600.436 High-Assurance
Systems
Fall
01/Protection Profiles
9
Example - Rationale
Sample Suitability (contd.)
Sample Suitability (contd.)
¨Justify
suitability of each objective, e.g.
–O1 The firewall
must limit the valid range of addresses expected on each of the private
and hostile
networks
–FTA_TSE.1 provides the capability of limiting access in the
manner required by O1, and FPT_RVM.1 ensures that this function is always invoked
when required.