POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 7
FUJITSU COMMERCIAL IN CONFIDENCE
Document Title: ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3
Document Reference: REQ/GEN/ACS/0002
Release: Release specific
Abstract: This document comprises the Acceptance Report for HNG-X
Acceptance Gateway 3. It provides details of the Acceptance status
of all POL requirements associated with this Acceptance Gateway
and is for submission to the HNG-X Acceptance Board.
Document Status: APPROVED
Author & Dept: Dave Cooke
HNG-X Acceptance Manager
External Distribution: Neil Williams, Phil Norton, Mark Burley, David Smith,
Liz Tuddenham, lan Trundell
Security Risk No
Assessment Confirmed
Approval Authorities:
lame Role
Phil Norton POL Requirements and
Acceptance Manager
Signature
Date
See Dimensions for record
Dave Cooke FS HNG-X Acceptance Manager
See Dimensions for record
See HNG-X Reviewers/Approvers Matrix (PGM/DCM/ION/0001) for guidance on who should approve.
© Copyright Post Office Limited GCNIANEOT. bi Seema Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED Page No: 1 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
0 Document Control
0.1 Table of Contents
DOCUMENT CONTROL
Table of Contents
Document History
Review Detail:
Associated Documents (Internal & External)
Abbre'
Glossary
Changes Expe: .
Accuracy ....
Security Risk Assessment ..
INTRODUCTION...
ic Io
RI In kE al ISISISISISIRISII
ols pol [e0 Loo Na fom lends feo lo I
Acceptance Board assessment checklist for AG3
REVIEW OF STATUS OF ACCEPTANCE CRITERIA
Functional Requirements — Use Case:
Non-Functional Requirements and Criteria
2.3 Delayed (Deferred) Test status...
2.3.1 Delayed Test Status - non-testable criteria
2.3.2 Delayed Test Status — non-functional testable criteria
2.4 Failed Status
Use Case Fai
x Non-Testable Fails
2.4.3 Testable Non-Functional Fail
3 REVIEW OF STATUS OF ACCEPTANCE INCIDENTS...........cseceeee
3.
3.1 Acceptance Incident Aggregation...
3.2 Acceptance Incidents arising from Agreed Deferrals
3.2.1 Acceptance Incident details for type AI-AD ......
3.2.2 Aggregated Acceptance Incident details for tyoe Al-AD
3.3 Acceptance Incident arising from non-testable criteria 40
3.3.1 Acceptance Incident details for type AI-NT... 40
3.3.2 Aggregated Acceptance Incident details for tyoe Al-NT 40
3.4 Acceptance Incident arising from Testable criteria 41
3.4.1 Acceptance Incident details for type AI-TS...
3.5 Acceptance Incident total...
A APPLICABLE POL REQUIREMENTS AND ACCEPTANCE CRITERIA............ 42
© Copyright Post Office Limited GCNIANEOT. bi Seema Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 20f46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3
FUJITSU COMMERCIAL IN CONFIDENCE
B_ DEFINITION OF ACCEPTANCE METHODS ..
C DEFINITION OF ACCEPTANCE INCIDENT SEVERITY A
D ACCEPTANCE BOARD RECOMMENDATION OPTIONG............000+ 45
0.2 Document History
Version No. I Date Summary of Changes and Reason for Issue Associated Change -
CP/PEAK/PPRR
Reference
04 28-OCT-2009 _I Initial version
02 02-NOV-2009 _I Updated following joint FS / POL review
03 03-NOV-2009 _I Updated following joint FS / POL review
04 06-NOV-2009 I Updated the following sections: -
. Section 3.3 to add additional defect 12489 (MIG-3017),
12505 (ARC-422)
* — Section 3.4.2 to clarify the status of the Use Case failures
* — Section 3.4 to add additional defects 12251 & 12270,
and revise the Al severities
* General updates to the number and status of the
‘deferred test’ requirements
© Copyright Post Office Limited GCNIANEOT. bi Seema Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 3 0f46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 af
FUJITSU COMMERCIAL IN CONFIDENCE
Version No. I Date Summary of Changes and Reason for Issue Associated Change -
CP/PEAK/PPRR
Reference
04-Dec-2009 _I Consolidation of changes agreed via interim reviews and
working drafts. Updates following Acceptance Criteria status
changes and to the following sectioi
* Section 1.1 — statement added concerning non-
acceptance defects
* Section 1.2 ~revised layout
* — Section 2.2.1 — layout changes and inclusion of tables for
known ‘Delayed Test criteria
* Section 2.2 - Update of table
. Section 2.2.1 — Update of tables to include all criteria that
are known to require future testing
* — Section 2.3.1.2- general revisions to tables to update
test status, and to reflect movement of some criteria to
section 2.2.1
* Section 2.3.2.2- general revisions to tables to update
test status, and to reflect movement of some criteria to
section 2.2.1
* Section 2.3.5 - Addition of SEC-3118 — now reinstated at
AG3
* Section 2.3.6 - Updates to test status
* Section 3 — General updates to reflect additional defects /
Acceptance Incidents and adjustments to totals
06 08-Dec-2009 _I Updates following joint review. Changes to the following
sections: -
* Section 1.2 — update to figures
‘* Section 2.2 — inclusion of ‘Delayed Test’ column and
adjustment of figures
* — Section 2.2.1 — Update of tables
* Section 2.3 - removal of sections as necessary as
requirements are moved to ‘Delayed Test’ section of
‘Failed’ section.
07 09-Dec-2009 _I Updates to reflect change of requirements and defect status.
Changes to the following sections: -
* Section 1.2 — update to figures
* Section 2.2 — update to figures arising from MIG-3162
now passed
* Section 3 - update to figures arising from defects now
being passed
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref: REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date 23-Feb-2010
STORED PageNo: 4 0f 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 af
FUJITSU COMMERCIAL IN CONFIDENCE
Version No. I Date Summary of Changes and Reason for Issue Associated Change -
CP/PEAK/PPRR
Reference
1.0 40-Dec-2009 —_I Updates arising from joint review. Changes to section:-
* Section 1.2 — update to layout and figures
* Sections 2.1 & 2.2 adjustment to column headings and
figures
* — Section 2.3.3.2 — update to status details
* Section 2.4.3 — update to advise which defects will be
subject to discussion at RAB
* Section 3 - Addition of new Als for defects 12797 and
12845,
* General — include defects numbers alongside Al
references
14 17-Dec-2009 —_I Updates arising from AG3 Acceptance Board. Changes to
sections: -
* Section 1.2 — update to reference known defects / Als
that are pre-requisites to progression into Pilot
‘* General ~ inclusion of Al severity against any Al
references
* Section 3 — include summary details of the medium Als
alongside relevant tables.
* Section 2.3.3.2 - Move HLP-93 & HLP-131 to this
section.
* General — updates as required to reflect current QC
status
12 22-Dec-2009 _I Updates to reflect latest QC status. Changes to sections: -
* Section 1.2 Note 1 — updated to reflect latest position
© Copyright Post Office Limited GCNIANEOT. bi Seema Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 5 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 af
FUJITSU COMMERCIAL IN CONFIDENCE
Version No. I Date Summary of Changes and Reason for Issue Associated Change -
CP/PEAK/PPRR
Reference
08-Jan-2010 I Updates to reflect outcome of AG3 Board of 30/12/09 and
latest QC status. Changes to sections: -
* Section 1.2 and note 1
* Section 2.2 — revision of figures
* General — update to tables to reflect latest QC status
* Appendix E — inclusion of new appendix to record
summary of Acceptance Incidents that are now closed.
. Section 2.3.1 — removed as Use Cases now passed
* Section 3 - Al updates:-
© ALAD-154 (High) - card misread - closed
o Defect 12540 / Al-AD-148 (Medium) — date
offset — closed
© Defect 12845 / Al-TS-028 (Medium) - Help file
distribution — closed
o Status of defect 12795 / Al-TS-031 to be
reviewed
14 20-Jan-2010 —_I Updates to reflect status changes and progress against
Acceptance Incidents. Changes to sections:-
* Section 1.2 — Update to figures and notes
+ Section 3 — update to figures
o AI-TS-030 — Orange WWAN — now a
Medium Al as workaround in place
© ALTS-031 — Router syslog event
messages — now a Low Al
© New AI-TS-032 (Low) introduced
concerning ‘hourglass’ visible in Help
* Appendix E — Update to record closure of previous
Is
© AL-TS-029 — Ref data distribution — now
closed
o Al-AD-103 — Duplicate of Al-AD-071
20 23-Feb-2010 Updated to baselined version following decision at AG3
Acceptance Board of 21/01/2010 - see minutes AG3-06 / item
AG3.60.
Notes in sections 1.2 removed.
Acceptance decision included in section 1.3.
