Commit 3a0f806e authored by Valerie Aurora's avatar Valerie Aurora
Browse files

Add notification requirement, update watchdog requirement 

Co-authored-by: Alessio Di Carlo, Riccardo Fiorelli, Laura Annamaria Bonini
parent 0c829fdd

EN-304-625.md

+12 −3
Original line number Diff line number Diff line
@@ -924,17 +924,26 @@ Mitigations satisfy technical requirements only under when they mitigate the rel 


#### 5.2.X.x Requirement



The network interface shall implement mechanisms to observe when the firmware and/or software of the network interface is no longer capable of performing its functions and automatically reset the network interface to a functioning state.

The network interface shall implement mechanisms to observe when the firmware and/or software of the network interface is no longer capable of performing its functions and automatically reset the network interface to a functioning state or notify another part of the system.



#### 5.2.X.x MI-WDOG: Watchdog to reset network interface



The network interface shall implement a watchdog mechanism that observes whether the network interface is capable of performing its functions. If the watchdog observes that the interfaces is not capable of performing its functions for a significant period of time, it will reset the network interface to a functioning state using a hardware-based mechanism.



  * Applicabilty: only applies to physical network interfaces

  * Test: use a testing interface to halt the firmware or sofware, wait for the watchdog to reset the firmware, and then attempt to use a network interface function after any necessary initialization or configuration

  * Test: use a testing interface to halt the firmware or software, wait for the watchdog to reset the firmware, and then attempt to use a network interface function after any necessary initialization or configuration

  * Result: after a specific time period has elapsed, the interface restarts, any initialization or configuration succeeds, and the use of the network interface function succeeded

  * Output: error, log message, statistics update, or other information from card indicating reset has occurred, log message or statistic showing the post-reset test function succeeded

  * False positive prevention: do not use any network interface functions for N+1 seconds and see that it does not reset



#### 5.2.X.x MI-NTFY: Notify fatal errors to ask for reset and/or firmware reload



The network interface shall implement a notification mechanism to inform the host whether the network interface is not capable of performing its functions.



* Test: use a testing interface to inject errors and verify the related notification to host

* Result: after a specific fault the related notification is received by the host

* Output: error, log message, statistics update, or other information from card indicating error notification



FIXME update mitigation mapping below for MI-NTFY



#### 5.2.X.x Mapping of mitigations to risk factors and security profiles