TD0794: Correction to FCS_SSH_EXT.1.7 Test 2
Publication Date
2023.10.03
Protection Profiles
PP_ESM_AC_V2.1, PP_ESM_ICM_V2.1, PP_ESM_PM_V2.1
Other References
FCS_SSH_EXT.1.7
Issue Description
There is a conflict between the security requirements of FCS_SSH_EXT.1.7 and the test activity (Test 2) specified on TD 0574 for TOEs acting as an SSH client. Resolution
FCS_SSH_EXT.1.7 Test 2, as specified in TD0574 is updated as follows, with red highlighted strikethroughs denoting deletions and green highlighted underlines denoting additions: Test 2: The evaluator shall attempt to establish an SSH connection, using the TSF, where the SSH client peer only allows the diffiehellman-group1-sha1 key exchange and the SSH server TOE is configured according to the algorithms allowed in the SFR. The evaluator shall observe that the attempt fails. Justification
See issue description. |