1. Cloud Native Core Release Notes
  2. Media and Documentation

3 Media and Documentation

3.1 Media Pack

This section lists the media package for Oracle Communications Cloud Native Core 3.23.4. To download the media package, see MOS.

To learn how to access and download the media package from MOS, see Accessing NF Documents on MOS.

Note:

The information provided in this section is accurate at the time of release but is subject to change. See the Oracle software delivery website for the latest information.

Table 3-1 Media Pack Contents for Oracle Communications Cloud Native Core 3.23.4

Description NF Version ATS Version Upgrade Supported
Oracle Communications Cloud Native Core, Binding Support Function (BSF) 23.4.4 23.4.4 BSF 23.4.4 supports fresh installation and upgrade from 23.4.x and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Binding Support Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Binding Support Function (BSF) 23.4.2 23.4.2 BSF 23.4.2 supports fresh installation and upgrade from 23.4.x and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Binding Support Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Binding Support Function (BSF) 23.4.1 23.4.1 BSF 23.4.1 supports fresh installation and upgrade from 23.4.0 and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Binding Support Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Binding Support Function (BSF) 23.4.0 23.4.0 BSF 23.4.0 supports fresh installation and upgrade from 23.2.x. For more information, see Oracle Communications Cloud Native Core, Binding Support Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Configuration Console (CNC Console) 23.4.2 NA CNC Console 23.4.2 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Configuration Console Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Configuration Console (CNC Console) 23.4.1 NA CNC Console 23.4.1 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.0. For more information, see Oracle Communications Cloud Native Configuration Console Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Configuration Console (CNC Console) 23.4.0 NA CNC Console 23.4.0 supports fresh installation and upgrade from 23.2.x and 23.3x. For more information, see Oracle Communications Cloud Native Configuration Console Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Certificate Management (OCCM) 23.4.3 NA OCCM 23.4.3 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Certificate Management Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Certificate Management (OCCM) 23.4.2 NA OCCM 23.4.2 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Certificate Management Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Certificate Management (OCCM) 23.4.1 NA OCCM 23.4.1 supports fresh installation and upgrade from 23.4.0. For more information, see Oracle Communications Cloud Native Core, Certificate Management Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Certificate Management (OCCM) 23.4.0 NA OCCM 23.4.0 supports fresh installation. For more information, see Oracle Communications Cloud Native Core, Certificate Management Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, cnDBTier 23.4.6 NA cnDBTier 23.4.6 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.

Note: cnDBTier 23.4.6 doesn't support upgrade and rollback on cnDBTier setups where the TLS feature is enabled.

Oracle Communications Cloud Native Core, cnDBTier 23.4.5 NA cnDBTier 23.4.5 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.

Note: cnDBTier 23.4.5 doesn't support upgrade and rollback on cnDBTier setups where the TLS feature is enabled.

Oracle Communications Cloud Native Core, cnDBTier 23.4.4 NA cnDBTier 23.4.4 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.

Note: cnDBTier 23.4.4 doesn't support upgrade and rollback on cnDBTier setups where the TLS feature is enabled.

Oracle Communications Cloud Native Core, cnDBTier 23.4.3 NA cnDBTier 23.4.3 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.

Note: cnDBTier 23.4.3 doesn't support upgrade and rollback on cnDBTier setups where the TLS feature is enabled.

Oracle Communications Cloud Native Core, cnDBTier 23.4.2 NA cnDBTier 23.4.2 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.

Note: cnDBTier 23.4.2 doesn't support upgrade and rollback on cnDBTier setups where the TLS feature is enabled.

Oracle Communications Cloud Native Core, cnDBTier 23.4.1 NA cnDBTier 23.4.1 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.0. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.

Note: cnDBTier 23.4.1 doesn't support upgrade and rollback on cnDBTier setups where the TLS feature is enabled.

Oracle Communications Cloud Native Core, cnDBTier 23.4.0 NA cnDBTier 23.4.0 supports fresh installation and upgrade from 23.2.x and 23.3.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.

