diff options
author | Hagop Bozawglanian <hagop.bozawglanian@att.com> | 2019-09-17 18:43:44 +0000 |
---|---|---|
committer | Hagop Bozawglanian <hagop.bozawglanian@att.com> | 2019-09-17 18:43:44 +0000 |
commit | 1e870d8b227d8ff95d8e64cb65174f8ef86398f7 (patch) | |
tree | d9936440f494cd20dc742b850dc83933fe4dc0cd /docs/Chapter7/Monitoring-And-Management.rst | |
parent | 2d9a6ffa96031c42b6e9206b5d6d169838756e7e (diff) |
VNFRQTS - Security batch 2
Issue-ID: VNFRQTS-694
Signed-off-by: Hagop Bozawglanian <hagop.bozawglanian@att.com>
Change-Id: I3711d6fb2aef514f99526282e36c6ebd4d890506
Diffstat (limited to 'docs/Chapter7/Monitoring-And-Management.rst')
-rwxr-xr-x | docs/Chapter7/Monitoring-And-Management.rst | 41 |
1 files changed, 41 insertions, 0 deletions
diff --git a/docs/Chapter7/Monitoring-And-Management.rst b/docs/Chapter7/Monitoring-And-Management.rst index e6886aa..6dc8d4b 100755 --- a/docs/Chapter7/Monitoring-And-Management.rst +++ b/docs/Chapter7/Monitoring-And-Management.rst @@ -956,6 +956,47 @@ Security Note: In one-way TLS authentication, the client (VNF or PNF) must authentication the server (DCAE) certificate. +.. req:: + :id: R-55634 + :target: VNF or PNF + :keyword: MUST + :introduced: el alto + + If VNF or PNF is using Basic Authentication, then the VNF or PNF + **MUST** be in compliance with + `RFC7617 <https://tools.ietf.org/html/rfc7617>`_ for authenticating HTTPS + connections to the DCAE VES Event Listener. + +.. req:: + :id: R-43387 + :target: VNF or PNF + :keyword: MUST + :introduced: el alto + + If the VNF or PNF is using Certificate Authentication, the + VNF or PNF **MUST** support mutual TLS authentication and the Subject + Name in the end-entity certificate MUST be used according to + `RFC5280 <https://tools.ietf.org/html/rfc5280>`_. + + Note: In mutual TLS authentication, the client (VNF or PNF) must + authenticate the server (DCAE) certificate and must provide its own + X.509v3 end-entity certificate to the server for authentication. + +.. req:: + :id: R-33878 + :target: VNF or PNF + :keyword: MUST + :introduced: el alto + + The VNF or PNF **MUST** support one of the following authentication + methods for authenticating HTTPS connections to the DCAE VES Event + Listener: + + - The preferred method is Certificate Authentication + + - The non-preferred option is Basic Authentication. + + Bulk Performance Measurement ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |