Family behaviour
An authenticated user, in order to use the TOE, typically activates a subject. The user's security attributes are associated (totally or partially) with this subject. This family defines requirements to create and maintain the association of the user's security attributes to a subject acting on the user's behalf.
Component levelling
FIA_USB.1 User-subject binding requires the maintenance of an association between the user's security attributes and a subject acting on the user's behalf.
Management: FIA_USB.1
The following actions could be considered for the management functions in FMT:
a) an authorised administrator can define default subject security attributes.
Audit: FIA_USB.1
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP/ST:
a) Minimal: Unsuccessful binding of user security attributes to a subject (e.g. creation of a subject).
b) Basic: Success and failure of binding of user security attributes to a subject (e.g. success and failure to create a subject).