BS PD CEN ISO TS 19299-2015 Electronic fee collection Security framework《电子收费 安全框架》.pdf
《BS PD CEN ISO TS 19299-2015 Electronic fee collection Security framework《电子收费 安全框架》.pdf》由会员分享,可在线阅读,更多相关《BS PD CEN ISO TS 19299-2015 Electronic fee collection Security framework《电子收费 安全框架》.pdf(154页珍藏版)》请在麦多课文档分享上搜索。
1、BSI Standards Publication Electronic fee collection Security framework PD CEN ISO/TS 19299:2015National foreword This Published Document is the UK implementation of CEN ISO/TS 19299:2015. It supersedes PD CEN/TS 16439:2013 which is withdrawn. The UK participation in its preparation was entrusted to
2、Technical Committee EPL/278, Intelligent transport systems. A list of organizations represented on this committee can be obtained on request to its secretary. This publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application. T
3、he British Standards Institution 2015. Published by BSI Standards Limited 2015 ISBN 978 0 580 87862 6 ICS 03.220.20; 35.240.60 Compliance with a British Standard cannot confer immunity from legal obligations. This Published Document was published under the authority of the Standards Policy and Strat
4、egy Committee on 31 October 2015. Amendments/corrigenda issued since publication Date Text affected PUBLISHED DOCUMENT PD CEN ISO/TS 19299:2015 TECHNICAL SPECIFICATION SPCIFICATION TECHNIQUE TECHNISCHE SPEZIFIKATION CEN ISO/TS 19299 O c t o b e r 2 0 1 5 ICS 35.240.60; 03.220.20 Supersedes CEN/TS 16
5、439:2013 English Version Electronic fee collection - Security framework (ISO/TS 19299:2015) Perception de tlpage - Cadre de scurit (ISO/TS 19299:2015) Elektronische Gebhrenerhebung - Sicherheitsgrundstruktur (ISO/TS 19299:2015) This Technical Specification (CEN/TS) was approved by CEN on 26 June 201
6、5 for provisional application. The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their comments, particularly on the question whether the CEN/TS can be converted into a European Standard. CEN members are required
7、 to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel to the CEN/TS) until the final decision about the possible convers
8、ion of the CEN/TS into an EN is reached. CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxem
9、bourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United Kingdom. EUROPEAN COMMITTEE FOR STANDARDIZATION COMIT EUROPEN DE NORMALISATION EUROPISCHES KOMITEE FR NORMUNG CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brusse
10、ls 2015 CEN All rights of exploitation in any form and by any means reserved worldwide for CEN national Members. Ref. No. CEN ISO/TS 19299:2015 E PD CEN ISO/TS 19299:2015CEN ISO/TS 19299:2015 (E) 2 Contents Page European foreword . 3 PD CEN ISO/TS 19299:2015CEN ISO/TS 19299:2015 (E) 3 European forew
11、ord This document (CEN ISO/TS 19299:2015) has been prepared by Technical Committee ISO/TC 204 “Intelligent transport systems“ in collaboration with Technical Committee CEN/TC 278 “Intelligent transport systems” the secretariat of which is held by NEN. Attention is drawn to the possibility that some
12、of the elements of this document may be the subject of patent rights. CEN and/or CENELEC shall not be held responsible for identifying any or all such patent rights. This document supersedes CEN/TS 16439:2013. This document has been prepared under a mandate given to CEN by the European Commission an
13、d the European Free Trade Association. According to the CEN-CENELEC Internal Regulations, the national standards organizations of the following countries are bound to announce this Technical Specification: Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former
