Consistency Rationale - commoncriteria/pp-template GitHub Wiki

20 December 2023 (draft)

Consistency Rationale for PP-Modules

From CC:2022, Part 1, Rev.1, Sec. C.2.2.3, p. 139:

The PP-Module shall provide a consistency rationale with respect to its PP-Module Base.

If the PP-Module specifies alternative PP-Module Bases, the PP-Module shall provide as many consistency rationales as the number of alternative PP-Module Bases.

The consistency analysis for each PP-Module Base shall be performed on the TOE type, the SPD, the objectives, and the SFRs. At the end, the goal is to demonstrate that a TOE can meet the TOE type descriptions provided in the PP-Module Base and in the PP-Module and satisfy all the SFRs specified in the PP-Module and its PP-Module Base. The consistency rationale shall demonstrate that the unions of SPDs, objectives, and SFRs defined in the PP-Module and in its PP-Module Base do not lead to a contradiction.

The consistency rationale may use correspondence tables between SPD/objectives/SFRs together with textual justifications.

For PP-Modules, the framework generates a Consistency Rationale section for each Base PP. Each of these sections contains the following information:

Consistency of TOE Type

Consistency of Security Problem Definition

Consistency of Objectives

Consistency of Requirements

This section consists of a table listing all the requirements that apply to the Base PP, including Modified and Additional SFRs, as well as the new requirements introduced by the PP-Module. Each SFR is displayed alongside the contents of the <consistency-rationale> that was defined within the <f-component>.

Consistency Rationale for PP-Configurations