This TS provides a Security Problem Definition to describe the functionality of a TOE accepting patches. Alongside, it provides an optional set of SFRs to implement the security objectives for the TOE, and a new assurance family, ALC_PAM that intends to increase the assurance on the patches generated by the developer even when they have not being evaluated. Finally, the TS describes some options for Certification Bodies and evaluation authorities willing to take advantage of the additional assurance provided in TOEs evaluated using the elements provided in this TS.
Status : Under development
Edition : 1
Technical Committee:Information security, cybersecurity and privacy protection