1、INTERNATIONAL STANDARD ISO/IEC 15045-1 First edition 2004-01 Information technology Home electronic system (HES) gateway Part 1: A residential gateway model for HES Reference number ISO/IEC 15045-1:2004(E)INTERNATIONAL STANDARD ISO/IEC 15045-1 First edition 2004-01 Information technology Home electr
2、onic system (HES) gateway Part 1: A residential gateway model for HES PRICE CODE ISO/IEC 2004 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, withou
3、t permission in writing from the publisher. ISO/IEC Copyright Office Case postale 56 CH-1211 Genve 20 Switzerland P For price, see current catalogue 2 15045-1 ISO/IEC:2004(E) CONTENTS 1 Scope.9 1.1 Overview.9 1.2 Functional safety.9 1.3 Privacy and security 9 2 Normative references .9 3 Terms, defin
4、itions and abbreviations 10 3.1 Definitions.10 3.2 Abbreviations 13 4 Conformance clauses .13 4.1 Basic functions and requirements13 4.2 Optional functions and requirements .14 5 Functional requirements of residential gateways.14 5.1 Interfacing requirements14 5.1.1 General .14 5.1.2 WAN and HAN int
5、erfaces.14 5.1.3 Additional physical modular interfaces.15 5.1.4 Application-specific modularity.15 5.2 Co-existence .15 5.3 Address translation requirements 15 5.3.1 General .15 5.3.2 External to internal (WAN to HAN).15 5.3.3 Internal to internal (HAN to HAN).15 5.4 Protocol conversion.16 5.5 Info
6、rmation transfer.16 5.6 Auxiliary RG services 16 5.6.1 Application-specific services16 6 Functional safety with residential gateways 16 6.1 Introduction .16 6.2 Requirements for safety 16 6.2.1 General .16 6.2.2 Blocking capability.16 6.2.3 Discriminative blocking capability 17 6.2.4 Feedback on blo
7、cking17 7 Specific privacy and security requirements concerning residential gateways 17 7.1 Introduction .17 7.2 Security requirements of a residential gateway17 7.2.1 General .17 7.2.2 Devices with direct or secure connections to associated hosts 17 7.2.3 Devices on HANs, without inherent security.
8、17 7.3 Information security.18 7.4 External attack on the RG .18 7.5 Security requirements for a residential gateway.18 7.6 Security requirements for IP connected residential gateways 18 Annex A (informative) Architecture of residential gateways 1915045-1 ISO/IEC:2004(E) 3 A.1 Overview of architectu
9、re19 A.2 Architectural domains19 A.2.1 General .19 A.2.2 Domain of the RG20 A.2.3 Basic residential gateway architecture.20 A.2.4 Interfaces and processes.21 A.2.5 Details of component parts 22 A.2.6 Structural implementations of the RG 25 Annex B (informative) Functional safety considerations .29 B
10、.1 Introduction .29 B.1.1 General .29 B.1.2 Commands to potentially hazardous objects 29 B.1.3 Commands to relocatable programmable objects.29 B.1.4 Commands to automatic objects 29 B.1.5 Command translation.30 B.1.6 Linked changed state.30 B.1.7 Addressing 30 B.1.8 Broadcast messages, variables and
11、 commands.30 Annex C (informative) Specific privacy and security of residential gateways 31 C.1 Introduction .31 C.2 Threats31 C.2.1 General .31 C.2.2 Masquerade and replay .31 C.2.3 Interception: eavesdropping and modification 31 C.2.4 Denial-of-service and resource-exhaustion attack32 C.2.5 Softwa
12、re and configuration security: trojan horses, worms, viruses32 C.2.6 Spyware/data leakage .33 C.2.7 Repudiation .33 C.2.8 Signal intelligence .33 C.2.9 Unintentional domain to domain interconnect.33 C.2.10 Secure purchase and payment 34 C.3 Defence measures 34 C.3.1 Introduction .34 C.3.2 Authentica
13、tion .34 C.3.3 Access control.35 C.3.4 Integrity and confidentiality35 C.3.5 Message authentication code (MAC) .35 C.3.6 Hash functions and digital signatures 36 C.3.7 Logging .36 C.3.8 Resource management36 C.3.9 Host resistance37 C.3.10 Social engineering.37 C.3.11 Intrusion detection.37 C.3.12 Re
14、pudiation .37 Figure 1 Typical service provision for home network 7 Figure 2 Diagram of possible RG connections and interfaces.7 Figure A.1 Domain of the residential gateway 20 4 15045-1 ISO/IEC:2004(E) Figure A.2 Unit architecture .21 Figure A.3 Modular architecture.21 Figure A.4 WAN Gateway gatewa
15、y interface 22 Figure A.5 HAN Gateway gateway interface.23 Figure A.6 RG internal processes and interfaces .24 Figure A.7 Simple 1:1 implementation of RG25 Figure A.8 Complex integral RG implementation 26 Figure A.9 Complex modular RG implementation .27 Figure A.10 Distributed RGs linked via HAN.28
16、Figure A.11 Distributed RGs directly linked28 Figure A.12 Distributed RGs linked via WAN2815045-1 ISO/IEC:2004(E) 5 INFORMATION TECHNOLOGY HOME ELECTRONIC SYSTEM (HES) GATEWAY Part 1: A residential gateway model for HES FOREWORD 1) ISO (International Organization for Standardization) and IEC (Intern
