CEN/TS 16702-1:2014
(Main)Electronic fee collection - Secure monitoring for autonomous toll systems - Part 1: Compliance checking
Electronic fee collection - Secure monitoring for autonomous toll systems - Part 1: Compliance checking
This Technical Specification specifies transactions and data for Compliance Checking - Secure Monitoring. The scope of this technical specification consists of:
— The concept and involved processes for Secure Monitoring.
— The definition of new transactions and data.
— The use of the OBE compliance checking transaction as specified in CEN ISO/TS 12813:2009, for the purpose of Compliance Checking - Secure Monitoring.
— The use of back end transactions as specified in EN ISO 12855:2012, for the purpose of Compliance Checking – Secure Monitoring. This includes definitions for the use of optional elements and reserved attributes.
— A specification of technical and organisational security measures involved in Secure Monitoring, on top of measures provided for in the EFC Security Framework.
— The interrelations between different options in the OBE, TSP and TC domain and their high level impacts.
Outside the scope of this Technical Specification are:
— Information exchange between OBE and TR.
— Choices related to compliance checking policies e.g. which options are used, whether undetected/unexpected observations are applied, whether fixed, transportable and/or mobile compliance checking are deployed, locations and intensity of checking of itinerary freezing and checking of toll declaration.
— Details of procedures and criteria for assessing the validity or plausibility of Itinerary Records.
— Choices concerning the storage location of itinerary records, and data retention policy.
— Recommendations for a single specific implementation due to different applicable privacy laws. Instead, a set of options is provided.
Elektronische Gebührenerhebung - Sichere Überwachung von autonomen Mautsystemen - Einhaltungsprüfung
Perception du télépéage - Surveillance sécurisée pour systèmes autonomes de péage - Partie 1: Contrôle de conformité
Elektronsko pobiranje pristojbin - Varnostno spremljanje avtonomnih cestninskih sistemov - 1. del: Preverjanje skladnosti
Ta tehnična specifikacija določa transakcije in podatke za preverjanje skladnosti (varnostno spremljanje). Področje uporabe te tehnične specifikacije vključuje:
– koncept in vključene postopke za varnostno spremljanje;
– definicijo novih transakcij in podatkov;
– uporabo transakcije za preverjanje skladnosti OBE, kot je določeno v standardu CEN ISO/TS 12813:2009, za namen preverjanja skladnosti (varnostno spremljanje);
– uporabo transakcij s povratno informacijo, kot je določeno v standardu EN ISO 12855:2012, za namen preverjanja skladnosti (varnostno spremljanje). To vključuje definicije za uporabo izbirnih elementov in rezerviranih atributov;
– specifikacijo tehničnih in organizacijskih varnostnih ukrepov, vključenih v varnostnem spremljanju, poleg ukrepov, ki so opredeljeni v varnostnem okviru elektronskega pobiranja cestnin (EFC);
– povezave med različnimi možnostmi v domenah OBE, TSP in TC ter njihove vplive.
Področje uporabe te tehnične specifikacije ne vključuje:
– izmenjave informacij med OBE in TR;
– odločitev, povezanih s politiko preverjanja skladnosti, npr. katere možnosti so uporabljene, ali so uporabljena nezaznana/nepričakovana opažanja, ali je uvedeno fiksno, prenosljivo in/ali mobilno preverjanje skladnosti, lokacij in intenzivnosti preverjanja zamrznitve načrta poti ter preverjanja izjav o plačilu cestnine;
– podrobnosti o postopkih in kriterijih za ocenjevanje veljavnosti ali verjetnosti zapisov o načrtu poti;
– odločitev, ki zadevajo lokacijo za shranjevanje zapisov o načrtu poti in pravilnik o hranjenju podatkov;
– priporočil za eno določeno izvedbo zaradi različne veljavne zakonodaje o zasebnosti. Namesto tega je podan nabor možnosti.
General Information
Relations
Standards Content (Sample)
SLOVENSKI STANDARD
01-februar-2015
Elektronsko pobiranje pristojbin - Varnostno spremljanje avtonomnih cestninskih
sistemov - 1. del: Preverjanje skladnosti
Electronic fee collection - Secure monitoring for autonomous toll systems - Part 1:
Compliance checking
Elektronische Gebührenerhebung - Sichere Überwachung von autonomen
Mautsystemen - Einhaltungsprüfung
Perception du télépéage - Surveillance sécurisée pour systèmes autonomes de péage -
Partie 1: Contrôle de conformité
Ta slovenski standard je istoveten z: CEN/TS 16702-1:2014
ICS:
35.240.60 Uporabniške rešitve IT v IT applications in transport
transportu in trgovini and trade
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.
