NIAP APE_REQ.2-7 Assessment of HCD cPP #7
Labels
cPP
Issue with the cPP
editorial
Editorial change
NIAP Evaluation
Comments from NIAP Evaluation
Priority +1
Priority 1 Issue
As part of NIAP’s review process of the HCD cPP, we performed an evaluation of the APE work units and identified several needing correction. Please see the following comments:
APE_REQ.2-7, The evaluator shall examine the statement of security requirements to determine that all selection operations are performed correctly. --
General inconsistency with regards to whether or not "selection:" prompt is bolded
The following are examples of incorrect conventions for selections; there are other instances throughout the document.
FAU_GEN.1.1, b. - "not specified" should be in square brackets and not bold as it is a completed selection
FAU_STG.1.2 - "prevent" is a completed selection and should be in square brackets rather than bolded
FCS_CKM.4.1 - All bullets should be italicized as they are operations that need to be completed by the author
FCS_CKM.4.1 - 'no standard' does not need a selection prompt because the PP author has filled out the selection in a way that the ST author has no choice to make
FCS_CKM.1.1/SKG - close bracket is italicized
FCS_COP.1.1/DataEncryption - All selection text should be italcized as they are operations that need to be completed by the author
FCS_COP.1.1/SigGen - All selection text should be italicized as they are operations that need to be completed by the author
FCS_COP.1.1/Hash - refined selection is not italicized
FCS_RBG_EXT.1.2 - selection text not italidized in all cases
FIA_PMG_EXT.1.1 - selection text not italicized in all cases
FTP_ITC.1.2 'the TSF, or the authorized IT entities' is a completed seleciton and should be unitalics and in brackets
FTP_TRP.1.1/NonAdmin - "remote" and "disclosure and detection of modification of the communicated data" should be in square brackets and italicized; they are completed selections by the author
The text was updated successfully, but these errors were encountered: