Overview
• Standardization for IoT / ITS security in ITU-T SG17
•
•
•
•
•
X.iotsec-1
X.iotsec-2
X.itssec-1
X.itssec-2
Introduction of SG20 (IoT and Smart Cities)
• Brief introduction of the standardization for ITS security
(X.itssec-1)
Pg 2 |
Ongoing Recommendations on IoT related issues in SG 17
Work Item
Title
Simple encryption procedure for Internet of Things (IoT) environments
(TD 2506)
X.iotsec-1
• LS/o on simple encryption procedure for Internet of Things (IoT)
environments to ISO/IEC JTC 1/SC27/WG2
X.iotsec-2 Security framework for Internet of Things (TD 2537)
X.itssec-1
Secure software update capability for intelligent transportation system
communications devices (TD 2600 Rev.1)
X.itssec-2 Security guidelines for V2X communication systems (TD 1741)
Ongoing Recommendations of IoT Security
X.iotsec-1: Simple encryption procedure for
Internet of Things (IoT) environments
• Timing: 2016-09/ Determination
• Purpose: Provides specification of encryption
with associated mask data (EAMD) for the
Internet of things (IoT) devices
X.iotsec-2: Security framework for Internet of Things
• Timing: 2018-02/ Determination
• Purpose: Analyses security threats and challenges in
the Internet of Things environment, and describes
security capabilities that could mitigate these
threats and address security challenges
• Includes what EAMD does and how to provide a • Framework methodology is provided for
set of security services for traffic using it
determining which of these security capabilities are
required for mitigating security threats and
addressing security challenges for Internet of Things.
Plain
packet
4
Plain
packet
Plain
packet
Plain
packet
Application
Application
Encryption with
associated mask
Encryption with
associated mask
TCP/UDP
TCP/UDP
TCP/UDP
TCP/UDP
IP
IP
Encryption with
associated mask
IP
Encryption with
associated mask
IP
Ethernet
Ethernet
Ethernet
Ethernet
EAMD-secured packet
Application of EAMD to the transport layer
Application
Application
EAMD-secured packet
Application of EAMD to the IP layer
Ongoing Recommendations of ITS Security
5
X.itssec-1: Secure software update capability for
intelligent transportation system
communications devices
X.itssec-2: Security guidelines for V2X
communication systems
• Timing: 2016-09/ Determination
• Timing: 2017-03 / Determination
• Purpose: Provides a procedure of secure software
updating for ITS communication devices for the
application layer in order to prevent threats such
as tampering of and malicious intrusion to
communication devices on vehicles
• Purpose: Provides security guidelines for V2X
communication systems. V2X means Vehicle-toVehicle (V2V), V2I (Vehicle-to-Infrastructure)
and/or V2N (Vehicle-to-Nomadic Devices)
* This Draft Recommendation will be explained
in detail later.
Structure of a new SG 20 (IoT and Smart Cities)
WPs
Questions
Plenary
Q1/20
Research and emerging technologies including
terminology and definitions
Q2/20
Requirements and use cases for IoT
Q3/20
IoT functional architecture including signalling
requirements and protocols
Q4/20
IoT applications and services including end user
networks and interworking
Q5/20
SC&C requirements, applications and services
Q6/20
SC&C infrastructure and framework
WP1/20
Internet of Things
WP2/20
Smart cities and
Communities (SC&C)
Title
* Roles in SG 20 and SG 17 for IoT security and privacy should work jointly and the result of roles
demarcation should be reported to TSAG (Parents SG of SG17/20 in ITU-T)
Brief introduction of X.itssec-1
• Title of Recommendation
– “Secure software update capability for ITS communications devices” (X.itssec-1)
• Purpose
– to provide common methods to update the software by a secure procedure including
security controls and protocol definition
– The Recommendation would be a guideline of the baseline security for networked
vehicle.
• Editors
– Masashi Eto (NICT)
– Koji Nakao (KDDI/NICT)
• Determination
– Sep. 2016
Pg 7 |
Protocol Definition
Supplier
Pg 8 |
Upd Server
at OEM
Vehicle Mobile
Gateway (VMG)
ECU
User
Interface
Example of a message: diagnose (submit)
Supplier
Upd Server
at OEM
Vehicle Mobile
Gateway (VMG)
ECU
User
Interface
4. diagnose (submit)
Pg 9 |
Collaboration with industry and SDOs
 This activity is highly required to collaborate with automotive industries and other
standardization organizations (SDOs).
Pg 10 |
Thank you for your attention.
Pg 11 |