FDP_ACC.2 Complete access control
User application notes
This component requires that all possible operations on objects, that are included in the SFP, are covered by an access control SFP.
The PP/ST author must demonstrate that each combination of objects and subjects is covered by an access control SFP.
Operations
Assignment:
In FDP_ACC.2.1, the PP/ST author should specify a uniquely named access control SFP to be enforced by the TSF.
In FDP_ACC.2.1, the PP/ST author should specify the list of subjects and objects covered by the SFP. All operations among those subjects and objects will be covered by the SFP.