TD0776: Clarifications to FMT_SMF.1/ENDPOINT
Publication Date
2023.08.23
Protection Profiles
MOD_EDR_V1.0
Other References
FMT_SMF.1/ENDPOINT, MOD_EDR_V1.0-SD
Issue Description
The term "denylist" is not clearly defined in the Protection Profile. Test 3 implies that not all of the selections in the SFR are valid for testing and seemingly dictates a categorization methodology that is not defined. Test 4 describes an overview of the test but not a test, itself. Resolution
FMT_SMF.1/ENDPOINT in MOD_EDR_V1.0 is modified as follows, with text underlined and highlighted green indicating additions and text with strikethrough and red highlight indicating deletions:
Refinement: The EDR shall be capable of performing the following management functions:
Application Note: This requirement captures all the configuration functionality the TSF provides the administrator to configure the EDR. Both configurable lists mentioned in the table, above, are intended to match one another. Chart legend: M = Mandatory, O = Optional, - = N/A
Tests 3 and 4 of FMT_SMF.1/ENDPOINT in MOD_EDR_V1.0-SD are modified as follows, with text underlined and highlighted green indicating additions and text with strikethrough and red highlight indicating deletions:
Justification
Clarification of this SFR is required to ensure evaluations can test without issue. |