Family behaviour
The requirements of this family allow the TSF to control the use of resources by users and subjects such that denial of service will not occur because of unauthorised monopolisation of resources.
Component levelling
FRU_RSA.1 Maximum quotas provides requirements for quota mechanisms that ensure that users and subjects will not monopolise a controlled resource.
FRU_RSA.2 Minimum and maximum quotas provides requirements for quota mechanisms that ensure that users and subjects will always have at least a minimum of a specified resource and that they will not be able to monopolise a controlled resource.
Management: FRU_RSA.1
The following actions could be considered for the management activities in FMT:
a) specifying maximum limits for a resource for groups and/or individual users and/or subjects by an administrator.
Management: FRU_RSA.2
The following actions could be considered for the management activities in FMT:
a) specifying minimum and maximum limits for a resource for groups and/or individual users and/or subjects by an administrator.
Audit: FRU_RSA.1, FRU_RSA.2
The following actions shall be auditable if FAU_GEN Security audit data generation is included in the PP/ST:
a) Minimal: Rejection of allocation operation due to resource limits.
b) Basic: All attempted uses of the resource allocation functions for resources that are under control of the TSF.