Family behaviour
This family defines the conditions under which users shall be required to identify themselves before performing any other actions that are to be mediated by the TSF and which require user identification.
Component levelling
FIA_UID.1 Timing of identification, allows users to perform certain actions before being identified by the TSF.
FIA_UID.2 User identification before any action, require that users identify themselves before any action will be allowed by the TSF.
Management: FIA_UID.1
The following actions could be considered for the management functions in FMT:
a) the management of the user identities;
b) if an authorised administrator can change the actions allowed before identification, the managing of the action lists.
Management: FIA_UID.2
The following actions could be considered for the management functions in FMT:
a) the management of the user identities.
Audit: FIA_UID.1, FIA_UID.2
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP/ST:
a) Minimal: Unsuccessful use of the user identification mechanism, including the user identity provided;
b) Basic: All use of the user identification mechanism, including the user identity provided.