Note: cnDBTier 23.4.0 doesn't support upgrade and rollback on cnDBTier setups where the TLS feature is enabled.

Oracle Communications CD Control Server (CDCS) 23.4.0 NA CDCS 23.4.0 supports only fresh installation. For more information, see Oracle Communications CD Control Server Installation and Upgrade Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 23.4.6 NA CNE 23.4.6 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 23.4.4 NA CNE 23.4.4 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 23.4.1 NA CNE 23.4.1 supports fresh installation and upgrade from 23.3.x and 23.4.0. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 23.4.0 NA CNE 23.4.0 supports only fresh installation. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Operations Services Overlay (OSO) 23.4.5 NA OSO 23.4.5 supports fresh installation and upgrade from 23.3.1 and 23.4.x. For more information, see Oracle Communications Operations Services Overlay Installation and Upgrade Guide.
Oracle Communications Operations Services Overlay (OSO) 23.4.4 NA OSO 23.4.4 supports fresh installation and upgrade from 23.3.1 and 23.4.0. For more information, see Oracle Communications Operations Services Overlay Installation and Upgrade Guide.
Oracle Communications Operations Services Overlay (OSO) 23.4.0 NA OSO 23.4.0 supports fresh installation and upgrade from 23.3.1. For more information, see Oracle Communications Operations Services Overlay Installation and Upgrade Guide.
Oracle Communications Cloud Native Core, Network Exposure Function (NEF) 23.4.4 23.4.4 NEF 23.4.4 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Exposure Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Exposure Function (NEF) 23.4.3 23.4.3 NEF 23.4.3 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Exposure Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Exposure Function (NEF) 23.4.2 23.4.0 NEF 23.4.2 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Exposure Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Exposure Function (NEF) 23.4.1 23.4.0 NEF 23.4.1 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.0. For more information, see Oracle Communications Cloud Native Core, Network Exposure Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Exposure Function (NEF) 23.4.0 23.4.0 NEF 23.4.0 supports fresh installation and upgrade from 23.2.x and 23.3.x. For more information, see Oracle Communications Cloud Native Core, Network Exposure Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 23.4.4 23.4.4 NRF 23.4.4 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 23.4.3 23.4.4 NRF 23.4.3 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 23.4.2 23.4.3 NRF 23.4.2 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 23.4.1 23.4.2 NRF 23.4.1 supports fresh installation and upgrade from 23.3.x and 23.4.0. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 23.4.0 23.4.0, 23.4.1 NRF 23.4.0 supports fresh installation and upgrade from 23.3.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Slice Selection Function (NSSF) 23.4.0 23.4.0 NSSF 23.4.0 supports fresh installation and upgrade from 23.3.x. For more information, see Oracle Communications Cloud Native Core, Network Slice Selection Function Installation, Upgrade, and Fault Recovery Guide.

Note: In a georedundant scenario, the replication channel may go down while doing a rollback of cnDBTier from 23.4.x to 23.3.x. For more information, see Oracle Communications Cloud Native Core, Network Slice Selection Function Installation, Upgrade, and Fault Recovery Guide.

