kgal
commented
9 years ago After huddling with Jeff, we determined that this is requirement should only be selected(applied) if applications are responsible for updating themselves and not relying on the platform. And so we need to move this to a new section (b/c it's not about signing, its about verifying the signature) and come up with a new identifier.
The assurance activity specified by fpt_tud_ext.1.3 requires that an update or patch be available for the application so that the evaluator can strip the signature, or but an invalid one on. But what if no patch is available?