Loading EN-304-625.md +13 −100 Original line number Diff line number Diff line Loading @@ -705,7 +705,7 @@ If automatable and freely-usable vulnerability scanners are available for the pr #### 5.2.X.x Mapping of mitigations to risk factors and security profiles Not all mitigations apply to all security profiles. See Annex C.4. See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-SSDD**: Secure design and development Loading Loading @@ -787,17 +787,7 @@ All security-relevant firmware and software shall be compiled with secure compil #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|------------------------------------| | NET < 1 | SCFS | | NET < 2 | SCFS, SSCA | | NET > 1 | SCFS, SCCA, (FZ95 or BTIN or IMSL) | | Security Profile | Requires mitigations | |------------------|------------------------------------| | WD-1, VI-1 | SCFS | | WL-1 | SCFS, SSCA | | all others | SCFS, SSCA, (FZ95 or BTIN or IMSL) | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-LMII**: Limit incident impact Loading Loading @@ -863,15 +853,7 @@ The product shall zero-initialize all heap memory before use. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |-----------------------|----------------------------| | SFT < 1 & NET < 1 | None | | all others | IMSL or (MSAF-\*, MZRO-\*) | | Security Profile | Requires mitigations | |------------------|----------------------------| | WD-1 | None | | all others | IMSL or (MSAF-\*, MZRO-\*) | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-SDEF**: Secure by default configuration Loading Loading @@ -1032,7 +1014,7 @@ The technical documentation provided with the product shall document that the op #### 5.2.X.x Mapping of mitigations to risk factors and security profiles TODO See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-AUTH**: Authentication and access control Loading Loading @@ -1066,15 +1048,7 @@ Guidance: Data may be protected by the environment, permissions, encryption, sal #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |-------------------|----------------------| | SDS < 1 & COM < 2 | none | | all others | CDST | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI-\* | CDST | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-CDTX**: Confidentiality of data transmitted by product Loading Loading @@ -1104,15 +1078,7 @@ Guidance: Data transmitted may be protected by the environment or encryption. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------------------------|----------------------| | (NET < 1 & LIS < 1) or SDT < 1 | none | | all others | CDTX | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-1, VI-1 | none | | all others | CDTX | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-CRYP**: Encryption Loading Loading @@ -1160,17 +1126,7 @@ The product shall detect corruption of the data stored on the product. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | SDS < 1 | none | | SDS < 2 | IDST | | all others | IDST, DCST | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI-1 | IDST | | VI-2 | IDST, DCST | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-IDTX**: Integrity of data transmitted by the product Loading Loading @@ -1198,7 +1154,7 @@ The product shall detect corruption of the data transmitted by the product. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles All mitigations are required for all products. See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-DMIN**: Loading @@ -1224,15 +1180,7 @@ All sources of data processed by the product in its secure-by-default configurat #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |------------------------|----------------------| | max(SDS, SDT, FUN) < 2 | none | | all others | DJST | | Security Profile | Requires mitigations | |-------------------------|----------------------| | WD-1, WD-3, WL-\*, VI-1 | none | | WD-2, WD-4, VI-2 | DJST | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X.x **TR-AVAI**: Availability Loading Loading @@ -1264,16 +1212,7 @@ The product shall implement a mechanism to notify the host system when it detect #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | FUN < 1 | none | | FUN < 2 | NTFY or WDOG | | all others | WDOG | | Security Profile | Requires mitigations | |-------------------------|----------------------| | WD-1, WD-3, WL-\*, VI-1 | NTFY or WDOG | | WD-2, WD-4, VI-2 | WDOG | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-LMAS**: Minimize exposed interfaces Loading @@ -1299,15 +1238,7 @@ All exposed interfaces on the product in any state that is part of its reasonabl #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |------------------------|----------------------| | max(PHY, SFT, NET) < 1 | none | | all others | JSTY | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-1 | none | | all others | JSTY | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-LOGG**: Logging and monitoring Loading Loading @@ -1401,15 +1332,7 @@ The product shall reset to its secure-by-default state after the secure deletion #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | SDS < 1 | none | | any | RSET or INST or DELE | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI=\* | RSET or INST or DELE | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-SDTR**: Secure data read and transfer Loading Loading @@ -1455,17 +1378,7 @@ If the product provides a method to transfer data and settings to another produc #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | SDS < 1 | none | | SDS < 2 | SDRF | | all others | SDRF, SDTR | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI-1 | SDRF | | VI-2 | SDRF, SDTR | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-VULH**: Loading Loading
