Closed smuellerDD closed 1 year ago
During the Certify request, both supporting documentation IDs are needed. It appears that one was not provided.
After the Certify request is sent, file transfer happens over PGP-encrypted email according to the "usual" CMVP process. At that point it doesn't matter if the file is uploaded to ESV, there is no way to link it to the existing validation in progress.
Test ID: 30.
For the test session, NIST reviewers mentioned that some of the supporting documents are not uploaded into the right places - it is stated that the EAR is not uploaded. Looking at the log on our side I see it uploaded. Allow me to show the log.
Mind especially the file sizes.
MIME type of first file:
POST operation of our client:
Response from server:
2nd document MIME data:
client POST
Report from server:
With this, both files are uploaded to the server to sdId 40042 (EAR) and 40043 (public use document). Can you please help us why the uploads are considered to be inappropriate?