CEN/TS 16702-2:2015
(Main)Electronic fee collection - Secure monitoring for autonomous toll systems - Part 2: Trusted recorder
Electronic fee collection - Secure monitoring for autonomous toll systems - Part 2: Trusted recorder
This Technical Specification defines the requirements for the Secure Application Module (SAM) used in the secure monitoring compliance checking concept. It specifies two different configurations of a SAM:
— Trusted Recorder, for use inside an OBE;
— Verification SAM, for use in other EFC system entities.
The Technical Specification describes
— terms and definitions used to describe the two Secure Application Module configurations;
— operation of the two Secure Application Modules in the secure monitoring compliance checking concept;
— functional requirements for the two Secure Application Modules configurations, including a classification of different security levels;
— the interface, by means of transactions, messages and data elements, between an OBE or Front End and the Trusted Recorder;
— requirements on basic security primitives and key management procedures to support Secure Monitoring using a Trusted Recorder.
This Technical Specification is consistent with the EFC architecture as defined in ISO 17573 and the derived suite of standards and Technical Specifications, especially CEN/TS 16702-1:2014 and CEN/TS 16439.
The following is outside the scope of this Technical Specification:
— The life cycle of a Secure Application Module and the way in which this is managed.
— The interface commands needed to get a Secure Application Module in an operational state.
— The interface definition of the Verification SAM.
— Definition of a hardware platform for the implementation of a Secure Application Module.
Elektronische Gebührenerhebung - Sichere Überwachung von autonomen Mautsystemen - Teil 2: Zuverlässige Datenaufzeichnung
Perception du télépéage - Surveillance sécurisée pour systèmes autonomes de péage - Partie 2: Enregistreur fiabilisé
Elektronsko pobiranje pristojbin - Varnostno spremljanje avtonomnih cestninskih sistemov - 2. del: Zaupanja vreden snemalnik
Ta tehnična specifikacija »Varnostno spremljanje avtonomnih cestninskih sistemov - 2. del: Zaupanja vreden snemalnik« določa zahteve za modul varnega dostopa (SAM), uporabljen pri konceptu preverjanja skladnosti varnostnega spremljanja. Ta tehnična specifikacija opisuje dve različni konfiguraciji modula varnega dostopa (SAM), ki sta potrebni za koncept preverjanja skladnosti varnostnega spremljanja:
– zaupanja vreden snemalnik: za uporabo v opremi v vozilu (OBE);
– SAM za preverjanje: za uporabo v drugih entitetah sistema za elektronsko pobiranje pristojbin (EFC).
Ta tehnična specifikacija opisuje:
– izraze in definicije, ki so uporabljeni za opis teh dveh konfiguracij modula varnega dostopa;
– delovanje teh dveh modulov varnega dostopa v konceptu preverjanja skladnosti varnostnega spremljanja;
– funkcionalne zahteve za ti dve konfiguraciji modula varnega dostopa, vključno z razvrstitvijo različnih varnostnih ravni;
– vmesnik, prek transakcij, sporočil in podatkovnih elementov, med opremo v vozilu ali čelnim delom in zaupanja vrednim snemalnikom;
– zahteve glede osnovnih varnostnih primitivov in ključnih postopkov upravljanja kot podpora varnostnemu spremljanju z uporabo zaupanja vrednega snemalnika.
Ta tehnična specifikacija je v skladu z arhitekturo za elektronsko pobiranje pristojbin, kot je določena s standardom ISO 17573 in skupino izpeljanih standardov in tehničnih specifikacij, še posebej FprCEN/TS 16702-1 in CEN/TS 16439.
V tej tehnični specifikaciji ni zajeto naslednje:
– življenjska doba modula varnega dostopa in način, na katerega se to upravlja;
– ukazi vmesnika, ki so potrebni za zagon modula varnega dostopa;
– definicija vmesnika modula varnega dostopa za preverjanje;
– definicija platforme za strojno opremo za izvajanje modula varnega dostopa.
General Information
Relations
Standards Content (Sample)
SLOVENSKI STANDARD
01-september-2015
Elektronsko pobiranje pristojbin - Varnostno spremljanje avtonomnih cestninskih
sistemov - 2. del: Zaupanja vreden snemalnik
Electronic fee collection - Secure monitoring for autonomous toll systems - Part 2:
Trusted recorder
Elektronische Gebührenerhebung - Sichere Überwachung von autonomen
Mautsystemen - Teil 2: Zuverlässige Datenaufzeichnung
Perception du télépéage - Surveillance sécurisée pour systèmes autonomes de péage -
Partie 2: Enregistreur fiabilisé
Ta slovenski standard je istoveten z: CEN/TS 16702-2:2015
ICS:
03.220.20 Cestni transport Road transport
35.240.60 Uporabniške rešitve IT v IT applications in transport
transportu in trgovini and trade
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.
