WARNING! Gitlab maintenance operation scheduled for Thursday, 18 June between 19:00 and 20:00 (CET). During this time window, short service interruptions (less than 5 minutes) may occur. Thank you in advance for your understanding.
@@ -267,10 +267,16 @@ The following types of products have reduced or varied requirements under Regula
## 4.3 Use cases
> Create a list of representative use cases, each one representing a different threat profile. If the threat profile is the same, it's basically the same use case for the purposes of this document. Later the use cases will be mapped to security levels. Use cases should include both intended and reasonably foreseeable use/misuse.
> Create a list of representative use cases, each one representing a different threat profile. If the threat profile is the same, it's basically the same use case for the purposes of this document.
Manufacturer shall delcare what risk profile it's product is meant to be evaluated at.
As the technical definition of NMS describes the product being a system [Section 1.2] with connected elements like routers, NMS is an aggregate product.
Aggregate product can have components, like OS and virtual networking interfaces, which are evaluated outside of the scope of this standard.
Manufacturer shall be responsible of implementing all security measurments regardless of what subcomponents are in use.