17、ational Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fie
18、lds of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. 2) In the field of information technology, ISO and IEC have established
19、 a joint technical committee, ISO/IEC JTC 1. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. 3) All users should ens
20、ure that they have the latest edition of this publication. 4) No liability shall attach to IEC or ISO or its directors, employees, servants or agents including individual experts and members of their technical committees and IEC or ISO member bodies for any personal injury, property damage or other
21、damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and expenses arising out of the publication of, use of, or reliance upon, this ISO/IEC publication or any other IEC, ISO or ISO/IEC publications. 5) Attention is drawn to the normative references cited i
22、n this publication. Use of the referenced publications is indispensable for the correct application of this publication. 6) Attention is drawn to the possibility that some of the elements of this International Standard may be the subject of patent rights. ISO and IEC shall not be held responsible fo
23、r identifying any or all such patent rights. International Standard ISO/IEC 15045-1 was prepared by subcommittee 25: Interconnection of information technology equipment, of ISO/IEC joint technical committee 1: Information technology. This publication has been drafted in accordance with the ISO/IEC D
24、irectives, Part 2. 6 15045-1 ISO/IEC:2004(E) INTRODUCTION The residential gateway (RG) is a device of the Home Electronic System (HES) that connects home network domains to network domains outside the house, as shown in Figure 1. It supports communications among devices within the premises and syste
25、ms, service providers, operators and users outside the premises. The RG enables service and content providers to deliver services such as entertainment, video and broadband digital streams, monitoring for health care, security and occupancy, home appliance control and preventive maintenance, remote
26、metering, and energy management. The RG specified by this standard does not imply the use of any particular protocol such as IP and it is recognised that many forms of the RG will exist using many types of data such as analogue video and broadband digital streams. The safe and effective delivery of
27、these services places many demands on the facilities of the RG. These include the integrity and security of communications, the delivery of commands to devices in the home from external sources, the blocking of selected commands that may create unsafe conditions, the protection of the home from the
28、risks inherent in a connection to the internet, and facilitating micro-payments. There may be many different configurations of RG. Regardless of the RG configuration, this standard ensures the interoperability of home devices with external services. Also, this standard specifies features to enhance
29、the safety and security of network devices and consumer transactions via the network. The RG connects the remote user and the internet with the people, equipment, appliances or services in the home. These devices or systems are usually objects or nodes on a particular Home Area Network (HAN). Reside
30、ntial gateway Some of the potential interfaces and supported networks of a residential gateway are shown in Figure 1. In all cases the gateway provides the mechanism whereby Wide Area Networks (WANs) communicate with Home Area Networks. The gateway may be a standalone gateway; it may be embedded in
31、another device; or more than one gateway unit may be used. A number of distributed gateway units may display the behaviour of a single gateway.15045-1 ISO/IEC:2004(E) 7 WI D E A R E A COMMUNICATION NETWORKS Service Provider 1 Di g i ta l TV Service Provider 2 Equipment Maintenance Service Provider 3
32、 Security Service Service Provider 4 Content and Entertainm ent Service Provider 5 Utility Metering and Energy Mgmt Service Provider 6 Ho me V o i c e Co n tr o l Heating Radiator Tem perat ur e Sensor (Thermostat) Appliance Central Heating Boiler CO Sensor Security Sensor TV functional safety requi
33、rements of a residential gateway, where these are not covered by existing functional safety standards; security requirements of a residential gateway; options for the Architecture of the residential gateway and the elements of a conforming residential gateway (see Annex A); safety requirements of ho
34、me systems connected to Wide Area Networks and the role of the residential gateway (see Annex B); security requirements of home systems connected to Wide Area Networks and the role of the residential gateway (see Annex C). This document offers a future-proof 2 , forwards and backwards compatible sta
