From 7165a22db11b41ac589cf2100478f76f92aa19b7 Mon Sep 17 00:00:00 2001 From: "Bozawglanian, Hagop (hb755d)" Date: Wed, 12 Sep 2018 16:34:27 +0000 Subject: VNFRQTS - Removing Security Req Batch 5 Including changes for VNFRQTS - 315, 316, 319, 336, 337, 338, 412 Issue-ID: VNFRQTS-315 Change-Id: Idce8eb9ff743567a0823d7c8fec50877335899f7 Signed-off-by: Bozawglanian, Hagop (hb755d) --- docs/Chapter4/Security.rst | 62 ---------------------------------------------- 1 file changed, 62 deletions(-) (limited to 'docs/Chapter4') diff --git a/docs/Chapter4/Security.rst b/docs/Chapter4/Security.rst index aafc1da..8fee063 100644 --- a/docs/Chapter4/Security.rst +++ b/docs/Chapter4/Security.rst @@ -168,25 +168,6 @@ the product’s lifecycle. it can dynamically modify the firewall rules, ACL rules, QoS rules, virtual routing and forwarding rules. -.. req:: - :id: R-26586 - :target: VNF - :keyword: SHOULD - - The VNF **SHOULD** support the ability to work with aliases - (e.g., gateways, proxies) to protect and encapsulate resources. - -.. req:: - :id: R-49956 - :target: VNF - :keyword: MUST - - The VNF **MUST** pass all access to applications (Bearer, - signaling and OA&M) through various security tools and platforms from - ACLs, stateful firewalls and application layer gateways depending on - manner of deployment. The application is expected to function (and in - some cases, interwork) with these security tools. - .. req:: :id: R-69649 :target: VNF @@ -214,17 +195,6 @@ the product’s lifecycle. authentication and access control of OA&M and other system level functions. -.. req:: - :id: R-68589 - :target: VNF - :keyword: MUST - - The VNF **MUST**, if not using the NCSP's IDAM API, support - User-IDs and passwords to uniquely identify the user/application. VNF - needs to have appropriate connectors to the Identity, Authentication - and Authorization systems that enables access at OS, Database and - Application levels as appropriate. - .. req:: :id: R-62498 :target: VNF @@ -343,28 +313,6 @@ management need to be met by the solution in a virtual environment: Identity and Access Management Requirements - -.. req:: - :id: R-95105 - :target: VNF - :keyword: MUST - - The VNF **MUST** host connectors for access to the application layer. - -.. req:: - :id: R-45496 - :target: VNF - :keyword: MUST - - The VNF **MUST** host connectors for access to the OS (Operating System) layer. - -.. req:: - :id: R-05470 - :target: VNF - :keyword: MUST - - The VNF **MUST** host connectors for access to the database layer. - .. req:: :id: R-99174 :target: VNF @@ -512,16 +460,6 @@ API Requirements The VNF **SHOULD** integrate with the Operator's authentication and authorization services (e.g., IDAM). -.. req:: - :id: R-19804 - :target: VNF - :keyword: MUST - - The VNF **MUST** validate the CA signature on the certificate, - ensure that the date is within the validity period of the certificate, - check the Certificate Revocation List (CRL), and recognize the identity - represented by the certificate where PKI-based authentication is used. - .. req:: :id: R-33488 :target: VNF -- cgit 1.2.3-korg