Closed robertmclemons closed 3 years ago
Support for AES-CTR has been added back in. And the previously missing EA has been added as well. The new FP for SSH will not include an AES-CTR requirement since non-SSH requirements are not allowed in FPs. So all PPs and modules that include the SSH package must support AES-CTR in their FCS_COPs.
Add back the following selection: AES-CTR (as defined in NIST SP 800-38A) mode
The AES-CTR cryptographic algorithm appears to have been lost (it was present in version 1.0 of the PP). Note that although the SSH PP specifies AES-CTR, that cryptographic algorithm applies to more than just ssh, so it shouldn't be deleted just because it is listed in the SSH PP for example.