© Copyright Post Office Limited GCNIANEOT. bi Seema Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 6 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 af
FUJITSU COMMERCIAL IN CONFIDENCE
0.3 Review Details
See HNG-X Reviewers/Approvers Matrix (PGM/DCM/ION/0001) for guidance on completing the lists below. You
may include additional reviewers if necessary, but you should generally not exclude any of the mandatory reviewers
shown in the matrix for the document type you are authoring.
Review Comments by
Review Comments to david.cooké GRO & RMGADocumentManagement¢ “GRO
Mandatory Review
Role Name
HNG-X Programme Manager Alan D’Alvarez
HNG-X Solution Architect Jim Sweeting
POL HNG-X Programme Manager Mark Burley
POL HNG-X Requirements Manager Phil Norton
POL HNG-X Acceptance Manager Neil Williams
POL HNG-X Design Authority lan Trundell
HNG-X Testing Manager Debbie Richardson
POL HNG-X Testing Manager Lee Farman
Optional Revie
Role Name
Head of Programmes — Private Sector Business Unit Mike Wood
Head of Change and IS Dave Smith
RMGA Commercial Director Guy Wilkerson
POL HNG-X Senior Contracts and Service Manager Liz Tuddenham
for Informatior le
ution list to a minimum
di
Position/Role Name
(*) = Reviewers that retuned comments
© Copyright Post Office Limited GCNIANEOT. bi Seema Ref: REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED Page No: 7 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 al
FUJITSU COMMERCIAL IN CONFIDENCE
0.4 Associated Documents (Internal & External)
Reference Version Date Title Source
PGM/DCM/TEM/0001 I 5.0 03 June 2009 RMGA HNG-X Generic Document Dimensions
(DO NOT REMOVE) Template
Schedule B6.3 - HNG-X Acceptance I Dimensions
Process
Unless a specific version is referred to above, reference should be made to the current approved
versions of the documents.
0.5 Abbreviations
Abbreviation Definition
0.6 Glossary
Term Definition
0.7 Changes Expected
Version numbers all embedded documents will be updated to align with final baseline version,
0.8 Accuracy
Fujitsu Services endeavours to ensure that the information contained in this document is correct but, whilst every
effort is made to ensure the accuracy of such information, it accepts no liability for any loss (however caused)
sustained as a result of any error or omission in the same.
0.9 Security Risk Assessment
Security risks have been assessed and it is considered that there are no security risks relating specifically to this
document.
© Copyright Post Office Limited GCNIANEOT. bi Seema Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 8 of 46
POL00032999
POL00032999
o ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
1. Introduction
This document comprises the HNG-X Acceptance Report to the HNG-X Acceptance Board for the
assessment of the progression through Acceptance Gateway 3 (AG3) — Readiness for Pilot.
The basis for HNG-X Acceptance is defined in Schedule B6.3 and some sections are reproduced within
this report.
The POL Requirements and Criteria, contained in the HNG-X Requirements Catalogue - POL DOORS
archive v1.42, and associated with AG3 are contained in Appendix A.
The definition of the HNG-X Acceptance Methods is contained in Appendix B.
The definition of the Acceptance Incident Severity is contained in Appendix C.
1.1. Scope
The purpose of this Acceptance Board is: -
‘To agree the Acceptance status of the relevant Release (HNG-X Release 1 for AG3) and provide a
recommendation to the ‘Joint Release Authorisation Board'.' The proposed options that this Board can
select from are described in Appendix D.
This recommendation is based on an assessment of the status of the applicable POL Requirements and
Acceptance Criteria and of the stage progression criteria for AG3 are described in Schedule B6.3.
The primary assessment concerns the status of any Acceptance Incidents as follows:-
Progression through HNG-X Acceptance Gateway 3 shall occur once all of the following have
been satisfied for the HNG-X Acceptance Criteria allocated to achieving progression through the
respective HNG-X Acceptance Gateway:
(a) subject to paragraph 4.6 (of Schedule B6.3 which refers to dispute handling, defect
aggregation and deferred tests), all such HNG-X Acceptance Criteria have been achieved;
(b) activities leading to HNG-X Acceptance Gateway 1 (named “Readiness for Router Roll—
Out (Z1)” and HNG-X Acceptance Gateway 2 (named “Readiness for Data Centre Migration”)
must be completed and these two HNG-X Acceptance Gateways passed through in accordance
with paragraph 4.5.4.2 as pre-requisites to achieve HNG-X Acceptance Gateway 3.
(b) there are no outstanding HNG-X High Severity Acceptance Incidents;
(c) the number of outstanding HNG-X Medium Severity Acceptance Incidents is five or fewer
and an agreed workaround exists for each of them; and
(d) there is an agreed workaround for all outstanding HNG-X Low Severity Acceptance
Incidents except for those which the Parties agree do not require a workaround.
(e) details of all Non Incidents are recorded, although they shall have no impact upon
Acceptance Gateway progression
These together with other supporting factors are summarised in the following checklists for AG3.
It should be noted that there are also defects that are not linked to POL Requirements and which are not
the subject of Acceptance Incidents. A separate assessment of the status and significance of these has
been undertaken and this will be available for consideration at the Release Authorisation Board.
© Copyright Post Office Limited CEAMANEOT, th RememaSEEE Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 9 of 46
POL00032999
POL00032999
o ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
1.2 Acceptance Board assessment checklist for AG3
References in this table refer to the HNG-X Acceptance Schedule B6.3.
Programme Stages.
Schedule 6.3 paragraph 2.2.4 identifies the three key stages during which Test and Validation.
the HNG-X Acceptance Process takes place.
Acceptance Gateways.
Schedule 6.3 paragraph 4.3 identifies three key HNG-X Acceptance Acceptance Gateway 3.
Gateways controlling progression through the HNG-X Acceptance Process
Stages plus two additional Acceptance Gateways. First of three key HNG-X Check
Acceptance Gateways. list.
Sequence.
The sequence of HNG-X Acceptance Process stages and the order of
Passage through both AG 1 &
precedence for Acceptance Gateways is defined in schedule 6.3 section 2.2 AG2
The HNG-X Acceptance Plan.
For all HNG-X Requirements, Fujitsu Services is responsible for
producing, within the timescale agreed between the Parties,
evidence to demonstrate that the relevant HNG-X Acceptance
Criterion has been met.
4.6.4 If, other than as a result of a Default of Fujitsu Services, it
is impossible for a test to be carried out when scheduled in the
HNG-X Acceptance Plan then that test becomes known as a
"Delayed Test". The non-occurrence of a Delayed Test at the
time originally scheduled in the HNG-X Acceptance Plan will not
prevent HNG-X Stage Progression, HNG-X Final Acceptance or
progression through HNG-X Acceptance Gateways 1 or 2.
Delayed Tests.
4.6.4 Delayed Tests will be carried out as soon as reasonably
practicable or at such later time as the Parties may agree
(which shall be no later than six months after HNG-X Final
Acceptance) provided that performance on that agreed date
does not, other than as a result of a Default of Fujitsu Services,
become impossible (in which event the Delayed Test shall be
carried out as soon as reasonably practicable).
Contract Schedule 6.3 will need revising (from v1.0) to change
the reference from Deferred Test to Delayed Test.
Achievement, Fulfilment & Compliance.
Gateway progression shall occur when 4.5.4.2 (a) subject to
paragraph 4.6, all (such) HNG-X Acceptance Criteria have been
achieved.
Tests have identified a number of HNG-X Acceptance Incidents
and these are summarised below. Otherwise, (and with the
exception of Delayed Tests), Test demonstrate that all other
HNG-X Acceptance Criteria have been met.
With the exception of those
tests agreed to be Delayed
Tests, all tests have been
carried out when scheduled in
the HNG-X Acceptance Plan.
The total number of
Requirements with one or
more Delayed Tests equals:
Fulfilment and Compliance.
With the exception of those
Requirements with Delayed
Tests and those that are the
subject of Acceptance
Incidents (noted below), all AG
3 Acceptance Criteria have
been achieved (4.5.1.1(a)).
Assessment of the HNG-X Requirements Catalogue; for Achievement,
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 10 of 46
POL00032999
POL00032999
o ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 7
FUJITSU COMMERCIAL IN CONFIDENCE
I Results in a defect that would render a key =
7 5 3 _I element of one or more of the Business =
@__I Capabilities and Support Facilities or a key
S I SB I elementot the infrastructure unfit tor 3 None allowed 0
g 2% _ I operational use. 2 (4.5.1.1 (c))#113.
8 2
=I 55 =
5 I $8 _ I Results ina defect that would cause
a of problems in the operational use of one or
o & % 2 I more Transaction types. 2 2
3 $=es 5 Five or fewer allowed and -
sa 20 2
«I 238 B
. & Sato eI
no] 28
oO 3 3 SE 2 each has an agreed workaround v
I but -
SG IPd sae g
i 3 q 2 3S 5 2 Rectification Plans are not v
@5 Eu required yet.
