Раздел: Документация

0 ... 43 44 45 46 47 48 49 ... 73

agd adm.1.4c The administrator guidance shall describe all assumptions regarding user behaviour that are relevant to secure operation of the TOE.

agd adm.1.5c The administrator guidance shall describe all security parameters under the control of the administrator, indicating secure values as appropriate.

agd adm.1.6c The administrator guidance shall describe each type of security-relevant event relative to the administrative functions that need to be performed, including changing the security characteristics of entities under the control of the TSF.

agd adm.1.7c The administrator guidance shall be consistent with all other documentation supplied for evaluation.

agd adm.1.8c The administrator guidance shall describe all security requirements for the IT environment that are relevant to the administrator.

Evaluator action elements:

agd adm.1.1e The evaluator shall confirm that the information provided meets all requirements for content and presentation of evidence.

---

11.2 User guidance (AGDJJSR)

Objectives

User guidance refers to material that is intended to be used by non-administrative human users of the TOE, and by others (e.g. programmers) using the TOEs external interfaces. User guidance describes the security functions provided by the TSF and provides instructions and guidelines, including warnings, for its secure use.

The user guidance provides a basis for assumptions about the use of the TOE and a measure of confidence that non-malicious users, application providers and others exercising the external interfaces of the TOE will understand the secure operation of the TOE and will use it as intended.

Component levelling

This family contains only one component.

Application notes

The requirements AGDUSR.1.3.C and AGDUSR.1.5C encompass the aspect that any warnings to the users of a TOE with regard to the TOE security environment and the security objectives described in the PP/ST are appropriately covered in the user guidance.

In many cases it may be appropriate that guidance is provided in separate documents: one for human users, and one for application programmers and/or hard-ware designers using software or hardware interfaces.

AGDJJSR.1 User guidance

Dependencies:

ADV FSP.1 Informal functional specification

Developer action elements:

agd usr.1.1d The developer shall provide user guidance. Content and presentation of evidence elements:

agd usr.1.1c The user guidance shall describe the functions and interfaces available to the non-administrative users of the TOE.

agd usr.1.2c The user guidance shall describe the use of user-accessible security functions provided by the TOE.

agd usr.1.3c The user guidance shall contain warnings about user-accessible functions and privileges that should be controlled in a secure processing environment.

---

agd usr.1.4c The user guidance shall clearly present all user responsibilities necessary for secure operation of the TOE, including those related to assumptions regarding user behaviour found in the statement of TOE security environment.

agd usr.1.5c The user guidance shall be consistent with all other documentation supplied for evaluation.

agd usr.1.6c The user guidance shall describe all security requirements for the IT environment that are relevant to the user.

Evaluator action elements:

agd usr.1.1e The evaluator shall confirm that the information provided meets all requirements for content and presentation of evidence.

0 ... 43 44 45 46 47 48 49 ... 73