Oracle Communications Cloud Native Core, Converged Policy (Policy) 23.4.6 23.4.5 Policy 23.4.6 supports fresh installation and upgrade from 23.4.x and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 23.4.5 23.4.5 Policy 23.4.5 supports fresh installation and upgrade from 23.4.x and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 23.4.4 23.4.2 Policy 23.4.4 supports fresh installation and upgrade from 23.4.x and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 23.4.3 23.4.2 Policy 23.4.3 supports fresh installation and upgrade from 23.4.x and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 23.4.2 23.4.1 Policy 23.4.2 supports fresh installation and upgrade from 23.4.x and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 23.4.1 23.4.1 Policy 23.4.1 supports fresh installation and upgrade from 23.4.0 and 23.2.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 23.4.0 23.4.0 Policy 23.4.0 supports fresh installation and upgrade from 23.2.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 23.4.3 23.4.3 SCP 23.4.3 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 23.4.2 23.4.2 SCP 23.4.2 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 23.4.1 23.4.1 SCP 23.4.1 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 23.4.0 23.4.0 SCP 23.4.0 supports fresh installation and upgrade from 23.2.x and 23.3.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Security Edge Protection Proxy (SEPP) 23.4.2 23.4.2 SEPP 23.4.2 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Security Edge Protection Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Security Edge Protection Proxy (SEPP) 23.4.1 23.4.1 SEPP 23.4.1 supports fresh installation and upgrade from 23.4.0, 23.2.x, and 23.3.x. For more information, see Oracle Communications Cloud Native Core, Security Edge Protection Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Security Edge Protection Proxy (SEPP) 23.4.0 23.4.0 SEPP 23.4.0 supports fresh installation and upgrade from 23.2.x and 23.3.x. For more information, see Oracle Communications Cloud Native Core, Security Edge Protection Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Unified Data Repository (UDR) 23.4.2 23.4.4 UDR 23.4.2 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Unified Data Repository Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Unified Data Repository (UDR) 23.4.1 23.4.0, 23.4.1, 23.4.2, and 23.4.3 UDR 23.4.1 supports fresh installation and upgrade from 23.2.x, 23.3.x, and 23.4.0. For more information, see Oracle Communications Cloud Native Core, Unified Data Repository Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Unified Data Repository (UDR) 23.4.0 23.4.0, 23.4.1, and 23.4.2 UDR 23.4.0 supports fresh installation and upgrade from 23.2.x and 23.3.x. For more information, see Oracle Communications Cloud Native Core, Unified Data Repository Installation, Upgrade, and Fault Recovery Guide.

3.2 Compatibility Matrix

The following table lists the compatibility matrix for each network function:

Table 3-2 Compatibility Matrix

CNC NF NF Version CNE cnDBTier CDCS OSO ASM S/W Kubernetes CNC Console OCNADD OCCM
BSF 23.4.4
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
BSF 23.4.2
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
BSF 23.4.1
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
BSF 23.4.0
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
CDCS 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.1.x
 NA NA NA NA NA NA NA NA
CNC Console 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x

  • 1.14.6

  • 1.11.8

  • 1.9.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA 23.4.x 23.4.x
CNC Console 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.9.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA 23.4.x 23.4.x
CNC Console 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.9.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA 23.4.x 23.4.x
cnDBTier 23.4.6
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA 23.4.x NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
cnDBTier 23.4.5
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA 23.4.x NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
cnDBTier 23.4.4
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA 23.4.x NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
cnDBTier 23.4.3
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA 23.4.x NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
cnDBTier 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA 23.4.x NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
cnDBTier 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA 23.4.x NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
cnDBTier 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA 23.4.x NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
CNE 23.4.6 NA NA NA NA NA 1.27.x NA NA NA
CNE 23.4.4 NA NA NA NA NA 1.27.x NA NA NA
CNE 23.4.1 NA NA NA NA NA 1.27.x NA NA NA
CNE 23.4.0 NA NA NA NA NA 1.27.x NA NA NA
OCCM 23.4.3
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.3.x
 NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
OCCM 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.3.x
 NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
OCCM 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.3.x
 NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
OCCM 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.3.x
 NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
OSO 23.4.5 NA NA NA NA NA
  • 1.27.x
  • 1.26.x
 NA NA NA
OSO 23.4.4 NA NA NA NA NA
  • 1.27.x
  • 1.26.x
 NA NA NA
OSO 23.4.0 NA NA NA NA NA
  • 1.27.x
  • 1.26.x
 NA NA NA
NEF 23.4.4
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
NEF 23.4.3
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
NEF 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
NEF 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
NEF 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA NA NA
  • 1.27.x
  • 1.26.x
  • 1.25.x
 NA NA NA
NRF 23.4.4
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
NRF 23.4.3
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
NRF 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
NRF 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
NRF 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
NSSF 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
Policy 23.4.6
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA 23.4.x 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
Policy 23.4.5
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA 23.4.x 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
Policy 23.4.4
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
Policy 23.4.3
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
Policy 23.4.2
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
Policy 23.4.1
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
Policy 23.4.0
  • 23.4.x
  • 23.2.x
  • 23.4.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.27.x
  • 1.25.x
  • 23.4.x
  • 23.2.x
 NA NA
SCP 23.4.3
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
SCP 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
SCP 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
SCP 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x 23.4.x 23.4.x
SEPP 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
SEPP 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.3.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
SEPP 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.3.x 1.14.6
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
UDR 23.4.2
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
UDR 23.4.1
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 22.3.x
  • 1.14.6
  • 1.11.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA
UDR 23.4.0
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 NA
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 22.3.x
  • 1.14.6
  • 1.11.8
  • 1.27.x
  • 1.26.x
  • 1.25.x
 23.4.x NA NA

