summaryrefslogtreecommitdiffstats
path: root/docs/data
diff options
context:
space:
mode:
Diffstat (limited to 'docs/data')
-rw-r--r--docs/data/needs.json54
1 files changed, 27 insertions, 27 deletions
diff --git a/docs/data/needs.json b/docs/data/needs.json
index 8388790..2d38372 100644
--- a/docs/data/needs.json
+++ b/docs/data/needs.json
@@ -1,5 +1,5 @@
{
- "created": "2018-09-06T17:45:18.112660",
+ "created": "2018-09-07T19:37:09.602325",
"current_version": "casablanca",
"project": "",
"versions": {
@@ -21858,7 +21858,7 @@
"needs_amount": 750
},
"casablanca": {
- "created": "2018-09-06T17:45:18.112581",
+ "created": "2018-09-07T19:37:09.602183",
"needs": {
"R-00011": {
"description": "A VNF's Heat Orchestration Template's Nested YAML files\nparameter's **MUST NOT** have a parameter constraint defined.",
@@ -25429,18 +25429,18 @@
"validation_mode": ""
},
"R-19082": {
- "description": "The VNF **MUST NOT** run security testing tools and\nprograms, e.g., password cracker, port scanners, hacking tools\nin production, without authorization of the VNF system owner.",
+ "description": "The VNF **MUST** allow the Operator to disable or remove any security\ntesting tools or programs included in the VNF, e.g., password cracker,\nport scanner.",
"full_title": "",
"hide_links": "",
"id": "R-19082",
"impacts": "",
"introduced": "",
- "keyword": "MUST NOT",
+ "keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF Identity and Access Management Requirements",
+ "section_name": "VNF General Security Requirements",
"sections": [
- "VNF Identity and Access Management Requirements",
+ "VNF General Security Requirements",
"VNF Security"
],
"status": null,
@@ -25452,7 +25452,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
@@ -29044,7 +29044,7 @@
"validation_mode": ""
},
"R-34552": {
- "description": "The VNF **MUST** provide or support the Identity and Access\nManagement (IDAM) based threat detection data for OWASP Top 10.",
+ "description": "The VNF **MUST** be implemented so that it is not vulnerable to OWASP\nTop 10 web application security risks.",
"full_title": "",
"hide_links": "",
"id": "R-34552",
@@ -29053,9 +29053,9 @@
"keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF Identity and Access Management Requirements",
+ "section_name": "VNF Security Analytics Requirements",
"sections": [
- "VNF Identity and Access Management Requirements",
+ "VNF Security Analytics Requirements",
"VNF Security"
],
"status": null,
@@ -29067,7 +29067,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
@@ -31943,7 +31943,7 @@
"validation_mode": ""
},
"R-47204": {
- "description": "The VNF **MUST** protect the confidentiality and integrity of\ndata at rest and in transit from unauthorized access and modification.",
+ "description": "The VNF **MUST** be capable of protecting the confidentiality and integrity\nof data at rest and in transit from unauthorized access and modification.",
"full_title": "",
"hide_links": "",
"id": "R-47204",
@@ -31952,9 +31952,9 @@
"keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF API Security Requirements",
+ "section_name": "VNF Data Protection Requirements",
"sections": [
- "VNF API Security Requirements",
+ "VNF Data Protection Requirements",
"VNF Security"
],
"status": null,
@@ -31966,7 +31966,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
@@ -37118,7 +37118,7 @@
"validation_mode": ""
},
"R-75041": {
- "description": "The VNF **MUST**, if not using the NCSP's IDAM API, expire\npasswords at regular configurable intervals.",
+ "description": "The VNF **MUST**, if not integrated the Operator's Identity and Access\nManagement system, support configurable password expiration.",
"full_title": "",
"hide_links": "",
"id": "R-75041",
@@ -37127,9 +37127,9 @@
"keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF General Security Requirements",
+ "section_name": "VNF Identity and Access Management Requirements",
"sections": [
- "VNF General Security Requirements",
+ "VNF Identity and Access Management Requirements",
"VNF Security"
],
"status": null,
@@ -37141,7 +37141,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
@@ -37947,7 +37947,7 @@
"validation_mode": ""
},
"R-80335": {
- "description": "The VNF **MUST** make visible a Warning Notice: A formal\nstatement of resource intent, i.e., a warning notice, upon initial\naccess to a VNF provider user who accesses private internal networks\nor Company computer resources, e.g., upon initial logon to an internal\nweb site, system or application which requires authentication.",
+ "description": "For all GUI and command-line interfaces, the VNF **MUST** provide the\nability to present a warning notice that is set by the Operator. A warning\nnotice is a formal statement of resource intent presented to everyone\nwho accesses the system.",
"full_title": "",
"hide_links": "",
"id": "R-80335",
@@ -37956,9 +37956,9 @@
"keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF Identity and Access Management Requirements",
+ "section_name": "VNF General Security Requirements",
"sections": [
- "VNF Identity and Access Management Requirements",
+ "VNF General Security Requirements",
"VNF Security"
],
"status": null,
@@ -37970,7 +37970,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
@@ -41811,7 +41811,7 @@
"validation_mode": ""
},
"R-98391": {
- "description": "The VNF **MUST**, if not using the NCSP's IDAM API, support\nRole-Based Access Control to permit/limit the user/application to\nperforming specific activities.",
+ "description": "The VNF **MUST**, if not integrated with the Operator\u2019s Identity and\nAccess Management system, support Role-Based Access Control to enforce\nleast privilege.",
"full_title": "",
"hide_links": "",
"id": "R-98391",
@@ -41820,9 +41820,9 @@
"keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF General Security Requirements",
+ "section_name": "VNF Identity and Access Management Requirements",
"sections": [
- "VNF General Security Requirements",
+ "VNF Identity and Access Management Requirements",
"VNF Security"
],
"status": null,
@@ -41834,7 +41834,7 @@
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},