14、 Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom. Endorsement notice The text of ISO/TS 19299
15、:2015 has been approved by CEN as CEN ISO/TS 19299:2015 without any modification. PD CEN ISO/TS 19299:2015 ISO/TS 19299:2015(E)Foreword v Introduction vi 1 Scope . 1 2 Normative references 2 3 T erms and definitions . 4 4 Symbols and abbreviated terms . 9 5 Trust model .10 5.1 Overview .10 5.2 Stake
16、holders trust relations .10 5.3 Technical trust model .11 5.3.1 General.11 5.3.2 Trust model for TC and TSP relations .11 5.3.3 Trust model for TSP and service user relations .13 5.3.4 Trust model for Interoperability Management relations .13 5.4 Implementation .13 5.4.1 Setup of trust relations 13
17、5.4.2 Trust relation renewal and revocation 14 5.4.3 Issuing and revocation of sub CA and end-entity certificates 14 5.4.4 Certificate and certificate revocation list profile and format .15 5.4.5 Certificate extensions .15 6 Security requirements .17 6.1 General 17 6.2 Information security managemen
18、t system 18 6.3 Communication interfaces .18 6.4 Data storage 19 6.5 Toll charger .19 6.6 Toll service provider .21 6.7 Interoperability Management .23 6.8 Limitation of requirements .23 7 Security measures countermeasures .24 7.1 Overview .24 7.2 General security measures 24 7.3 Communication inter
19、faces security measures .25 7.3.1 General.25 7.3.2 DSRC-EFC interface . 26 7.3.3 CCC interface 27 7.3.4 LAC interface 28 7.3.5 Front End to TSP back end interface .28 7.3.6 TC to TSP interface 29 7.3.7 ICC interface 30 7.4 End-to-end security measures .30 7.5 Toll service provider security measures
20、32 7.5.1 Front end security measures 32 7.5.2 Back end security measures .33 7.6 Toll charger security measures 34 7.6.1 RSE security measures . 34 7.6.2 Back end security measures .34 7.6.3 Other TC security measures 35 8 S ecurity specifications for int er oper able int erfac e implementation .35
21、8.1 General 35 8.1.1 Subject35 ISO 2015 All rights reserved iii Contents Page PD CEN ISO/TS 19299:2015 ISO/TS 19299:2015(E)8.1.2 Signature and hash algorithms .35 8.2 Security specifications for DSRC-EFC .36 8.2.1 Subject36 8.2.2 OBE .36 8.2.3 RSE 36 9 Key management .36 9.1 Overview .36 9.2 Asymmet
22、ric keys 36 9.2.1 Key exchange between stakeholders .36 9.2.2 Key generation and certification .37 9.2.3 Protection of keys .37 9.2.4 Application .37 9.3 Symmetric keys 38 9.3.1 General.38 9.3.2 Key exchange between stakeholders .38 9.3.3 Key lifecycle .39 9.3.4 Key storage and protection 40 9.3.5 S
23、ession keys 41 Annex A (normative) S ecurity pr ofiles 42 Annex B (normative) Implementation conformance statement (ICS) proforma 46 Annex C (informative) Stakeholder objectives and generic requirements .64 Annex D (informative) Threat analysis .68 Annex E (informative) Security policies .124 Annex
24、F (informative) Example for an EETS security policy 131 Annex G (informative) Recommendations for privacy-focused implementation .133 Annex H (informative) Pr oposal for end-entity c ertificat es135 Bibliography .136 iv ISO 2015 All rights reserved PD CEN ISO/TS 19299:2015 ISO/TS 19299:2015(E) Forew
- 1.请仔细阅读文档,确保文档完整性,对于不预览、不比对内容而直接下载带来的问题本站不予受理。
- 2.下载的文档,不会出现我们的网址水印。
- 3、该文档所得收入(下载+内容+预览)归上传者、原创作者;如果您是本文档原作者,请点此认领!既往收益都归您。
下载文档到电脑,查找使用更方便
10000 积分 0人已下载
下载 | 加入VIP,交流精品资源 |
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- BSPDCENISOTS192992015ELECTRONICFEECOLLECTIONSECURITYFRAMEWORK 电子 收费 安全 框架 PDF

链接地址:http://www.mydoc123.com/p-397192.html