It is unclear why a selection is needed in this requirement. According to the application note, it is always the case that the default behavior be that Guest VMs can't communicate. This happens by default if there is no mechanism for such communication (first selection), and the second and third selection must be populated with all inter-VM communications mechanisms, so there doesn't seem to be a point in filling them in. Suggest rewriting this element to say "The TSF shall by default enforce a policy prohibiting sharing of data between Guest VMs."
Current element appears to be unnecessarily complex.
It is unclear why a selection is needed in this requirement. According to the application note, it is always the case that the default behavior be that Guest VMs can't communicate. This happens by default if there is no mechanism for such communication (first selection), and the second and third selection must be populated with all inter-VM communications mechanisms, so there doesn't seem to be a point in filling them in. Suggest rewriting this element to say "The TSF shall by default enforce a policy prohibiting sharing of data between Guest VMs."
Current element appears to be unnecessarily complex.