VNF Security Badge
- Steven wright
The CII badge is targeting security type requirements, and VNFs also have security requirements.
Section | Number of Reqts | Topic |
|---|---|---|
4.3.1 | 26 | VNF General Security |
4.3.2 | 35 | VNF Identity and Access Management |
4.3.3 | 15 | VNF API Security |
4.3.4 | 44 | VNF Security Analytics |
4.3.5 | 20 | VNF Data Protection |
There are ~140 requirements in the ONAP security requirements (section 4.3) - about 18% of the total. nb This is from the circa End August latest version, but there are ~100 bug reports to update the security section in process during Casablanca release.
Naively mapping sections to pulldowns would still have (Red) sections with more than 20 reqts, and would need some further breakdown or summarization.
There are a number of SHOULD requirements in security, so we would need to decide how to weight these in any score reporting.
Most of these requirements are on the VNF, not the VNF package. Initial VNF Testing is targeted to VNF Package so no overlap in short term.