EN-304-625.md +13 −100 Original line number Diff line number Diff line Loading @@ -705,7 +705,7 @@ If automatable and freely-usable vulnerability scanners are available for the pr #### 5.2.X.x Mapping of mitigations to risk factors and security profiles Not all mitigations apply to all security profiles. See Annex C.4. See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-SSDD**: Secure design and development Loading Loading @@ -787,17 +787,7 @@ All security-relevant firmware and software shall be compiled with secure compil #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|------------------------------------| | NET < 1 | SCFS | | NET < 2 | SCFS, SSCA | | NET > 1 | SCFS, SCCA, (FZ95 or BTIN or IMSL) | | Security Profile | Requires mitigations | |------------------|------------------------------------| | WD-1, VI-1 | SCFS | | WL-1 | SCFS, SSCA | | all others | SCFS, SSCA, (FZ95 or BTIN or IMSL) | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-LMII**: Limit incident impact Loading Loading @@ -863,15 +853,7 @@ The product shall zero-initialize all heap memory before use. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |-----------------------|----------------------------| | SFT < 1 & NET < 1 | None | | all others | IMSL or (MSAF-\*, MZRO-\*) | | Security Profile | Requires mitigations | |------------------|----------------------------| | WD-1 | None | | all others | IMSL or (MSAF-\*, MZRO-\*) | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-SDEF**: Secure by default configuration Loading Loading @@ -1032,7 +1014,7 @@ The technical documentation provided with the product shall document that the op #### 5.2.X.x Mapping of mitigations to risk factors and security profiles TODO See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-AUTH**: Authentication and access control Loading Loading @@ -1066,15 +1048,7 @@ Guidance: Data may be protected by the environment, permissions, encryption, sal #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |-------------------|----------------------| | SDS < 1 & COM < 2 | none | | all others | CDST | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI-\* | CDST | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-CDTX**: Confidentiality of data transmitted by product Loading Loading @@ -1104,15 +1078,7 @@ Guidance: Data transmitted may be protected by the environment or encryption. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------------------------|----------------------| | (NET < 1 & LIS < 1) or SDT < 1 | none | | all others | CDTX | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-1, VI-1 | none | | all others | CDTX | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-CRYP**: Encryption Loading Loading @@ -1160,17 +1126,7 @@ The product shall detect corruption of the data stored on the product. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | SDS < 1 | none | | SDS < 2 | IDST | | all others | IDST, DCST | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI-1 | IDST | | VI-2 | IDST, DCST | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-IDTX**: Integrity of data transmitted by the product Loading Loading @@ -1198,7 +1154,7 @@ The product shall detect corruption of the data transmitted by the product. #### 5.2.X.x Mapping of mitigations to risk factors and security profiles All mitigations are required for all products. See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-DMIN**: Loading @@ -1224,15 +1180,7 @@ All sources of data processed by the product in its secure-by-default configurat #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |------------------------|----------------------| | max(SDS, SDT, FUN) < 2 | none | | all others | DJST | | Security Profile | Requires mitigations | |-------------------------|----------------------| | WD-1, WD-3, WL-\*, VI-1 | none | | WD-2, WD-4, VI-2 | DJST | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X.x **TR-AVAI**: Availability Loading Loading @@ -1264,16 +1212,7 @@ The product shall implement a mechanism to notify the host system when it detect #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | FUN < 1 | none | | FUN < 2 | NTFY or WDOG | | all others | WDOG | | Security Profile | Requires mitigations | |-------------------------|----------------------| | WD-1, WD-3, WL-\*, VI-1 | NTFY or WDOG | | WD-2, WD-4, VI-2 | WDOG | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-LMAS**: Minimize exposed interfaces Loading @@ -1299,15 +1238,7 @@ All exposed interfaces on the product in any state that is part of its reasonabl #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |------------------------|----------------------| | max(PHY, SFT, NET) < 1 | none | | all others | JSTY | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-1 | none | | all others | JSTY | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-LOGG**: Logging and monitoring Loading Loading @@ -1401,15 +1332,7 @@ The product shall reset to its secure-by-default state after the secure deletion #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | SDS < 1 | none | | any | RSET or INST or DELE | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI=\* | RSET or INST or DELE | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-SDTR**: Secure data read and transfer Loading Loading @@ -1455,17 +1378,7 @@ If the product provides a method to transfer data and settings to another produc #### 5.2.X.x Mapping of mitigations to risk factors and security profiles | Risk factors | Requires mitigations | |--------------|----------------------| | SDS < 1 | none | | SDS < 2 | SDRF | | all others | SDRF, SDTR | | Security Profile | Requires mitigations | |------------------|----------------------| | WD-\* | none | | WL-\*, VI-1 | SDRF | | VI-2 | SDRF, SDTR | See Section 5.3 for which mitigations are necessary for which security profiles and Annex C.4 for the rationale. ### 5.2.X **TR-VULH**: Loading
