FMT_MSA.2 Secure security attributes
This component contains requirements on the values that can be assigned to security attributes. The assigned values should be such that the TOE will remain in a secure state.
The definition of what `secure' means is not answered in this component but is left to the development of the TOE (specifically ADV_SPM.1 Informal TOE security policy model ) and the resulting information in the guidance. An example could be that if a user account is created, it should have a non-trivial password.