= age 2 a Results in a defect that does not cause any
= -& Q I adverse operational impact in the use of the ia limi
[4 54 28 <I Business Capabilities and Support Facilities, > Contract does not specify a limit 146
M IS I FB I oranetementofthe infrastructure, orcanbe I = on the number but -
o i2/8 < @ I addressed S
ro) = ge Z I bya Fujitsu Services workaround without any I ©
e g ge = adverse operational impact for Post Office. ® I each has an agreed workaround v
A 5 oss 3 (unless agreed otherwise) but -
gos 3
= a 5 = Rectification Plans are not v
= 9 I Sx required yet.
x £6 Was found: =
Pj = 2 I notto bea defect, not to have resulted from 5
* I SX _I the introduction of HNG-X or notto fall within I 2 Need not be counted for
2 2d the high, medium or low categories. I Acceptance but resolution will be 8
= & 2 5 managed in QC & Peak.
& E4
Defects not caused by Fujitsu Services:
4.6.2 If, following investigation by Fujitsu Services, an HNG-
X Acceptance Incident is found to have been caused solely
by a fault or deficiency in anything other than those elements
of HNG-X provided by Fujitsu Services, it shall not count
(towards Gateway Progression).
Need not be counted for
Acceptance but POL may need to 0
resolve.
Acceptance Disputes.
In accordance with Schedule 6.3 paragraph 4.6 the parties agree that: There are no unresolved v
Acceptance Disputes.
1.3 Acceptance Decision
The AG3 Acceptance Board (AG3-06) was held on 21/01/10 and approval to proceed through AG3 was
granted. The decision stated that ‘...it was agreed that the high priority fixes in “Reset 4” - to be
delivered as part of Maintenance Release 01.08 — could constitute a High Severity Al if not delivered in
time for High Volume Pilot (over 272 branches). As such, “Qualified Acceptance” at AG3 was agreed,
subject to the successful delivery of the high priority items in Reset 04.
Whilst not an exact match, this is the closet to the Acceptance Board Recommendation 3: ‘Proceed at
risk through Acceptance Gateway.’
These associated conditions were discussed at the corresponding Release Authorisation Board and
recorded in the minutes of that meeting.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 11 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
2 Review of status of Acceptance Criteria
The POL requirements for Acceptance Gateway 3 comprise all of the functional requirements
represented by the POL Use Cases and a set of the Non-Functional requirements.
2.1 Functional Requirements — Use Cases
There are 143 Use Cases which constitute the POL functional requirements. Their summary status is as
follows: -
Count of Status Status
Service Barrel Failed Failed I Passed I Grand Total
(Deferred Fix)
Banking 8 10 18
Branch Accounting 1 17 18
Branch Admin 2 8 10
Branch Support & 17 17
Control
Bureau de Change 7 7
ETU 3 1 4
lop 8 11 19
Postal Services 1 8 9
Retail & Stock Sales 1 1
Shared 1 5 13 19
Cash & Stock 3 18 21
Management
Grand Total 28 5 110 143
Key to Status
Failed (Deferred Fix) — This indicates that a Use Case has one or more defects associated with it, but
that the resolution of these defects have been agreed to be deferred to beyond start of Pilot.
Failed - This status indicates that a Use Case has one or more defects associated with it that has not yet
been resolved. See section 2.4.1. (Note that in this case these all relate to test reference data issues and
are classed as Non-Incidents).
Applicable defects are represented as Acceptance Incidents in section 3.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 12 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 7
FUJITSU COMMERCIAL IN CONFIDENCE
2.2 Non-Functional Requirements and Criteria
There are 753 non functional Acceptance Criteria associated with Acceptance Gateway 3. Their
summary status is as follows: -
Count of Status Status
Verification Method Delayed Failed Failed Passed Grand Total
Test (Deferred Fix)
Document Review 3 14 234 251
(21 with concession)
Design Walkthrough 139 139
(11 with concession)
Monitoring 2 2
Statement of Fact 42 42
(2 with concession)
Statement of 90 90
Obligation
(4 with concession)
Solution Test 15 16 6 129 166
(22 with concession)
Release Validation 1 3 2 57 63
Test
(6 with concession)
Grand Total 19 33 8 693 753
Key to Status
Deferred Test — This identifies the number of criteria that are subject to ‘deferred test’ status. See
section 2.3.
Failed (Deferred Fix) — Each Failed Criteria is shown in section 2.4. Applicable defects are represented
by an Acceptance Incident in section 3
Failed - This status indicates that a criterion has one or more defects associated with it that has not yet
been resolved. See section 2.4.3.1 (Note that in this case these defects have all been assessed as
having no POL Business Impact).
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref: REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED Page No: 13 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
2.3 Delayed (Deferred) Test status
The Schedule B6.3 acknowledges that there may be circumstances when previously scheduled testing
that was targeted for completion by this Acceptance Gateway cannot now take place. Providing that this
is not due to a contractual default by Fujitsu, and the parties agree, then the tests associated with a POL
requirement may be delayed — this is known in the contract as a ‘Deferred Test’. Fujitsu are still obliged
to carry out these ‘Deferred Tests’.
For this Acceptance Gateway, Either Fujitsu or Joint Test Team has requested that tests associated with
the following requirements are given this ‘Deferred Test’ status. Quality Centre does not record this
status and so the current QC status is shown for each criterion.
2.3.1 Delayed Test Status - non-testable criteria
The final testing of the following non-testable criteria has been agreed to be delayed.
Original Original Object text Acceptance Criteria I Verification I Status / Impact
Object Id Method
SEC-3138 I Risks identified in the I Evidence that all I DR The assessment of this
area of SQL injection I risks raised under criterion cannot conclude until
attacks (see SEC-3347) I Requirement SEC- the two criteria associated with
will be managed under I 3347 have been SEC-3347 have been
Change Control. addressed under the assessed.
Change Control
process. They are: -
SEC-3137 — see AI-NT-1001
(Medium)
&
SEC-3348 — Deferred Test
(QC status = No Run)
SEC-3061 I By provision of an I Review of I DR The assessment of this
appropriate architecture I documentation and criterion cannot conclude until
for HNG-X and I agreed waivers prior all other Security criteria have
associated service I to going live shows been assessed.
operation, Fujitsu I that all other security
Services shall protect I requirements have (QC status = No Run)
Post Office from liability I either been accepted
for information security I or, where not,
threats to a similar I waivers have been
extent that Post Office is I agreed by Post Office
protected by Baseline I Information Security.
Horizon unless
otherwise agreed with
Post Office Information
Security.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref: REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 14 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original Original Object text Acceptance Criteria I Verification I Status / Impact
Object Id Method
SEC-3060 I By provision of an I Review of I DR The assessment of this
appropriate architecture
for HNG-X and
associated service
operation, Fujitsu
Services shall protect
Post Office from liability
for information security
threats to a_ similar
extent that Post Office is
protected by Baseline
Horizon unless
otherwise agreed with
Post Office Information
Security.
documentation and
agreed waivers on
completion of ST
tests shows that all
other security
requirements have
either been accepted
or, where not,
waivers have been
agreed by Post Office
Information Security.
criterion cannot conclude until
all other Security criteria have
been assessed.
(QC status = No Run)
© Copyright Post Office Limited
2010
UNCONTROLLED IF PRINTED OR LOCALLY
COMMERCIAL IN CONFIDENCE
STORED
Ref: REQ/GEN/ACS/0002
Version: 2.0
Date: 23-Feb-2010
Page No: 15 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 7
FUJITSU COMMERCIAL IN CONFIDENCE
2.3.2 Delayed Test Status — non-functional testable criteria
The final testing of the following testable criteria has been agreed to be delayed.
2.3.2.1 Criteria associated with the Security Penetration Testing
Original Original Object text Acceptance Criteria I Verification I Status / Impact
Object Id Method
SEC-3115 I Branch Terminals shall I Evidence that I ST Final status of this criterion is
be bootable only from I attempts to boot from subject to the review and
their primary mass I other than the assessment of the Portcullis
storage device on the I primary mass report which is due in mid
terminal. storage device fail. January.
(QC Status = No Run)
SEC-3135 All new developments I Demonstration of I ST Final status of this criterion is
will protect databases I protection (either by subject to the review and
from SQL __ injection I simulation of attack assessment of the Portcullis
attacks mounted I or by other means) report which is due in mid
through data centre January.
ee adel Interim _ Status has been
communicated to POL and
identified that there were no
major issues.
This is subject to Acceptance
incident AIl-AD-129 (Low) /
defect 4567.
(QC Status = No Run)
SEC-3193 Any mobile backup or I As per the I ST Final status of this criterion is
secondary network I Requirement subject to the review and
produced within the assessment of the Portcullis
{CISP 8.5.1k} report which is due in mid
specification of the January.
requirement shall be
secured to the same
level as the primary
network.
