Intelligent transport systems — Framework for cooperative telematics applications for regulated commercial freight vehicles (TARV) — Part 4: System security requirements

Security requirements address both hardware and software aspects. This document addresses the security requirements for: — the transfer of TARV data from an IVS to an application service provider across a wireless communications interface; — the receipt of instructions from an application service provider to a TARV IVS; — the communications aspects of handling of software updates for the IVS over wireless communications. This document defines the requirements for telematics applications for regulated commercial vehicles for: a) threat, vulnerability and risk analysis; b) security services and architecture; c) identity management; d) security architecture and management; e) identity-trust and privacy management; f) security-access control; g) security-confidentiality services. This document provides: — general specifications for the security of TARV; — specifications for the security of TARV transactions and data within an ITS-station "bounded secure managed domain" (BSMD); — specifications for the security of TARV transactions and data transacted with a predetermined address outside of a BSMD. IVS security requirements are dealt with by the prime service provider and application service provider (See ISO 15638-1). Application service provision security is dealt with by the application service provider (and could be the subject of a separate TARV standards deliverable).

Systèmes intelligents de transport — Cadre pour applications télématiques collaboratives pour véhicules de fret commercial réglementé (TARV) — Partie 4: Exigences des systèmes de sécurité

General Information

Status
Published
Publication Date
17-Feb-2020
Current Stage
9020 - International Standard under periodical review
Start Date
15-Jan-2023
Completion Date
15-Jan-2023
Ref Project

Buy Standard

Technical specification
ISO/TS 15638-4:2020 - Intelligent transport systems -- Framework for cooperative telematics applications for regulated commercial freight vehicles (TARV)
English language
16 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

TECHNICAL ISO/TS
SPECIFICATION 15638-4
First edition
2020-02
Intelligent transport systems —
Framework for cooperative telematics
applications for regulated commercial
freight vehicles (TARV) —
Part 4:
System security requirements
Systèmes intelligents de transport — Cadre pour applications
télématiques collaboratives pour véhicules de fret commercial
réglementé (TARV) —
Partie 4: Exigences des systèmes de sécurité
Reference number
ISO/TS 15638-4:2020(E)
ISO 2020
---------------------- Page: 1 ----------------------
ISO/TS 15638-4:2020(E)
COPYRIGHT PROTECTED DOCUMENT
© ISO 2020

All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may

be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting

on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address

below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Fax: +41 22 749 09 47
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii © ISO 2020 – All rights reserved
---------------------- Page: 2 ----------------------
ISO/TS 15638-4:2020(E)
Contents Page

Foreword ........................................................................................................................................................................................................................................iv

Introduction ..................................................................................................................................................................................................................................v

1 Scope ................................................................................................................................................................................................................................. 1

2 Normative references ...................................................................................................................................................................................... 2

3 Terms and definitions ..................................................................................................................................................................................... 2

4 Abbreviated terms .............................................................................................................................................................................................. 5

5 General overview and framework ...................................................................................................................................................... 5

6 Requirements .......................................................................................................................................................................................................... 8

6.1 Threat, vulnerability and risk analysis ............................................................................................................................... 8

6.2 Functional requirements for security of targets of evaluation (TOEs)................................................... 8

6.2.1 TOE — In-vehicle systems ....................................................................................................................................... 8

6.2.2 TOE — Application service provider systems ........................................................................................ 8

6.2.3 TOE — TARV data transfer ...................................................................................................................................... 9

6.2.4 Means of TARV data transfer ................................................................................................................................. 9

6.2.5 TARV data security requirements ..................................................................................................................... 9

6.3 General specifications for the security of TARV ......................................................................................................... 9

6.3.1 Destined to a predetermined IPv6 address (URI) ............................................................................... 9

6.3.2 ASP or jurisdiction determines security requirements ...............................................................10

6.4 Low security data transfers via an ITS-station.........................................................................................................10

6.5 TARV Data transfers via an ITS-station with C-ITS security (BSMD) ....................................................10

6.5.1 Within ISO 21217 ITS-station environment .........................................................................................10

6.5.2 Within ISO 21210 networking environment ........................................................................................10

6.5.3 Within ISO 17423 selection of communications profile requirements .........................10

6.5.4 When accessing specific wireless media ..................................................................................................10

6.6 TARV data transfers including defined security, but outside a BSMD ..................................................11

6.6.1 General...................................................................................................................................................................................11

6.6.2 Security data .....................................................................................................................................................................12

6.6.3 IVS TARV security module ....................................................................................................................................12

6.7 Identity management .....................................................................................................................................................................12

6.8 Trust and privacy management .............................................................................................................................................12

