FPT_SEP.3    Complete reference monitor

Hierarchical to: FPT_SEP.2 SFP domain separation

FPT_SEP.3.1   The unisolated portion of the TSF shall maintain a security domain for its own execution that protects it from interference and tampering by untrusted subjects.

FPT_SEP.3.2   The TSF shall enforce separation between the security domains of subjects in the TSC.

FPT_SEP.3.3   The TSF shall maintain the part of the TSF that enforces the access control and/ or information flow control SFPs in a security domain for its own execution that protects them from interference and tampering by the remainder of the TSF and by subjects untrusted with respect to the TSP.

Dependencies: No dependencies.