600.436 High-Assurance
Systems
Fall
01/Protection Profiles
12
Example - Rationale
Sample Completeness (contd.)
Sample Completeness (contd.)
–FPT_SEP.3 which maintains domain separation,
preventing external tampering with the security functions
–Security
functions which restrict the modification of attributes to authorised administrator
e.g. FTA_MTD.1.1