Original:
ONAP MUST support API-based monitoring to take care of the scenarios where the control interfaces are not exposed, or are optimized and proprietary in nature.

Requirement to be removed.

Side-note: every ONAP application should support a healthcheck API. But that is not seen as security related.