diff options
author | Bozawglanian, Hagop (hb755d) <hagop.bozawglanian@att.com> | 2018-10-29 20:20:14 +0000 |
---|---|---|
committer | Bozawglanian, Hagop (hb755d) <hagop.bozawglanian@att.com> | 2018-10-29 20:20:14 +0000 |
commit | 0effc05550d4cdaf94fe6c921a7c11ae9d3f41bc (patch) | |
tree | 83df7d76b2dcc5540e0d07ffd97de220c6b2277f | |
parent | 454be43060ce9e5d00ec60f990887a76df067297 (diff) |
VNFRQTS - Reword Security Req SECCOM 2
Contains changes for VNFRQTS-360, 383, 386, 401, 381
Issue-ID: VNFRQTS-360
Change-Id: I38c9857290c0488cd66ba54670c81c8cde100636
Signed-off-by: Bozawglanian, Hagop (hb755d) <hagop.bozawglanian@att.com>
-rw-r--r-- | docs/Chapter4/Security.rst | 27 | ||||
-rw-r--r-- | docs/data/needs.json | 20 |
2 files changed, 26 insertions, 21 deletions
diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst index 114772b..f075d65 100644 --- a/docs/Chapter4/Security.rst +++ b/docs/Chapter4/Security.rst @@ -314,11 +314,13 @@ Identity and Access Management Requirements :id: R-81147 :target: VNF :keyword: MUST + :updated: casablanca - The VNF **MUST** have greater restrictions for access and - execution, such as up to 3 factors of authentication and restricted - authorization, for commands affecting network services, such as - commands relating to VNFs. + The VNF **MUST** support strong authentication, also known as + multifactor authentication, on all protected interfaces exposed by the + VNF for use by human users. Strong authentication uses at least two of the + three different types of authentication factors in order to prove the + claimed identity of a user. .. req:: :id: R-39562 @@ -552,9 +554,11 @@ Security Analytics Requirements :id: R-22367 :target: VNF :keyword: MUST + :updated: casablanca - The VNF **MUST** support detection of malformed packets due to - software misconfiguration or software vulnerability. + The VNF **MUST** support detection of malformed packets due to software + misconfiguration or software vulnerability, and generate an error to the + syslog console facility. .. req:: :id: R-73223 @@ -570,11 +574,11 @@ Security Analytics Requirements .. req:: :id: R-58370 :target: VNF - :keyword: MUST + :keyword: SHOULD :updated: casablanca - The VNF **MUST** operate with anti-virus software which produces - alarms every time a virus is detected. + The VNF **SHOULD** operate with anti-virus software which produces alarms + every time a virus is detected. .. req:: :id: R-56920 @@ -813,9 +817,10 @@ Security Analytics Requirements :id: R-54816 :target: VNF :keyword: MUST + :updated: casablanca - The VNF **MUST** support the storage of security audit logs - for agreed period of time for forensic analysis. + The VNF **MUST** support the storage of security audit logs for a + configurable period of time. .. req:: :id: R-84160 diff --git a/docs/data/needs.json b/docs/data/needs.json index 1c76f73..2893a68 100644 --- a/docs/data/needs.json +++ b/docs/data/needs.json @@ -1,5 +1,5 @@ { - "created": "2018-10-29T17:25:21.283162", + "created": "2018-10-29T20:10:50.087477", "current_version": "casablanca", "project": "", "versions": { @@ -21858,7 +21858,7 @@ "needs_amount": 750 }, "casablanca": { - "created": "2018-10-29T17:25:21.283084", + "created": "2018-10-29T20:10:50.087392", "needs": { "R-00011": { "description": "A VNF's Heat Orchestration Template's parameter defined\nin a nested YAML file\n**MUST NOT** have a parameter constraint defined.", @@ -26482,7 +26482,7 @@ "validation_mode": "static" }, "R-22367": { - "description": "The VNF **MUST** support detection of malformed packets due to\nsoftware misconfiguration or software vulnerability.", + "description": "The VNF **MUST** support detection of malformed packets due to software\nmisconfiguration or software vulnerability, and generate an error to the\nsyslog console facility.", "full_title": "", "hide_links": "", "id": "R-22367", @@ -26505,7 +26505,7 @@ "title": "", "title_from_content": "", "type_name": "Requirement", - "updated": "", + "updated": "casablanca", "validated_by": "", "validation_mode": "" }, @@ -33929,7 +33929,7 @@ "validation_mode": "" }, "R-54816": { - "description": "The VNF **MUST** support the storage of security audit logs\nfor agreed period of time for forensic analysis.", + "description": "The VNF **MUST** support the storage of security audit logs for a\nconfigurable period of time.", "full_title": "", "hide_links": "", "id": "R-54816", @@ -33952,7 +33952,7 @@ "title": "", "title_from_content": "", "type_name": "Requirement", - "updated": "", + "updated": "casablanca", "validated_by": "", "validation_mode": "" }, @@ -34692,13 +34692,13 @@ "validation_mode": "" }, "R-58370": { - "description": "The VNF **MUST** operate with anti-virus software which produces\nalarms every time a virus is detected.", + "description": "The VNF **SHOULD** operate with anti-virus software which produces alarms\nevery time a virus is detected.", "full_title": "", "hide_links": "", "id": "R-58370", "impacts": "", "introduced": "", - "keyword": "MUST", + "keyword": "SHOULD", "links": [], "notes": "", "section_name": "VNF Security Analytics Requirements", @@ -38931,7 +38931,7 @@ "validation_mode": "" }, "R-81147": { - "description": "The VNF **MUST** have greater restrictions for access and\nexecution, such as up to 3 factors of authentication and restricted\nauthorization, for commands affecting network services, such as\ncommands relating to VNFs.", + "description": "The VNF **MUST** support strong authentication, also known as\nmultifactor authentication, on all protected interfaces exposed by the\nVNF for use by human users. Strong authentication uses at least two of the\nthree different types of authentication factors in order to prove the\nclaimed identity of a user.", "full_title": "", "hide_links": "", "id": "R-81147", @@ -38954,7 +38954,7 @@ "title": "", "title_from_content": "", "type_name": "Requirement", - "updated": "", + "updated": "casablanca", "validated_by": "", "validation_mode": "" }, |