-
Epic
-
Resolution: Done
-
Highest
-
None
-
None
-
None
-
R3 Casablanca - S3P Security
-
Done
- 0 – none
- 1 – CII Passing badge
- Including no critical and high known vulnerabilities > 60 days old
- 2 – CII Silver badge; internal communication encrypted; role-based access control and authorization for all calls
- All internal/external system communications shall be able to be encrypted.
- All internal/external service calls shall have common role-based access control and authorization using CADI framework.
- 3 – CII Gold
The above are the new project level requirements definition for Casablanca. Other security release requirements are described on this wiki:
https://wiki.onap.org/display/DW/Casablanca+Release+Requirements
There are links to the following:
https://wiki.onap.org/display/DW/Application+Authorization+Framework+Documentation
https://wiki.onap.org/display/DW/Client+Access+to+AAF
The highest priority is integration with CADI (AAF) framework. The encryption of communications is a stretch goal. However, the encryption may simply be trivial once the integration with AAF is complete.
- blocks
-
DCAEGEN2-611 policy-handler to use TLS when talking to policy-engine (https + websocket)
- Closed