Specifications
S E C U R I T Y T A R G E T D T C O 1 3 8 1 , R e l e a s e 1 . 3 v
Designed by
Date
Department
Released by
Winfried Rogenz
Date
2012-04-25
Department
I CV AM TTS
LR
H
Designation
Security Target DTCO 1381, Release 1.3v
Document
40225345 SPE 000 AB
Version
Pages
30 / 52
Observe
Protection marks for restricting the use of documents and products
(DIN 34: 1998-01)
The copying, distribution and utilization of this document as well as the
communication of its contents to others without expressed authorization
is prohibited. Offenders will be held liable for the payment of damages.
All rights reserved in the event of the grant of a patent, utility model or
ornamental design registration.
Observe
Protection marks for restricting the use of documents and products
(DIN 34: 1998-01)
This SEF includes the following features:
6.2.1 Access control policy
ACC_201
The VU shall manage and check access control rights to functions and to data.
6.2.2 Access rights to functions
ACC_202
The VU shall enforce the mode of operation selection rules (requirements 006 to 009).
requirement 006 in
2
:
The recording equipment shall possess four modes of operation:
-
operational mode,
-
control mode,
-
calibration mode,
-
company mode.
requirement 007/008 in
2
:
see chapter 6.1.2 security enforcing function UIA_214
requirement 009 in
2
:
The recording equipment shall ignore non valid cards inserted, except displaying, printing or
downloading data held on an expired card which shall be possible.
ACC_203
The VU shall use the mode of operation to enforce the functions access control rules
(requirement 010).
requirement 010 in 2 (the functions in the TOE as described in 5.1.2 are the same as
listed in II.2):
All functions listed in II.2. shall work in any mode of operation with the following exceptions:
- the calibration function is accessible in the calibration mode only,
- the time adjustment function is limited when not in the calibration mode,
- the driver manual entries function are accessible in operational or calibration modes only,
- the company locks management function is accessible in the company mode only,
- the monitoring of control activities function is operational in the control mode only,
−
the downloading function is not accessible in the operational mode.
6.2.3 Access rights to data
ACC_204
The VU shall enforce the VU identification data write access rules (requirement 076)
requirement 076 in
2
:
Vehicle unit identification data are recorded and stored once and for all by the vehicle unit manu-