Family behaviour
This family provides requirements that address protection of TSF data when it is transferred between separate parts of a TOE across an internal channel.
Component levelling
FPT_ITT.1 Basic internal TSF data transfer protection, requires that TSF data be protected when transmitted between separate parts of the TOE.
FPT_ITT.2 TSF data transfer separation, requires that the TSF separate user data from TSF data during transmission.
FPT_ITT.3 TSF data integrity monitoring, requires that the TSF data transmitted between separate parts of the TOE is monitored for identified integrity errors.
Management: FPT_ITT.1
The following actions could be considered for the management functions in FMT:
a) management of the types of modification against which the TSF should protect;
b) management of the mechanism used to provide the protection of the data in transit between different parts of the TSF.
Management: FPT_ITT.2
The following actions could be considered for the management functions in FMT:
a) management of the types of modification against which the TSF should protect;
b) management of the mechanism used to provide the protection of the data in transit between different parts of the TSF;
c) management of the separation mechanism.
Management: FPT_ITT.3
The following actions could be considered for the management functions in FMT:
a) management of the types of modification against which the TSF should protect;
b) management of the mechanism used to provide the protection of the data in transit between different parts of the TSF;
c) management of the types of modification of TSF data the TSF should try to detect;
d) management of the actions that will be taken.
Audit: FPT_ITT.1, FPT_ITT.2
There are no actions identified that should be auditable if FAU_GEN Security audit data generation is included in the PP/ST.
Audit: FPT_ITT.3
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP / ST:
a) Minimal: the detection of modification of TSF data;
b) Basic: the action taken following detection of an integrity error.