3.3 3GPP Compatibility Matrix

The following table lists the 3GPP compatibility matrix for each network function:

Table 3-3 3GPP Compatibility Matrix

CNC NF NF Version 3GPP
BSF 23.4.x
  • 3GPP TS 23.501 v17.7.0
  • 3GPP TS 23.502 v17.7
  • 3GPP TS 23.503 V17.7
  • 3GPP TS 29.500 v17.7.0
  • 3GPP TS 29.510 v17.7
  • 3GPP TS 29.513 V17.7
  • 3GPP TS 29.521 v17.7.0
  • 3GPP TS 33.501 V17.7.0
CDCS 23.4.x NA
CNC Console 23.4.x NA
CNE 23.4.x NA
cnDBTier 23.4.x NA
NEF 23.4.x
  • 3GPP TS 29.122 v16.10.0, 17.10.0
  • 3GPP TS 23.222 v16.9.0
  • 3GPP TS 23.501 v16.10.0
  • 3GPP TS 23.502 v16.10.0
  • 3GPP TS 29.514 v16.10.0
  • 3GPP TS 29.521 v16.10
  • 3GPP TS 29.503 v16.14.0
  • 3GPP TS 29.515 v16.7
  • 3GPP TS 29.222 v16.5.0
  • 3GPP TS 29.500 v16.6.0
  • 3GPP TS 29.501 v16.6.0
  • 3GPP TS 29.522 v16.10.0, 17.10.0
  • 3GPP TS 29.510 v16.6.0
  • 3GPP TS 29.591 v16.3.0
  • 3GPP TS 29.518 v16.14.0
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 29.504 v16.10.0
  • 3GPP TS 29.519 v16.11.0
  • 3GPP TS 29.508 v16.11.0
  • 3GPP TS 23.682 v16.9.0
  • 3GPP TS 29.337 v16.1.0
  • 3GPP TS 29.214 v16.7.0
  • 3GPP TS 32.291 v16.14
  • 3GPP TS 32.290 v16.10.0
  • 3GPP TS 32.254 v16.6.0
NEF 23.4.x
  • 3GPP TS 29.122 v16.10.0, 17.10.0
  • 3GPP TS 23.222 v16.9.0
  • 3GPP TS 23.501 v16.10.0
  • 3GPP TS 23.502 v16.10.0
  • 3GPP TS 29.514 v16.10.0
  • 3GPP TS 29.521 v16.10
  • 3GPP TS 29.503 v16.14.0
  • 3GPP TS 29.515 v16.7
  • 3GPP TS 29.222 v16.5.0
  • 3GPP TS 29.500 v16.6.0
  • 3GPP TS 29.501 v16.6.0
  • 3GPP TS 29.522 v16.10.0, 17.10.0
  • 3GPP TS 29.510 v16.6.0
  • 3GPP TS 29.591 v16.3.0
  • 3GPP TS 29.518 v16.14.0
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 29.504 v16.10.0
  • 3GPP TS 29.519 v16.11.0
  • 3GPP TS 29.508 v16.11.0
  • 3GPP TS 23.682 v16.9.0
  • 3GPP TS 29.337 v16.1.0
  • 3GPP TS 29.214 v16.7.0
  • 3GPP TS 32.291 v16.14
  • 3GPP TS 32.290 v16.10.0
  • 3GPP TS 32.254 v16.6.0
NRF 23.4.x
  • 3GPP TS 29.510 v15.5
  • 3GPP TS 29.510 v16.3.0
  • 3GPP TS 29.510 v16.7
NSSF 23.4.x
  • 3GPP TS 29.531 v15.5.0
  • 3GPP TS 29.531 v16.5.0
  • 3GPP TS 29.531 v16.8.0
  • 3GPP TS 29.501 v16.10.0
  • 3GPP TS 29.502 v16.10.0
OCCM 23.4.x
  • 3GPP TS 33.310-h30
  • 3GPP TR 33.876 v.0.3.0
Policy 23.4.x
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 29.500v16.9.0
  • 3GPP TS 23.501v16.9.0
  • 3GPP TS 23.502v16.9.0
  • 3GPP TS 23.503v16.9.0
  • 3GPP TS 29.504v16.9.0
  • 3GPP TS 29.507v16.9.0
  • 3GPP TS 29.510v16.9.0
  • 3GPP TS 29.512v16.14
  • 3GPP TS 29.513v16.9.0
  • 3GPP TS 29.514v16.14.0
  • 3GPP TS 29.214v16.5.0
  • 3GPP TS 29.518v16.13.0
  • 3GPP TS 29.519v16.8
  • 3GPP TS 29.520v16.8
  • 3GPP TS 29.521v16.8.0
  • 3GPP TS 29.525v16.9.0
  • 3GPP TS 29.594v16.7
  • 3GPP TS 23.203 v16.2.0
  • 3GPP TS 29.212 V16.3.0
  • 3GPP TS 29.213v16.3
  • 3GPP TS 29.214 v16.2.0
  • 3GPP TS 29.219 v16.0.0
  • 3GPP TS 29.335v16.0
SCP 23.4.x
  • 3GPP TS 29.500 R16 v16.6.0
  • 3GPP TS 29.501 R16 v16.5.0
SEPP 23.4.x
  • 3GPP TS 23.501 v17.6.0
  • 3GPP TS 23.502 v17.6.0
  • 3GPP TS 29.500 v17.8.0
  • 3GPP TS 29.501 v17.7.0
  • 3GPP TS 29.510 v17.7.0
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 33.117 v17.1.0
  • 3GPP TS 33.210 v17.1.0
UDR 23.4.x
  • 3GPP TS 29.505 v15.4.0
  • 3GPP TS 29.504 v16.2.0
  • 3GPP TS 29.519 v16.2.0
  • 3GPP TS 29.511 v17.2.0

Note:

Refer to the Compliance Matrix spreadsheet for details on NFs' compliance with each 3GPP version mentioned in this table.

3.4 Common Microservices Load Lineup

This section provides information about common microservices and ATS for the specific NF versions in Oracle Communications Cloud Native Core Release 3.23.4.

Table 3-4 Common Microservices Load Lineup for Network Functions

CNC NF NF Version Alternate Route Svc App-Info ASM Configuration ATS Framework Config-Server Debug-tool Egress Gateway Ingress Gateway Helm Test Mediation NRF-Client Perf-Info
BSF 23.4.4 23.4.7 23.4.10 23.4.10 23.4.3 23.4.10 23.4.2 23.4.7 23.4.7 23.4.2 NA 23.4.5 23.4.10
BSF 23.4.2 23.4.5 23.4.6 23.4.5 23.4.2 23.4.6 23.4.1 23.4.5 23.4.5 23.4.1 NA 23.4.3 23.4.6
BSF 23.4.1 23.4.3 23.4.3 23.4.3 23.4.0 23.4.3 23.4.0 23.4.0 23.4.3 23.4.0 NA 23.4.2 23.4.3
BSF 23.4.0 23.4.3 23.4.2 23.4.0 23.4.0 23.4.2 23.4.0 23.4.3 23.4.3 23.4.0 NA 23.4.2 23.4.2
CNC Console 23.4.2 NA NA NA NA NA 23.4.2 NA 23.4.7 23.4.2 NA NA NA
CNC Console 23.4.1 NA NA NA NA NA 23.4.1 NA 23.4.5 23.4.1 NA NA NA
CNC Console 23.4.0 NA NA NA NA NA 23.4.0 NA 23.4.3 23.4.0 NA NA NA
NEF 23.4.4 NA 23.4.9 NA 23.4.4 23.4.9 23.4.2 23.4.7 23.4.7 23.4.2 NA 23.4.5 23.4.9
NEF 23.4.3 NA 23.4.5 NA 23.4.3 23.4.5 23.4.1 23.4.5 23.4.5 23.4.1 NA 23.4.3 23.4.5
NEF 23.4.2 NA 23.4.0 NA 23.4.0 23.4.0 23.4.0 23.4.1 23.4.1 23.4.0 NA 23.4.2 23.4.0
NEF 23.4.1 NA 23.4.0 NA 23.4.0 23.4.0 23.4.0 23.4.1 23.4.1 23.4.0 NA 23.4.2 23.4.0
NEF 23.4.0 NA 23.4.0 NA 23.4.0 23.4.0 23.4.0 23.4.1 23.4.1 23.4.0 NA 23.4.2 23.4.0
NRF 23.4.4 23.4.7 23.4.9 23.4.0 23.4.3 NA 23.4.2 23.4.7 23.4.7 23.4.2 NA NA 23.4.9
NRF 23.4.3 23.4.7 23.4.9 23.4.0 23.4.3 NA 23.4.2 23.4.7 23.4.7 23.4.2 NA NA 23.4.9
NRF 23.4.2 23.4.5 23.4.5 23.4.0 23.4.2 NA 23.4.1 23.4.5 23.4.5 23.4.1 NA NA 23.4.5
NRF 23.4.1 23.4.4 23.4.1 23.4.0 23.4.1 NA 23.4.0 23.4.4 23.4.4 23.4.0 NA NA 23.4.1
NRF 23.4.0 23.4.3 23.4.1 23.4.0 23.4.0 NA 23.4.0 23.4.3 23.4.3 23.4.0 NA NA 23.4.1
NSSF 23.4.0 23.4.0 23.4.3 23.4.1 23.4.0 23.4.0 23.4.0 23.4.3 23.4.3 23.4.0 NA 23.4.2 23.4.1
OCCM 23.4.3 NA NA NA NA NA 23.4.2 NA NA 23.4.2 NA NA NA
OCCM 23.4.2 NA NA NA NA NA 23.4.1 NA NA 23.4.1 NA NA NA
OCCM 23.4.1 NA NA NA NA NA 23.4.1 NA NA 23.4.0 NA NA NA
OCCM 23.4.0 NA NA NA NA NA 23.4.0 NA NA 23.4.0 NA NA NA
Policy 23.4.6 23.4.8 23.4.11 23.4.6 23.4.3 23.4.11 23.4.2 23.4.8 23.4.9 23.4.2 NA 23.4.6 23.4.11
Policy 23.4.5 23.4.8 23.4.11 23.4.6 23.4.3 23.4.11 23.4.2 23.4.8 23.4.8 23.4.2 NA 23.4.6 23.4.11
Policy 23.4.4 23.4.6 23.4.8 23.4.6 23.4.2 23.4.8 23.4.1 23.4.6 23.4.6 23.4.1 NA 23.4.4 23.4.8
Policy 23.4.3 23.4.5 23.4.6 23.4.5 23.4.2 23.4.6 23.4.1 23.4.5 23.4.5 23.4.1 NA 23.4.3 23.4.6
Policy 23.4.2 23.4.3 23.4.4 23.4.2 23.4.0 23.4.4 23.4.0 23.4.3 23.4.3 23.4.1 NA 23.4.2 23.4.4
Policy 23.4.1 23.4.3 23.4.2 23.4.2 23.4.0 23.4.2 23.4.0 23.4.3 23.4.3 23.4.0 NA 23.4.2 23.4.3
Policy 23.4.0 23.4.3 23.4.2 23.4.0 23.4.0 23.4.2 23.4.0 23.4.3 23.4.3 23.4.0 NA 23.4.2 23.4.2
SCP 23.4.3 NA NA 23.4.0 23.4.3 NA 23.4.2 NA NA 23.4.2 23.4.2 NA NA
SCP 23.4.2 NA NA 23.4.0 23.4.2 NA 23.4.1 NA NA 23.4.1 23.4.1 NA NA
SCP 23.4.1 NA NA 23.4.0 23.4.1 NA 23.4.0 NA NA 23.4.0 23.4.0 NA NA
SCP 23.4.0 NA NA 23.4.0 23.4.0 NA 23.4.0 NA NA 23.4.0 23.4.0 NA NA
SEPP 23.4.2 23.4.7 23.4.9 23.4.0 23.4.2 23.4.9 23.4.2 23.4.7 23.4.7 23.4.2 23.4.2 23.4.5 23.4.9
SEPP 23.4.1 23.4.5 23.4.5 23.4.0 23.4.1 23.4.5 23.4.1 23.4.5 23.4.5 23.4.1 23.4.1 23.4.3 23.4.5
SEPP 23.4.0 23.4.3 23.4.1 23.4.0 23.4.0 23.4.1 23.4.0 23.4.3 23.4.3 23.4.0 23.4.0 23.4.2 23.4.1
UDR 23.4.2 23.4.7 23.4.7 23.4.0 23.4.3 23.4.9 23.4.2 23.4.7 23.4.7 23.4.2 NA 23.4.5 23.4.9
UDR 23.4.1 23.4.5 23.4.5 23.4.0 23.4.2 23.4.5 23.4.1 23.4.5 23.4.5 23.4.1 NA 23.4.3 23.4.5
UDR 23.4.0 23.4.3 23.4.2 23.4.0 23.4.0 23.4.2 23.4.0 23.4.3 23.4.3 23.4.0 NA 23.4.2 23.4.2

