Test 1:
The evaluator shall demonstrate that a valid certificate correctly passes the certificate validation process.
Test 2:
The evaluator shall manipulate the environment in such a way as to inhibit the certification validation process. Once this manipulation is complete, the evaluator shall ensure that the action selected in FIA_X509_EXT.2.2 is performed when a valid certificate is presented. If the selected action is administrator configurable, then the evaluator shall follow the operational guidance to determine that all supported administrator configurable options behave in accordance with their documented operation.
Test 3:
The evaluator shall demonstrate that manually modifying a valid certificate so as to make it invalid, no longer correctly passes the certification validation process.
Consider revising tests per A's recommendations.
Test 1: The evaluator shall demonstrate that a valid certificate correctly passes the certificate validation process. Test 2: The evaluator shall manipulate the environment in such a way as to inhibit the certification validation process. Once this manipulation is complete, the evaluator shall ensure that the action selected in FIA_X509_EXT.2.2 is performed when a valid certificate is presented. If the selected action is administrator configurable, then the evaluator shall follow the operational guidance to determine that all supported administrator configurable options behave in accordance with their documented operation. Test 3: The evaluator shall demonstrate that manually modifying a valid certificate so as to make it invalid, no longer correctly passes the certification validation process.
Or something like that.