-
Notifications
You must be signed in to change notification settings - Fork 2
Security Requirements Section
Bob Clemons edited this page Jan 29, 2024
·
6 revisions
Updated 29 January 2024
The Security Requirements section consists of three or four sub-sections:
- Security Functional Requirements (SFRs)
- Security Requirements Rationale
- Security Assurance Requirements (SARs)
- Evaluation Methods/Activities
In NIAP PPs the Evaluation Activities are specified with the SFRs. In cPP the EAs are specified separately in the Supporting Document. There is not a separate XML section for EAs.
The Security Requirements Section can specified in one of three ways:
<section title="Security Requirements" id="sec-uniqueId">
<sec:Security_Requirements>
<sec:secreq title="Security Requirements">
The section declaration can be followed by arbitrary HTML text or any number of other sections before the SFR section.