1 / 10

Standardizing IoT and ITS Security: Recommendations in ITU-T SG17

Explore ongoing recommendations for IoT and ITS security, including Simple encryption procedure, Security framework, V2X communication guidelines, and Secure software update capability. These recommendations aim to enhance security in IoT and ITS environments. Learn about the standardization efforts for ITS security in X.itssec-1 and X.itssec-2. Understand the roles in SG20 (IoT and Smart Cities) and SG17 that collaborate for IoT security and privacy. Collaboration with industry and standardization organizations is crucial for effective implementation.

jamesmccoy
Download Presentation

Standardizing IoT and ITS Security: Recommendations in ITU-T SG17

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Overview • Standardization for IoT / ITS security in ITU-T SG17 • X.iotsec-1 • X.iotsec-2 • X.itssec-1 • X.itssec-2 • Introduction of SG20 (IoT and Smart Cities) • Brief introduction of the standardization for ITS security (X.itssec-1)

  2. Ongoing Recommendations on IoT related issues in SG 17

  3. Ongoing Recommendations of IoT Security • X.iotsec-1: Simple encryption procedure for Internet of Things (IoT) environments • Timing: 2016-09/ Determination • Purpose: Provides specification of encryption with associated mask data (EAMD) for the Internet of things (IoT) devices • Includes what EAMD does and how to provide a set of security services for traffic using it • X.iotsec-2: Security framework for Internet of Things • Timing: 2018-02/ Determination • Purpose: Analyses security threats and challenges in the Internet of Things environment, and describes security capabilities that could mitigate these threats and address security challenges • Framework methodology is provided for determining which of these security capabilities are required for mitigating security threats and addressing security challenges for Internet of Things.

  4. Ongoing Recommendations of ITS Security • X.itssec-2: Security guidelines for V2X communication systems • Timing: 2017-03 / Determination • Purpose: Provides security guidelines for V2X communication systems. V2X means Vehicle-to-Vehicle (V2V), V2I (Vehicle-to-Infrastructure) and/or V2N (Vehicle-to-Nomadic Devices) • X.itssec-1: Secure software update capability for intelligent transportation system communications devices • Timing: 2016-09/ Determination • Purpose: Provides a procedure of secure software updating for ITS communication devices for the application layer in order to prevent threats such as tampering of and malicious intrusion to communication devices on vehicles * ThisDraftRecommendationwillbeexplainedindetaillater.

  5. Structure of a new SG 20 (IoT and Smart Cities) * Roles in SG 20 and SG 17 for IoT security and privacy should work jointly and the result of roles demarcation should be reported to TSAG (Parents SG of SG17/20 in ITU-T)

  6. Brief introduction of X.itssec-1 • Title of Recommendation • “Secure software update capability for ITS communications devices” (X.itssec-1) • Purpose • to provide common methods to update the software by a secure procedure including security controls and protocol definition • The Recommendation would be a guideline of the baseline security for networked vehicle. • Editors • Masashi Eto (NICT) • Koji Nakao (KDDI/NICT) • Determination • Sep. 2016

  7. Protocol Definition Upd Server at OEM Vehicle Mobile Gateway (VMG) User Interface Supplier ECU

  8. Example of a message: diagnose (submit) Upd Server at OEM Vehicle Mobile Gateway (VMG) User Interface Supplier ECU 4. diagnose (submit)

  9. Collaboration with industry and SDOs • This activity is highly required to collaborate with automotive industries and other standardization organizations (SDOs).

  10. Thank you for your attention.

More Related