Раздел: Документация

0 ... 83 84 85 86 87 88 89 ... 117

F.11 Stored data integrity (FDP SDI)

This family provides requirements that address protection of user data while it is stored within the

TSC.

User notes

Hardware glitches or errors may affect data stored in memory. This family provides requirements to detect these unintentional errors. The integrity of user data while stored on storage devices within the TSC are also addressed by this family.

To prevent a subject from modifying the data, the FDP IFF or FDP ACF families are required (rather than this family).

This family differs from FDP ITT Internal TOE transfer that protects the user data from integrity errors while being transferred within the TOE.

FDPSDI.1 Stored data integrity monitoring

User application notes

This component monitors data stored on media for integrity errors. The PP/ST author can specify different kinds of user data attributes that will be used as the basis for monitoring.

Operations

Assignment:

In FDPSDI.1.1 the PP/ST author should specify the integrity errors that the TSF will detect.

In FDPSDI.1.1 the PP/ST author should specify the user data attributes that will be used as the basis for the monitoring.

FDPSDI.2 Stored data integrity monitoring and action

User application notes

This component monitors data stored on media for integrity errors. The PP/ST author can specify which action should be taken in case an integrity error is detected.

---

Operations

Assignment:

In FDPSDI.2.1 the PP/ST author should specify the integrity errors that the TSF will detect.

In FDPSDI.2.1 the PP/ST author should specify the user data attributes that will be used as the basis for the monitoring.

In FDPSDI.2.2 the PP/ST author should specify the actions to be taken in case an integrity error is detected.

---

F.12 Inter-TSF user data confidentiality transfer protection (FDP UCT)

This family defines the requirements for ensuring the confidentiality of user data when it is transferred using an external channel between the TOE and another trusted IT product. Confidentiality is enforced by preventing unauthorised disclosure of user data in transit between the two end points. The end points may be a TSF or a user.

User notes

This family provides a requirement for the protection of user data during transit. In contrast,

FTP ITC handles TSF data.

FDPUCT.1 Basic data exchange confidentiality

User application notes

The TSF has the ability to protect from disclosure some user data which is exchanged. Operations

Assignment:

In FDPUCT.1.1, the PP/ST author should specify the access control SFP(s) and/ or information flow control SFP(s) that will be enforced when exchanging user data. The specified policies will be enforced to make decisions about who can exchange data and which data can be exchanged.

Selection:

In FDPUCT.1.1, the PP/ST author should specify whether this element applies to a mechanism that transmits or receives user data.

0 ... 83 84 85 86 87 88 89 ... 117