Family behaviour
This family addresses revocation of security attributes for a variety of entities within a TOE.
Component levelling
FMT_REV.1 Revocation provides for revocation of security attributes to be enforced at some point in time.
Management: FMT_REV.1
The following actions could be considered for the management functions in FMT Management:
a) managing the group of roles that can invoke revocation of security attributes;
b) managing the lists of users, subjects, objects and other resources for which revocation is possible;
c) managing the revocation rules.
Audit: FMT_REV.1
The following actions should be auditable if FAU_GEN Security audit data generation is included in the PP / ST:
a) Minimal: Unsuccessful revocation of security attributes;
b) Basic: All attempts to revoke security attributes.