1. Cloud Native Core Release Notes
  2. Media and Documentation

3 Media and Documentation

3.1 Media Pack

This section lists the media package for Oracle Communications Cloud Native Core 3.24.1. To download the media package, see MOS.

To learn how to access and download the media package from MOS, see Accessing NF Documents on MOS.

Note:

The information provided in this section is accurate at the time of release but is subject to change. See the Oracle software delivery website for the latest information.

Table 3-1 Media Pack Contents for Oracle Communications Cloud Native Core 3.24.1

Description NF Version ATS Version Upgrade Supported
Oracle Communications Cloud Native Core, Binding Support Function (BSF) 24.1.0 24.1.0 BSF 24.1.0 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Binding Support Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Configuration Console (CNC Console) 24.1.1 NA CNC Console 24.1.1 supports fresh installation and upgrade from 24.1.0, 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Configuration Console Installation, Upgrade, and Fault Recovery Guide.

Note: CNC Console supports N-2 NF versions during upgrade window. For example, CNC Console 24.1.x supports SCP 24.1.x, 23.4.x, and 23.3.x. Any newly added features in CNC Console which have NF dependency in latest release may not be available in previous release.

Oracle Communications Cloud Native Configuration Console (CNC Console) 24.1.0 NA CNC Console 24.1.0 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Configuration Console Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 24.1.2 NA CNE 24.1.2 supports fresh installation and upgrade from 23.4.x and 24.1.x. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 24.1.1 NA CNE 24.1.1 supports fresh installation and upgrade from 23.4.x and 24.1.0. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Cloud Native Environment (CNE) 24.1.0 NA CNE 24.1.0 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Cloud Native Environment Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Operations Services Overlay (OSO) 24.1.0 NA OSO 24.1.0 supports fresh installation and upgrade from 23.3.1. For more information, see Oracle Communications Operations Services Overlay Installation and Upgrade Guide.
Oracle Communications Cloud Native Core, Certificate Management (OCCM) 24.1.0 NA OCCM 24.1.0 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Certificate Management Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, cnDBTier 24.1.2 NA cnDBTier 24.1.2 supports fresh installation and upgrade from 23.3.x, 23.4.x, and 24.1.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, cnDBTier 24.1.1 NA cnDBTier 24.1.1 supports fresh installation and upgrade from 23.3.x, 23.4.x, and 24.1.0. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, cnDBTier 24.1.0 NA cnDBTier 24.1.0 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, cnDBTier Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Exposure Function (NEF) 24.1.0 24.1.0 NEF 24.1.0 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Exposure Function Installation, Upgrade, and Fault Recovery Guide .
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 24.1.3 24.1.3 NRF 24.1.3 supports fresh installation and upgrade from 23.4.x and 24.1.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 24.1.2 24.1.2 NRF 24.1.2 supports fresh installation and upgrade from 23.4.x and 24.1.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 24.1.1 24.1.1 NRF 24.1.1 supports fresh installation and upgrade from 23.4.x and 24.1.0. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Repository Function (NRF) 24.1.0 24.1.0 NRF 24.1.0 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Repository Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Slice Selection Function (NSSF) 24.1.1 24.1.1 NSSF 24.1.1 supports fresh installation and upgrade from 23.4.x and 24.1.0. For more information, see Oracle Communications Cloud Native Core, Network Slice Selection Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Network Slice Selection Function (NSSF) 24.1.0 24.1.0 NSSF 24.1.0 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Network Slice Selection Function Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, OCI Adaptor 24.1.0 NA OCI Adaptor 24.1.0 supports fresh installation. For more information, see Cloud Native Core OCI Adaptor, NF Deployment in OCI Guide.
Oracle Communications Cloud Native Core, Converged Policy (Policy) 24.1.0 24.1.0 Policy 24.1.0 supports fresh installation and upgrade from 23.4.x. For more information, see Oracle Communications Cloud Native Core, Converged Policy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 24.1.2 24.1.2 SCP 24.1.2 supports fresh installation and upgrade from 23.3.x, 23.4.x, and 24.1.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Service Communications Proxy (SCP) 24.1.0 24.1.0 SCP 24.1.0 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Service Communication Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Security Edge Protection Proxy (SEPP) 24.1.0 24.1.0 SEPP 24.1.0 supports fresh installation and upgrade from 23.3.x and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Security Edge Protection Proxy Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Unified Data Repository (UDR) 24.1.1 24.1.1 UDR 24.1.1 supports fresh installation and upgrade from 23.3.x, 23.4.x, and 24.1.0. For more information, see Oracle Communications Cloud Native Core, Unified Data Repository Installation, Upgrade, and Fault Recovery Guide.
Oracle Communications Cloud Native Core, Unified Data Repository (UDR) 24.1.0 24.1.0 UDR 24.1.0 supports fresh installation and upgrade from 23.3.x, and 23.4.x. For more information, see Oracle Communications Cloud Native Core, Unified Data Repository Installation, Upgrade, and Fault Recovery Guide.

