Does initial setting of rules-table need FMT_MSA.3?

Subject: Does initial setting of rules-table need FMT_MSA.3?
From: "YOKOTA HIROFUMI" <yokota-hirofumi@jqa.jp>
Date: Tue, 4 Nov 2003 19:05:40 +0900
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="iso-2022-jp"


I am confused in that FDP_IFF has a dependency on FMT_MSA.3 (Static
attribute initialisation).

As we know, attributes of the information is said to stay with the
information as it flows.
So, those attributes are not ones provided with restrictive/permissive
default values by the TSF.

Then, why FDP_IFF has a dependency on FMT_MSA.3?

We know, FDP_IFF permits an information-flow according to the rules that are
based on attributes.
So, it is natural to suppose that there is a requirement of initial rules
setting (that is restrictive or permissive).

For this rules setting, I thought, FMT_MTD (Management of TSF data) could be
used.

I thought, setting rules does not mean "Management of security attributes"
or "Static attribute initialisation", but means "Management of TSF data"..

Rules are not attributes, but TSF data, aren't they?

Am I wrong?

Yokota

Follow-Ups:
- RE: Does initial setting of rules-table need FMT_MSA.3?
  - From: Nir Naaman <nir.naaman@metasec.com>

Prev by Date: Re: How to express FMT_MTD.1 (Management of TSF data) requirement in the IT environment?
Next by Date: RE: Does initial setting of rules-table need FMT_MSA.3?
Prev by thread: Re: Interrelationship between PPs and Interps
Next by thread: RE: Does initial setting of rules-table need FMT_MSA.3?

Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov