Family behaviour
This family ensures that a user may use a resource or service without disclosing the user's identity. The requirements for Anonymity provide protection of the user identity. Anonymity is not intended to protect the subject identity.
Component levelling
FPR_ANO.1 Anonymity requires that other users or subjects are unable to determine the identity of a user bound to a subject or operation.
FPR_ANO.2 Anonymity without soliciting information enhances the requirements of FPR_ANO.1 Anonymity by ensuring that the TSF does not ask for the user identity.
Management: FPR_ANO.1, FPR_ANO.2
There are no management activities foreseen for these components.
Audit: FPR_ANO.1, FPR_ANO.2
The following actions shall be auditable if FAU_GEN Security audit data generation is included in the PP / ST:
a) Minimal: The invocation of the anonymity mechanism.