The VNF **MUST** implement access control list for OA&M
services (e.g., restricting access to certain ports or applications).
-.. req::
- :id: R-85633
- :target: VNF
- :keyword: MUST
-
- The VNF **MUST** implement Data Storage Encryption
- (database/disk encryption) for Sensitive Personal Information (SPI)
- and other subscriber identifiable data.
-
- Note: Subscribers SPI/data must be encrypted at rest, and other
- subscriber identifiable data should be encrypted at rest. Other
- data protection requirements exist and should be well understood
- by the developer.
-
.. req::
:id: R-92207
:target: VNF
The VNF **SHOULD** have source code scanned using scanning
tools (e.g., Fortify) and provide reports.
-.. req::
- :id: R-55830
- :target: VNF
- :keyword: MUST
-
- The VNF **MUST** distribute all production code from NCSP
- internal sources only. No production code, libraries, OS images, etc.
- shall be distributed from publically accessible depots.
-
.. req::
:id: R-99771
:target: VNF
and Authorization systems that enables access at OS, Database and
Application levels as appropriate.
-.. req::
- :id: R-52085
- :target: VNF
- :keyword: MUST
-
- The VNF **MUST**, if not using the NCSP's IDAM API, provide
- the ability to support Multi-Factor Authentication (e.g., 1st factor =
- Software token on device (RSA SecureID); 2nd factor = User Name+Password,
- etc.) for the users.
-
.. req::
:id: R-98391
:target: VNF
Role-Based Access Control to permit/limit the user/application to
performing specific activities.
-.. req::
- :id: R-63217
- :target: VNF
- :keyword: MUST
-
- The VNF **MUST**, if not using the NCSP's IDAM API, support
- logging via ONAP for a historical view of "who did what and when."
-
.. req::
:id: R-62498
:target: VNF
The VNF **MUST** provide the capability to restrict read
and write access to data handled by the VNF.
-.. req::
- :id: R-99112
- :target: VNF
- :keyword: MUST
-
- The VNF **MUST** provide the capability to restrict access
- to data to specific users.
-
.. req::
:id: R-83227
:target: VNF
algorithms and standard modes of operations when implementing
cryptography.
-.. req::
- :id: R-22645
- :target: VNF
- :keyword: SHOULD
-
- The VNF **SHOULD** use commercial algorithms only when there
- are no applicable governmental standards for specific cryptographic
- functions, e.g., public key cryptography, message digests.
-
.. req::
:id: R-12467
:target: VNF
{
- "created": "2018-08-30T21:56:21.449389",
+ "created": "2018-08-31T17:36:18.850778",
"current_version": "casablanca",
"project": "",
"versions": {
"casablanca": {
- "created": "2018-08-30T21:56:21.449234",
+ "created": "2018-08-31T17:36:18.850676",
"needs": {
"R-00011": {
"description": "A VNF's Heat Orchestration Template's Nested YAML files\nparameter's **MUST NOT** have a parameter constraint defined.",
"validated_by": "",
"validation_mode": ""
},
- "R-22645": {
- "description": "The VNF **SHOULD** use commercial algorithms only when there\nare no applicable governmental standards for specific cryptographic\nfunctions, e.g., public key cryptography, message digests.",
- "full_title": "",
- "hide_links": "",
- "id": "R-22645",
- "impacts": "",
- "introduced": "",
- "keyword": "SHOULD",
- "links": [],
- "notes": "",
- "section_name": "VNF Data Protection Requirements",
- "sections": [
- "VNF Data Protection Requirements",
- "VNF Security"
- ],
- "status": null,
- "tags": [],
- "target": "VNF",
- "test": "",
- "test_case": "",
- "test_file": "",
- "title": "",
- "title_from_content": "",
- "type_name": "Requirement",
- "updated": "",
- "validated_by": "",
- "validation_mode": ""
- },
"R-22656": {
"description": "The VNF Heat Orchestration Template **MUST** have a\ncorresponding environment file for a Cinder Volume Module.",
"full_title": "",
"validated_by": "",
"validation_mode": ""
},
- "R-52085": {
- "description": "The VNF **MUST**, if not using the NCSP's IDAM API, provide\nthe ability to support Multi-Factor Authentication (e.g., 1st factor =\nSoftware token on device (RSA SecureID); 2nd factor = User Name+Password,\netc.) for the users.",
- "full_title": "",
- "hide_links": "",
- "id": "R-52085",
- "impacts": "",
- "introduced": "",
- "keyword": "MUST",
- "links": [],
- "notes": "",
- "section_name": "VNF General Security Requirements",
- "sections": [
- "VNF General Security Requirements",
- "VNF Security"
- ],
- "status": null,
- "tags": [],
- "target": "VNF",
- "test": "",
