Family behaviour
This family defines requirements for mechanisms that enforce defined quality metrics on provided secrets and generate secrets to satisfy the defined metric.
Component levelling
FIA_SOS.1 Verification of secrets requires the TSF to verify that secrets meet defined quality metrics.
FIA_SOS.2 TSF Generation of secrets requires the TSF to be able to generate secrets that meet defined quality metrics.
Management: FIA_SOS.1
The following actions could be considered for the management functions in FMT:
a) the management of the metric used to verify the secrets.
Management: FIA_SOS.2
The following actions could be considered for the management functions in FMT:
a) the management of the metric used to generate the secrets.
Audit: FIA_SOS.1, FIA_SOS.2 TSF
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP/ST:
a) Minimal: Rejection by the TSF of any tested secret;
b) Basic: Rejection or acceptance by the TSF of any tested secret;
c) Detailed: Identification of any changes to the defined quality metrics.