VNFRQTS - Security logging requirements

Change-Id: I68dd17f5930c65961f25fd49e790a44f095dfd2d Issue-ID: VNFRQTS-443 Signed-off-by: Lovett, Trevor (tl2972) <tl2972@att.com>
author: Lovett, Trevor (tl2972) <tl2972@att.com> 2018-09-21 09:37:21 -0500
committer: Lovett, Trevor (tl2972) <tl2972@att.com> 2018-09-21 09:47:01 -0500
commit: 3be95938727c72a4a36c66ff756c759c79439671 (patch)
tree: d9e728ec12cb82edfd544de20f5d6bfe892c3a04 /docs/Chapter4/Security.rst
parent: 80801137ba1fc23baddce99242ae67e1c71068fb (diff)
1 files changed, 13 insertions, 2 deletions
diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst
index 940f1d7..9b4f5f7 100644
--- a/docs/Chapter4/Security.rst
+++ b/docs/Chapter4/Security.rst
@@ -246,6 +246,17 @@ the product’s lifecycle.
 
     The VNF **MUST NOT** allow vendor access to VNFs remotely.
 
+.. req::
+   :id: R-638682
+   :target: VNF
+   :keyword: MUST
+   :introduced: casablanca
+   :validation_mode: in_service
+
+   The VNF **MUST** log any security event required by the VNF Requirements to
+   Syslog using LOG_AUTHPRIV for any event that would contain sensitive
+   information and LOG_AUTH for all other relevant events.
+
 VNF Identity and Access Management Requirements
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
@@ -288,10 +299,10 @@ Identity and Access Management Requirements
 .. req::
     :id: R-59391
     :target: VNF
-    :keyword: MUST
+    :keyword: MUST NOT
     :updated: casablanca
 
-    The VNF MUST NOT not allow the assumption of the permissions of
+    The VNF **MUST NOT** not allow the assumption of the permissions of
     another account to mask individual accountability.
 
 .. req::
author	Lovett, Trevor (tl2972) <tl2972@att.com>	2018-09-21 09:37:21 -0500
committer	Lovett, Trevor (tl2972) <tl2972@att.com>	2018-09-21 09:47:01 -0500
commit	3be95938727c72a4a36c66ff756c759c79439671 (patch)
tree	d9e728ec12cb82edfd544de20f5d6bfe892c3a04 /docs/Chapter4/Security.rst
parent	80801137ba1fc23baddce99242ae67e1c71068fb (diff)