| **REQ-EMM-02 (MI-NUTI-1)** | | | x | x⁵ | x | | x |
| **REQ-EMM-02 (MI-NUTI-1)** | | | | x⁵ | x | | |
| **REQ-EMM-03 (MI-TRAF-2)** | | x | | x⁵ | | x | x |
| **REQ-EMM-04 (MI-TRAF-3)** | | x | | x⁵ | | | x |
| **REQ-EMM-05 (MI-TRAF-4)** | | x | | x⁵ | | x | x |
| **REQ-EMM-06 (MI-LOGG-X)** | | | x | | | | |
| **REQ-EMM-06 (MI-LOGG-X)** | | x | x | | | | |
⁵ REQ-EMM-02 (MI-NUTI-1) or (REQ-EMM-03 (MI-TRAF-2) and REQ-EMM-04 (MI-TRAF-3) and REQ-EMM-05 (MI-TRAF-4)) apply
@@ -1606,15 +1598,15 @@ The log messages shall not include any confidential information such as Personal
#### 5.14.3.2 Applicability
This requirement is dependent on the product's intended use case, mandatory only for use cases defined by higher-risk or enterprise profiles where centralized log management is a standard security expectation.
This requirement is dependent on the product's intended use case, mandatory only for use cases where centralized log management is a standard security expectation.
* UC-1: not required
* UC-2: not required
* UC-3: required
* UC-3: not required
* UC-4: required
* UC-5: required
* UC-6: not required
* UC-7: required
* UC-7: not required
#### 5.14.3.3 Guidance
@@ -1632,18 +1624,18 @@ One type of event for which log messages must take care to not accidentally incl
| **REQ-LOG-02 (MI-LOGG-1)** | x | x | x | x | x | x | x |
| **REQ-LOG-03 (MI-LOGG-2)** | | | x | x | x | | x |
| **REQ-LOG-04 (MI-LOGG-3)** | | x | x | x | x | | x |
| **REQ-LOG-03 (MI-LOGG-2)** | | | | x | x | | |
| **REQ-LOG-04 (MI-LOGG-3)** | | x | x | | | | |
## 5.15 Factory reset and data portability
@@ -1695,7 +1687,7 @@ This requirement applies to products with the capability for the user to write d
#### 5.15.4.1 Requirement
The product shall provide a method by which an authorized user can securely read all data and settings from the product.
The VPN client shall provide a method by which an authorized user can securely read all data and settings from the VPN client.
#### 5.15.4.2 Applicability
@@ -1720,17 +1712,17 @@ This requirement applies to products with the capability for the user to write d
#### 5.15.5.2 Applicability
This requirement applies to products with the capability for the user to write data and/or settings, and manufacturer support of exporting of that data to an external file. This requirement is strictly applicable to use cases where an IT professional can reasonably be expected to administer the product.
This requirement applies to products with the capability for the user to write data and/or settings, and manufacturer support of exporting of that data to an external file. This requirement is strictly applicable to use cases where an IT professional or advanced user can reasonably be expected to administer the product.
Of the above described products, this requirement applies to products that fall within the following use cases
* UC-1: not required
* UC-2: not required
* UC-3: required
* UC-2: required
* UC-3: not required
* UC-4: required
* UC-5: required
* UC-6: required
* UC-7: required
* UC-7: not required
### 5.15.6 REQ-DRT-06 (MI-DELE) Secure deletion via secure deletion function
@@ -1755,7 +1747,7 @@ The product shall reset to its secure-by-default state after the secure deletion