Skip to content

v4 - FPT_TST.1 mismatch between SFR and normal expected usage of 1.2/1.3? #110

@woodbe

Description

@woodbe

FPT_TST.1.2 states that the users SHALL have a way to verify the integrity of the DRBG data. In use with this in similar situations, 1.2 and 1.3 are interpreted as REQUIRING the user be able to do this on their own. Basically the interpretation of this requirement was requiring a reboot to get this to be done was not considered acceptable, because that isn't a dynamic check.

So basically the idea that the user would have to reboot the device to check for the integrity of the 1.2 and 1.3 requirements is normally seen as not being correct.

It would seem like this could be handled with an app note specifying that reboot is an acceptable method for the user doing this.

Of course if I'm not interpreting the intent for 1.2 and 1.3, then maybe this is OK, if the expectation here is that the "user" is able to verify the data via the APIs that may be available to the DRBG, that also isn't clear. If the expectation is that the EA for this check is handled under one of the FCS_RBG requirements, that is also fine, but then this should be defined that the actual test is done there, but the "timing" of the test is covered here (and anything that isn't the DRBG is covered here).

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions