There's a missmatch between the MDF PP and the OS PP with this requirment.
The MDF one has more allowed suites
FCS_COP.1.1(1) The TSF shall perform [encryption/decryption] in accordance with a
specified cryptographic algorithm
AES-CBC (as defined in FIPS PUB 197, and NIST SP 800-38A) mode,
AES-CCMP (as defined in FIPS PUB 197, NIST SP 800-38C and IEEE 802.11-
2012), and
[selection:
AES Key Wrap (KW) (as defined in NIST SP 800-38F),
AES Key Wrap with Padding (KWP) (as defined in NIST SP 800-38F),
AES-GCM (as defined in NIST SP 800-38D),
AES-CCM (as defined in NIST SP 800-38C),
AES-XTS (as defined in NIST SP 800-38E) mode,
AES-CCMP-256 (as defined in NIST SP800-38C and IEEE 802.11ac-2013),
AES-GCMP-256 (as defined in NIST SP800-38D and IEEE 802.11ac-2013),
no other modes]
But the OS PP only has
The OS shall perform encryption/decryption in accordance with a specified cryptographic algorithm
AES-CBC (as defined in NIST SP 800-38A) mode;
and [selection:
AES-GCM (as defined in NIST SP 800-38D),
no other modes
] and cryptographic key sizes 128-bit key sizes and [selection: 256-bit key sizes, no other key sizes] .
There's a missmatch between the MDF PP and the OS PP with this requirment.
The MDF one has more allowed suites FCS_COP.1.1(1) The TSF shall perform [encryption/decryption] in accordance with a specified cryptographic algorithm AES-CBC (as defined in FIPS PUB 197, and NIST SP 800-38A) mode, AES-CCMP (as defined in FIPS PUB 197, NIST SP 800-38C and IEEE 802.11- 2012), and [selection: AES Key Wrap (KW) (as defined in NIST SP 800-38F), AES Key Wrap with Padding (KWP) (as defined in NIST SP 800-38F), AES-GCM (as defined in NIST SP 800-38D), AES-CCM (as defined in NIST SP 800-38C), AES-XTS (as defined in NIST SP 800-38E) mode, AES-CCMP-256 (as defined in NIST SP800-38C and IEEE 802.11ac-2013), AES-GCMP-256 (as defined in NIST SP800-38D and IEEE 802.11ac-2013), no other modes]
But the OS PP only has
The OS shall perform encryption/decryption in accordance with a specified cryptographic algorithm
AES-CBC (as defined in NIST SP 800-38A) mode; and [selection: AES-GCM (as defined in NIST SP 800-38D), no other modes ] and cryptographic key sizes 128-bit key sizes and [selection: 256-bit key sizes, no other key sizes] .
Is there a reason for this?