
|
|
FMT_SMF_EXT.1/BT
|
FMT_SMF_EXT.1/BT supports the objective by specifying the Bluetooth-related management functions that the TSF must perform.
|
O.INTEGRITY
(MDF PP only)
|
FAU_GEN.1/BT
|
FAU_GEN.1/BT supports the objective by requiring the TSF to specify the Bluetooth-related auditable events for which it will generate audit records.
|
O.PROTECTED_COMMS
|
FCS_CKM_EXT.8
|
FCS_CKM_EXT.8 supports the objective by requiring the TSF to specify how ECDH key pairs will be refreshed.
|
|
FIA_BLT_EXT.1
|
FIA_BLT_EXT.1 supports the objective by ensuring that Bluetooth communications are not initiated without user approval.
|
|
FIA_BLT_EXT.2
|
FIA_BLT_EXT.2 supports the objective by requiring the TSF to implement Bluetooth mutual authentication.
|
|
FIA_BLT_EXT.3
|
FIA_BLT_EXT.3 supports the objective by preventing Bluetooth
spoofing by rejecting connections with duplicate device
addresses.
|
|
FIA_BLT_EXT.4
|
FIA_BLT_EXT.4 supports the objective by defining the TSF's
implementation of Bluetooth Secure Simple Pairing.
|
|
FIA_BLT_EXT.5
|
FIA_BLT_EXT.5 supports the objective by requiring the TSF to
support Secure Connections Only mode for the supported
Bluetooth communication channels.
|
|
FIA_BLT_EXT.6
|
FIA_BLT_EXT.6 supports the objective by requiring the TSF to
specify the Bluetooth profiles that it requires explicit user
authorization to grant access to for trusted devices.
|
|
FIA_BLT_EXT.7
|
FIA_BLT_EXT.7 supports the objective by requiring the TSF to specify the Bluetooth profiles that it requires explicit user authorization to grant access to for untrusted devices.
|
|
FTP_BLT_EXT.1
|
FTP_BLT_EXT.1 supports the objective by requiring the TSF to
implement encryption to protect Bluetooth communications.
|
|
FTP_BLT_EXT.2
|
FTP_BLT_EXT.2 supports the objective by requiring the TSF to
prevent data transmission over Bluetooth if the paired device
is not using encryption.
|
|
FTP_BLT_EXT.3/BR
|
FTP_BLT_EXT.3/BR support the objective by requiring the TSF to implement a minimum encryption key size for Bluetooth BR/EDR.
|
|
FTP_BLT_EXT.3/LE
(selection-based)
|
FTP_BLT_EXT.3/LE support the objective by requiring the TSF to implement a minimum encryption key size for Bluetooth LE.
|