FMT_MOF.1 Management of security functions behaviour
This component allows identified roles to manage the security functions of the TSF. This might entail obtaining the current status of a security function, disabling or enabling the security function, or modifying the behaviour of the security function. An example of modifying the behaviour of the security functions is changing of authentication mechanisms.
Operations
Selection:
In FMT_MOF.1.1 the PP/ST author should select whether the role can determine the behaviour of, disable, enable, and/or modify the behaviour of the security functions.
Assignment:
In FMT_MOF.1.1 the PP/ST author should specify the functions that can be modified by the identified roles. Examples include auditing and time determination.
In FMT_MOF.1.1 the PP/ST author should specify the roles that are allowed to modify the functions in the TSF. The possible roles are specified in FMT_SMR.1.