Commit 0cae027f authored by Santeri Toikka's avatar Santeri Toikka
Browse files

Resolved technical details

Closes #438
parent fdaae144
Loading
Loading
Loading
Loading
+2 −2
Original line number Diff line number Diff line
@@ -144,11 +144,11 @@ For low risk:
- **[REQ-TECH-0]** The product shall not connect to unknown RDPS services.
- **[REQ-TECH-1]** The product shall implement [5.2.4 State-of-the-art cryptographic libraries] to allow the protection of the requirements of the foreseeable use.
- **[REQ-TECH-2]** When privileged information is transferred or accessed, a secure channel shall be used in transport [5.2.1 Secure channel].
- **[REQ-TECH-3]** All endpoints in a secure channel shall cryptographically verify others.
- **[REQ-TECH-3]** All endpoints in a secure channel shall cryptographically verify others through mutual auhentication.

For medium risk:
- **[REQ-TECH-4]** The product shall be designed in a way that [5.2.2 Cryptographic key intialisation and rotation] is made possilbe.
- **[REQ-TECH-5]** All system components shall be synchronised to the same time.
- **[REQ-TECH-5]** All system components shall be synchronised to the same time that is acceptable for the system accuracy.

For high risk:
- **[REQ-TECH-6]** All system time drifts shall be monitored.