(QC Status = No Run)
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref: REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 16 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original Original Object text Acceptance Criteria I Verification I Status / Impact
Object Id Method
SEC-3161 All HNG-X systems shall I Evidence of no I ST Final status of this criterion is
use private IP I reported incidence of subject to the review and
addresses (see I IP addresses being assessment of the Portcullis
RFC1918) which shall I exposed in this way report which is due in mid
not be exposed across I during the testing January.
the system boundary. phase. Interim efatus has been
communicated to POL and
identified that there were no
major issues.
(QC Status = Not Complete)
SEC-3177 I All RADIUS servers that I As per the I ST Final status of this criterion is
authenticate network I Requirement subject to the review and
access shall be secured assessment of the Portcullis
and segregated into report which is due in mid
logical network January.
ee te and be Interim status has been
f communicated to POL and
externally visible to identified that there were no
authorised domain users ‘
major issues.
only.
(QC Status = No Run)
SEC-3348 I A risk assessment will I Demonstration of I ST Final status of this criterion is
be undertaken for I protection (either by subject to the review and
retained functionality in I simulation of attack assessment of the Portcullis
the area of SQL I orby other means) report which is due in mid
injection attacks under January.
HNC, Interim status has been
communicated to POL and
identified that there were no
major issues.
(QC Status = No Run)
SEC-3144 I The HNG-X system I Demonstration of I ST Final status of this criterion is
shall not retrieve data
from any external web
service unless additional
security features are
agreed with Post Office
Information Security. For
the avoidance of doubt,
no security change is
required to the
connection to the DVLA
web service.
protection (either by
simulation of attack
or by other means).
Tests are only
required if HNG-X
supports browsing of
external web servers.
subject to the review and
assessment of the Portcullis
report which is due in mid
January.
(QC Status = Not Complete)
© Copyright Post Office Limited
2010
UNCONTROLLED IF PRINTED OR LOCALLY
COMMERCIAL IN CONFIDENCE
STORED
Ref: REQ/GEN/ACS/0002
Version: 2.0
Date: 23-Feb-2010
Page No: 17 of 46
oO
FUJITSU
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3
COMMERCIAL IN CONFIDENCE
POL00032999
POL00032999
Original
Object Id
Original Object text
Acceptance Criteria
Verification
Method
Status / Impact
SEC-3309
‘All Sensitive Authentication
Data (see Definitions) and
Sensitive Cardholder Data
shall be encrypted using
approved algorithms and
encryption protocols whilst in
transit over any public network
unless specifically agreed in
writing by the client
Approved algorithms are 128-
bit 3DES (as per ANSI X9.52)
and 256-bit AES (FIPS 197)
Approved encryption protocols
are SSL v3 / TLS, SSH,
IPSec, and PPTP.
[DN:
Any in-house
designed protocols will need to
be documented, justified and
reviewed for security by an
external specialist agreed with
Pcl
Point-to-point optical
fibre connections are not
considered public networks.
All inter-site connections
(including those from outlets)
ate assumed to be via a
licensed public
telecommunications _ provider
and should therefore be
treated as public.
The X.25
authorisation connection to
Streamline is currently the only
client connection on which
encryption is not mandatory]
Tests show that all
specified data is
protected by
encryption or other
method that makes it
impractical to deduce
ST
Final status of this criterion is
subject to the review and
assessment of the Portcullis
report which is due in mid
January.
(QC Status = Not Complete)
SEC-3113
Fujitsu Services — shall
provide a list of
measures that will be
taken to mitigate the risk
of unauthorised devices
being connected to any
component of the HNG-
X system, with the
exception of passive
devices within the
Branch. A_ “passive
device" is one which
takes no active part in
the communications or
processing e.g. a LAN
sniffer.
Evidence that all
measures achieve
the requirement
ST
Final status of this criterion is
subject to the review and
assessment of the Portcullis
report which is due in mid
January.
Interim status has been
communicated to POL and
identified that there were no
major issues.
(QC Status = No Run)
© Copyright Post Office Limited
2010
UNCONTROLLED IF PRINTED OR LOCALLY
COMMERCIAL IN CONFIDENCE
STORED
Ref: REQ/GEN/ACS/0002
Version: 2.0
Date: 23-Feb-2010
Page No: 18 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 7
FUJI I SU COMMERCIAL IN CONFIDENCE
Original Original Object text Acceptance Criteria I Verification I Status / Impact
Object Id Method
SEC-3212 It shall not be possible I As per the I ST Final status of this criterion is
to install any application I Requirement subject to the review and
or operating system assessment of the Portcullis
extension except under report which is due in mid
the control of properly January.
authorised and
Interim status has been
communicated to POL and
identified that there were no
authenticated systems
administrators carrying
out authorised and
audited changes. major Issues.
(QC Status = No Run)
SEC-3210 HNG-X shall have I As per the I ST Final status of this criterion is
controls in place to I Requirement subject to the review and
prevent user bypass of assessment of the Portcullis
the standard application. report which is due in mid
January.
(QC Status = Failed)
This is subject to Acceptance
Incident Al-TS-008 (Low) /
Defect 11934
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 19 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
2.3.2.2 Other testable criteria
The Joint Test Team has advised that testing of the following criteria will not complete before the AG3
Acceptance Board. Accordingly they are to be given ‘Deferred Test’ status.
Original Original Object text Acceptance Criteria I Verification I Status / Impact
Object Id Method
ARC-463 Fujitsu Services shall I Tests to demonstrate I ST There are two tests that have
demonstrate that I network connectivity not been run that relate to
network connections for I for portable office PHU and will be run on LST.
portable office I configurations are
configurations shall be I defined and This is expected to complete
automatically selected I contained within a by 29/01/10.
from those ; physically I detailed test plan, the It should be noted that the
available without the I successful PHU Pilot is scheduled to take
intervention of the sub- I completion of which start on 25/01/10 with the
postmaster. shall determine the migration starting on 08/02/10.
acceptance of this 9 19 °
requirement. To
clarify ‘successful _
completion’, success (QC Status = No Run)
criteria will be
identified in advance
of test execution
ARC-468 Provision of the backup I Tests to demonstrate I ST 37 Branch Router tests have
network shall not I network connectivity passed with 17 blocked and 12
increase the end to end I for portable office failed due to lack of Vodafone
timescales for branch I configurations are network or defects 12774 and
installations (i.e. it I defined and 12795.
should not be on the I contained within a
critical path) unless I detailed test plan, the See section 1.2 — note 2.
agreed otherwise with I successful
PO Ltd. The in branch I completion of which (QC status = Failed)
installation time may be I shall determine the
higher. acceptance of this
requirement. To
clarify ‘successful
completion’, success
criteria will be
identified in advance
of test execution
MIG-3071 Both Horizon counters I As per the I ST There are 155 tests that have
and HNG-x counters I Requirement passed, 1 SV&I test to be re-
shall be capable of run.
receiving and applying
all forms of reference This criterion is linked to defect
data driven changes 12732 which has _ been
(including both OBC and assessed by POL as having
ADC) during the no Business Impact.
migration period.
(QC status = Failed)
© Copyright Post Office Limited
2010
UNCONTROLLED IF PRINTED OR LOCALLY
Ref:
COMMERCIAL IN CONFIDENCE
STORED
Version:
Date:
Page No:
REQ/GEN/ACS/0002
2.0
23-Feb-2010
20 of 46
POL00032999
POL00032999
o ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 7
FUJITSU COMMERCIAL IN CONFIDENCE
Original Original Object text Acceptance Criteria I Verification I Status / Impact
Object Id Method
MIG-3075 I It shall be possible toI RV confirms that I RV 2 SV&l tests are failed.
introduce software and I HNG-x counters are
reference data changes I capable of receiving There are no defects linked to
into the HNG estate I and applying — all this criterion.
using standard HNG I forms of reference _
processes while the I data and_ software (QC status = Failed)
Migration period is in I driven change during
progress the migration period
TR471 To support external I As per the I ST There is one test that has not
training activities I requirement been run that relates to PHU
including migration, the and will be run on LST.
solution shall be capable
of running on a pre- This is expected to complete
defined portable by 29/01/10.
piatioren. It should be noted that the
PHU Pilot is scheduled to take
start on 25/01/10 with the
migration starting on 08/02/10.
(QC Status = No Run)
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 21 of 46
Fe)
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
2.4 Failed Status
This status identifies those Use Cases or non-functional criteria where one or more applicable defects
have been identified. Details of each of these requirements are shown below. Applicable defects
associated with these failed Requirements are shown as Acceptance Incidents and contained in
section 3.
2.4.1. Use Case Fails
Section 2.1 identifies that some Use Cases have failed. Successful testing has already taken place on
these Use Cases, however there are two remaining defects that are causing some remaining tests to be
shown as ‘failed’.