3.2 Compatibility Matrix

The following table lists the compatibility matrix for each network function:

Table 3-2 Compatibility Matrix

CNC NF NF Version CNE cnDBTier CDCS OSO ASM S/W Kubernetes CNC Console OCNADD OCCM OCI Adaptor
BSF 24.1.0
  • 24.1.x
  • 23.4.x
  • 24.1.x
  • 23.4.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.28.x
  • 1.27.x
  • 24.1.x
  • 23.4.x
 NA 24.1.x NA
CNC Console 24.1.1
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.9.8
  • 1.28.x
  • 1.27.x
  • 1.26.x
 NA 24.1.x 24.1.x 24.1.x
CNC Console 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.9.8
  • 1.28.x
  • 1.27.x
  • 1.26.x
 NA 24.1.x 24.1.x 24.1.x
CNE 24.1.2 NA NA NA NA NA 1.28.x NA NA NA NA
CNE 24.1.1 NA NA NA NA NA 1.28.x NA NA NA NA
CNE 24.1.0 NA NA NA NA NA 1.28.x NA NA NA NA
cnDBTier 24.1.2
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA NA NA NA
  • 1.28.x
  • 1.27.x
  • 1.26.x
 NA NA NA 24.1.x
cnDBTier 24.1.1
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA NA NA NA
  • 1.28.x
  • 1.27.x
  • 1.26.x
 NA NA NA 24.1.x
cnDBTier 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA NA NA NA
  • 1.28.x
  • 1.27.x
  • 1.26.x
 NA NA NA 24.1.x
OCCM 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA
  • 23.4.x
  • 23.3.x
 NA NA
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x NA NA NA
OSO 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA NA NA NA
  • 1.28.x
  • 1.27.x
  • 1.26.x
 NA NA NA NA
NEF 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA NA NA
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x NA NA NA
NRF 24.1.3
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x 24.1.x 24.1.x 24.1.x
NRF 24.1.2
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x 24.1.x 24.1.x 24.1.x
NRF 24.1.1
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x 24.1.x 24.1.x 24.1.x
NRF 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 23.2.x
 23.4.x 1.14.6
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x 24.1.x 24.1.x 24.1.x
NSSF 24.1.1
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA 23.4.x 1.14.6
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x NA NA NA
NSSF 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA 23.4.x 1.14.6
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x NA NA NA
Policy 24.1.0
  • 24.1.x
  • 23.4.x
  • 24.1.x
  • 23.4.x
 NA
  • 23.4.x
  • 23.2.x
 1.14.6
  • 1.28.x
  • 1.27.x
  • 24.1.x
  • 23.4.x
 NA 24.1.x NA
SCP 24.1.2
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 1.14.6
  • 1.11.8
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x 24.1.x 24.1.x 24.1.x
SCP 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 1.14.6
  • 1.11.8
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x 24.1.x 24.1.x 24.1.x
SEPP 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
  • 23.4.x
  • 23.3.x
 1.14.6
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x NA 24.1.x 24.1.x
UDR 24.1.1
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x NA NA NA
UDR 24.1.0
  • 24.1.x
  • 23.4.x
  • 23.3.x
  • 24.1.x
  • 23.4.x
  • 23.3.x
 NA
  • 23.4.x
  • 23.3.x
  • 23.2.x
  • 1.14.6
  • 1.11.8
  • 1.28.x
  • 1.27.x
  • 1.26.x
 24.1.x NA NA NA

Note:

  • For seamless integration and optimal performance of CNC NFs on third party platform, the third party platform needs to be compatible with the specified Kubernetes version.

