Installation guide

Motorola WS5100 Wireless Switch and RFS7000 RF Switch Security Target

Page 76 of 85

Explicit Requirement

Identifier Rationale

FCS_BCM_EXP.1 Baseline

cryptographic

module

This explicit requirement is necessary since the CC does

not provide a means to specify a cryptographic baseline

of implementation.

FCS_CKM_EXP.2 Cryptographic

key handling

and storage

This explicit requirement is necessary since the CC does

not specifically provide components for key handling and

storage.

FCS_COP_EXP.1 Random

number

generation

This explicit requirement is necessary since the CC

cryptographic operation components address only

specific algorithm types and operations requiring specific

key sizes. FCS_COP_EXP.1 requires FIPS approved

random number generation to be used for all

cryptographic functionalities, while FCS_CKM.1 is limited

to cryptographic key generation.

FCS_COP_EXP.2 Cryptographic

Operation

This explicit requirement is necessary because it

describes requirements for a cryptomodule rather than

the entire TSF.

FDP_PUD_EXP.1 Protection of

User Data

This explicit requirement is necessary because the

Common Criteria IFC/AFC requirements do not

accommodate access control policies that are not

object/attribute based. The FDP_PUP_EXP.1

requirement allows the administrator allow or disallow

access based upon an administrator setting indicating

whether or not unencrypted data may transit the wireless

LAN.