- "test_case": "",
- "test_file": "",
- "title": "",
- "title_from_content": "",
- "type_name": "Requirement",
- "updated": "",
- "validated_by": "",
- "validation_mode": ""
- },
"R-52425": {
"description": "A VNF's port connected to an internal network **MUST** connect\nthe port to VMs in the same VNF.",
"full_title": "",
"validated_by": "",
"validation_mode": ""
},
- "R-55830": {
- "description": "The VNF **MUST** distribute all production code from NCSP\ninternal sources only. No production code, libraries, OS images, etc.\nshall be distributed from publically accessible depots.",
- "full_title": "",
- "hide_links": "",
- "id": "R-55830",
- "impacts": "",
- "introduced": "",
- "keyword": "MUST",
- "links": [],
- "notes": "",
- "section_name": "VNF General Security Requirements",
- "sections": [
- "VNF General Security Requirements",
- "VNF Security"
- ],
- "status": null,
- "tags": [],
- "target": "VNF",
- "test": "",
- "test_case": "",
- "test_file": "",
- "title": "",
- "title_from_content": "",
- "type_name": "Requirement",
- "updated": "",
- "validated_by": "",
- "validation_mode": ""
- },
"R-56183": {
"description": "A VNF's Heat Orchestration Template's OS::Nova::Server\nResource metadata map value parameter 'environment_context' **MUST NOT**\nhave parameter contraints defined.",
"full_title": "",
"validated_by": "",
"validation_mode": ""
},
- "R-63217": {
- "description": "The VNF **MUST**, if not using the NCSP's IDAM API, support\nlogging via ONAP for a historical view of \"who did what and when.\"",
- "full_title": "",
- "hide_links": "",
- "id": "R-63217",
- "impacts": "",
- "introduced": "",
- "keyword": "MUST",
- "links": [],
- "notes": "",
- "section_name": "VNF General Security Requirements",
- "sections": [
- "VNF General Security Requirements",
- "VNF Security"
- ],
- "status": null,
- "tags": [],
- "target": "VNF",
- "test": "",
- "test_case": "",
- "test_file": "",
- "title": "",
- "title_from_content": "",
- "type_name": "Requirement",
- "updated": "",
- "validated_by": "",
- "validation_mode": ""
- },
"R-63229": {
"description": "The xNF **MAY** use another option which is expected to include REST\nfor synchronous data, using RESTCONF (e.g., for xNF state polling).",
"full_title": "",
"validated_by": "",
"validation_mode": ""
},
- "R-85633": {
- "description": "The VNF **MUST** implement Data Storage Encryption\n(database/disk encryption) for Sensitive Personal Information (SPI)\nand other subscriber identifiable data.\n\nNote: Subscribers SPI/data must be encrypted at rest, and other\nsubscriber identifiable data should be encrypted at rest. Other\ndata protection requirements exist and should be well understood\nby the developer.",
- "full_title": "",
- "hide_links": "",
- "id": "R-85633",
- "impacts": "",
- "introduced": "",
- "keyword": "MUST",
- "links": [],
- "notes": "",
- "section_name": "VNF General Security Requirements",
- "sections": [
- "VNF General Security Requirements",
- "VNF Security"
- ],
- "status": null,
- "tags": [],
- "target": "VNF",
- "test": "",
- "test_case": "",
- "test_file": "",
- "title": "",
- "title_from_content": "",
- "type_name": "Requirement",
- "updated": "",
- "validated_by": "",
- "validation_mode": ""
- },
"R-85653": {
"description": "The xNF **MUST** provide metrics (e.g., number of sessions,\nnumber of subscribers, number of seats, etc.) to ONAP for tracking\nevery license.",
"full_title": "",
"validated_by": "",
"validation_mode": ""
},
- "R-99112": {
- "description": "The VNF **MUST** provide the capability to restrict access\nto data to specific users.",
- "full_title": "",
- "hide_links": "",
- "id": "R-99112",
- "impacts": "",
- "introduced": "",
- "keyword": "MUST",
- "links": [],
- "notes": "",
- "section_name": "VNF Data Protection Requirements",
- "sections": [
- "VNF Data Protection Requirements",
- "VNF Security"
- ],
- "status": null,
- "tags": [],
- "target": "VNF",
- "test": "",
- "test_case": "",
- "test_file": "",
- "title": "",
- "title_from_content": "",
- "type_name": "Requirement",
- "updated": "",
- "validated_by": "",
- "validation_mode": ""
- },
"R-99174": {
"description": "The VNF **MUST** allow the creation of multiple IDs so that\nindividual accountability can be supported.",
"full_title": "",
},
"needs_amount": 755
},
- "master branch": {
+ "beijing": {
"created": "2018-08-22T16:47:37.993404",
"needs": {
"R-00011": {
Code Review / vnfrqts / requirements.git / commitdiff