3.3 3GPP Compatibility Matrix

The following table lists the 3GPP compatibility matrix for each network function:

Table 3-3 3GPP Compatibility Matrix

CNC NF NF Version 3GPP
BSF 24.1.0
  • 3GPP TS 23.501 v17.7.0
  • 3GPP TS 23.502 v17.7
  • 3GPP TS 23.503 V17.7
  • 3GPP TS 29.500 v17.7.0
  • 3GPP TS 29.510 v17.7
  • 3GPP TS 29.513 V17.7
  • 3GPP TS 29.521 v17.7.0
  • 3GPP TS 33.501 V17.7.0
CNC Console 24.1.0 NA
CNE 24.1.x NA
cnDBTier 24.1.x NA
NEF 24.1.0

  • 3GPP TS 29.122 16.10.0, 17.10.0

  • 3GPP TS 23.222 16.9.0

  • 3GPP TS 23.501 16.10.0

  • 3GPP TS 23.502 16.10.0, 17.10.0
  • 3GPP TS 29.514 16.10.0, 17.9.0
  • 3GPP TS 29.521 16.10
  • 3GPP TS 29.503 16.14.0, 17.11.0
  • 3GPP TS 29.515 16.7
  • 3GPP TS 29.222 16.5.0
  • 3GPP TS 29.500 16.6.0
  • 3GPP TS 29.501 16.6.0
  • 3GPP TS 29.522 16.10.0, 17.10.0
  • 3GPP TS 29.510 16.6.0
  • 3GPP TS 29.591 16.3.0
  • 3GPP TS 29.518 16.14.0, 17.10.0
  • 3GPP TS 33.501 17.7.0
  • 3GPP TS 29.504 16.10.0
  • 3GPP TS 29.519 16.11.0
  • 3GPP TS 29.508 16.11.0
  • 3GPP TS 23.682 16.9.0
  • 3GPP TS 29.337 16.1.0
  • 3GPP TS 29.214 16.7.0
  • 3GPP TS 32.291 16.14
  • 3GPP TS 32.290 16.10.0
  • 3GPP TS 32.254 16.6.0
  • 3GPP TS 29.338 17.1.0
  • 3GPP TS 23.040 17.2.0
NRF 24.1.x
  • 3GPP TS 29.510 v15.5
  • 3GPP TS 29.510 v16.3.0
  • 3GPP TS 29.510 v16.7
NSSF 24.1.x
  • 3GPP TS 29.531 v15.5.0
  • 3GPP TS 29.531 v16.5.0
  • 3GPP TS 29.531 v16.8.0
  • 3GPP TS 29.501 v16.10.0
  • 3GPP TS 29.502 v16.10.0
OSO 24.1.0 NA
OCCM 24.1.0
  • 3GPP TS 33.310-h30
  • 3GPP TR 33.876 v.0.3.0
Policy 24.1.0
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 29.500v16.9.0
  • 3GPP TS 23.501v16.9.0
  • 3GPP TS 23.502v16.9.0
  • 3GPP TS 23.503v16.9.0
  • 3GPP TS 29.504v16.9.0
  • 3GPP TS 29.507v16.9.0
  • 3GPP TS 29.510v16.9.0
  • 3GPP TS 29.512v16.14
  • 3GPP TS 29.513v16.9.0
  • 3GPP TS 29.514v16.14.0
  • 3GPP TS 29.214v16.5.0
  • 3GPP TS 29.518v16.13.0
  • 3GPP TS 29.519v16.8
  • 3GPP TS 29.520v16.8
  • 3GPP TS 29.521v16.8.0
  • 3GPP TS 29.525v16.9.0
  • 3GPP TS 29.594v16.7
  • 3GPP TS 23.203 v16.2.0
  • 3GPP TS 29.212 V16.3.0
  • 3GPP TS 29.213v16.3
  • 3GPP TS 29.214 v16.2.0
  • 3GPP TS 29.219 v16.0.0
  • 3GPP TS 29.335v16.0
SCP 24.1.0 3GPP TS 29.500 R16 v16.6.0
SEPP 24.1.0
  • 3GPP TS 23.501 v17.6.0
  • 3GPP TS 23.502 v17.6.0
  • 3GPP TS 29.500 v17.8.0
  • 3GPP TS 29.501 v17.7.0
  • 3GPP TS 29.573 v17.6.0
  • 3GPP TS 29.510 v17.7.0
  • 3GPP TS 33.501 v17.7.0
  • 3GPP TS 33.117 v17.1.0
  • 3GPP TS 33.210 v17.1.0
UDR 24.1.x
  • 3GPP TS 29.505 v15.4.0
  • 3GPP TS 29.504 v16.2.0
  • 3GPP TS 29.519 v16.2.0
  • 3GPP TS 29.511 v17.2.0

