diff options
| author |   Bozawglanian, Hagop (hb755d) <hb755d@att.com> | 2018-09-18 22:53:55 +0000 |
|---|---|---|
| committer | Bozawglanian, Hagop (hb755d) <hb755d@att.com> | 2018-09-18 22:53:55 +0000 |
| commit | eb03327762415dd781dc9479964f90ada26db318 (patch) | |
| tree | 619b46d92e54c2b33fd99eba623587c8ce576506 /docs/Chapter4 | |
| parent | 64e4bb780010224f4d6245e996199eceff172a0c (diff) | |
VNFRQTS - Reword and Move Security Batch 3
Including changes for VNFRQTS-373, 424
Issue-ID: VNFRQTS-373
Change-Id: I6b1ab6571552dcccb0f61d4acc8f009e1147b6d6
Signed-off-by: Bozawglanian, Hagop (hb755d) <hb755d@att.com>
Diffstat (limited to 'docs/Chapter4')
| -rw-r--r-- | docs/Chapter4/Security.rst | 35 |
1 files changed, 17 insertions, 18 deletions
diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst index 565cfc3..940f1d7 100644 --- a/docs/Chapter4/Security.rst +++ b/docs/Chapter4/Security.rst @@ -209,16 +209,6 @@ the product’s lifecycle. protocols such as IPSec, AES. .. req:: - :id: R-23135 - :target: VNF - :keyword: MUST - - The VNF **MUST**, if not using the NCSP's IDAM API, - authenticate system to system communications where one system - accesses the resources of another system, and must never conceal - individual accountability. - -.. req:: :id: R-80335 :target: VNF :keyword: MUST @@ -335,14 +325,6 @@ Identity and Access Management Requirements commands relating to VNFs. .. req:: - :id: R-49109 - :target: VNF - :keyword: MUST - - The VNF **MUST** encrypt TCP/IP--HTTPS (e.g., TLS v1.2) - transmission of data on internal and external networks. - -.. req:: :id: R-39562 :target: VNF :keyword: MUST @@ -416,6 +398,15 @@ Identity and Access Management Requirements userID after a configurable number of consecutive unsuccessful authentication attempts using the same userID. +.. req:: + :id: R-23135 + :target: VNF + :keyword: MUST + :updated: casablanca + + The VNF **MUST** authenticate all access to protected GUIs, CLIs, + and APIs. + VNF API Security Requirements ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ @@ -1077,3 +1068,11 @@ applicable to encryption or protocol meethods. validity of a digital certificate by recognizing the identity represented by the certificate - the "distinguished name". +.. req:: + :id: R-49109 + :target: VNF + :keyword: MUST + :updated: casablanca + + The VNF **MUST** support HTTP/S using TLS v1.2 or higher + with strong cryptographic ciphers. |