|
216 | 216 | interfaces.</rationale> |
217 | 217 | <addressed-by>FDP_PDC_EXT.2/UA</addressed-by><rationale>Mitigates this threat by only |
218 | 218 | allowing authorized device connections with authorized interface protocols.</rationale> |
219 | | - <addressed-by>FDP_PDC_EXT.4</addressed-by><rationale>Mitigates this threat by requiring |
| 219 | + <addressed-by>FDP_PDC_EXT.4/UA</addressed-by><rationale>Mitigates this threat by requiring |
220 | 220 | the TSF to have an authentication device.</rationale> |
221 | 221 | </threat> |
222 | 222 | </threats> |
|
562 | 562 | </f-component> |
563 | 563 |
|
564 | 564 | <f-component cc-id="fia_uid.2" name="User Identification Before Any Action"> |
565 | | - <consistency-rationale/> |
| 565 | + <consistency-rationale> |
| 566 | + This SFR is not modified, but is changed from optional to selection-based. it shall be |
| 567 | + included if "configurable" is selected in FDP_FIL_EXT.1.1/UA. |
| 568 | + </consistency-rationale> |
566 | 569 | <description>There are no changes to the EAs for this SFR. MOD_UA_V1.0 changes this requirement from optional to |
567 | 570 | selection‐based, but otherwise makes no changes to it.</description> |
568 | 571 | </f-component> |
|
845 | 848 | <f-element id="fdp-pdc-ext-2e1-ua"> |
846 | 849 | <title>The TSF shall allow connections with authorized devices as defined |
847 | 850 | in [<h:i>Appendix E</h:i>] and <selectables> |
848 | | - <selectable>authorized devices as defined in the PP‐Module for Keyboard/Mouse Devices,</selectable> |
| 851 | + <selectable>authorized devices as defined in the PP‐Module for Keyboard/Mouse Devices</selectable> |
849 | 852 | <selectable>authorized devices as defined in the PP‐Module for Audio Output |
850 | | - Devices,</selectable> |
| 853 | + Devices</selectable> |
851 | 854 | <selectable>authorized devices as defined in the PP‐Module for Video/Display |
852 | | - Devices,</selectable> |
| 855 | + Devices</selectable> |
853 | 856 | <selectable>no other devices</selectable> |
854 | 857 | </selectables> |
855 | 858 | upon TOE power up and connection of a peripheral device to a powered-on TOE. |
|
860 | 863 | <title>The TSF shall allow connections with authorized devices presenting authorized |
861 | 864 | interface protocols as defined in [<h:i>Appendix E</h:i>] and <selectables> |
862 | 865 | <selectable>authorized devices presenting authorized interface protocols as defined |
863 | | - in the PP‐Module for Keyboard/Mouse Devices,</selectable> |
| 866 | + in the PP‐Module for Keyboard/Mouse Devices</selectable> |
864 | 867 | <selectable>authorized devices presenting authorized interface protocols as defined |
865 | | - in the PP‐Module for Audio Output Devices,</selectable> |
| 868 | + in the PP‐Module for Audio Output Devices</selectable> |
866 | 869 | <selectable>authorized devices presenting authorized interface protocols as defined |
867 | | - in the PP‐Module for Video/Display Devices,</selectable> |
| 870 | + in the PP‐Module for Video/Display Devices</selectable> |
868 | 871 | <selectable>no other devices</selectable> |
869 | 872 | </selectables> |
870 | 873 | upon TOE power up and connection of a peripheral device to a powered-on TOE. |
|
1108 | 1111 | <opt-sfrs/> |
1109 | 1112 | <sel-sfrs> |
1110 | 1113 | <section title="User Data Protection (FDP)"> |
1111 | | - <depends on-sel="fdp-pdc-ext-4e1-ua"/> |
| 1114 | + |
1112 | 1115 | <f-component cc-id="fdp_ter_ext.2" name="Session Termination of Removed Devices"> |
| 1116 | + <depends on-sel="fdp-pdc-ext-4e1-ua"/> |
1113 | 1117 | <consistency-rationale> |
1114 | 1118 | This SFR defines specific handling for user authentication devices. This does |
1115 | 1119 | not prevent the enforcement of any PSD PP SFRs. |
|
0 commit comments