Add requirement on stack protection flags

commoncriteria / application

Protection Profile for Application Software

The Unlicense

9 stars 3 forks source link

Closed zsmi closed 10 years ago

zsmi commented 10 years ago

Add a requirement on stack protection flags. This may not be captured correctly from the meeting.

bourdett commented 10 years ago

We may decide not to keep it, or re-word it, but i did add FPT_AEX_EXT.1.6 which says...

The application must not subvert stack cookie protections by disabling default compiler options.