Thread Links			Date Links
Thread Prev	Thread Next	Thread Index	Date Prev	Date Next	Date Index

[2600] General Comments for FoPP-A

To: STDS-2600@xxxxxxxxxxxxxxxxx
Subject: [2600] General Comments for FoPP-A
From: Nancy Chen <nchen@xxxxxxxxxxx>
Date: Tue, 14 Aug 2007 15:02:24 -0400
List-Help: <http://listserv.ieee.org/cgi-bin/wa?LIST=STDS-2600>, <mailto:LISTSERV@LISTSERV.IEEE.ORG?body=INFO STDS-2600>
List-Owner: <mailto:STDS-2600-request@LISTSERV.IEEE.ORG>
List-Subscribe: <mailto:STDS-2600-subscribe-request@LISTSERV.IEEE.ORG>
List-Unsubscribe: <mailto:STDS-2600-unsubscribe-request@LISTSERV.IEEE.ORG>
Reply-To: nchen@xxxxxxxxxxx

Hi Brian,

I haven't seen any update to the last P2600.1 draft yet. So my comments for FoPP-A below are based on the last draft (v28b).

1. In the Access Control SFP table for each PP –

It is not clear whether the identification, authentication, and authorization are required for the document originators, delegates, or administrators before any actions/operations on the TOE or only for the subsequent operations specified in the access control table.
Recommendation: add clarification for actions intended to control.

2. In the PP Application note of the description of the Major security features of the PRT, SCN, CPY, FAX, DSR, and SMI TOEs, there is a note for evaluator that says that “For evaluation purposes, it should be assumed that nonvolatile storage (“and shared-medium interfaces” – for all TOEs other than SMI) is not present in the TOE”. However, several types of persistently stored data are listed as the assets in each of the aforementioned TOEs, which conflicts with the above statement in the application note. Also it is not true that these persistly stored data are the assets for the TOEs that do not have any persistent storage.

Recommendation: move all persistently stored assets, threats, and objectives from PRT, SCN, CPY, FAX, DSR, SMI PPs to NVS PP and change the threats/objectives/assets in the NVS PP to counter these threats for persistent assets removed from the other PPs. In the last meeting we also have discovered that any persistently stored assets – including temporarily persisted assets from PRT/SCN/CPY/FAX/DSR job processing should be considered for “data salvage” threat in NVS PP. I think moving all persistently stored assets/threats/objectives into NVS is a much cleaner separation of functions among these TOEs.

I hope to discuss these issues in the next meeting to see the consensus of the group.

Thanks,
-Nancy
-------------------------------------------------------------------------------------------------------------------------------
Principal Engineer
Solutions and Technology
GMC, Oki Data
2000 Bishops Gate Blvd.
Mt. Laurel, NJ 08054
Phone: (856)222-7006
email: nchen@okidata.com

Prev by Date: [2600] Final RSVP for Toronto meeting, Aug 21-22 (and TCG on Aug 23)
Next by Date: [2600] Comments for P2600 Main Document
Prev by thread: [2600] Final RSVP for Toronto meeting, Aug 21-22 (and TCG on Aug 23)
Next by thread: Re: [2600] General Comments for FoPP-A
Index(es):
- Date
- Thread