Re: Does TSF include administrator?

Subject: Re: Does TSF include administrator?
From: Jeff Gilliatt <Jeffrey.Gilliatt@mitretek.org>
Date: Wed, 07 Aug 2002 11:53:11 -0400
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=us-ascii
Organization: Mitretek Systems
References: <25CF7139EBC0D1118A010060972A16C0033002EB@wfhqex02.gfgsi.com>

Jim,

CC Part 2, ver. 2.1, para. 16, states "The TSF consists of all hardware,
software, and firmware of a TOE that is either directly or indirectly relied
upon for security enforcement."  Consequently, I believe the answer to your
question is no.

Perhaps you could allocate FDP_ITC.2.4 either partially or entirely to the
environment?

"Knoke, Jim" wrote:

> When a requirement says "the TSF shall...", is it sufficient that the
> requirement is (partially) met by administrator or operator procedures?
> For example, FDP_ITC.2.4 says the TSF shall ensure that security
> attributes imported  are interpreted as intended by the source. Is the
> requirement met even if the local administrator had to manually "talk"
> to the administrator of another system and manually map a foreign label
> to a local label? This procedure would of course be documented in the
> administrator guidance. I notice that the definition of TOE includes the
> administrator guidance, but the definition of TSF does not.

References:
- Does TSF include administrator?
  - From: "Knoke, Jim" <Jim.Knoke@GetronicsGov.com>

Prev by Date: Does TSF include administrator?
Next by Date: Nuke ALC_DVS.1.2C
Prev by thread: Does TSF include administrator?
Next by thread: I-0459 Approved

Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov