Cooperative intelligent transport systems (C-ITS) - Guidelines on the usage of standards - Part 3: Security (ISO/TR 21186-3:2021)

This document provides guidelines on security applicable in Intelligent Transport Systems (ITS) related to communications and data access.
In particular, this document provides analyses and best practice content for secure ITS connectivity using ISO/TS 21177.
This document analyses and identifies issues related to application security, access control, device security and PKI for a secure ITS ecosystem.

Kooperative intelligente Verkehrssyteme (C-ITS) - Leitfäden zur Nutzung von Normen - Teil 3: Security (ISO/TR 21186-3:2021)

Systèmes de transport intelligents coopératifs (C-ITS) - Lignes directrices pour l'utilisation des normes - Partie 3: Sécurité (ISO/TR 21186-3:2021)

Kooperativni inteligentni transportni sistemi (C-ITS) - Smernice za uporabo standardov - 3. del: Varnost (ISO/TR 21186-3:2021)

General Information

Status
Published
Publication Date
16-Feb-2021
Current Stage
6060 - Definitive text made available (DAV) - Publishing
Start Date
17-Feb-2021
Completion Date
17-Feb-2021

Buy Standard

Technical report
TP CEN ISO/TR 21186-3:2021 - BARVE
English language
135 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-maj-2021
Kooperativni inteligentni transportni sistemi (C-ITS) - Smernice za uporabo
standardov - 3. del: Varnost (ISO/TR 21186-3:2021)
Cooperative intelligent transport systems (C-ITS) - Guidelines on the usage of standards
- Part 3: Security (ISO/TR 21186-3:2021)
Kooperative intelligente Verkehrssyteme (C-ITS) - Leitfäden zur Nutzung von Normen -
Teil 3: Security (ISO/TR 21186-3:2021)
Systèmes de transport intelligents coopératifs (C-ITS) - Lignes directrices sur l'utilisation
des normes - Partie 3: Sécurité (ISO/TR 21186-3:2021)
Ta slovenski standard je istoveten z: CEN ISO/TR 21186-3:2021
ICS:
01.120 Standardizacija. Splošna Standardization. General
pravila rules
03.220.01 Transport na splošno Transport in general
35.240.60 Uporabniške rešitve IT v IT applications in transport
prometu
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

CEN ISO/TR 21186-3
TECHNICAL REPORT
RAPPORT TECHNIQUE
February 2021
TECHNISCHER BERICHT
ICS 01.120; 03.220.01; 35.240.60
English Version
Cooperative intelligent transport systems (C-ITS) -
Guidelines on the usage of standards - Part 3: Security
(ISO/TR 21186-3:2021)
Systèmes de transport intelligents coopératifs (C-ITS) - Kooperative intelligente Verkehrssyteme (C-ITS) -
Lignes directrices pour l'utilisation des normes - Partie Leitfäden zur Nutzung von Normen - Teil 3: Security
3: Sécurité (ISO/TR 21186-3:2021) (ISO/TR 21186-3:2021)

This Technical Report was approved by CEN on 1 February 2021. It has been drawn up by the Technical Committee CEN/TC 278.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway,
Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and
United Kingdom.
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2021 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN ISO/TR 21186-3:2021 E
worldwide for CEN national Members.

Contents Page
European foreword . 3

European foreword
This document (CEN ISO/TR 21186-3:2021) has been prepared by Technical Committee ISO/TC 204
"Intelligent transport systems" in collaboration with Technical Committee CEN/TC 278 “Intelligent
transport systems” the secretariat of which is held by NEN.
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CEN shall not be held responsible for identifying any or all such patent rights.
Endorsement notice
The text of ISO/TR 21186-3:2021 has been approved by CEN as CEN ISO/TR 21186-3:2021 without any
modification.
TECHNICAL ISO/TR
REPORT 21186-3
First edition
2021-02
Cooperative intelligent transport
systems (C-ITS) — Guidelines on the
usage of standards —
Part 3:
Security
Systèmes de transport intelligents coopératifs (C-ITS) - Lignes
directrices pour l'utilisation des normes —
Partie 3: Sécurité
Reference number
ISO/TR 21186-3:2021(E)
©
ISO 2021
ISO/TR 21186-3:2021(E)
© ISO 2021
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting
on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address
below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii © ISO 2021 – All rights reserved

ISO/TR 21186-3:2021(E)
Contents Page
Foreword .v
Introduction .vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Symbols and abbreviated terms . 2
5 Security in C-ITS . 4
5.1 General . 4
5.2 Security design process for C-ITS applications . 4
5.3 Communications security mechanisms in C-ITS . 5
5.4 Source authentication and access control mechanisms . 7
5.5 Certificate authorities and certification processes .10
5.6 Introduction to the rest of this document .11
6 Security analysis and controls for an IDX device .12
6.1 Background .12
6.2 IDX device concept .12
6.2.1 General.12
6.2.2 System architecture and device .14
6.2.3 Threat modelling data scenarios and examples .16
6.2.4 Assumed device functions and activities .19
6.3 Device assets .22
6.4 Threats .24
6.4.1 General.24
6.4.2 Threat modelling process.25
6.4.3 Threat categories and actor motivations .25
6.4.4 Scenario comparison of threats .27
6.5 Security objectives .29
6.5.1 Summary and comparison by scenario .29
6.5.2 Analysis .31
6.6 SFR and rationales .32
6.7 Comparison to other common criteria PPs .39
6.7.1 General.39
6.7.2 Summary and analysis of gaps .39
6.7.3 Gap analysis with Car2Car HSM PP .39
6.7.4 Gap analysis against V-ITS base PP .41
6.7.5 Gap analysis against V-ITS Comms Module PP .45
7 ISO/TS 21177 access control implementation guidance .45
7.1 General .45
7.2 High level architecture and access scenario .46
7.3 Application protocol architecture and ISO/TS 21177 integration .47
7.3.1 General.47
7.3.2 Example protocol architecture .47
7.3.3 Protocol integration strategy .49
7.4 Access control policy structure .50
7.5 Access control approach .51
7.6 Access control use cases and sequence diagrams .54
7.6.1 General.54
7.6.2 Define an access policy .54
7.6.3 Load an access control policy .58
7.6.4 Configure TLS .62
7.6.5 Start a secure TLS session .64
7.6.6 Secure access-controlled resource discovery .67
ISO/TR 21186-3:2021(E)
7.6.7 Server controls access to UGP service based on role .73
8 C-ITS CP security requirements gaps and needs .77
8.1 General .
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.