From 3be95938727c72a4a36c66ff756c759c79439671 Mon Sep 17 00:00:00 2001
From: "Lovett, Trevor (tl2972)" <tl2972@att.com>
Date: Fri, 21 Sep 2018 09:37:21 -0500
Subject: VNFRQTS - Security logging requirements

Change-Id: I68dd17f5930c65961f25fd49e790a44f095dfd2d
Issue-ID: VNFRQTS-443
Signed-off-by: Lovett, Trevor (tl2972) <tl2972@att.com>
---
 docs/Chapter4/Security.rst | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

(limited to 'docs/Chapter4/Security.rst')

diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst
index 940f1d7..9b4f5f7 100644
--- a/docs/Chapter4/Security.rst
+++ b/docs/Chapter4/Security.rst
@@ -246,6 +246,17 @@ the product’s lifecycle.
 
     The VNF **MUST NOT** allow vendor access to VNFs remotely.
 
+.. req::
+   :id: R-638682
+   :target: VNF
+   :keyword: MUST
+   :introduced: casablanca
+   :validation_mode: in_service
+
+   The VNF **MUST** log any security event required by the VNF Requirements to
+   Syslog using LOG_AUTHPRIV for any event that would contain sensitive
+   information and LOG_AUTH for all other relevant events.
+
 VNF Identity and Access Management Requirements
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
@@ -288,10 +299,10 @@ Identity and Access Management Requirements
 .. req::
     :id: R-59391
     :target: VNF
-    :keyword: MUST
+    :keyword: MUST NOT
     :updated: casablanca
 
-    The VNF MUST NOT not allow the assumption of the permissions of
+    The VNF **MUST NOT** not allow the assumption of the permissions of
     another account to mask individual accountability.
 
 .. req::
-- 
cgit 1.2.3-korg