The Application Notes for SFR FPT_VIV_EXT.1 ‘VMM Isolation from VMs’ says “FPT_VIV_EXT.1.2 addresses several specific mechanisms that must not be permitted to bypass the VMM and invoke privileged code on the Platform.
At a minimum, the TSF should enforce the following:
a. On the x86 platform, a virtual System Management Interrupt (SMI) cannot invoke platform System Management Mode (SMM)
b. An attempt to update virtual firmware or virtual BIOS cannot cause physical platform firmware or physical platform BIOS to be modified
c. An attempt to update virtual firmware or virtual BIOS cannot cause the VMM to be modified”
If these 3 items are required, they should be included in the actual text of the SFR element FPT_VIV_EXT.1.2 as Application Notes are not requirements and not tested.
The Application Notes for SFR FPT_VIV_EXT.1 ‘VMM Isolation from VMs’ says “FPT_VIV_EXT.1.2 addresses several specific mechanisms that must not be permitted to bypass the VMM and invoke privileged code on the Platform. At a minimum, the TSF should enforce the following: a. On the x86 platform, a virtual System Management Interrupt (SMI) cannot invoke platform System Management Mode (SMM) b. An attempt to update virtual firmware or virtual BIOS cannot cause physical platform firmware or physical platform BIOS to be modified c. An attempt to update virtual firmware or virtual BIOS cannot cause the VMM to be modified” If these 3 items are required, they should be included in the actual text of the SFR element FPT_VIV_EXT.1.2 as Application Notes are not requirements and not tested.