Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

NFR009 - Audit Requirements: difference to NFR003 and NFR010? #43

Closed
9 of 28 tasks
bluesteens opened this issue May 1, 2023 · 2 comments · Fixed by #66
Closed
9 of 28 tasks

NFR009 - Audit Requirements: difference to NFR003 and NFR010? #43

bluesteens opened this issue May 1, 2023 · 2 comments · Fixed by #66
Assignees
@bluesteens
Labels
bug Something isn't working Steering - Review Proposal and Completed work must be reviewed by Steering.

Comments

@bluesteens
Copy link
Member

bluesteens commented May 1, 2023
edited by rceleste125
Loading

for Steering

Both NFR talk about user actions as well as transaction logs.
I believe the intention of NFR003 was to deal with user action logs and NFR009 to address tx logs.

I suggest we make that distinction clear by removing any cross-over language.

In addition, NFR010 also talks about data logs and storage. Can we combine 10 and 09?

related issue: #13

  • Is Issue appropriate for OCI Architecture
  • Create Steering-level Summary of request
  • Assign Size
  • Assign Priority
  • Assign Label (if needed)
  • OCI affected Artifacts Identified
  • Assign Triage - Artifact Version Target (v x.x.x Milestone)
  • Assign Triage - Interop Profile Version Target (v x.x.x Milestone)
  • Create sub-project (if needed)

Affected Parties (help determine Sunrise/Sunset):

  • Trading Partners
  • Issuers
  • Wallet Solutions
  • PI Verification Solutions

Affected OCI Artifact

  • Schema Document
  • Identity Schema
  • ATP Schema
  • Issuer Conformance Criteria
  • Wallet Conformance Criteria
  • VRS Solution Conformance Criteria
  • Wallet API Specification
  • Governance Document
  • Conformance Program
  • OCI Website
  • Internal Process

Change Category (Guides Steering Review)

- Steering/Industry Review

  • Business-Level (May affect business operations)
  • OCI Governance, Policy or website feature

- Steering/Industry Notification

  • Technical-Level (Does not affect business operations)
  • OCI Internal Process or Infrastructure
@bluesteens bluesteens added the bug Something isn't working label May 1, 2023
@bluesteens bluesteens changed the title NFR009 - Audit Requirements: difference to NFR003? NFR009 - Audit Requirements: difference to NFR003 and NFR010? May 1, 2023
@bluesteens bluesteens mentioned this issue May 1, 2023
Closed
@bluesteens bluesteens self-assigned this Jun 14, 2023
@bluesteens bluesteens mentioned this issue Jun 14, 2023
Merged
@bluesteens bluesteens linked a pull request Jun 14, 2023 that will close this issue
NFR003-009-010 #66
Merged
@bluesteens
Copy link
Member Author

003: "The solution SHOULD also record important actions performed by registered users." >> SHALL
009: purpose is granularity of records. records available for inspection (not just transfer), word as "SHALL have capability" "keep detailed records"
010: purpose is storage of records. re-establish, word as "SHALL have capability". The Wallet Provider SHALL be capable of transferring or making available such records to the user. "... to enable user to comply with regulatory data storage requirements"

@bluesteens bluesteens mentioned this issue Jun 22, 2023
Closed
31 tasks
@bluesteens
Copy link
Member Author

review 06/22/23:
003
The system collects evidence of user actions to prove the origin and authenticity of data in the event of a future dispute.

remove "important", activities = actions

remove "initiating"

are = made

009
accept all EW sugg except Measurement

010
accept EW

@rceleste125 rceleste125 added the Steering - Review Proposal and Completed work must be reviewed by Steering. label Jul 17, 2023
@rceleste125 rceleste125 mentioned this issue Oct 5, 2023
Open
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@bluesteens bluesteens

Labels
bug Something isn't working Steering - Review Proposal and Completed work must be reviewed by Steering.
Projects
OCI Change Management
Status: Done - Published
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

NFR003-009-010 Open-Credentialing-Initiative/Digital-Wallet-Conformance-Criteria
2 participants
@bluesteens @rceleste125