Security components and interfaces associated with applications
The security components and interfaces generally associated with applications include the following:
Installation and upgrade authentication (software signatures and validation)
Application management interface security requirements
User authentication, including password requirements
Secure application initialization
Application to controller mutual authentication
Application Policy enforcement (authorization), including application arbitration, prioritization or hierarchy
Application high availability features, including secure replication
Secure backup of application data
REST interface security requirements (such as TLS configuration)
Application command traceability (identify source of commands for debugging and security logging)
Syslog (a computer message logging standard), SNMP notifications and traps, time and clock synchronization