600.436 High-Assurance Systems
Fall 01/Development Process Assurance
25
Systematic
Flaw Remediation
¨The developer
shall document the flaw remediation
procedures (in a way that shall):
–require timely responses for the automatic distribution of security flaw reports and the associated corrections to registered users who might be affected by the security flaw
¨The developer
shall designate one or more specific
points of contact for user reports and inquiries about security issues involving the TOE