TECHNICAL SPECIFICATION
CEN/TS 16702-1
SPÉCIFICATION TECHNIQUE
TECHNISCHE SPEZIFIKATION
November 2014
ICS 35.240.60
English Version
Electronic fee collection - Secure monitoring for autonomous toll
systems - Part 1: Compliance checking
Perception du télépéage - Surveillance sécurisée pour Elektronische Gebührenerhebung - Sichere Überwachung
systèmes autonomes de péage - Partie 1: Contrôle de von autonomen Mautsystemen - Einhaltungsprüfung
conformité
This Technical Specification (CEN/TS) was approved by CEN on 14 June 2014 for provisional application.
The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their
comments, particularly on the question whether the CEN/TS can be converted into a European Standard.
CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available
promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel to the CEN/TS)
until the final decision about the possible conversion of the CEN/TS into an EN is reached.
CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,
Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United
Kingdom.
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION
EUROPÄISCHES KOMITEE FÜR NORMUNG
CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2014 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 16702-1:2014 E
worldwide for CEN national Members.
Contents Page
Foreword .5
0 Introduction .6
0.1 Overview .6
0.2 Processes .6
0.3 Options .8
0.4 Privacy aspects . 11
1 Scope . 12
1.1 General scope . 12
1.2 Relation to CEN/TS 16439 . 12
1.3 Relation to other standards . 14
2 Normative references . 14
3 Terms and definitions . 15
4 Abbreviations . 17
5 Processes . 18
5.1 Introduction and overview . 18
5.2 Processes needed for different types of Secure Monitoring . 19
5.3 Itinerary Freezing . 21
5.3.1 Introduction . 21
5.3.2 Generate Itinerary . 21
5.3.3 Real-time freezing . 23
5.3.4 Freezing per declaration . 24
5.4 Checking of Itinerary Freezing . 25
5.4.1 Introduction . 25
5.4.2 Observing a vehicle . 25
5.4.3 Retrieving Proof of Itinerary Freezing (PIF) . 26
5.4.4 Checking PIF against Observation . 27
5.5 Checking of Toll Declaration . 27
5.5.1 Introduction . 27
5.5.2 Retrieve Itinerary Data . 27
5.5.3 Check Itinerary Consistency . 28
5.5.4 Checking Toll Declaration against Itinerary . 28
5.6 Claiming incorrectness . 29
5.7 Providing EFC Context Data . 29
5.8 Key Management . 29
5.8.1 Introduction . 29
5.8.2 Requirements . 29
6 Transactions . 30
6.1 Introduction . 30
6.2 Description of Itinerary Data . 32
6.2.1 Introduction . 32
6.2.2 Itinerary Batch . 34
6.2.3 Itinerary Record Data Elements . 35
6.3 Retrieving PIF in real-time (DSRC Transaction) . 37
6.3.1 Introduction . 37
6.3.2 Transactional Model . 38
6.3.3 Syntax and Semantics . 38
6.3.4 Security . 40
6.4 Toll Declaration . 40
6.4.1 Introduction . 40
6.4.2 Transactional Model . 40
6.4.3 Syntax and semantics . 41
6.4.4 Itinerary Sequence . 42
6.4.5 Security . 44
6.5 Back End Data Checking . 44
6.5.1 Introduction . 44
6.5.2 Transactional model . 45
6.5.3 Checks of the Itinerary . 46
6.5.4 Syntax and semantics . 47
6.5.5 Security . 50
6.6 Claiming incorrectness . 50
6.6.1 Introduction . 50
6.6.2 Transactional model . 51
6.6.3 Syntax and semantics . 52
6.6.4 Security . 52
6.7 Providing EFC Context Data . 53
6.7.1 Introduction . 53
6.7.2 Transactional Model . 53
6.7.3 Syntax and semantics . 53
6.7.4 Security . 55
7 Security . 55
7.1 Security functions and elements . 55
7.1.1 Hash functions . 55
7.1.2 MAC. 55
7.1.3 Digital signatures . 55
7.1.4 Public Keys, Certificates and CRL . 55
7.2 Key Management . 56
7.2.1 Key Exchange between Stakeholders .
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.