| Thread Links | Date Links | ||||
|---|---|---|---|---|---|
| Thread Prev | Thread Next | Thread Index | Date Prev | Date Next | Date Index |
|
Hi all, I think there are some problems with
FMT_MSA.1 and FMT_MSA.3. If I have made a mistake, please clarify me. Based on FMT_MSA.1.1(a) the TSF
shall enforce the Common Access Control SFP,
[assignment: access control SFP(s), information flow control SFP(s)] to
restrict the ability to [selection: change_default, query, modify, delete,
[assignment: other operations]] the security attributes [assignment: list of
security attributes] to [assignment: the authorized identified roles]. Here I think the security attributes is
TSF data. However Common Access Control SFP
is used to protect user data. The object of Common
Access Control SFP is user document data and user functional data. Therefore
I think we should not use Common Access Control SFP here. There are the same problem with
FMT_MSA.1.1(b), FMT_MSA.1.3(a), and FMT_MSA.1.3(b). Thanks, Lida, Principle engineer, Kyocera technology development |