6.9 Access control .......................................................................................................................................................................................12

6.10 Confidentiality services ................................................................................................................................................................12

6.11 Data privacy ............................................................................................................................................................................................12

6.12 Integrity of trailer identification ...........................................................................................................................................13

6.13 Exception handling ...........................................................................................................................................................................13

6.14 Cross-border operations and harmonization ............................................................................................................13

7 Quality of service requirements ........................................................................................................................................................13

8 Test requirements ............................................................................................................................................................................................13

9 Marking, labelling and packaging ...................................................................................................................................................13

Annex A (informative) Example TARV security in a regulatory domain .......................................................................14

Bibliography .............................................................................................................................................................................................................................15

© ISO 2020 – All rights reserved iii
---------------------- Page: 3 ----------------------
ISO/TS 15638-4:2020(E)
Foreword

ISO (the International Organization for Standardization) is a worldwide federation of national standards

bodies (ISO member bodies). The work of preparing International Standards is normally carried out

through ISO technical committees. Each member body interested in a subject for which a technical

committee has been established has the right to be represented on that committee. International

organizations, governmental and non-governmental, in liaison with ISO, also take part in the work.

ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of

electrotechnical standardization.

The procedures used to develop this document and those intended for its further maintenance are

described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the

different types of ISO documents should be noted. This document was drafted in accordance with the

editorial rules of the ISO/IEC Directives, Part 2 (see www .iso .org/ directives).

Attention is drawn to the possibility that some of the elements of this document may be the subject of

patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of

any patent rights identified during the development of the document will be in the Introduction and/or

on the ISO list of patent declarations received (see www .iso .org/ patents).

Any trade name used in this document is information given for the convenience of users and does not

constitute an endorsement.

For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and

expressions related to conformity assessment, as well as information about ISO's adherence to the

World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see www .iso .org/

iso/ foreword .html.

This document was prepared by Technical Committee ISO/TC 204, Intelligent transport systems.

A list of all parts in the ISO 15638 series can be found on the ISO website.

Any feedback or questions on this document should be directed to the user’s national standards body. A

complete listing of these bodies can be found at www .iso .org/ members .html.
iv © ISO 2020 – All rights reserved
---------------------- Page: 4 ----------------------
ISO/TS 15638-4:2020(E)
Introduction

Many ITS technologies have been embraced by commercial transport operators and freight owners, in

the areas of fleet management, safety and security. Telematics applications have also been developed

for governmental use. While the regulatory services in use or being considered varies from country

to country, these include services such as charging, digital tachograph, hazardous goods tracking and

e-call. Additional applications with a regulatory impact being developed include access monitoring, on-

board mass monitoring, fatigue management, speed monitoring.

In such an emerging environment of regulatory and commercial applications, it is timely to consider an

overall architecture (business and functional) that could support these functions from a single platform

within a commercial vehicle that operate within such regulations. Such International Standards will

allow for a speedy development and specification of new applications that build upon the functionality

of a generic specification platform. The ISO 15638-4 series of standards describes and defines the

framework and requirements so that the on-board equipment can be commercially designed in an open

market to meet common requirements.
The ISO 15638 series of standards:

— provides the basis for future development of cooperative telematics applications for regulated

commercial freight vehicles. Many elements to accomplish this are already available. Existing

relevant standards will be referenced, and the specifications will use existing standards (such as

published CALM documents) wherever practicable.

— allows for a powerful platform for highly cost-effective delivery of a range of telematics applications

for regulated commercial freight vehicles.

— is a business architecture based on a (multiple) service provider oriented approach.

— addresses legal and regulatory aspects for the approval and auditing of service providers.

The ISO 15638 series of standards is timely as many governments (Europe, North America, Asia and

Australia/New Zealand) are considering the use of telematics for a range of regulatory purposes.

Ensuring that a single in-vehicle platform can deliver a range of services to both government and

industry through open standards and competitive markets is a strategic objective.

This document provides general specifications for security for communications and data exchange

aspects of candidate regulated applications which are specified in ISO 15638-8 (and Parts 8 to 21 at the

time of developing this document, but further parts may be added later if a requirement for additional

regulated applications to be standardised are identified), the selection and implementation for all or

any of which remain a decision for the implementing jurisdiction.

NOTE 1 The definition of what comprises a ‘regulated’ vehicle is regarded as an issue for National decision, and

can vary from jurisdiction to jurisdiction. The ISO 15638 series of standards does not impose any requirements

on nations in respect of how they define a regulated vehicle.