35、ndard for residential gateways and for networks and devices to which they are interfaced. 1 In systems terminology a black box refers to an object that has inputs, outputs and carries out functions but for which the means and methodology that convert the inputs into outputs are not specified. Only i
36、nputs, outputs and functions are specified. 2 A system that is called future proof is expected to be adapted to technologies and meet requirements that were not specified when it was designed but may be needed in future.15045-1 ISO/IEC:2004(E) 9 INFORMATION TECHNOLOGY HOME ELECTRONIC SYSTEM (HES) GA
37、TEWAY Part 1: Residential gateway model for HES 1 Scope 1.1 Overview This part of ISO/IEC 15045 specifies the minimum functional requirements of a residential gateway (RG) and the documentation to be provided. The standard specifies what a gateway should do in order to deliver services in a suitably
38、 safe, secure and future-proof way without being prescriptive. It also gives functional requirements. 1.2 Functional safety This standard specifies certain safety features where commands sent from remote places to devices on the premises could cause danger to persons or property. While this standard
39、 only specifies minimum requirements for the gateway architecture, gateway operation, and associated home systems in terms of safety, it provides an extensive checklist of functional situations that should be treated with the utmost caution and recommends appropriate measures. 1.3 Privacy and securi
40、ty This standard specifies security measures to ensure the integrity of information that may pass through the residential gateway. A residential gateway operating between the internet and the home creates significant concerns for security to the user. Particular attention is drawn to safety, securit
41、y and privacy. The attention of the user (consumer, maintainer or application service provider (ASP) of the gateway is drawn to dangers resulting from unexpected system interoperation, from unauthorised access and from compromise of private user information. RGs that are stated to conform to this st
42、andard will be evaluated by the RG manufacturers for potential functional safety and/or security hazards arising from systems integration. 2 Normative references The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited ap
43、plies. For undated references, the latest edition of the referenced document (including any amendments) applies. ISO/IEC 7498, Information technology Open Systems Interconnection Basic Reference Model ISO/IEC 14762, Information technology Home Control Systems Guidelines for functional safety 10 1504
44、5-1 ISO/IEC:2004(E) ISO/IEC 18012-1, Information technology Home electronic system Guidelines for product interoperability Part 1: Introduction 3 3 Terms, definitions and abbreviations 3.1 Definitions For the purposes of this part of ISO/IEC 15045, the following definitions apply. 3.1.1 co-existence
45、 no interference between different pieces of equipment on the premises Specifically, the operation of one RG does not interfere with the operation of another RG. 3.1.2 documentation all instances of product literature, brochures, data sheets, manuals and catalogues in which the product is described,
46、 defined, detailed or pictured that may be produced in paper or any electronic format NOTE In this definition, “product” refers to a product, a system, a network or a residential gateway. 3.1.3 file transfer protocol, FTP IP based protocol (see IETF Internet Engineering Task Force) 3.1.4 home area n
47、etwork, HAN any electronic network situated within the general environment of a residential dwelling and that connects enabled nodes within that dwelling 3.1.5 HAN to gateway interface, HGI translates the communications protocol of HAN nodes to that of the internal processor within the RG NOTE The s
48、pecification of the RG internal processor is outside the scope of this standard. The HGI may be implemented in software, firmware or hardware and may be modular or integrated in the RG. 3.1.6 IPSec provides security services at the IP layer that allow the user to apply combinations of integrity, rep
49、lay detection and encryption to IP packets It also provides a mechanism for users to authenticate each other and generate and exchange session keys, secret keys that are used for a limited time (a session), and then discarded. NOTE For further explanation, see IETF. 3.1.7 local area network, LAN any electronic network that connects computing devices together to form a group of intercommunicating devices 3 To be published.