Note:

Refer to the Compliance Matrix spreadsheet for details on NFs' compliance with each 3GPP version mentioned in this table.

3.4 Common Microservices Load Lineup

This section provides information about common microservices and ATS for the specific NF versions in Oracle Communications Cloud Native Core Release 3.24.1.

Table 3-4 Common Microservices Load Lineup for Network Functions

CNC NF NF Version Alternate Route Svc App-Info ASM Configuration ATS Framework Config-Server Debug-tool Egress Gateway Ingress Gateway Helm Test Mediation NRF-Client Perf-Info
BSF 24.1.0 24.1.5 24.1.4 24.1.0 24.1.1 24.1.4 24.1.1 24.1.5 24.1.5 24.1.1 NA 24.1.5 24.1.4
CNC Console 24.1.1 NA NA NA NA NA 24.1.3 NA 24.1.10 24.1.2 NA NA NA
CNC Console 24.1.0 NA NA NA NA NA 24.1.1 NA 24.1.5 24.1.1 NA NA NA
NEF 24.1.0 NA 24.1.2 NA 24.1.1 24.1.2 24.1.1 24.1.4 24.1.4 24.1.1 NA 24.1.5 24.1.2
NRF 24.1.3 24.1.9 24.1.3 24.1.0 24.1.1 NA 24.1.1 24.1.9 24.1.9 24.1.1 NA NA 24.1.3
NRF 24.1.2 24.1.9 24.1.3 24.1.0 24.1.1 NA 24.1.1 24.1.9 24.1.9 24.1.1 NA NA 24.1.3
NRF 24.1.1 24.1.7 24.1.3 24.1.0 24.1.1 NA 24.1.1 24.1.7 24.1.7 24.1.1 NA NA 24.1.3
NRF 24.1.0 24.1.5 24.1.3 24.1.0 24.1.1 NA 24.1.1 24.1.5 24.1.5 24.1.1 NA NA 24.1.3
NSSF 24.1.1 24.1.6 24.1.3 24.1.0 24.1.1 24.1.3 24.1.1 24.1.6 24.1.6 24.1.1 NA 24.1.5 24.1.3
NSSF 24.1.0 24.1.6 24.1.3 24.1.0 24.1.1 24.1.3 24.1.1 24.1.6 24.1.6 24.1.1 NA 24.1.5 24.1.3
OCCM 24.1.0 NA NA NA NA NA 24.1.1 NA NA 24.1.1 NA NA NA
Policy 24.1.0 24.1.5 24.1.4 24.1.0 24.1.1 24.1.4 24.1.1 24.1.5 24.1.5 24.1.1 NA 24.1.5 24.1.4
SCP 24.1.2 NA NA 24.1.0 24.1.2 NA 24.1.2 NA NA 24.1.1 24.1.1 NA NA
SCP 24.1.0 NA NA 24.1.0 24.1.1 NA 24.1.1 NA NA 24.1.1 24.1.0 NA NA
SEPP 24.1.0 24.1.5 24.1.3 24.1.0 24.1.1 24.1.3 24.1.1 23.4.5 24.1.5 24.1.1 24.1.0 24.1.5 24.1.3
UDR 24.1.1 24.1.8 24.1.3 24.1.0 24.1.1 24.1.3 24.1.1 24.1.8 24.1.8 24.1.1 NA 24.1.5 24.1.3
UDR 24.1.0 24.1.5 24.1.3 24.1.0 24.1.1 24.1.3 24.1.1 24.1.5 24.1.5 24.1.1 NA 24.1.5 24.1.3

