summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorBozawglanian, Hagop (hb755d) <hagop.bozawglanian@att.com>2018-10-29 20:20:14 +0000
committerBozawglanian, Hagop (hb755d) <hagop.bozawglanian@att.com>2018-10-29 20:20:14 +0000
commit0effc05550d4cdaf94fe6c921a7c11ae9d3f41bc (patch)
tree83df7d76b2dcc5540e0d07ffd97de220c6b2277f
parent454be43060ce9e5d00ec60f990887a76df067297 (diff)
VNFRQTS - Reword Security Req SECCOM 2
Contains changes for VNFRQTS-360, 383, 386, 401, 381 Issue-ID: VNFRQTS-360 Change-Id: I38c9857290c0488cd66ba54670c81c8cde100636 Signed-off-by: Bozawglanian, Hagop (hb755d) <hagop.bozawglanian@att.com>
-rw-r--r--docs/Chapter4/Security.rst27
-rw-r--r--docs/data/needs.json20
2 files changed, 26 insertions, 21 deletions
diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst
index 114772b..f075d65 100644
--- a/docs/Chapter4/Security.rst
+++ b/docs/Chapter4/Security.rst
@@ -314,11 +314,13 @@ Identity and Access Management Requirements
:id: R-81147
:target: VNF
:keyword: MUST
+ :updated: casablanca
- The VNF **MUST** have greater restrictions for access and
- execution, such as up to 3 factors of authentication and restricted
- authorization, for commands affecting network services, such as
- commands relating to VNFs.
+ The VNF **MUST** support strong authentication, also known as
+ multifactor authentication, on all protected interfaces exposed by the
+ VNF for use by human users. Strong authentication uses at least two of the
+ three different types of authentication factors in order to prove the
+ claimed identity of a user.
.. req::
:id: R-39562
@@ -552,9 +554,11 @@ Security Analytics Requirements
:id: R-22367
:target: VNF
:keyword: MUST
+ :updated: casablanca
- The VNF **MUST** support detection of malformed packets due to
- software misconfiguration or software vulnerability.
+ The VNF **MUST** support detection of malformed packets due to software
+ misconfiguration or software vulnerability, and generate an error to the
+ syslog console facility.
.. req::
:id: R-73223
@@ -570,11 +574,11 @@ Security Analytics Requirements
.. req::
:id: R-58370
:target: VNF
- :keyword: MUST
+ :keyword: SHOULD
:updated: casablanca
- The VNF **MUST** operate with anti-virus software which produces
- alarms every time a virus is detected.
+ The VNF **SHOULD** operate with anti-virus software which produces alarms
+ every time a virus is detected.
.. req::
:id: R-56920
@@ -813,9 +817,10 @@ Security Analytics Requirements
:id: R-54816
:target: VNF
:keyword: MUST
+ :updated: casablanca
- The VNF **MUST** support the storage of security audit logs
- for agreed period of time for forensic analysis.
+ The VNF **MUST** support the storage of security audit logs for a
+ configurable period of time.
.. req::
:id: R-84160
diff --git a/docs/data/needs.json b/docs/data/needs.json
index 1c76f73..2893a68 100644
--- a/docs/data/needs.json
+++ b/docs/data/needs.json
@@ -1,5 +1,5 @@
{
- "created": "2018-10-29T17:25:21.283162",
+ "created": "2018-10-29T20:10:50.087477",
"current_version": "casablanca",
"project": "",
"versions": {
@@ -21858,7 +21858,7 @@
"needs_amount": 750
},
"casablanca": {
- "created": "2018-10-29T17:25:21.283084",
+ "created": "2018-10-29T20:10:50.087392",
"needs": {
"R-00011": {
"description": "A VNF's Heat Orchestration Template's parameter defined\nin a nested YAML file\n**MUST NOT** have a parameter constraint defined.",
@@ -26482,7 +26482,7 @@
"validation_mode": "static"
},
"R-22367": {
- "description": "The VNF **MUST** support detection of malformed packets due to\nsoftware misconfiguration or software vulnerability.",
+ "description": "The VNF **MUST** support detection of malformed packets due to software\nmisconfiguration or software vulnerability, and generate an error to the\nsyslog console facility.",
"full_title": "",
"hide_links": "",
"id": "R-22367",
@@ -26505,7 +26505,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
@@ -33929,7 +33929,7 @@
"validation_mode": ""
},
"R-54816": {
- "description": "The VNF **MUST** support the storage of security audit logs\nfor agreed period of time for forensic analysis.",
+ "description": "The VNF **MUST** support the storage of security audit logs for a\nconfigurable period of time.",
"full_title": "",
"hide_links": "",
"id": "R-54816",
@@ -33952,7 +33952,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
@@ -34692,13 +34692,13 @@
"validation_mode": ""
},
"R-58370": {
- "description": "The VNF **MUST** operate with anti-virus software which produces\nalarms every time a virus is detected.",
+ "description": "The VNF **SHOULD** operate with anti-virus software which produces alarms\nevery time a virus is detected.",
"full_title": "",
"hide_links": "",
"id": "R-58370",
"impacts": "",
"introduced": "",
- "keyword": "MUST",
+ "keyword": "SHOULD",
"links": [],
"notes": "",
"section_name": "VNF Security Analytics Requirements",
@@ -38931,7 +38931,7 @@
"validation_mode": ""
},
"R-81147": {
- "description": "The VNF **MUST** have greater restrictions for access and\nexecution, such as up to 3 factors of authentication and restricted\nauthorization, for commands affecting network services, such as\ncommands relating to VNFs.",
+ "description": "The VNF **MUST** support strong authentication, also known as\nmultifactor authentication, on all protected interfaces exposed by the\nVNF for use by human users. Strong authentication uses at least two of the\nthree different types of authentication factors in order to prove the\nclaimed identity of a user.",
"full_title": "",
"hide_links": "",
"id": "R-81147",
@@ -38954,7 +38954,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},