NOTE 2 The definition of what comprises a ‘regulated’ service is regarded as an issue for National decision, and

may vary from jurisdiction to jurisdiction. The ISO 15638 series of standards does not impose any requirements

on nations in respect of which services for regulated vehicles jurisdictions will require, or support as an option,

but will provide standardised sets of requirements descriptions for identified services to enable consistent and

cost-efficient implementations where implemented.
© ISO 2020 – All rights reserved v
---------------------- Page: 5 ----------------------
TECHNICAL SPECIFICATION ISO/TS 15638-4:2020(E)
Intelligent transport systems — Framework for
cooperative telematics applications for regulated
commercial freight vehicles (TARV) —
Part 4:
System security requirements
1 Scope
Security requirements address both hardware and software aspects.
This document addresses the security requirements for:

— the transfer of TARV data from an IVS to an application service provider across a wireless

communications interface;

— the receipt of instructions from an application service provider to a TARV IVS;

— the communications aspects of handling of software updates for the IVS over wireless

communications.

This document defines the requirements for telematics applications for regulated commercial

vehicles for:
a) threat, vulnerability and risk analysis;
b) security services and architecture;
c) identity management;
d) security architecture and management;
e) identity-trust and privacy management;
f) security-access control;
g) security-confidentiality services.
This document provides:
— general specifications for the security of TARV;

— specifications for the security of TARV transactions and data within an ITS-station “bounded secure

managed domain” (BSMD);

— specifications for the security of TARV transactions and data transacted with a predetermined

address outside of a BSMD.

IVS security requirements are dealt with by the prime service provider and application service provider

(See ISO 15638-1).

Application service provision security is dealt with by the application service provider (and could be

the subject of a separate TARV standards deliverable).
© ISO 2020 – All rights reserved 1
---------------------- Page: 6 ----------------------
ISO/TS 15638-4:2020(E)
2 Normative references

The following documents are referred to in the text in such a way that some or all of their content

constitutes requirements of this document. For dated references, only the edition cited applies. For

undated references, the latest edition of the referenced document (including any amendments) applies.

ISO/TR 12859, Intelligent transport systems — System architecture — Privacy aspects in ITS standards

and systems

ISO/IEC 15408-1, Information technology — Security techniques — Evaluation criteria for IT security —

Part 1: Introduction and general model

ISO 15638-1, Intelligent transport systems — Framework for collaborative Telematics Applications for

Regulated commercial freight Vehicles (TARV) — Part 1: Framework and architecture

ISO 15638-3, Intelligent transport systems — Framework for collaborative telematics applications for

regulated commercial freight vehicles (TARV) — Part 3: Operating requirements, ‘Approval Authority’

procedures, and enforcement provisions for the providers of regulated services

ISO 17423, Intelligent transport systems — Cooperative systems — Application requirements and objectives

ISO 21210, Intelligent transport systems — Communications access for land mobiles (CALM) — IPv6

Networking

ISO 21217, Intelligent transport systems — Communications access for land mobiles (CALM) — Architecture

ISO 24102-3, Intelligent transport systems — ITS station management — Part 3: Service access points

ETSI TS 102 940, Intelligent Transport Systems (ITS); Security; ITS communications security architecture

and security management
3 Terms and definitions

For the purposes of this document, the terms and definitions given in ISO 15638-1 and the following apply.

ISO and IEC maintain terminological databases for use in standardization at the following addresses:

— ISO Online browsing platform: available at https:// www .iso .org/ obp
— IEC Electropedia: available at http:// www .electropedia .org/
3.1
access

admittance, entry, permit to use the road network and/or associated infrastructure, e.g. bridges, tunnels

3.2
access monitoring

observation and recording of vehicle related data when using the road network and/or associated

infrastructure, e.g. bridges, tunnels
3.3
application service

service provided by a service provider (3.24) enabled by accessing data from the in-vehicle system (IVS)

(3.14) of a regulated vehicle via a wireless communications network
3.4
application service provider
ASP
party that provides an application service (3.3)
2 © ISO 2020 – All rights reserved
---------------------- Page: 7 ----------------------
ISO/TS 15638-4:2020(E)
3.5
architecture

formalised description of the design of the structure of TARV and its framework (3.13)

3.6
authentication
function intended to establish and verify a claimed identity
3.7
bounded secure managed domain
BSMD

secure peer-to-peer communications between entities (ITS-stations (3.16)) that are themselves capable

of being secured and remotely managed;

