Final Interpretation for RI # 74 - Duplicate informative text for ATE_COV.2-3 and ATE_DPT.1-3

Date: 10/15/2000
Subject: Duplicate informative text for ATE_COV.2-3 and ATE_DPT.1-3
CC Part #1 Reference: 
CC Part #2 Reference: 
CC Part #3 Reference: 
CEM Reference: CEM, Section 7.9.2 (ATE_COV.2)
CEM, Section 7.9.3 (ATE_DPT.1)

Issue:

In the CEM chapter for EAL3, work units ATE_COV.2-3 and ATE_DPT.1-3 have the same words and informative text. They both reference CEM section 7.9.1.3, which contains guidance pertaining to the functional specification and the high-level design. This implies that both ATE_COV.2 and ATE_DPT.1 are part of the Security Target, which may not necessarily be the case.

Thus, this guidance is misleading when only one of these assurance components is in the Security Target. Furthermore, since both work units have the same wording and informative text, this may cause confusion on the part of the evaluator as to how the work effort for these two work units might differ. Finally, section 7.9.1.3 does not address the difference in rigour between ATE_COV.2 (which has completeness requirements) and ATE_DPT.1 (which does not). The same issue pertains to these work units as they are stated in the CEM chapter for EAL4, where they both reference CEM section 8.9.1.3.



Interpretation

The guidance to the evaluator for performing the correspondence work units ATE_COV and ATE_DPT is similar but must be taken in context with the work underway. The CEM is interpreted as detailed in the specific change below.

Specific Changes

CEM paragraph 1122 is reworded as:

"Guidance on this work units, as it pertains to the functional specification, can be found in:

a) Application notes, Section 7.9.1.3, Verifying the adequacy of tests." CEM paragraph 1130 is reworded as: "Guidance on this work unit, as it pertains to the high-level design, can be found in:

a) Application notes, Section 7.9.1.3, Verifying the adequacy of tests." CEM paragraph 1581 is reworded as: "Guidance on this work unit, as it pertains to the functional specification, can be found in:

a) Application notes, Section 8.9.1.3, Verifying the adequacy of tests." CEM paragraph 1589 is reworded as: "Guidance on this work unit, as it pertains to the high-level design, can be found in:

a) Application notes, Section 8.9.1.3, Verifying the adequacy of tests."

Rationale

It is appropriate for CEM sections 7.9.1.3 and 8.9.1.3 to address both the functional specification and high-level design in the context of verifying the adequacy of tests.

Given that the current structure of the CEM is along the lines of EALs, sections 7.9.1.3 and 8.9.1.3 address the situation where the assurance requirements comprise all of EAL3 or EAL4 respectively, and both ATE_COV.2 and ATE_DPT.1 are present in these EALs.It is unnecessary for CEM sections 7.9.1.3 and 8.9.1.3 to address the difference in rigour between ATE_COV.2 and ATE_DPT.1. The completeness requirements in ATE_COV.2 are addressed by work unit ATE_COV.2-4, which references neither section 7.9.1.3. nor section 8.9.1.3. It is acknowledged that an evaluator, not placing the words in sections 7.9.1.3 and 8.9.1.3 within their proper context, might conceivably attempt to perform all of the intended evaluation effort for work unit ATE_DPT.1-3 when performing work unit ATE_COV.2-3.