Merge branch '132-has71-revise-objectives-6-2-0-5-6-2-0-6-6-2-0-7' into 'main' (8dd72304) · Commits · STAN4CRA / EN 304 621 Network Management Systems

EN-304-621.md

+4 −4

Original line number	Diff line number	Diff line
		@@ -1136,7 +1136,7 @@ There are three different types of assessments used in this document.
		### 6.2.0.4 REQ-TECH-4

		Requirement: The product shall be designed in a way that [5.2.2 Cryptographic key intialisation and rotation] is made possilbe.<br/>
		Objective: When employees and administrators roles change, the keys need to be changed also.<br/>
		Objective: Ensure product that allows and encourages users to change keys when necessary for product security reasons, such as when employees and administrators roles change..<br/>
		Preparation: None<br/>
		Activities:

		@@ -1156,7 +1156,7 @@ There are three different types of assessments used in this document.
		### 6.2.0.5 REQ-TECH-5

		Requirement: All system components shall be synchronized to the same time.<br/>
		Objective: When monitoring information, logs, metrics and traces, is collected, the timing of different events is relying on clock accuracy.<br/>
		Objective: Prevent errors and innaccuracvy in logging, metrics, and traces, due to unsynchronized component clocks.<br/>
		Preparation:

		1. Have the product initialised and available with the default configuration and required credentials.
		@@ -1179,7 +1179,7 @@ There are three different types of assessments used in this document.
		#### 6.2.0.6 REQ-TECH-6

		Requirement: All system clock drifts shall be monitored.<br/>
		Objective: Accuracy in multiple different monitoring sources require consistent clocks.<br/>
		Objective: Where multiple monitoring sources all operate they shall have consistent clocks where any drift or lack of synchronization shall be accurately documented and notification provided to administrator.<br/>
		Preparation:

		1. Have the product initialised and available with the default configuration and required credentials.
		@@ -1201,7 +1201,7 @@ There are three different types of assessments used in this document.
		### 6.2.0.7 REQ-TECH-7

		Requirement: The product shall be designed in a way, that all cryptographic keys can be replaced with user controlled keys.<br/>
		Objective: Customer need to have full control of the integrity of the data stored in the system.<br/>
		Objective: Product shall provide users with data management capabilities and ability to verify the integrity of the stored data in the NMS. <br/>
		Preparation: None<br/>
		Activities:

Original line number	Diff line number	Diff line
		@@ -1136,7 +1136,7 @@ There are three different types of assessments used in this document.
		### 6.2.0.4 REQ-TECH-4

		Requirement: The product shall be designed in a way that [5.2.2 Cryptographic key intialisation and rotation] is made possilbe.<br/>
		Objective: When employees and administrators roles change, the keys need to be changed also.<br/>
		Objective: Ensure product that allows and encourages users to change keys when necessary for product security reasons, such as when employees and administrators roles change..<br/>
		Preparation: None<br/>
		Activities:

		@@ -1156,7 +1156,7 @@ There are three different types of assessments used in this document.
		### 6.2.0.5 REQ-TECH-5

		Requirement: All system components shall be synchronized to the same time.<br/>
		Objective: When monitoring information, logs, metrics and traces, is collected, the timing of different events is relying on clock accuracy.<br/>
		Objective: Prevent errors and innaccuracvy in logging, metrics, and traces, due to unsynchronized component clocks.<br/>
		Preparation:

		1. Have the product initialised and available with the default configuration and required credentials.
		@@ -1179,7 +1179,7 @@ There are three different types of assessments used in this document.
		#### 6.2.0.6 REQ-TECH-6

		Requirement: All system clock drifts shall be monitored.<br/>
		Objective: Accuracy in multiple different monitoring sources require consistent clocks.<br/>
		Objective: Where multiple monitoring sources all operate they shall have consistent clocks where any drift or lack of synchronization shall be accurately documented and notification provided to administrator.<br/>
		Preparation:

		1. Have the product initialised and available with the default configuration and required credentials.
		@@ -1201,7 +1201,7 @@ There are three different types of assessments used in this document.
		### 6.2.0.7 REQ-TECH-7

		Requirement: The product shall be designed in a way, that all cryptographic keys can be replaced with user controlled keys.<br/>
		Objective: Customer need to have full control of the integrity of the data stored in the system.<br/>
		Objective: Product shall provide users with data management capabilities and ability to verify the integrity of the stored data in the NMS. <br/>
		Preparation: None<br/>
		Activities: