In this technical report we provide the documentation of the functional requirements of a component-based system representing the IT infrastructure supermarket along with the description of confidentiality properties in the form of information flow requirements for the system. From an architectural point of view, we describe for each interface all services on a functional level. We identify a number of possible attackers and assign for each attacker what inputs to the system she may gain knowledge about and which outputs she may be able to observe. The architecture and security properties of the system are modeled using an extension of the Palladio Component Model
