
McAfee Email Gateway
Security Target
Page 30 of 61
a) Minimal: Failure of the activity.
FCS_CKM_EXT.4 Cryptographic key zeroization
Hierarchical to: No other components
Dependencies: [FDP_ITC.1 Import of user data without security attributes, or
FDP_ITC.2 Import of user data with security attributes, or FCS_CKM.1 Cryptographic
key generation]
FCS_CKM_EXT.4.1 The TSF shall zeroize all plaintext secret and private cryptographic keys and
CSPs when no longer required.
5.1.3 Cryptographic operation: random bit generation (FCS_RBG)
Family behaviour
This family is added to the class FCS. This family deals with generation of random bit streams in support
of cryptographic operations
Component levelling
FCS_RBG_EXT.1 requires generation of random bits in accordance with a selected standard.
Management: FCS_RBG_EXT.1
There are no management activities foreseen.
Audit: FCS_RBG_EXT.1
The following actions should be auditable if FAU_GEN Security audit data generation is included in the
PP/ST:
a) Minimal: Failure of the activity.
FCS_RBG_EXT.1 Cryptographic operation: random bit generation
Hierarchical to: No other components
Dependencies: No dependencies
FCS_RBG_EXT.1.1 The TSF shall perform all random bit generation (RBG) services in accordance
with [selection, choose one of: NIST Special Publication 800-90 using [selection:
Hash_DRBG (any), HMAC_DRBG (any), CTR_DRBG (AES), Dual_EC_DRBG (any)];
FIPS Pub 140-2 Annex C: X9.31 Appendix 2.4 using AES] seeded by an entropy
source that accumulated entropy from [selection: a software-based noise source, a
TSF-hardware-based noise source].
FCS_RBG Cryptographic key
management
Komentáře k této Příručce