| Identifier | F_PhysEnv_Cnf.1, member of Family F_PhysEnv_Cnf |
| Descriptive Name | Emanations Security |
| Component Overview | The physical TOE environment shall provide an effective container that prevents the escape of intelligible electromagnetic and sound vibrations generated by the TOE. |
| Related Components | Hierarchical To:
Management Dependencies:
Audit Dependencies: [for basic, minimal, detailed audit]
Other Dependent Components: |
| Rationale | Justification of explicit statement. This is explicitly an environmental requirement, in contrast to existing Part 2 CC components.
Applicability of Assurance Requirements. Special skills may well be needed to evaluate satisfaction of this requirement. However, there are commercial and government testing laboratories that could be consulted. |
| Editorial | Used in connection with IT devices whose emanations contain intelligible secrets. |
Contained CC-Extending Elements
F_PhysEnv_Cnf.1.1 - The physical TOE environment shall not permit the escape of [assignment: type of TOE emissions] in excess of [assignment: specified limit].  |
| Identifier | FMT_MTD-X.1, extending Family FMT_MTD |
| Descriptive Name | TSF data initialization |
| Component Overview | TSF data initialization ensures that the default values of TSF security attributes are appropriate. |
| Related Components | Hierarchical To:
Management Dependencies:
Audit Dependencies: [for basic, minimal, detailed audit]
Other Dependent Components: |
| Rationale | Justification of explicit statement. Protection of TSF data by FMT_MTD.1.1 is analogous to the protection of user data attributes by FMT_MSA.3.2. FMT_MTD-X.1 is needed to provide a corresponding analogue of FMT_MSA.3.1, so that default values for TSF data will be reasonable. |
| Editorial | |
Contained CC-Extending Elements
FMT_MTD-X.1.1 - The TSF shall provide [selection: restrictive, permissive, other property] default values for [assignment: list of TSF data]. |
| Identifier | FPT_PHP_EMSEC_Design, extending Family FPT_PHP |
| Descriptive Name | Physical Emanations Security |
| Component Overview | IT equipment that processes sensitive user data may need to avoid the unintended transmission of information-bearing sounds or electromagnetic signals. |
| Related Components | Hierarchical To:
Management Dependencies:
Audit Dependencies: [for basic, minimal, detailed audit]
Other Dependent Components: |
| Rationale | Justification of explicit statement. FDP_UCT.1.1 is similar, but is clearly aimed at deliberate communications, appearing not to cover unintended emanations. FPT_PHP claims generally to deal with physical protection, but the individual components all address physical modification rather than eavesdropping.
Applicability of Assurance Requirements. Special skills may well be needed to evaluate satisfaction of this requirement. However, there are commercial and government testing laboratories that could be consulted. |
| Editorial | Specific commercial, military, and civilian government standards exist. Many of these are publicly available. These may be used to tailor this component appropriately. Note that two different approaches to EMSEC are now in common use — suppression of emanations and the addition of noise. |
Contained CC-Extending Elements
FPT_PHP_EMSEC_D.2 - The TOE connecting cables (power supply, communications lines) shall not emit [assignment: types of emissions] in excess of [assignment: specified limits].
FPT_PHP_EMSEC_D.1 - The TOE shall not emit [assignment: types of emissions] in excess of [assignment: specified limits]. |