Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Security Requirements for HTTPS Authentication Enhancements:

Aug 6 2019 v4

v4 of the xNF and DCAE security requirements for HTTPS authentication are below.  There were no significant changes from v3.  These requirements are ready for formal review and have been entered into JIRA.  The excel spreadsheet below contains the requirement wording and a link to the JIRA ticket.  Please review the JIRA tickets and provide comments or a +1 if you approve.  These requirements are targeted for El Alto, so please review by Sep 3, 2019.  Thank you!

El Alto Security Requirements for HTTPS.xlsx


July 29 2019 v3

v3 of xNF and ONAP security requirements for HTTPS authentication.  Modified based on decisions from the July 29 review meeting.

  1. Add requirement for one-way TLS authentication when using Basic Authentication.
  2. Add reference to RFC 5280 to specify how to validate a certificate.
  3. Eliminate certOnly and basicAuthOnly and noAuth options and support only certBasicAuth in DCAE.


Security VNFRQTS updates for HTTPS Authentication v3.docx


July 23 2019 v2

Updated version of the xNF and ONAP security requirements for HTTPS authentication enhancements from the July 23 review meeting.


View filenameSecurity VNFRQTS updates for HTTPS Authentication v2.docxheight250


July 16 2019 v1

This is the latest version of the xNF and ONAP security requirements for the HTTPS authentication enhancements to support certificate authentication for HTTPS.

At the last review meeting on July 16, SECCOM decided that only HTTP/TLS is supported.  HTTP would not be supported.

View filenameSecurity VNFRQTS updates for HTTPS Authentication.docxheight250