 |
Work Item Reference | ETSI Doc. Number |
STF | Technical Body in Charge |
Download Standard
|
||
| RGS/NFV-SEC022ed281 | GS NFV-SEC 022 | NFV SEC | |||||
| Current Status (Click to View Full Schedule) |
Latest Version |
Cover Date | Standstill | Creation Date | |||
|
|
2.8.1 | 2020-06-18 | View Standstill Information | 2020-05-15 | |||
| Rapporteur | Technical Officer | Harmonised Standard | |||||
Anne-Marie Praden
|
Laurent Vreck
|
No | |||||
| Title |
Network Functions Virtualisation (NFV) Release 2; Security; Access Token Specification for API Access API Access Token Spec |
||||||
|
Scope and Field of Application |
This revision of NFV-SEC 022 conducts NFV Release 2 maintenance. It corrects errors, ambiguities, misalignments, and applies editorial modifications (i.e. Corrections of category F and D as described in ETSI TWPs Annex L). This edition does not add or modify features, nor does it extend the scope of the former Release 2 edition summarized hereafter: NFV-SEC 022 defines the access tokens and related metadata for RESTful protocols and data model for ETSI NFV management and orchestration (MANO) interfaces. It defines also the process for the token verification by the API Producer. For this aim, the document: - Analyses the security threat arising from the misuse of the access token and defines the security requirements associated to access token. - Analyses existing specifications related to access token for API access and their compliancy with the requirements defined. - Defines the token request and generation profile, the token format and associated metadata considering the result of existing access token specifications analysis. - Defines the token verification procedures for the API Producer. |
||||||
|
Supporting Organizations |
Thales, BT Plc, OTD, Orange, Telefonica, PT Portugal, Nokia, DOCOMO | ||||||
