Family behaviour
This family defines requirements for the TSF to provide the capability for TSF-initiated and user-initiated locking and unlocking of interactive sessions.
Component levelling
FTA_SSL.1 TSF-initiated session locking includes system initiated locking of an interactive session after a specified period of user inactivity.
FTA_SSL.2 User-initiated locking provides capabilities for the user to lock and unlock the user's own interactive sessions.
FTA_SSL.3 TSF-initiated termination provides requirements for the TSF to terminate the session after a period of user inactivity.
Management: FTA_SSL.1
The following actions could be considered for the management activities in FMT:
a) specification of the time of user inactivity after which lock-out occurs for an individual user;
b) specification of the default time of user inactivity after which lock-out occurs;
c) management of the events that should occur prior to unlocking the session.
Management: FTA_SSL.2
The following actions could be considered for the management activities in FMT:
a) management of the events that should occur prior to unlocking the session.
Management: FTA_SSL.3
The following actions could be considered for the management activities in FMT:
a) specification of the time of user inactivity after which termination of the interactive session occurs for an individual user;
b) specification of the default time of user inactivity after which termination of the interactive session occurs.
Audit: FTA_SSL.1, FTA_SSL.2
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP/ST:
a) Minimal: Locking of an interactive session by the session locking mechanism.
b) Minimal: Successful unlocking of an interactive session.
c) Basic: Any attempts at unlocking an interactive session.
Audit: FTA_SSL.3
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP/ST:
a) Minimal: Termination of an interactive session by the session locking mechanism.