Family behaviour
This family defines requirements to deny a user permission to establish a session with the TOE.
Component levelling
FTA_TSE.1 TOE session establishment provides requirements for denying users access to the TOE based on attributes.
Management: FTA_TSE.1
The following actions could be considered for the management activities in FMT:
a) management of the session establishment conditions by the authorised administrator.
Audit: FTA_TSE.1
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP/ST:
a) Minimal: Denial of a session establishment due to the session establishment mechanism.
b) Basic: All attempts at establishment of a user session.
c) Detailed: Capture of the value of the selected access parameters (e.g. location of access, time of access).