encryption protocols such as TLS 1.2 or higher or equivalent security
protocols such as IPSec, AES.
-.. req::
- :id: R-23135
- :target: VNF
- :keyword: MUST
-
- The VNF **MUST**, if not using the NCSP's IDAM API,
- authenticate system to system communications where one system
- accesses the resources of another system, and must never conceal
- individual accountability.
-
.. req::
:id: R-80335
:target: VNF
authorization, for commands affecting network services, such as
commands relating to VNFs.
-.. req::
- :id: R-49109
- :target: VNF
- :keyword: MUST
-
- The VNF **MUST** encrypt TCP/IP--HTTPS (e.g., TLS v1.2)
- transmission of data on internal and external networks.
-
.. req::
:id: R-39562
:target: VNF
userID after a configurable number of consecutive unsuccessful
authentication attempts using the same userID.
+.. req::
+ :id: R-23135
+ :target: VNF
+ :keyword: MUST
+ :updated: casablanca
+
+ The VNF **MUST** authenticate all access to protected GUIs, CLIs,
+ and APIs.
+
VNF API Security Requirements
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
validity of a digital certificate by recognizing the identity represented
by the certificate - the "distinguished name".
+.. req::
+ :id: R-49109
+ :target: VNF
+ :keyword: MUST
+ :updated: casablanca
+
+ The VNF **MUST** support HTTP/S using TLS v1.2 or higher
+ with strong cryptographic ciphers.
{
- "created": "2018-09-18T20:45:19.500298",
+ "created": "2018-09-18T22:51:58.508439",
"current_version": "casablanca",
"project": "",
"versions": {
"needs_amount": 750
},
"casablanca": {
- "created": "2018-09-18T20:45:19.500228",
+ "created": "2018-09-18T22:51:58.508358",
"needs": {
"R-00011": {
"description": "A VNF's Heat Orchestration Template's parameter defined\nin a nested YAML file\n**MUST NOT** have a parameter constraint defined.",
"validation_mode": ""
},
"R-23135": {
- "description": "The VNF **MUST**, if not using the NCSP's IDAM API,\nauthenticate system to system communications where one system\naccesses the resources of another system, and must never conceal\nindividual accountability.",
+ "description": "The VNF **MUST** authenticate all access to protected GUIs, CLIs,\nand APIs.",
"full_title": "",
"hide_links": "",
"id": "R-23135",
"keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF General Security Requirements",
+ "section_name": "VNF Identity and Access Management Requirements",
"sections": [
- "VNF General Security Requirements",
+ "VNF Identity and Access Management Requirements",
"VNF Security"
],
"status": null,
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
"validation_mode": ""
},
"R-49109": {
- "description": "The VNF **MUST** encrypt TCP/IP--HTTPS (e.g., TLS v1.2)\ntransmission of data on internal and external networks.",
+ "description": "The VNF **MUST** support HTTP/S using TLS v1.2 or higher\nwith strong cryptographic ciphers.",
"full_title": "",
"hide_links": "",
"id": "R-49109",
"keyword": "MUST",
"links": [],
"notes": "",
- "section_name": "VNF Identity and Access Management Requirements",
+ "section_name": "VNF Cryptography Requirements",
"sections": [
- "VNF Identity and Access Management Requirements",
+ "VNF Cryptography Requirements",
"VNF Security"
],
"status": null,
"title": "",
"title_from_content": "",
"type_name": "Requirement",
- "updated": "",
+ "updated": "casablanca",
"validated_by": "",
"validation_mode": ""
},
Code Review / vnfrqts / requirements.git / commitdiff