|
158 | 158 | Additionally, the following specifications and standards may be relevant to requirements in this PP: |
159 | 159 | <h:ul> |
160 | 160 | <h:li>NIST SP 800-155 (Draft) <h:i>BIOS Integrity Measurement Guidelines (Draft)</h:i>, December 2011</h:li> |
161 | | - <h:li>NIST SP 1800-34 (Draft) <h:i>Validating the Integrity of Computing Devices</h:i>, December 2022</h:li> |
| 161 | + <h:li>NIST SP 1800-34 <h:i>Validating the Integrity of Computing Devices</h:i>, December 2022</h:li> |
162 | 162 | <h:li>Trusted Computing Group, <h:i>TCG PC Client Platform Firmware Integrity Measurement</h:i> Version 1.0 |
163 | 163 | Revision Specification 43 Family 2.0, May 7, 2021</h:li> |
164 | 164 | <h:li>IEEE Std 802.1AR-2018, <h:i>Secure Device Identity</h:i></h:li> |
|
491 | 491 | <ref-id>sfr-fia-afl-ext-1</ref-id> |
492 | 492 | </config> |
493 | 493 | </usecase> |
494 | | - <usecase title="Enterprise Desktop clients" id="uc-ent-clients-desktop"> |
| 494 | + <usecase title="Enterprise Desktop Clients" id="uc-ent-clients-desktop"> |
495 | 495 | <description> |
496 | 496 | This use case covers the requirements for non-portable desktop computing devices in a low-threat |
497 | 497 | enterprise physical environment.<h:p/> |
|
8449 | 8449 | </title> |
8450 | 8450 | <note role="application"> |
8451 | 8451 | The purpose of this objective requirement is to encourage platform and component vendors to adopt mechanisms similar to those |
8452 | | - defined in upcoming NIST SP 1800-34 for ensuring the integrity of the hardware supply chain. The scope of SP 1800-34 is to cover |
| 8452 | + defined in NIST SP 1800-34 for ensuring the integrity of the hardware supply chain. The scope of SP 1800-34 is to cover |
8453 | 8453 | "manufacturing and OEM processes that protect against counterfeits, tampering, and insertion of |
8454 | 8454 | unexpected software and hardware, and the corresponding customer processes that verify that client and server computing devices and |
8455 | 8455 | components have not been tampered with or otherwise modified. Manufacturing processes that cannot be verified by the customer are explicitly |
|
0 commit comments