The two defects are: -
e Defects 10723 & 10738 both relate to test reference data for Network Banking and relate to the
completion of tests of reference data combinations that do not exist in live. The affected Use
Cases are: -
°
°
°
°
°
GLB-2221 — Settlement by Debit Credit Card
GLB-438 — Receive Reconciled Transaction Data
GLB-494 — Receive Payment File
GLB-578 — Obtain MID / TID Details
GLB-2299 — Obtain Card Transaction or Reversal Authorisation
For Acceptance purposes these two defects are classed as ‘Non-Incidents’ and do not
contribute to progression through AG3.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 22 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
2.4.2 Non-Testable Fails
Section 2.2 identifies that a number of non-testable POL requirements have failed — details are shown
below.
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
ARC-422 I Fujitsu Services shall The Solution Baseline DR Some documentation
make available to POL an I documentation shall be not yet baselined.
accurate and technically provided to POL in
complete set of accordance with the This is an Acceptance
documentation describing I timetable stated in B6.2 Incident - Al-NT-015
the Solution Baseline and shall comprise the (Low) / defect 12505.
Documentation Set, documents or other
excluding legacy artifacts that are agreed
components where between Post Office and
existing Horizon Fujitsu Services according
documentation may be to Schedule B6.2.
retained.
MIG- Physical security of any Evidence of joint DR This defect comprises
3017 infrastructure components, I agreement to the one of a set relating to
including Branch base
units, which contain any
business or security
sensitive information, shall
not be compromised by
processes developed and
implemented for the
migration from Baseline
Horizon to HNG-X
migration processes
affecting the security of
physical infrastructure and
the risks to business or
security sensitive
information.
the completion and
establishment of the
Security Risk
Management process
and the validation of the
associated controls.
This is due for resolution
by end January 2010
and is being progressed
via the regular joint
security forum.
This is an Acceptance
Incident - Al-NT-014 /
(Low — aggregated into
AI-NT-1002 (Medium))
defect 12489.
© Copyright Post Office Limited
2010
Ref:
COMMERCIAL IN CONFIDENCE
UNCONTROLLED IF PRINTED OR LOCALLY
STORED
Version:
Date:
Page No:
REQ/GEN/ACS/0002
2.0
23-Feb-2010
23 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SEC- The security measures System Risk Assessment I DR This defect comprises
3082 appropriate for HNG-X, (and Management) plan one of a set relating to
including those the completion and
appropriate during the establishment of the
migration from Baseline Security Risk
Horizon, shall be Management process
determined by Fujitsu and the validation of the
Services by means of a associated controls.
HNG-X System Risk This is due for resolution
Assessment which covers by end January 2010
the HNG-X Service and is being progressed
Domain. It is recognised via the regular joint
this may increase costs if security forum.
the scope of the contract
is extended.
This is an Acceptance
Incident - Al-NT-006
(Low — aggregated into
AI-NT-1002 (Medium)) /
defect 2312
&
AI-NT-008 (Low —
aggregated into Al-NT-
1002 (Medium)) / defect
11295.
SEC- Based on the System and_ I Evidence of joint working I DR This defect comprises
3086 Business Risk resulting in an agreed one of a set relating to
Assessments, Post Office
and Fujitsu Services shall
work together to agree
appropriate
countermeasures
commensurate with the
value and nature of the
business risk. It is
recognised this may
increase costs if the scope
of the contract is
extended.
Risk Management Plan
covering both Business
and System Risks.
the completion and
establishment of the
Security Risk
Management process
and the validation of the
associated controls.
This is due for resolution
by end January 2010
and is being progressed
via the regular joint
security forum.
This is an Acceptance
Incident - Al-NT-007
(Low — aggregated into
AI-NT-1002 (Medium)) /
defect 3503.
© Copyright Post Office Limited
2010
Ref:
COMMERCIAL IN CONFIDENCE
UNCONTROLLED IF PRINTED OR LOCALLY
STORED
Version:
Date:
Page No:
REQ/GEN/ACS/0002
2.0
23-Feb-2010
24 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SEC- Fujitsu Services shall Evidence of the DR This defect comprises
3110 provide a list of measures I Requirement in Risk one of a set relating to
that will be taken to Management Plans with the completion and
mitigate the risk of measures of perceived establishment of the
unauthorised devices risk. Security Risk
being connected to any Management process
component of the HNG-X and the validation of the
system, with the exception associated controls.
of passive devices within This is due for resolution
the Branch. A "passive by end January 2010
device" is one which takes and is being progressed
no active part in the via the regular joint
communications or security forum.
processing e.g. a LAN
sniffer.
This is an Acceptance
Incident - Al-NT-001
(Low — aggregated into
AI-NT-1002 (Medium)) /
defect 2309.
SEC- Fujitsu Services shall List of measures and the DR This defect comprises
3111 provide a list of measures I effect of mitigation one of a set relating to
that will be taken to
mitigate the risk of
unauthorised devices
being connected to any
component of the HNG-X
system, with the exception
of passive devices within
the Branch. A "passive
device" is one which takes
no active part in the
communications or
processing e.g. a LAN
sniffer.
the completion and
establishment of the
Security Risk
Management process
and the validation of the
associated controls.
This is due for resolution
by end January 2010
and is being progressed
via the regular joint
security forum.
This is an Acceptance
Incident - Al-NT-009
(Low — aggregated into
AI-NT-1002 (Medium)) /
defect 11299.
© Copyright Post Office Limited
2010
Ref:
COMMERCIAL IN CONFIDENCE
UNCONTROLLED IF PRINTED OR LOCALLY
STORED
Version:
Date:
Page No:
REQ/GEN/ACS/0002
2.0
23-Feb-2010
25 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SEC- {CISP 8.5.19} Data over Evidence of the DR This defect requests
3167 Wide Area Networks shall I Requirement in the clarification on which
be encrypted unless Design. network security
specifically agreed in the protocols apply to each
relevant Technical of the relevant WAN
Interface Specification or connections. The
where otherwise existing details in the
specifically agreed by Post Technical Network
Office Limited Information Architecture will be
Security. The Fibre Optic updated to provide
link between Data Centres these details.
is not considered to be a
Wide Area Network. The This is an Acceptance
requirement applies to (Low) cies: 7307,
transaction data between .
branches and the data
centre(s).
SEC- Logon to Counter Review of Report DR The Comsec report
3201 Terminals must provide prepared by an identified a number of
equivalent security to that I independent security defects that are being
provided by logon via expert (appointed by FS) progressed and
native operating systems. I confirms that the design reviewed via the joint
of this critical security security forum.
mechanism is sound.
The PEAKs are
PC0188679,
PC0188681,
PC0188684,
PC0188685,
PC0188686.
This is an Acceptance
Incident — Al-NT-003
(Low) / defect 12315.
SEC- The secure filestore in Evidence of the DR This defect identifies
3118 configured Horizon requirement in the design that the process for
terminals shall be managing secure
rendered unrecoverable filestore deletion will be
on migration to HNG-X. introduced during Pilot
Any terminal which is not
migrated (e.g. it is taken
out of service instead) This is subject to
shall have its filestore Acceptance Incident Al-
deleted in accordance with NT-005 (Low) / defect
current procedures 12414
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 26 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original
Object
Id
Original Object text
Acceptance Criteria
Verification
Method
Status
SEC-
3137
Arisk assessment will be
undertaken for retained
functionality in the area of
SQL injection attacks
under HNG-X.
Risk Assessment
DR
This defect comprises
one of a set relating to
the completion and
establishment of the
Security Risk
Management process
and the validation of the
associated controls.
This is due for resolution
by end January 2010
and is being progressed
via the regular joint
security forum.
This is subject to
Acceptance Incident Al-
NT-012 (Low —
aggregated into Al-NT-
1002 (Medium)) / defect
12386
SEC-
3083
The security measures
appropriate for HNG-X,
including those
appropriate during the
migration from Baseline
Horizon, shall be
determined by Fujitsu
Services by means of a
HNG-X System Risk
Assessment which covers
the HNG-X Service
Domain. It is recognised
this may increase costs if
the scope of the contract
is extended.
Evidence to support the
determination of what
security measures are
considered as being
appropriate for HNG-X
DR
This defect comprises
one of a set relating to
the completion and
establishment of the
Security Risk
Management process
and the validation of the
associated controls.
This is due for resolution
by end January 2010
and is being progressed
via the regular joint
security forum.
This is subject to
Acceptance Incident Al-
NT-011 (Low —
aggregated into Al-NT-
1002 (Medium)) / defect
12384
© Copyright Post Office Limited
2010
COMMERCIAL IN CONFIDENCE
UNCONTROLLED IF PRINTED OR LOCALLY
STORED
Ref: REQ/GEN/ACS/0002
Version: 2.0
Date: 23-Feb-2010
Page No: 27 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SEC- Fujitsu Services shall Periodic evidence thatFS I DR This defect comprises
3314 establish, operate and are (via an agreed forum) one of a set relating to
maintain an Information reviewing with POL the the completion and
Security Management progress and status of the establishment of the
System compliant with milestones that relate to Security Risk
1$027001 that covers all the implementation of the Management process
aspects of HNG-X under 1$027001 programme in and the validation of the
their control. Fs. associated controls.
