El Alto Release

Current Requirement: The VNF SHOULD provide a mechanism that enables the operators to perform automated system configuration auditing at configurable time intervals.

Proposed Requirement: The VNF MAY provide mechanisms other than than APPC Audit that enables the operators to perform automated system configuration auditing at configurable time intervals.

Move to Section 7.3.1.1 for clarity.

Casablanca Release

Current Requirement: The VNF SHOULD implement a mechanism for automated and frequent “system configuration (automated provisioning / closed loop)” auditing.

Proposed Requirement: The VNF SHOULD provide a mechanism for performing automated system configuration auditing at configurable time intervals.

Rationale: Clarification of the language. Not clear what "system configuration (automated provisioning/closed loop)" means.

 REVISED Proposed Requirement (18-09-25): VNF MUST provide a mechanism that enables the operators to request a snapshot of current VNF security settings.

REVISED Proposed Requirement (18-10-04): VNF SHOULD provide a mechanism that enables the operators to perform automated system configuration auditing at configurable time intervals.

RATIONALE: After discussion among several operators and several VNF providers, it was determined that there is more work to be done to finalize the requirements that address the need of the operators to ensure that VNFs remain hardened. We are leaving this requirement as a SHOULD and clarifying the language.