Commit 8393af1d authored by Valerie Aurora's avatar Valerie Aurora
Browse files

Add requirement to document how to transfer data confidentiality risk

parent 7351f68d

EN-304-625.md

+23 −13
Original line number Diff line number Diff line
@@ -1113,6 +1113,16 @@ Guidance: Protecting confidentiality of data transmitted across indirectly attac 


Guidance: Data transmitted may be protected by the environment or encryption.



#### 5.2.X.x **MI-DOCC**: Document transfer of risk of confidentiality of data transmitted by product



The product shall be accompanied by documentation informing the user of the transfer of risk for protecting the confidentiality of data transmitted by the product.



  * Reference: TR-CDTX

  * Objective: Protect data confidentiality

  * Activities: Examine the documentation

  * Verdict: Transfer of risk documented in a manner appropriate to the user => PASS, otherwise FAIL

  * Evidence: Documentation, analysis of documentation



#### 5.2.X.x Mapping of mitigations to risk factors and security profiles



See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale.
@@ -1472,15 +1482,15 @@ SP-WD-2: (KEVD or KEVA or KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMS 


SP-WD-3: (KEVD or KEVA or KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-1, PDDI-4, SUDC, (SUVP or SUAP or SUOE or SUAO), AUTH, CDST, DCTX, DJST, (NTFY or WDOG), LMEM, DOST, MDOC, MPHY, JSTY, LOGG, VULH



SP-WD-4: (KEVD or KEVA or KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-\*, SUDC, (SUVP or SUAP or SUOE or SUAO), AUTH, CDST, DCTX, DJST, NTFY, WDOG, FDRP, LMEM, FAIR, DOST, MDOC, MPHY, JSTY, LOGG, VULH

SP-WD-4: (KEVD or KEVA or KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-\*, SUDC, (SUVP or SUAP or SUOE or SUAO), AUTH, CDST, CDTX, DOCC, DCTX, DJST, NTFY, WDOG, FDRP, LMEM, FAIR, DOST, MDOC, MPHY, JSTY, LOGG, VULH



### 5.3.2 Wireless network interface risk mitigation sets



SP-WL-1: (KEVD or KEVA or KEVT or SCAN), SCFS, SSCA, IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-1, SUDC, (SUVP or SUAP or SUOE or SUAO), AUTH, CDST, CDTX, IDST, DCTX, DJST, (NTFY or WDOG), LMEM, DOST, MDOC, JSTY, LOGG, (RSET or INST or DELE), SDRF, VULH

SP-WL-1: (KEVD or KEVA or KEVT or SCAN), SCFS, SSCA, IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-1, SUDC, (SUVP or SUAP or SUOE or SUAO), AUTH, CDST, DOCC, IDST, DCTX, DJST, (NTFY or WDOG), LMEM, DOST, MDOC, JSTY, LOGG, (RSET or INST or DELE), SDRF, VULH



SP-WL-2: AUTH, KEVD, KEVA, (KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-1, PDDI-4, SUDC, (SUAP or SUAO), AUTH, CDST, CDTX, IDST, DCTX, DJST, (NTFY or WDOG), LMEM, MDOC, MPHY, DOST, JSTY, LOGG, (RSET or INST or DELE), SDRF, VULH

SP-WL-2: AUTH, KEVD, KEVA, (KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-1, PDDI-4, SUDC, (SUAP or SUAO), AUTH, CDST, CDTX, DOCC, IDST, DCTX, DJST, (NTFY or WDOG), LMEM, MDOC, MPHY, DOST, JSTY, LOGG, (RSET or INST or DELE), SDRF, VULH



SP-WL-3: AUTH, KEVD, KEVA, (KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-\*, SUDC, (SUAP or SUAO), AUTH, CDST, CDTX, IDST, DCTX, DJST, (NTFY or WDOG), LMEM, DOST, MDOC, MPHY, JSTY, LOGG, (RSET or INST or DELE), SDRF, VULH

SP-WL-3: AUTH, KEVD, KEVA, (KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), IMSL or (MSAF-\*, MZRO-\*), ADEF, DPAH, PDDI-\*, SUDC, (SUAP or SUAO), AUTH, CDST, CDTX, DOCC, IDST, DCTX, DJST, (NTFY or WDOG), LMEM, DOST, MDOC, MPHY, JSTY, LOGG, (RSET or INST or DELE), SDRF, VULH



### 5.3.3 Virtual network interface risk mitigation sets
@@ -1922,10 +1932,10 @@ Mitigations for Impact: 
Attacker may use network access to get unauthorized access to confidential data transmitted by the product.



| Risk factors | Likelihood | Security profiles            |

|--------------|------------|-------------------|

| LIS = 0      | Low        | WD-\*, VI-1, VI-2 |

|--------------|------------|------------------------------|

| LIS = 0      | Low        | WD-1, WD-2, WD-3, VI-1, VI-2 |

| LIS = 1      | Medium     | WL-1                         |

| LIS = 2      | High       | WL-2, WL-3        |

| LIS = 2      | High       | WD-4, WL-2, WL-3             |



| Risk factors | Impact | Security profiles  |

|--------------|--------|--------------------|
@@ -1933,13 +1943,13 @@ Attacker may use network access to get unauthorized access to confidential data 
| SDT = 1      | Medium | WD-\*, WL-\*, VI-1 |

| SDT = 2      | High   | VI-2               |



Requirements that mitigate this threat: CDTX, DMIN

Requirements that mitigate this threat: CDTX, IDTX, DMIN



Mitigations for Likelihood:



* Medium to Low: CDTX

* Medium to Low: DOCC



* High to Low: CDTX

* High to Low: CDTX, DOCC



Mitigations for Impact:
@@ -2142,7 +2152,7 @@ Security profiles are associated with sets of risk factor levels. 
| SP-WD-1          | 0   | 0   | 0   | 1   | 2   | 0   | 1   | 0   | 1   | 1   | 2   |

| SP-WD-2          | 0   | 0   | 2   | 1   | 1   | 0   | 2   | 0   | 1   | 2   | 1   |

| SP-WD-3          | 1   | 1   | 2   | 1   | 2   | 0   | 1   | 0   | 1   | 1   | 1   |

| SP-WD-4          | 2   | 2   | 2   | 1   | 1   | 0   | 2   | 0   | 1   | 2   | 1   |

| SP-WD-4          | 2   | 2   | 2   | 1   | 1   | 2   | 2   | 0   | 1   | 2   | 1   |



#### C.6.2.2 Wireless network interface security profiles