Note 1 to entry: The bounded nature is derived from the requirement for ITS-stations to be able to communicate

amongst themselves, i.e. peer-to-peer, as well as with devices that are not secured (referred to as ‘other ITS-

stations’), and realizing that to achieve this in a secure manner often requires distribution and storage of

security-related material that must be protected within the boundaries of the ITS-stations, leads to the secured

nature of the entity, as there is great flexibility to achieve desired communication goals, there is a requirement

that this flexibility be managed; within C-ITS and ISO 21217 such ITS-stations are defined as operating within

BSMD, or outside of the BSMD.
3.8
communications access for land mobiles
CALM

layered solution that enables continuous or quasi continuous communications between vehicles and

the infrastructure, or between vehicles, using such (multiple) wireless telecommunications media that

are available in any particular location, and which have the ability to migrate to a different available

media where required and where media selection is at the discretion of user (3.27) determined

parameters by using a suite of standards based on ISO 21217 (CALM architecture) and ISO 21210

(CALM networking) that provide a common platform for a number of standardised media using ITS-

stations (3.16) to provide wireless support for applications, such that the application is independent of

any particular wireless medium
3.9
commercial application(s)
ITS applications in regulated vehicles for commercial (non-regulated) purposes

EXAMPLE Asset tracking, vehicle and engine monitoring, cargo security, driver management.

3.10
cooperative ITS
C-ITS

ITS applications for both regulatory and commercial purposes that require the exchange of data

between uncontracted parties using multiple ITS-stations (3.16) communicating with each other and

sharing data with other parties with whom they have no direct contractual relationship to provide one

or more ITS services (3.15)
3.11
data pantry
secure area of memory in IVS (3.14) where data values are stored
Note 1 to entry: See ISO 15638-1.
3.12
facilities

layer that sits on top of the communication stack and helps to provide data interoperability and reuse,

and to manage applications and enable dynamic real time loading of new applications

© ISO 2020 – All rights reserved 3
---------------------- Page: 8 ----------------------
ISO/TS 15638-4:2020(E)
3.13
framework

particular set of beliefs and ideas referred to in order to describe a scenario or solve a problem

3.14
in-vehicle system
IVS
ITS-station (3.16) and connected equipment on board a vehicle
3.15
ITS service

communication functionality offered by an ITS-station (3.16) to an ITS-station application

3.16
ITS-station
ITS-s

entity in a communication network, comprised of application, facilities (3.12), networking and access

layer components specified in ISO 21217 that operate within a bounded secure management domain

3.17
jurisdiction

government, road or traffic authority which owns the regulatory applications (3.21)

EXAMPLE Country, state, city council, road authority, government department (customs, treasury,

transport).
3.18
jurisdiction regulator

agent of the jurisdiction (3.17) appointed to regulate and manage TARV within the domain of the

jurisdiction, which may or may not be the approval authority (regulatory)
3.19
operator
fleet manager of a regulated vehicle
3.20
prime service provider

service provider (3.24) who is the first contractor to provide regulated application services (3.22) to

the regulated vehicle, or a nominated successor on termination of that initial contract, and who is

responsible to maintain the installed IVS (3.14) and if the IVS was not installed during the manufacture

of the vehicle, the prime service provider (3.20) is also responsible to install and commission the IVS

3.21
regulated application
regulatory application

application arrangement using TARV utilised by jurisdictions (3.17) for granting certain categories

of commercial vehicles rights to operate in regulated circumstances subject to certain conditions, or

indeed to permit a vehicle to operate within the jurisdiction and which may be mandatory or voluntary

at the discretion of the jurisdiction
3.22
regulated application service

TARV application service (3.3) to meet the requirements of a regulated application (3.21) that is mandated

by a regulation imposed by a jurisdiction (3.17), or is an option supported by a jurisdiction

4 © ISO 2020 – All rights reserved
---------------------- Page: 9 ----------------------
ISO/TS 15638-4:2020(E)
3.23
regulated commercial freight vehicle
regulated commercial regulated vehicle

vehicle that is subject to regulations determined by the jurisdiction (3.17) as to its use on the road

system of the jurisdiction in regulated circumstances, subject to certain conditions, and in compliance

with specific regulations for that class of regulated vehicle and which at the option of jurisdictions may

require the provision of information via TARV or provide the option to do so
3.24
service provider

party which is approved by an approval authority (regulatory) as suitable to provide regulated or

commercial ITS application services (3.3)
3.25
specification

explicit and detailed description of the nature and functional requirements and minimum performance

of equipment, service or a combination of both
3.26
telematics
use of wireless media to obtain and transmit (data) from a distant source
3.27
user

individual or party that enrols in and operates within a regulated or commercial application (3.9) service

EXAMPLE Driver, transport operator (3.19), freight owner.
4 Abbreviated terms

ADR European Agreement concerning the international carriage of Dangerous goods by

