Are the InfoSec Endpoints in scope to be reported on as part of: metrics data in Get Metrics API? If they are, should all InfoSec endpoints be considered as part of the High Priority tier?
Finally, should Status information for the InfoSec Endpoints be included in the Get Status API?
Yes, InfoSec endpoints are covered under performance tiers and fall into High Priority, this was clarified in Version 1.5.0 of the Consumer Data Standards, refer to the change log: https://consumerdatastandardsaustralia.github.io/standards/includes/releasenotes/releasenotes.1.5.0.html#high-level-standards
The InfoSec endpoints also fall into status reporting. If the InfoSec endpoints are down this would impact the CDR solution so it would result in a PARTIAL_FAILURE.
- Consumer Data Standards Non-functional Requirements https://consumerdatastandardsaustralia.github.io/standards-staging/#performance-requirements
- Related GitHub issue