3.5 Security Certification Declaration

This section lists the security tests and the corresponding dates of compliance for each network function:

3.5.1 BSF Security Certification Declaration

Release 23.4.4

Table 3-5 BSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 12, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Jul 08, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 12, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 25, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.2

Table 3-6 BSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Feb 17, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

March 20, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

April 16, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

March 20, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.1

Table 3-7 BSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Nov 27, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 20, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 5, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jan 25, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.0

Table 3-8 BSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Nov 27, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 20, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 5, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 14, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.2 CNC Console Security Certification Declaration

Release 23.4.2

Table 3-9 CNC Console Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 July 17, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

July 17, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

July 17, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

July 17, 2024 No findings
Release 23.4.1

Table 3-10 CNC Console Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 11, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 29, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 15, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 16, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.0

Table 3-11 CNC Console Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 11, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 29, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 7, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 11, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.3 NEF Security Certification Declaration

Release 23.4.4

Table 3-12 NEF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 April 20, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 22, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

July 12, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

July 14, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.3

Table 3-13 NEF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 April 20, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 22, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

April 20, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

April 20, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.2

Table 3-14 NEF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 26, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 22, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 26, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 27, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.1

Table 3-15 NEF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 1, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 22, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jan 19, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jan 19, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.0

Table 3-16 NEF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 11, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 22, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 1, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 3, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.4 NRF Security Certification Declaration

Release 23.4.4

Table 3-17 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 August 12, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

August 12, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

August 12, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

August 12, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.3

Table 3-18 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 July 12, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

July 12, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

July 12, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

July 12, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.2

Table 3-19 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Apr 18, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Apr 18, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 18, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 18, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.1

Table 3-20 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Nov 30, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 30, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Nov 30, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Nov 30, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.0

Table 3-21 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Nov 30, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 30, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Nov 30, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Nov 30, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.5 NSSF

Table 3-22 NSSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 1, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Dec 1, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 1, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 1, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.6 OCCM Security Certification Declaration

Release 23.4.3

Table 3-23 OCCM Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jul 04, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 20, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jul 04, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jul 04, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.2