Road/Accord européen relatif au transport international des marchandises Dangereuses

par Route
ASP application service provider (3.4)
BSMD bounded secure managed domain
CALM communications access for land mobiles (3.8)
C-ITS cooperative intelligent transport systems (3.10)
ID identity
IP internet protocol
ITS-s ITS-station (3.16)
IVS In-vehicle system (3.14)
TARV telematics (3.26) applications for regulated vehicles
UNECE United Nations Economic Commission for Europe
5 General overview and framework

ISO 15638-1 provided a framework and architecture for TARV. It provided a general description of the

roles of the actors in TARV and their relationships.
To understand clearly the TARV framework the reader is referred to ISO 15638-1.
© ISO 2020 – All rights reserved 5
---------------------- Page: 10 ----------------------
ISO/TS 15638-4:2020(E)

Clause 6 contains security related requirements for the roles in the framework. The three-step security

evaluation process outlined in ISO/IEC 15408-1 is used. In many cases security functions are inherited

from a specific referenced ISO document, in particular, the security functions inherited from ITS-

station. Security requirements for non-ITS-station compliant IVS are also described.

Figure 1 shows the role model conceptual architecture showing the key actors and their relationships.

Figure 1 — Role model conceptual architecture
(Source: ISO 15638-1)

The ISO 15638 series of standards addresses and defines the framework for a range of cooperative

telematics applications for regulated commercial freight vehicles (e.g. access monitoring, driver fatigue

management, speed monitoring, on-board mass monitoring). The overall scope includes the concept

of operation, legal and regulatory issues, and the generic cooperative ITS service platform (ITS-

station). The framework is based on a (multiple) service provider-oriented approach provision for the

certification and auditing of service providers.
— ISO 15638-1:2012, TARV — Framework and architecture
— ISO 15638-2:2013, TARV — Common platform parameters using CALM
6 © ISO 2020 – All rights reserved
---------------------- Page: 11 ----------------------
ISO/TS 15638-4:2020(E)

— ISO 15638-3:2013, TARV — Operating requirements, 'Approval Authority' procedures, and enforcement

provisions for the providers of regulated services
— ISO/TS 15638-4:2020, TARV — System security requirements (this document)
— ISO 15638-5:2013, TARV — Generic vehicle information
— ISO 15638-6:2014, TARV — Regulated applications
— ISO 15638-7:2013, TARV — Other applications
— ISO 15638-8:2014, TARV — Vehicle access management
— ISO 15638-9:— , TARV — Remote digital tachograph monitoring
— ISO 15638-10:2017, TARV — Emergency messaging system/eCall
— ISO 15638-11:2014, TARV — Driver work records
— ISO 15638-12:2014, TARV — Vehicle mass monitoring

— ISO 15638-13:2015, TARV — “Mass” information for jurisdictional control and enforcement

— ISO 15638-14:2014, TARV — Vehicle access control
— ISO 15638-15:2014, TARV — Vehicle location monitoring
— ISO 15638-16:2014, TARV — Vehicle speed monitoring
— ISO 15638-17:2014, TARV — Consignment and location monitoring
— ISO 15638-18:2017, TARV — ADR (Dangerous Goods)
— ISO 15638-19:2013, TARV — Vehicle parking facilities (VPF)
— ISO 15638-20:— , TARV — Weigh-in-motion monitoring

— ISO 15638-21:2018, TARV — Monitoring of regulated vehicles using roadside sensors and data collected

from the vehicle for enforcement and other purposes
— ISO 15638-22:2019, TARV — Freight vehicle stability monitoring

Further information and assistance on aspects of security and risk in ITS and C-ITS systems can be

found in the following publications:

— ISO TR 17427-6, Intelligent transport systems — Cooperative ITS — ‘Core system’ risk assessment

methodology

— ISO TR 17427-7, Intelligent transport systems — Cooperative ITS — Privacy aspects

— ISO TR 17427-8, Intelligent transport systems — Cooperative ITS — Liability aspects

— ISO TR 17427-9, Intelligent transport systems — Cooperative ITS — Compliance and enforcement aspects

This document defines the system security requirements for the wireless transfer of TARV data and

other related support services within the framework of the ISO 15638 series of standards.

1) Under preparation. Stage at the time of publication: ISO/FDIS 15638-9:2020.
2) Under preparation. Stage at the time of publication: ISO/PRF 15638-20:2020.
© ISO 2020 – All rights reserved 7
---------------------- Page: 12 ----------------------
ISO/TS 15638-4:2020(E)
6 Requirements
6.1 Threat, vulnerability and risk analysis
The ISO/IEC 15408 series pro
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.