TD0753: MOD_VPNC FTP_DIT_EXT.1 Alignment for App PP 1.4
Publication Date
2023.08.02
Protection Profiles
MOD_VPNC_V2.4
Other References
FTP_DIT_EXT.1
Issue Description
FTP_DIT_EXT.1 in PP_APP_V1.4 has been modified by TD0743. The version of FTP_DIT_EXT.1 in MOD_VPNC_V2.4 needs to be aligned to match the modifications introduced by the TD. Resolution
TD0687 is archived and replaced with the following: In MOD_VPNC_V2.4 Section 5.3.1.3, FTP_DIT_EXT.1 is modified as follows, with red highlighted strikethroughs denoting deletions and green highlighted underlines denoting additions: FTP_DIT_EXT.1.1 The application shall encrypt all transmitted [sensitive data] using IPsec as specified in FCS_IPSEC_EXT.1 for [assignment: function(s)] and [selection: - HTTPS as a client in accordance with FCS_HTTPS_EXT.1/Client for [assignment: function(s)], - HTTPS as a server in accordance with FCS_HTTPS_EXT.1/Server for [assignment: function(s)], - HTTPS as a server with using mutual authentication in accordance with FCS_HTTPS_EXT.2 for [assignment: function(s)], - TLS as a server as defined in the Functional Package for TLS and also supports functionality for [selection: mutual authentication, none] for [assignment: function(s)], - TLS as a client as defined in the Functional Package for TLS for [assignment: function(s)], - DTLS as a server as defined in the Functional Package for TLS and also supports functionality for [selection: mutual authentication, none] for [assignment: function(s)], - DTLS as a client as defined in the Functional Package for TLS for [assignment: function(s)], - SSH as defined in the Functional Package for Secure Shell for [assignment: function(s)], no other protocols ] between itself and another trusted IT product.
Justification
See issue description. |