biometricITC · woodbe · Jun 10, 2022 · Jun 10, 2022 · Jun 13, 2022 · Jun 13, 2022
diff --git a/Supporting Documents/BS_SD.adoc b/Supporting Documents/BS_SD.adoc
@@ -570,7 +570,7 @@ In any case, the evaluator shall examine the TSS to confirm that;
 
 * If a biometric capture sensor returns plaintext biometric data, any entities outside the SEE can’t access the sensor and data captured by the sensor
 
-. All plaintext biometric data is retained in volatile memory within the SEE and any entities outside the SEE including the main computer operating system can’t access these data. Any TSFIs do not reveal plaintext biometric data to any entities outside the SEE
+. All plaintext biometric data is retained in volatile memory within the SEE and any entities outside the SEE including the main computer operating system can’t access these data. Any TSFIs do not reveal plaintext biometric data to any entities outside the SEE. The evaluator shall examine TSFIs of TSF modules provided by the biometric capture sensor (e.g. SDK) because they may include testing or debug codes and the developer who integrated the sensor into the TOE may apply changes to those modules
 
 The evaluator shall keep in mind that the objective of this EA is not evaluating the SEE itself. This EA is derived from ASE_TSS.1.1 which requires that the TSS and BMD to provide potential consumers of the TOE with a high-level view of how the developer intends to satisfy each SFR. The evaluator shall check the TSS and BMD to seek for a logical explanation how the above criteria are satisfied considering this scope of the requirement.
 
@@ -590,7 +590,7 @@ Plaintext biometric data must not be accessible from any entities outside the SE
 
 [loweralpha]
 . The TOE must not expose the plain biometric data to the memory that is accessible by the operating system during the processing of biometric data.
-. Any TSFIs that can output plain biometric data must not exist or be accessible by the operating system.
+. Any TSFIs identified in the TSS that can output plaintext biometric data must not be accessible by the operating system.
 
 The evaluator shall perform the following tests to verify that both a) and b) described above are true.
 
@@ -612,13 +612,10 @@ The test is repeated for biometric enrolment and biometric verification (called
 [loweralpha]
 . TSFI invocation test
 +
-The following test steps require the developer to provide access to a test platform that provides the evaluator with tools that are typically not found on factory products.
+If TSFIs exist, they could be used to output plaintext biometric data to the operating system, and so the evaluator shall perform this test. The following test steps require the developer to provide access to a test platform that provides the evaluator with tools that are typically not found on factory products.
 +
 [arabic]
-.. The evaluator shall identify any TSFIs that output plaintext biometric data to the memory that is accessible by the operating system. The evaluator shall especially examine TSFIs of TSF modules provided by the biometric capture sensor (e.g. SDK) because they may include testing or debug codes and the developer who integrated the sensor into the TOE may apply minimal changes to those modules
-+
-If the evaluator can’t find such TSFIs, then the evaluator does not need to perform testing to access this type of TSFI.
-
+.. The evaluator shall identify any TSFIs that output plaintext biometric data to the memory that is accessible by the operating system. 
 
 ===== Pass/Fail criteria