This is due for resolution
by end January 2010
and is being progressed
via the regular joint
security forum.
This is subject to
Acceptance Incident Al-
NT-013 (Low —
aggregated into Al-NT-
1002 (Medium)) / defect
12387
MIG- Fujitsu shall agree with Evidence of joint DR This defect comprises
3015 Post Office Ltd any agreement to the one of a set relating to
security provisions
employed during the
migration process for
interim data storage areas
and/or data transmission
paths across the Horizon
Network. Details of how
this Security requirement
will be met, shall be jointly
agreed and shall be
included in the Migration
Plan.
migration processes
affecting data storage and
data transmission paths.
the completion and
establishment of the
Security Risk
Management process
and the validation of the
associated controls.
This is due for resolution
by end January 2010
and is being progressed
via the regular joint
security forum.
This is subject to
Acceptance Incident Al-
NT-010 (Low —
aggregated into Al-NT-
1002 (Medium)) / defect
12382
© Copyright Post Office Limited
2010
Ref:
COMMERCIAL IN CONFIDENCE
UNCONTROLLED IF PRINTED OR LOCALLY
STORED
Version:
Date:
Page No:
REQ/GEN/ACS/0002
2.0
23-Feb-2010
28 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SEC- Cases requiring encrypted I Approval of the DR This defect identifies
3172 data to pass through any authorisations process that the authorisation
HNG-X firewall layer shall
only be authorised by Post
Office where a risk
assessment has identified
that the requirement for
confidentiality outweighs
the requirement for system
availability and integrity
process will become
part of the overall BAU
joint security forum /
ISMF, once the Risk
management processes
are established.
This is subject to
Acceptance Incident Al-
NT-016 (Low) / defect
12873
© Copyright Post Office Limited
2010
COMMERCIAL IN CONFIDENCE
UNCONTROLLED IF PRINTED OR LOCALLY
STORED
Ref: REQ/GEN/ACS/0002
Version: 2.0
Date: 23-Feb-2010
Page No: 29 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
2.4.3
Testable Non-Functional Fails
Section 2.2 identifies that 27 testable POL requirements have failed. These break down as follows:-
e 19 are subject to Acceptance Incidents and are shown in the table below.
e 8&have failed but where the associated defect has been assessed by POL as not having any
business impact. These are contained section 2.4.3.1.
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
HLP-110 I The Search Facility within I Evidence that the I ST Subject to Acceptance
Help shall allow the use of I search facility allows Incident Al-AD-102 (Low)
key words, sentences, I users to type in search / defect 11747.
wildcard and match all I criteria and returns the
characters correct details
MIG- For any services that I Tests to demonstrate I RV Subject to Acceptance
2994 support serving customers I disaster recovery are Incidents Al-AD-005
in Post Office branches: I defined and contained (Low), Al-TS-001 (Low),
full resilience, failover I within a detailed test AI-TS-003 (Low).
capability and a means of I plan, the successful
providing Disaster I completion of which 41 tests have passed, 15
Recovery (for example by I shall determine the are no Run and 2 have
reversion to an alternative I acceptance of this failed.
Data Centre) shall be I requirement. To clarify
supported Monday _ to I ‘successful completion’, This criterion is also
Friday 08.00 to 18.00 and I success criteria will be linked to many other
Saturday 08.00 to 14.00. I identified in advance of defects all of which have
Outside these times, I test execution been assessed by POL
resilience and immediate as having no Business
DR may be removed Impact.
(during migration)
providing it can be
restored as documented in
Migration Strategy
POs- The Postal Services shall I No evidence to the I ST Subject to Acceptance
NFR-213 I prevent the selection and I contrary when Incident Al-AD-104 /
the use of data and related I undertaking ST of the defect 11403.
components, outside of I Postal Services
their respective effective I functionality. This criterion is linked to
dates. defects 6668, 9379 —
both have been assessed
by POL as having no
Business Impact.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ret REQIGEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED Page No: 30 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
POS- The Postal Services I Each display name for I ST Subject to Acceptance
NFR-253 I system shall display each I service matches the Incident Al-AD-104 (Low)
service name as it is I appropriate entry in the / defect 11403.
provided by PO: This will I Postal Services Data
be the full (Selectica) I model. This criterion is linked to
service name, except defects 6668, 9379 —
where PO has provided an both have been assessed
alternative name to be by POL as having no
used in preference. Business Impact.
POSs- The Postal Services I As per the requirement. I ST Subject to Acceptance
NFR-259 I system shall support the Incident Al-AD-104 (Low)
use of country synonyms / defect 11403.
(e.g. Holland, The
Netherlands): as identified This criterion is linked to
in an agreed listing of all defects 6668, 9379 —
such synonyms. both have been assessed
by POL as having no
Business Impact.
POS- Upon application of the I As per the requirement. I ST Subject to Acceptance
NFR-285 I relevant reference data, all Incident Al-AD-104 (Low)
postage methods / defect 11403.
applicable to a service
shall be evident to the This criterion is linked to
Branch User. defects 6668, 9379 —
both have been assessed
by POL as having no
Business Impact.
POS- The Postal Services I As per the requirement. I ST Subject to Acceptance
NFR-292 I system shall display a Incident Al-AD-104 (Low)
minimum "To Pay" value / defect 11403.
for each Postage Method;
the value of which will be
set in the Postal Services
Data model.
POs- The Postal Services I As per the requirement. I ST Subject to Acceptance
NFR-293 I system shall provide a Incident Al-AD-104 (Low)
default Postage Method / defect 11403.
for individual services; the
value of which will be set This criterion is linked to
in the Postal Services defects 6668, 9379 —
Data model. both have been assessed
by POL as having no
Business Impact.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ret REQIGEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 31 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
POS- Where the Postal Services I As per the requirement. I ST Subject to Acceptance
NFR-295 I System records or uses Incident Al-AD-104 (Low)
barcodes, discrete / defect 11403.
barcode ranges will be
used and the system shall This criterion is linked to
reject all codes that fall defects 6668, 9379 —
outside these defined both have been assessed
ranges. This shall include by POL as having no
but shall not be limited to Business Impact.
the rejection of number
sequences
SEC- All passwords transmitted I Evidence of no reported I ST Subject to Al-TS-018
3141 across any internal or I incidence of passwords (Low) / defect 12827,
external network shall be I being compromised in Al-TS-013 (Low) / defect
encoded such that it is I this way during the 12821,
infeasible for an I testing phase. AI-TS-012 (Low) / defect
interceptor to deduce the 12820.
password.
This criterion is also
linked to defects 1746,
1749 — both have been
assessed by POL as
having no Business
Impact.
SEC- {CISP 8.5.1b} I Demonstration of I RV This is subject to
3154 Unauthorised logical I protection (either by Acceptance Incidents: -
access from non-HNG-X I simulation of attempts of AI-TS-019 (Low) / defect
systems and _ networks I unauthorised access or 12828
shall be prevented. This I by other means). The AI-TS-020 (Low) / defect
shall include but shall not I exact timing and 12830
be limited to, unauthorised I environment for the AI-TS-021 (Low) / defect
access from any of the I tests shall be agreed in 12832
following: Any _ public I the test plan but shall in Al-TS-022 (Low) / defect
networks used. Networks I any case be prior to live. 12833
connecting to Third AI-TS-027 (Low) / defect
Parties. Networks 12875
connecting HNG-X to PO
Ltd and/or Royal Mail
Group. Other systems
operated by the domain
supplier on behalf of itself
or other clients.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 32 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SEC- {CISP 8.5.1c} Controls I Demonstration of I RV This is subject to
3158 shall protect against I protection (either by Acceptance Incidents: -
denial-of-service attacks I simulation of attack or AI-TS-018 (Low) / defect
originating from non-HNG- I by other means) 12827
X systems including those AI-TS-023 (Low) / defect
listed in Requirement 12835
SEC-3152 Al-TS-024 (Low) / defect
12836
SEC- {CISP 8.5.1e} Network I Demonstration of alert I ST Subject to Acceptance
3164 management staff within I signal (either by Incident Al-AD-136 (Low)
each domain shall be I simulation of attack or / defect 11932
alerted to any attempt to I by other means)
reach the HNG-X systems
in their domain from
unauthorised network
addresses.
SEC- Logon to Counter I Tests show logon is as I ST Subject to Acceptance
3202 Terminals must provide I per design reviewed in Incident Al-NT-003 (Low)
equivalent security to that I SEC-3201 but with any / defect 12315
provided by logon via I recommendations
native operating systems. I resulting from the review
applied.
