Suggested clarification to one of the Data Wiping Test Assurance Activities in the HCD SD Final Draft

[ansukert]

What is the change request for the SD? Please describe. A comment against the Final Draft of the HCD SD (Version 0.99 dated 7/29/22) by Ryuichiro Ohya Fuji Film Business Innovation Corp.

1. Section 4.2.1.3 Data Wiping Tests. pg. 78: When cryptographic erase is used for wiping method, in some implementation, an attempt to read data from media in Test 6 might be failed with error. Test 6 requires the evaluator to verify that known text strings or byte array for D.USER and D.TSF are not found on the non-volatile storage media. We’d like to clarify that “not found” can include “failed to read data with errors”.

Add sentences like the bolded text below in the requirement of Test 6. Test 6: The evaluator shall verify that known text strings or byte array for D.USER and D.TSF are not found on the non-volatile storage media. In some cases, cryptographic erase would make unable to read data from the storage media. In that case, “failed to read data with error” can be considered as “not found”. This test may require special tools to be installed on the TOE, or for the storage media to be moved to a separate system equipped with special tools provided by the TOE developer as necessary.

Describe the solution you'd like Implement the text in Test 6 in Section 4,2,1,3 suggested above

Describe alternatives you've considered None

Additional context None