diff options
author | Bozawglanian, Hagop (hb755d) <hb755d@att.com> | 2018-09-18 22:53:55 +0000 |
---|---|---|
committer | Bozawglanian, Hagop (hb755d) <hb755d@att.com> | 2018-09-18 22:53:55 +0000 |
commit | eb03327762415dd781dc9479964f90ada26db318 (patch) | |
tree | 619b46d92e54c2b33fd99eba623587c8ce576506 | |
parent | 64e4bb780010224f4d6245e996199eceff172a0c (diff) |
VNFRQTS - Reword and Move Security Batch 3
Including changes for VNFRQTS-373, 424
Issue-ID: VNFRQTS-373
Change-Id: I6b1ab6571552dcccb0f61d4acc8f009e1147b6d6
Signed-off-by: Bozawglanian, Hagop (hb755d) <hb755d@att.com>
-rw-r--r-- | docs/Chapter4/Security.rst | 35 | ||||
-rw-r--r-- | docs/data/needs.json | 20 |
2 files changed, 27 insertions, 28 deletions
diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst index 565cfc3..940f1d7 100644 --- a/docs/Chapter4/Security.rst +++ b/docs/Chapter4/Security.rst @@ -209,16 +209,6 @@ the product’s lifecycle. protocols such as IPSec, AES. .. req:: - :id: R-23135 - :target: VNF - :keyword: MUST - - The VNF **MUST**, if not using the NCSP's IDAM API, - authenticate system to system communications where one system - accesses the resources of another system, and must never conceal - individual accountability. - -.. req:: :id: R-80335 :target: VNF :keyword: MUST @@ -335,14 +325,6 @@ Identity and Access Management Requirements commands relating to VNFs. .. req:: - :id: R-49109 - :target: VNF - :keyword: MUST - - The VNF **MUST** encrypt TCP/IP--HTTPS (e.g., TLS v1.2) - transmission of data on internal and external networks. - -.. req:: :id: R-39562 :target: VNF :keyword: MUST @@ -416,6 +398,15 @@ Identity and Access Management Requirements userID after a configurable number of consecutive unsuccessful authentication attempts using the same userID. +.. req:: + :id: R-23135 + :target: VNF + :keyword: MUST + :updated: casablanca + + The VNF **MUST** authenticate all access to protected GUIs, CLIs, + and APIs. + VNF API Security Requirements ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ @@ -1077,3 +1068,11 @@ applicable to encryption or protocol meethods. validity of a digital certificate by recognizing the identity represented by the certificate - the "distinguished name". +.. req:: + :id: R-49109 + :target: VNF + :keyword: MUST + :updated: casablanca + + The VNF **MUST** support HTTP/S using TLS v1.2 or higher + with strong cryptographic ciphers. diff --git a/docs/data/needs.json b/docs/data/needs.json index 6a68c2e..3b97a8c 100644 --- a/docs/data/needs.json +++ b/docs/data/needs.json @@ -1,5 +1,5 @@ { - "created": "2018-09-18T20:45:19.500298", + "created": "2018-09-18T22:51:58.508439", "current_version": "casablanca", "project": "", "versions": { @@ -21858,7 +21858,7 @@ "needs_amount": 750 }, "casablanca": { - "created": "2018-09-18T20:45:19.500228", + "created": "2018-09-18T22:51:58.508358", "needs": { "R-00011": { "description": "A VNF's Heat Orchestration Template's parameter defined\nin a nested YAML file\n**MUST NOT** have a parameter constraint defined.", @@ -26512,7 +26512,7 @@ "validation_mode": "" }, "R-23135": { - "description": "The VNF **MUST**, if not using the NCSP's IDAM API,\nauthenticate system to system communications where one system\naccesses the resources of another system, and must never conceal\nindividual accountability.", + "description": "The VNF **MUST** authenticate all access to protected GUIs, CLIs,\nand APIs.", "full_title": "", "hide_links": "", "id": "R-23135", @@ -26521,9 +26521,9 @@ "keyword": "MUST", "links": [], "notes": "", - "section_name": "VNF General Security Requirements", + "section_name": "VNF Identity and Access Management Requirements", "sections": [ - "VNF General Security Requirements", + "VNF Identity and Access Management Requirements", "VNF Security" ], "status": null, @@ -26535,7 +26535,7 @@ "title": "", "title_from_content": "", "type_name": "Requirement", - "updated": "", + "updated": "casablanca", "validated_by": "", "validation_mode": "" }, @@ -32070,7 +32070,7 @@ "validation_mode": "" }, "R-49109": { - "description": "The VNF **MUST** encrypt TCP/IP--HTTPS (e.g., TLS v1.2)\ntransmission of data on internal and external networks.", + "description": "The VNF **MUST** support HTTP/S using TLS v1.2 or higher\nwith strong cryptographic ciphers.", "full_title": "", "hide_links": "", "id": "R-49109", @@ -32079,9 +32079,9 @@ "keyword": "MUST", "links": [], "notes": "", - "section_name": "VNF Identity and Access Management Requirements", + "section_name": "VNF Cryptography Requirements", "sections": [ - "VNF Identity and Access Management Requirements", + "VNF Cryptography Requirements", "VNF Security" ], "status": null, @@ -32093,7 +32093,7 @@ "title": "", "title_from_content": "", "type_name": "Requirement", - "updated": "", + "updated": "casablanca", "validated_by": "", "validation_mode": "" }, |