WARNING! Gitlab maintenance operation scheduled for Thursday, 18 June between 19:00 and 20:00 (CET). During this time window, short service interruptions (less than 5 minutes) may occur. Thank you in advance for your understanding.
@@ -1383,23 +1383,23 @@ Guidance: One type of event whose log message must take care to not accidentally
#### 5.2.X.x Requirement
The product shall provide a method of deleting all data and settings and resetting the product to its secure-by-default configuration.
The product shall provide a method of deleting all user data and settings and resetting the product to its secure-by-default configuration.
Guidance: Overwriting all storage or encrypting all data and deleting the key are two secure deletion mechanisms.
FIXME only ones that can be written
Guidance: Overwriting all user-writable storage or encrypting all user data and deleting the key are two secure deletion mechanisms.
#### 5.2.X.x **MI-RSET**: Secure deletion via reset
The product shall reset to its secure-by-default state after a power cycle or reset command.
* Applicability: Product has the capability for the user to write data and/or settings
* Reference: TR-SCDL
* Objective: Secure deletion
* Preparation: Document every kind of data or setting that may be stored on the product, how to store it on the product, and how to read it from the product
* Preparation: Document every kind of stored data or setting that may be changed by the user on the product, how to store it on the product, and how to read it from the product
* Activities: For each kind of user data or setting that may be stored on the product, write an instance of the data or setting stored on the product that is different from the default and read it from the product; once all kinds of data have been written and read, power cycle or reset the product, and read each kind of data again
* Activities: For each kind of user data or setting that may be stored and changed by the user on the product, write an instance of the data or setting stored on the product that is different from the default and read it from the product; once all kinds of data have been written and read, power cycle or reset the product, and read each kind of data again
* Verdict: If any data or setting is the same for both of the reads => FAIL, otherwise => PASS
@@ -1409,13 +1409,15 @@ The product shall reset to its secure-by-default state after a power cycle or re
The product shall reset to its secure-by-default state after a reinstallation that securely deletes all previous user data or settings.
* Applicability: Product has the capability for the user to write data and/or settings
* Reference: TR-SCDL
* Objective: Secure deletion
* Preparation: Document every kind of data or setting that may be stored on the product, how to store it on the product, and how to read it from the product
* Preparation: Document every kind of data or setting that may be stored and changed by the user on the product, how to store it on the product, and how to read it from the product
* Activities: For each kind of user data or setting that may be stored on the product, write an instance of the data or setting stored on the product that is different from the default and read it from the product; once all kinds of data have been written and read, reinstall the product with the secure delete option, and read the data or settings again
* Activities: For each kind of user data or setting that may be stored and changed by the user on the product, write an instance of the data or setting stored on the product that is different from the default and read it from the product; once all kinds of data have been written and read, reinstall the product with the secure delete option, and read the data or settings again
* Verdict: If any data or setting is the same for both of the reads => FAIL, otherwise => PASS
@@ -1425,13 +1427,15 @@ The product shall reset to its secure-by-default state after a reinstallation th
The product shall reset to its secure-by-default state after the secure deletion function is used.
* Applicability: Product has the capability for the user to write data and/or settings
* Reference: TR-SCDL
* Objective: Secure deletion
* Preparation: Document every kind of data or setting that may be stored on the product, how to store it on the product, and how to read it from the product
* Preparation: Document every kind of data or setting that may be stored and changed by the user on the product, how to store it on the product, and how to read it from the product
* Activities: For each kind of user data or setting that may be stored on the product, write an instance of the data or setting stored on the product that is different from the default and read it from the product; once all kinds of data have been written and read, activate the secure deletion function, and read the data or settings again
* Activities: For each kind of user data or setting that may be stored and changed by the user on the product, write an instance of the data or setting stored on the product that is different from the default and read it from the product; once all kinds of data have been written and read, activate the secure deletion function, and read the data or settings again
* Verdict: If any data or setting is the same for both of the reads => FAIL, otherwise => PASS
@@ -1441,13 +1445,13 @@ The product shall reset to its secure-by-default state after the secure deletion
| Risk factors | Requires mitigations |
|--------------|----------------------|
| SDS < 1 | none |
| any | RSET or INST or DELE |
| Security Profile | Requires mitigations |
|------------------|----------------------|
| all | RSET or INST or DELE |
> FIXME: Update when risk factors are fully filled out
| WD-\* | none |
| WL-\*, VI=\* | RSET or INST or DELE |
### 5.2.X **TR-SDTR**: Secure data read and transfer