Table 3-24 OCCM Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Apr 05, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 20, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 05, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 12, 2024 No findings
Overall Summary: No critical or severity 1 security issues were found during internal security testing.
Release 23.4.1

Table 3-25 OCCM Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 22, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 20, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 22, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 25, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.0

Table 3-26 OCCM Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 7, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 20, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 7, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 7, 2023 No findings

3.5.7 Policy Security Certification Declaration

Table 3-27 Policy 23.4.6

Compliance Test Description Test Completion Date Summary

Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 11 Jul 2024 No unmitigated critical or high findings

Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

 17 Jun 2024 No unmitigated critical or high findings

Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

 20 Aug 2024 No unmitigated critical or high findings

Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

 16 Sep 2024 No findings

Table 3-28 Policy 23.4.5

Compliance Test Description Test Completion Date Summary

Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 01 Jul 2024 No unmitigated critical or high findings

Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

 20 Jun 2024 No unmitigated critical or high findings

Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

 12 Jul 2024 No unmitigated critical or high findings

Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

 09 Aug 2024 No findings

Policy 23.4.4

Table 3-29 Policy Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Jun 11, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

May 07, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Jun 17, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Jun 17, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Policy 23.4.3

Table 3-30 Policy Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Feb 17, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

March 20, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

April 16, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

March 20, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Policy 23.4.2

Table 3-31 Policy Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 6, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 20, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 18, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 27, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Policy 23.4.1

Table 3-32 Policy Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Nov 27, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 14, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 5, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Feb 7, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Policy 23.4.0

Table 3-33 Policy Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Nov 29, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 14, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 4, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 14, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.8 SCP Security Certification Declaration

SCP 23.4.3

Table 3-34 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 July 16, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

July 16, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

July 16 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

July 16, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

SCP 23.4.2

Table 3-35 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 April 18, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

April 18, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

April 18, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

April 18, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

SCP 23.4.1

Table 3-36 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 1, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Dec 1, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 1, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 1, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

SCP 23.4.0

Table 3-37 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 1, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Dec 1, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 1, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 1, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

3.5.9 SEPP

Release 23.4.2

Table 3-38 SEPP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 July 15, 2023 No unmitigated critical or high findings. Scan done through Fortify.
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

NA No unmitigated critical, high, medium, and low findings. Scan done through RestFuzz.
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

July 15, 2024 No unmitigated critical or high findings. Scan done through Blackduck.
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

July 15, 2024 No issues found. Scan done through McAfee.

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.1

Table 3-39 SEPP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 April 12, 2024 No unmitigated critical or high findings. Scan done through Fortify.
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

April 12, 2024 No unmitigated critical, high, medium, and low findings. Scan done through RestFuzz.
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

April 12, 2024 No unmitigated critical or high findings. Scan done through Blackduck.
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

April 12, 2024 No issues found. Scan done through McAfee.

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 23.4.0

Table 3-40 SEPP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Dec 6, 2023 No unmitigated critical or high findings. Scan done through Fortify.
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Dec 6, 2023 No unmitigated critical, high, medium, and low findings. Scan done through RestFuzz.
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Dec 6, 2023 No unmitigated critical or high findings. Scan done through Blackduck.
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 6, 2023 No issues found. Scan done through McAfee.

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.10 UDR Security Certification

UDR 23.4.2

Table 3-41 UDR Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 June 12, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

June 12, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

June 12, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

June 12, 2024 No findings
UDR 23.4.1

Table 3-42 UDR Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 April 17, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

April 17, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

April 17, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

April 17, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

UDR 23.4.0

Table 3-43 UDR Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Nov 24, 2023 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Nov 24, 2023 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Nov 28, 2023 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Dec 4, 2023 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6 Documentation Pack

All documents for Oracle Communications Cloud Native Core (CNC) 3.23.4 are available for download on SecureSites and MOS.

To learn how to access and download the documents from SecureSites, see Oracle users or Non-Oracle users.

To learn how to access and download the documentation pack from MOS, see Accessing NF Documents on MOS.

The NWDAF documentation is available on Oracle Help Center (OHC).