SEC- The Horizon Access I As per the Requirement I ST Subject to Acceptance
3204 Control Policy Incidents: -
RS/POL/003 shall apply AI-TS-006 (Low) / defect
but shall be updated to 12251,
reflect the change in policy AI-TS-007 (Low) / defect
due to HNG-X or other 12270,
agreed security AI-AD-1009 (Low) /
requirements. Such defects 4567, 4776,
update shall include at 4636, 4945.
least the following Al-TS-011 (Low) / defect
password requirements: 12819.
Minimum password length
of 7Minimum password This criterion is linked to
history length of 4. other defects, all of which
have been assessed by
POL as having no
Business Impact.
This criterion is linked to
defects 12190, 12306 —
both have been assessed
by POL as having no
Business Impact.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 33 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SEC- Applications requiring I As per the Requirement I ST Subject to Acceptance
3230 passwords shall continue Incident Al-TS-009 (Low)
to comply with the / defect 11935.
conditions stated in the
updated Horizon (HNG-X)
Access Control Policy
CCD (ref. RS/POL/003).
See also Requirement
SEC-3312.
SEC- The logical security I Tests to demonstrate I ST This is subject to
3257 perimeter of the HNG-X I the security perimeter Acceptance Incidents: -
system shall be defined I are defined and AI-TS-010 (Low) / defect
and agreed with Post I contained within a 12818
Office Information I detailed test plan, the AI-TS-011 (Low) / defect
Security. successful completion of 12819
which shall determine AI-TS-012 (Low) / defect
the acceptance of this 12820
requirement. To clarify AI-TS-013 (Low) / defect
‘successful completion’, 12821
success criteria will be AI-TS-014 (Low) / defect
identified in advance of 12822
test execution. AI-TS-015 (Low) / defect
12823
Al-TS-016 (Low) / defect
12824
Al-TS-017 (Low) / defect
12826
SEC- All cryptographic key I Tests to demonstrate I ST Subject to Acceptance
3354 lengths shall be at least I compliance are defined Incident Al-TS-006 (Low)
128 bits for symmetric I and contained within a / defect 12251.
keys and at least 1024 bits I detailed test plan, the
for asymmetric keys where I successful completion of This criterion is linked to
the associated I which shall determine other defects including
cryptographic control I the acceptance of this 12306, all of which have
protects the integrity or I requirement. To clarify been assessed by POL
confidentiality of IHNG-X I ‘successful completion’, as having no Business
Business Data, Reference I success criteria will be Impact.
Data or Application I identified in advance of
Software unless otherwise I test execution.
agreed with Post Office
Information Security.
Note: Post Office is highly
unlikely to agree to any
shorter keys lengths (even
for COTS products). For
the avoidance of doubt,
access to the TES Query
service is not covered by
this requirement but by
requirement SEC-3310.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED Page No: 34 of 46
oO
FUJITSU
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
COMMERCIAL IN CONFIDENCE
Original I Original Object text Acceptance Criteria Verification I Status
Object Method
Id
SER- The System Monitoring I These transactions will I ST Subject to Acceptance
2207 facilities shall be able to I be tested in both stages incident Al-TS-004 (Low)
generate Alerts. Where I of testing using an / defect 12139.
the Alerts are deemed to I agreed approach to
be incidents, the Incident I extrapolate up from the 308 tests have passed. 1
Management System will I testing environments to SV&I test has failed.
be cognisant of the nature I production.
(e.g.. VIP status) of the This criterion is also
affected branch and will linked to defect 11845,
escalate/act accordingly 11962 — these have been
as described in POA assessed by POL as
Customer Service Incident having no Business
Management Process Impact.
Details (CS/PRD/074).
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 35 of 46
POL00032999
POL00032999
o ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
2.4.3.1 Failed POL Requirements / not subject to Acceptance incidents
Details of these failed testable requirements that are not subject to an Al are listed below and contained
in the embedded spreadsheet below.
MIG-2983, SER-2140, SER-2199, SER-2205, SEC-3101, ARC-464, ARC-476.
MIG-3045 — Remaining tests will not be run.
D:\PROFILES\cooked
My Documents\My Dc
© Copyright Post Office Limited COMMERGIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 36 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
3 Review of status of Acceptance Incidents
The Acceptance Incidents listed below have been raised because the acceptance evidence has failed to
meet the acceptance criteria. They have been classified into three groups: -
e Those arising from defects whose resolution has been agreed to be deferred until after
the start of Pilot. These have an identifier of Al-AD-nnn
e Those arising from defects that have been raised during the assessment of the non-
testable criteria - in this case Document Review. These have an identifier of AI-NT-nnn.
e Those arising from defects that have been raised during testing and where no formal
deferral discussions have taken place. These have an identifier of Al-TS-nnn.
3.1 Acceptance Incident Aggregation
Schedule B6.3 (4.6.3) recognises that HNG-X Acceptance Incidents that are agreed to result from the
same failure or deficiency, or to affect the same operational process or business function, may be
aggregated into a single HNG-X Acceptance Incident for the purposes of the thresholds identified in
section 1.2. The following sections contain details of all of the individual Acceptance Incidents and then
identifies where aggregation has occurred.
3.2 Acceptance Incidents arising from Agreed Deferrals
The Als of this type and their severity are: -
Acceptance Individual Als
Incident Severity
Low 148
Medium 0
High 0
Total 148
(Note: Al-AD-103 removed as this is a duplicate of Al-AD-07 1).
Of these, 44 of the Low Severity Als have been aggregated into 12 Low Severity Als giving a net figure
as follows: -
Acceptance Net Individual Als I Aggregated Als Net Total
Incident Severity
Low 104 12 116
Medium () () [)
High 0 0 0
Total 104 12
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date 23-Feb-2010
STORED PageNo: 37 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
3.2.1. Acceptance Incident details for type Al-AD
Details of these Acceptance Incidents are contained in the embedded WORD document here.
[a
D:\PROFILES\cooked
My Documents\My Dc
3.2.2 Aggregated Acceptance Incident details for type Al-AD
Details of these Aggregated Acceptance Incidents are contained in the embedded WORD document
here.
D:\PROFILES\cooked
My Documents\My Dc
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 38 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
3.3. Acceptance Incident arising from non-testable criteria
The Als of this type and their severity are: -
Acceptance Individual Als
Incident Severity
Low 15
Medium
High
Total 15
Of these, 10 of the Low Severity Als have been aggregated into 1 Medium Severity Al giving a net figure
as follows: -
Acceptance Net Individual Als I Aggregated Als Net Total
Incident Severity
Low 5 ie) 5
Medium 0 1
High 0 0 0
Total 5 1
Medium Al = Al-NT-1001 - This Al comprises those defects that relate to the completion and
establishment of the Security Risk Management process and the validation of the associated controls.
Defects are - 2309, 2312, 3503, 11295, 11299, 12384, 12489, 12386, 12387, 12382.
3.3.1. Acceptance Incident details for type Al-NT
Details of these Acceptance Incidents are contained in the embedded WORD document here.
[al
D:\PROFILES\cooked
My Documents\My Dc
3.3.2 Aggregated Acceptance Incident details for type Al-NT
Details of these Aggregated Acceptance Incidents are contained in the embedded WORD document
here.
D:\PROFILES\cooked
My Documents\My Dc
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Ref: REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 39 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 7
FUJITSU COMMERCIAL IN CONFIDENCE
3.4 Acceptance Incident arising from Testable criteria
The Als of this type and their severity are: -
Acceptance Individual Als
Incident Severity
Low 25
Medium 4
High 0
Total 26
Medium Al = defect 12774 / Al-TS-030 — Maximum packet size over Orange WWAN
3.4.1. Acceptance Incident details for type Al-TS
Details of these Acceptance Incidents are contained in the embedded WORD document here.
D:\PROFILES\cooked
My Documents\My Dc
3.5 Acceptance Incident total
The overall status of all Acceptance Incidents is as follows: -
Severity AI-AD — Agreed AI-NT —- Non AI-TS - Test Total
Deferred Testable
Low 116 5 25 146
Medium 0 1 1 2
High 0 0 0 0
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date 23-Feb-2010
STORED PageNo: 40 of 46
POL00032999
POL00032999
oO ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3
FUJITSU COMMERCIAL IN CONFIDENCE
A Applicable POL Requirements and Acceptance
Criteria
The POL Requirements and Criteria, contained in the HNG-X Requirements Catalogue - POL DOORS
archive v1.42, and associated with AG3 are contained in the embedded spreadsheet.
This contains references to any Concessions.