3.5 Security Certification Declaration

This section lists the security tests and the corresponding dates of compliance for each network function:

3.5.1 BSF Security Certification Declaration

Release 24.1.0

Table 3-5 BSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 25, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Mar 06, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 21, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 22, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.2 CNC Console Security Certification Declaration

Release 24.1.1

Table 3-6 CNC Console Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Feb 28, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Feb 28, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 15, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 16, 2024 No findings
Release 24.1.0

Table 3-7 CNC Console Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Feb 28, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Feb 28, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 15, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 16, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.3 NRF Security Certification Declaration

Release 24.1.3

Table 3-8 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 August 13, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

August 13, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

August 13, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

August 13, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 24.1.2

Table 3-9 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 August 13, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

August 13, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

August 13, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

August 13, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 24.1.1

Table 3-10 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 May 30, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

May 30, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

May 30, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

May 30, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 24.1.0

Table 3-11 NRF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 1, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Mar 1, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 1, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 1, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.4 NEF Security Certification Declaration

Release 24.1.0

Table 3-12 NEF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Apr 17, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Feb 19, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 17, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 17, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.5 NSSF

Release 24.1.1

Table 3-13 NSSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 June 8, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

June 8, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

June 8, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

June 8, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

Release 24.1.0

Table 3-14 NSSF Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 1, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Mar 1, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 1, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 1, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.6 OCCM Security Certification Declaration

Release 24.1.0

Table 3-15 OCCM Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Apr 12, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Feb 29, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Apr 12, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 16, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.7 Policy Security Certification Declaration

Policy 24.1.0

Table 3-16 Policy Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 25, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Mar 06, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 21, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Apr 22, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.8 SCP Security Certification Declaration

SCP 24.1.2

Table 3-17 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 October 16, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

October 16, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

October 16, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

October 16, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

SCP 24.1.0

Table 3-18 SCP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 April 13, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

April 13, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

April 13, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

April 13, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found or pending during internal security testing.

3.5.9 SEPP

Release 24.1.0

Table 3-19 SEPP Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Mar 7, 2024 No unmitigated critical or high findings. Scan done through Fortify.
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Mar 7, 2024 No unmitigated critical, high, medium, and low findings. Scan done through RestFuzz.
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 7, 2024 No unmitigated critical or high findings. Scan done through Blackduck.
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 7, 2024 No issues found. Scan done through McAfee.

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.5.10 UDR

UDR 24.1.1

Table 3-20 UDR Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Feb 29, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Feb 29, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 7, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 6, 2024 No findings
UDR 24.1.0

Table 3-21 UDR Security Certification Declaration

Compliance Test Description Test Completion Date Summary
Static Source Code Analysis

Additional Info: Assesses adherence to common secure coding standards

 Feb 29, 2024 No unmitigated critical or high findings
Dynamic Analysis (including fuzz testing)

Additional Info: Tests for risk of common attack vectors such as OWASP Top 10 and SANS 25

Feb 29, 2024 No unmitigated critical or high findings
Vulnerability Scans

Additional Info: Scans for CVEs in embedded 3rd party components

Mar 7, 2024 No unmitigated critical or high finding
Malware Scans

Additional Info: Scans all deliverable software packages for the presence of known malware

Mar 6, 2024 No findings

Overall Summary: No critical or severity 1 security issues were found during internal security testing.

3.6 Documentation Pack

All documents for Oracle Communications Cloud Native Core (CNC) 3.24.1 are available for download on SecureSites and MOS.

To learn how to access and download the documents from SecureSites, see Oracle users or Non-Oracle users.

To learn how to access and download the documentation pack from MOS, see Accessing NF Documents on MOS.

The NWDAF documentation is available on Oracle Help Center (OHC).