TECHNICAL SPECIFICATION
CEN/TS 16702-2
SPÉCIFICATION TECHNIQUE
TECHNISCHE SPEZIFIKATION
March 2015
ICS 03.220.20; 35.240.60
English Version
Electronic fee collection - Secure monitoring for autonomous toll
systems - Part 2: Trusted recorder
Perception du télépéage - Surveillance sécurisée pour Elektronische Gebührenerhebung - Sichere Überwachung
systèmes autonomes de péage - Partie 2: Enregistreur von autonomen Mautsystemen - Teil 2: Zuverlässige
fiabilisé Datenaufzeichnung
This Technical Specification (CEN/TS) was approved by CEN on 19 January 2015 for provisional application.
The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their
comments, particularly on the question whether the CEN/TS can be converted into a European Standard.
CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available
promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel to the CEN/TS)
until the final decision about the possible conversion of the CEN/TS into an EN is reached.
CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,
Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United
Kingdom.
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION
EUROPÄISCHES KOMITEE FÜR NORMUNG
CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2015 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 16702-2:2015 E
worldwide for CEN national Members.
Contents Page
Foreword .4
Introduction .5
1 Scope .7
2 Normative references .7
3 Terms and definitions .8
4 Symbols and abbreviations . 11
5 SAM concept and scenarios . 12
5.1 General . 12
5.2 The concepts of TR and Verification SAM . 13
5.3 Scenarios for a Trusted Recorder . 14
5.3.1 General . 14
5.3.2 Real-Time Freezing without using a Trusted Time Source . 14
5.3.3 Real-Time Freezing using a Trusted Time Source . 15
5.4 Scenarios for a Verification SAM . 15
5.4.1 General . 15
5.4.2 MAC verification. 16
5.5 General Scenarios . 16
5.5.1 General . 16
5.5.2 Assigning a Toll Domain Counter . 17
5.5.3 Obtaining SAM Information . 17
6 Functional requirements . 18
6.1 General . 18
6.1.1 SAM options . 18
6.1.2 Presentation of requirements . 19
6.2 Basic requirements. 19
6.3 Key management . 20
6.4 Cryptographic functions . 20
6.5 Real-time freezing . 21
6.6 Verification SAM . 21
6.7 Toll Domain Counter . 22
6.8 Trusted time source . 23
6.9 Security protection level . 24
7 Interface requirements . 24
7.1 General . 24
7.2 Calculate MAC for real-time freezing . 24
7.2.1 General . 24
7.2.2 Calculation of MAC . 25
7.2.3 Coding of request . 25
7.2.4 Coding of response . 26
7.3 Calculate digital signature for real-time freezing . 26
7.3.1 General . 26
7.3.2 Calculation of digital signature . 26
7.3.3 Coding of request . 27
7.3.4 Coding of response . 27
7.4 Get device information . 28
7.4.1 General . 28
7.4.2 Coding of request . 28
7.4.3 Coding of response . 28
7.5 Get toll domain counter information . 28
7.5.1 General . 28
7.5.2 Coding of request . 29
7.5.3 Coding of response . 29
7.6 Get key information . 29
7.6.1 General . 29
7.6.2 Coding of request . 30
7.6.3 Coding of response . 30
7.7 Error handling . 31
Annex A (normative) Data type specification . 32
A.1 General . 32
A.2 Data specifications . 32
Annex B (normative) Implementation Conformance Statement (ICS) proforma . 33
B.1 Guidance for completing the ICS proforma . 33
B.1.1 Purposes and structure . 33
B.1.2 Abbreviations and conventions . 33
B.1.3 Instructions for completing the ICS proforma. 34
B.2 ICS proforma for Trusted Recorder . 35
B.2.1 Identification implementation . 35
B.2.2 Identification of the standard . 35
B.2.3 Global statement of conformance . 35
B.2.4 ICS proforma tables for TR . 36
B.3 ICS proforma for Verification SAM . 39
B.3.1 Identification implementation . 39
B.3.2 Identification of the standard . 39
B.3.3 Global statement of conformance . 39
B.3.4 ICS proforma tables for Verification SAM . 40
Annex C (informative) Trusted time source implementation issues . 43
C.1 General . 43
C.2 Possible implementations of a TTS .
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.