Non-Functional Requirements (NFRs)¶
Key performance, security, and operational standards for CostEngine (MfgIQ).
⚡ Performance & Scalability¶
| Requirement | Target Metric | Definition |
|---|---|---|
| UI Responsiveness | < 200ms | Interaction delay (input tab, button click) |
| Calculation Latency | < 500ms | Real-time re-calc of total cost after change |
| Excel Ingestion | < 10s per part | Time from upload to data availability |
| Concurrent Users | 50 Active | Support 50 concurrent estimators per factory |
| Cold Start | < 2s | First-page load time from browser |
🔒 Security & Data Integrity¶
1. Data Isolation (Multi-Tenancy)¶
- Rule: Customer A must NEVER be able to see Customer B’s material rates or operation details.
- Implementation: Row-Level Security (RLS) in PostgreSQL based on
organization_id.
2. Encryption¶
- In Transit: All traffic via HTTPS (TLS 1.2+).
- At Rest: Database and file storage (Excel uploads) must be encrypted using AES-256.
3. Authentication¶
- Requirement: Multi-Factor Authentication (MFA) support for Admin accounts.
- Session Management: Auto-logout after 60 minutes of inactivity.
🛡️ Reliability & Availability¶
| Feature | Target | Description |
|---|---|---|
| Uptime | 99.9% | Availability during business hours (Mon-Sat, 8 AM - 8 PM) |
| Recovery Point (RPO) | 1 Hour | Max data loss in case of critical failure |
| Recovery Time (RTO) | 4 Hours | Time to bring system back online after crash |
| Backup Frequency | Daily | Automated daily snapshots of DB and file storage |
🔬 Audit & Compliance¶
1. The "Audit Trail"¶
Every change to a cost value, material rate, or machine rate MUST be logged with:
* user_id (Who changed it)
* timestamp (When)
* old_value / new_value
* source (UI, Excel Import, or API)
2. Forensic Replay¶
The system must be able to "replay" a quote calculation from 2 years ago by freezing the material rates and MHRs that were active at that specific timestamp.
🌐 Browser & Environment Support¶
- Primary: Chrome (Latest), Edge (Latest).
- Offline Support: None required; the system is a 100% cloud-native SaaS.
- Mobile Support: Read-only dashboard view for factory owners (responsive web). Full costing entry is Desktop-only.