D:\PROFILES\cooked
My Documents\My Dc
© Copyright Post Office Limited COMMERGIAL IN CONFIDENCE Ref. REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 41 of 46
POL00032999
POL00032999
o ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3
FUJITSU COMMERCIAL IN CONFIDENCE
B_ Definition of Acceptance Methods
The set of HNG-X Acceptance methods are defined in Appendix D of Schedule B6.3 HNG-X Acceptance
Process and reproduced below.
Type Description
HNG-X HNG-X Acceptance Criteria that cannot be objectively verified by a test of HNG-X
Document may be satisfied by Post Office undertaking a HNG-X Document Review. The
Review outcome of any such review will be documented by Post Office in the HNG-X
Acceptance Tracking Document. Fujitsu Services will supply a list of documents.
(and any specific references within such documents) for Post Office review,
which may satisfy the agreed HNG-X Acceptance Criteria.
HNG-X HNG-X Acceptance Criteria may be satisfied by Post Office participating in an
Design HNG-X Design Walkthrough led by Fujitsu Services of the Fujitsu Services’
Walkthrough I design. The outcome of any such HNG-X Design Walkthrough will be
documented by Post Office in the HNG-X Acceptance Tracking Document.
HNG-X Tests that are owned and managed by Fujitsu Services with significant
Solution Test I Collaborative support from Post Office, for the purpose of verifying that the Fujitsu
Services’ solution for the HNG-X System satisfies the relevant HNG-X
Acceptance Criteria. The collaborative team will produce a joint test report
presenting the results of the tests.
HNG-X Tests that are run and managed by Post Office with significant collaborative
Release support from Fujitsu Services, for the purpose of verifying that the HNG-X
Validation Release satisfies the relevant HNG-X Acceptance Criteria. The combined team
will produce a joint test report presenting the results of the tests and provide
evidence on any areas of non conformance.
Post Office shall specify any need beyond the level of support that Fujitsu
Services are required to provide under normal operational practice (such as a
report etc). Duration, nature and characteristics to be agreed in advance between
Post Office and Fujitsu Services and will take place during Live Pilot or
exceptionally during Live Monitoring. The total duration of HNG-X Monitoring and
the obligations on Fujitsu Services to produce data/reports to support Post Office
monitoring to be agreed between Post Office and Fujitsu Services (each acting
reasonably and in good faith) for a particular HNG-X Requirement.
HNG-X Where the solution to an HNG-X Acceptance Criterion is self-evident and does
Statement of I Not lend itself to formal proving.
Fact
HNG-X Relates to HNG-X Acceptance Criterion that represents an ongoing contractual
Statement of I obligation for HNG-X.
Obligation
Other Used by exception, to be agreed between the Parties.
© Copyright Post Office Limited COMMERCIAL IN CONFIDENCE Refi REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY Date: 23-Feb-2010
STORED PageNo: 42 of 46
POL00032999
POL00032999
o ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
C Definition of Acceptance Incident Severity
The definition of the severity of an HNG-X Acceptance Incident is defined in Appendix A of Schedule
B6.3 HNG-X Acceptance Process and reproduced below.
High The HNG-X Acceptance Incident was caused by the introduction of changes arising
from Project HNG-X and/or the Associated Change Activities that are subject to the
HNG-X Acceptance Process and results in a defect that would render a key element of
one or more of the Business Capabilities and Support Facilities or a key element of the
Infrastructure unfit for operational use, which could include:
a) not allowing Post Office to undertake one or more Transaction types;
b) not allowing Post Office to undertake one or more Transaction types using the
required business inputs or generating the required business outcome;
c) creating system performance issues which are in, or are likely to cause a, breach
of Service Level Targets.
Medium The HNG-X Acceptance Incident was caused by the introduction of changes arising
from Project HNG-X and/or the Associated Change Activities that are subject to the
HNG-X Acceptance Process and results in a defect that would not prevent operation of
one or more of the Business Capabilities and Support Facilities or elements of the
Infrastructure, but would cause problems in the operational use of one or more
Transaction types.
Low The HNG-X Acceptance Incident was caused by the introduction of changes arising
from Project HNG-X and/or the Associated Change Activities that are subject to the
HNG-X Acceptance Process and results in a defect that does not cause any adverse
operational impact in the use of the Business Capabilities and Support Facilities or an
element of the Infrastructure, or the HNG-X Acceptance Incident can be addressed by
a workaround without any adverse operational impact for Post Office.
Non An incident raised by either Party which, following investigation is found:
Incident
> not to be a defect;
> not to have resulted from the introduction of changes arising from Project HNG-X
and/or the Associated Change Activities that are subject to the HNG-X
Acceptance Process; or
» not to fall within the high, medium or low categories set out in this column.
© Copyright Post Office Limited CEAMANEOT, th RememaSEEE Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 43 of 46
POL00032999
POL00032999
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 “i
FUJITSU COMMERCIAL IN CONFIDENCE
D Acceptance Board recommendation options
It is proposed that the decision of the HNG-X Acceptance Board should comprise one of the following
options: -
1. Proceed through Acceptance Gateway.
i. Acceptance Gateway criteria have all been met.
ii. There no Acceptance Incidents that would prevent progression through this Acceptance
Gateway
2. Proceed through Acceptance Gateway
i. Not all Acceptance Criteria have been met and consequently there are Acceptance Incidents.
ii. The severity of these Acceptance Incidents is within the limits for progression through this
Acceptance Gateway.
iii. Each Acceptance Incident has an agreed workaround.
iv. Where required by the contract, all Acceptance Incidents have an agreed rectification plan or a
target timescale for rectification
3. Proceed at risk through Acceptance Gateway
i. Not all Acceptance Criteria have met and consequently there are Acceptance Incidents.
ii. The severity of these Acceptance Incidents is within the limits for progression through this
Acceptance Gateway.
iii. One or more workaround, rectification plan or target timescale, is not yet agreed.
4. Do not proceed through Acceptance Gateway
i. Not all Acceptance Criteria have been met and consequently there are Acceptance Incidents.
ii. The severity of these Acceptance Incidents exceeds the limits for progression through this
Acceptance Gateway
iii. Remedial actions are required to address the Acceptance Incidents and / or workarounds.
© Copyright Post Office Limited CEAMANEOT, th RememaSEEE Ref REQ/GEN/ACS/0002
2010 Version: 2.0
UNCONTROLLED IF PRINTED OR LOCALLY _ Date: 23-Feb-2010
STORED PageNo: 44 of 46
FUJITSU
ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3
COMMERCIAL IN CONFIDENCE
POL00032999
POL00032999
E Closed Acceptance Incidents
The following table contains summary details of Acceptance Incidents that have been raised as part of Acceptance Gateway 3 or 4 but
have now been closed.
Al reference Al summary Defect Peak Affected Reason for
requirements closure
Al-AD-148 (Medium) I Date offset and ADC datatypes 12540 PC0190965 MIG-3155 Defect resolved.
AI-AD-151 (High) Card misread 12568 PC0191093 No specific reqt. Defect resolved.
AI-NT-002 (Low) Details required of CTO / PHU 5835 PC0174745 TR574 Plans provided
rollout plans
Al-TS-001 (Medium) I Incorrect priority of ref data 12224 PC0189554 ARC-476, MIG-3071 Defect resolved
downloads between Sysman and
BRDB
Al-TS-002 (Low) Distribution of single Help file 12164 PC0189280 HLP-131, HLP-93, Defect resolved
MIG-3071, MIG-3075
Al-TS-003 (Low) Incorrect VPN Policy file on 11701 PC0187523 MIG-2994 Defect resolved
counters
Al-TS-005 (Medium) I Basket settlement of Transaction 12338 PC0189900 SEC-3202 Defect resolved
Corrections
Al-TS-028 (Medium) I Distribution of Help files 12845 None HLP-131, HLP-93 Defect resolved
COMMERCIAL IN CONFIDENCE
© Copyright Post Office Limited
2010
UNCONTROLLED IF PRINTED OR LOCALLY STORED
Ref. REQ/GEN/ACS/0002
Version: 2.0
Date: 23-Feb-2010
PageNo: 45 of 46
POL00032999
POL00032999
oe ACCEPTANCE REPORT FOR HNG-X ACCEPTANCE GATEWAY 3 ¥
FUJITSU COMMERCIAL IN CONFIDENCE
Al reference Al summary Defect Peak Affected Reason for
requirements closure
AI-AD-103 (Low) Message display during rollover 11802 PC0187803 BAC-3737 Duplicate of
Al-AD-071
Al-TS-029 (High) Reference data distribution 12888, PC0192201, MIG-3045, MIG-3078, I Defect now
MIG-3164 resolved and a
12805 Pco192011 successful Branch
migration has
been achieved.
Ref. REQ/GEN/ACS/0002
© Copyright Post Office Limited COREREAN, INCONFIRERGA Version: 2.0
2010 Date: 23-Feb-2010
UNCONTROLLED IF PRINTED OR LOCALLY STORED Page No: 46 of 46