From b78d0099b92d86f773ec90c4267c3ff907798fd8 Mon Sep 17 00:00:00 2001 From: "Bozawglanian, Hagop (hb755d)" Date: Mon, 17 Sep 2018 22:08:59 +0000 Subject: VNFRQTS - Rewording Security Req Batch 7 Including changes for VNFRQTS-304, 358 Issue-ID: VNFRQTS-358 Change-Id: Ib62616db310d36d6029c470554a3217d7ce54e58 Signed-off-by: Bozawglanian, Hagop (hb755d) --- docs/Chapter4/Security.rst | 12 ++++++++---- docs/data/needs.json | 12 ++++++------ 2 files changed, 14 insertions(+), 10 deletions(-) diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst index 43cf5d7..c3112af 100644 --- a/docs/Chapter4/Security.rst +++ b/docs/Chapter4/Security.rst @@ -99,10 +99,10 @@ the product’s lifecycle. :id: R-92207 :target: VNF :keyword: SHOULD + :updated: casablanca - The VNF **SHOULD** implement a mechanism for automated and - frequent "system configuration (automated provisioning / closed loop)" - auditing. + The VNF **SHOULD** provide a mechanism for performing automated + system configuration auditing at configurable time intervals. .. req:: :id: R-23882 @@ -325,9 +325,13 @@ Identity and Access Management Requirements :id: R-86835 :target: VNF :keyword: MUST + :updated: casablanca The VNF **MUST** set the default settings for user access - to sensitive commands and data to deny authorization. + to deny authorization, except for a super user type of account. + When a VNF is added to the network, nothing should be able to use + it until the super user configures the VNF to allow other users + (human and application) have access. .. req:: :id: R-81147 diff --git a/docs/data/needs.json b/docs/data/needs.json index ae16067..95427b1 100644 --- a/docs/data/needs.json +++ b/docs/data/needs.json @@ -1,5 +1,5 @@ { - "created": "2018-09-17T20:13:00.612639", + "created": "2018-09-17T22:07:51.099887", "current_version": "casablanca", "project": "", "versions": { @@ -21858,7 +21858,7 @@ "needs_amount": 750 }, "casablanca": { - "created": "2018-09-17T20:13:00.612574", + "created": "2018-09-17T22:07:51.099803", "needs": { "R-00011": { "description": "A VNF's Heat Orchestration Template's parameter defined\nin a nested YAML file\n**MUST NOT** have a parameter constraint defined.", @@ -39204,7 +39204,7 @@ "validation_mode": "" }, "R-86835": { - "description": "The VNF **MUST** set the default settings for user access\nto sensitive commands and data to deny authorization.", + "description": "The VNF **MUST** set the default settings for user access\nto deny authorization, except for a super user type of account.\nWhen a VNF is added to the network, nothing should be able to use\nit until the super user configures the VNF to allow other users\n(human and application) have access.", "full_title": "", "hide_links": "", "id": "R-86835", @@ -39227,7 +39227,7 @@ "title": "", "title_from_content": "", "type_name": "Requirement", - "updated": "", + "updated": "casablanca", "validated_by": "", "validation_mode": "" }, @@ -40407,7 +40407,7 @@ "validation_mode": "static" }, "R-92207": { - "description": "The VNF **SHOULD** implement a mechanism for automated and\nfrequent \"system configuration (automated provisioning / closed loop)\"\nauditing.", + "description": "The VNF **SHOULD** provide a mechanism for performing automated\nsystem configuration auditing at configurable time intervals.", "full_title": "", "hide_links": "", "id": "R-92207", @@ -40430,7 +40430,7 @@ "title": "", "title_from_content": "", "type_name": "Requirement", - "updated": "", + "updated": "casablanca", "validated_by": "", "validation_mode": "" }, -- cgit 1.2.3-korg