{"id":372476,"date":"2024-10-20T02:29:28","date_gmt":"2024-10-20T02:29:28","guid":{"rendered":"https:\/\/pdfstandards.shop\/product\/uncategorized\/bsi-pd-cen-iso-tr-21186-32021\/"},"modified":"2024-10-26T04:20:44","modified_gmt":"2024-10-26T04:20:44","slug":"bsi-pd-cen-iso-tr-21186-32021","status":"publish","type":"product","link":"https:\/\/pdfstandards.shop\/product\/publishers\/bsi\/bsi-pd-cen-iso-tr-21186-32021\/","title":{"rendered":"BSI PD CEN ISO\/TR 21186-3:2021"},"content":{"rendered":"<p>This document provides guidelines on security applicable in Intelligent Transport Systems (ITS) related to communications and data access.<\/p>\n<p>In particular, this document provides analyses and best practice content for secure ITS connectivity using <span class=\"std\"><span class=\"std-ref\">ISO\/TS&nbsp;21177<\/span><\/span>.<\/p>\n<p>This document analyses and identifies issues related to application security, access control, device security and PKI for a secure ITS ecosystem.<\/p>\n<h4>PDF Catalog<\/h4>\n<table border=\"1px\" class=\"des-table\">\n<tr>\n<th>PDF Pages<\/th>\n<th>PDF Title<\/th>\n<\/tr>\n<tr>\n<td><b>2<b><\/td>\n<td>undefined  <\/td>\n<\/tr>\n<tr>\n<td><b>7<b><\/td>\n<td>Foreword  <\/td>\n<\/tr>\n<tr>\n<td><b>8<b><\/td>\n<td>Introduction  <\/td>\n<\/tr>\n<tr>\n<td><b>11<b><\/td>\n<td>1 Scope <br \/> 2 Normative references <br \/> 3 Terms and definitions  <\/td>\n<\/tr>\n<tr>\n<td><b>12<b><\/td>\n<td>4 Symbols and abbreviated terms  <\/td>\n<\/tr>\n<tr>\n<td><b>14<b><\/td>\n<td>5 Security in C-ITS <br \/> 5.1 General <br \/> 5.2 Security design process for C-ITS applications  <\/td>\n<\/tr>\n<tr>\n<td><b>15<b><\/td>\n<td>5.3 Communications security mechanisms in C-ITS  <\/td>\n<\/tr>\n<tr>\n<td><b>17<b><\/td>\n<td>5.4 Source authentication and access control mechanisms  <\/td>\n<\/tr>\n<tr>\n<td><b>20<b><\/td>\n<td>5.5 Certificate authorities and certification processes  <\/td>\n<\/tr>\n<tr>\n<td><b>21<b><\/td>\n<td>5.6 Introduction to the rest of this document  <\/td>\n<\/tr>\n<tr>\n<td><b>22<b><\/td>\n<td>6 Security analysis and controls for an IDX device <br \/> 6.1 Background <br \/> 6.2 IDX device concept <br \/> 6.2.1 General  <\/td>\n<\/tr>\n<tr>\n<td><b>24<b><\/td>\n<td>6.2.2 System architecture and device  <\/td>\n<\/tr>\n<tr>\n<td><b>26<b><\/td>\n<td>6.2.3 Threat modelling data scenarios and examples  <\/td>\n<\/tr>\n<tr>\n<td><b>29<b><\/td>\n<td>6.2.4 Assumed device functions and activities  <\/td>\n<\/tr>\n<tr>\n<td><b>32<b><\/td>\n<td>6.3 Device assets  <\/td>\n<\/tr>\n<tr>\n<td><b>34<b><\/td>\n<td>6.4 Threats <br \/> 6.4.1 General  <\/td>\n<\/tr>\n<tr>\n<td><b>35<b><\/td>\n<td>6.4.2 Threat modelling process <br \/> 6.4.3 Threat categories and actor motivations  <\/td>\n<\/tr>\n<tr>\n<td><b>37<b><\/td>\n<td>6.4.4 Scenario comparison of threats  <\/td>\n<\/tr>\n<tr>\n<td><b>39<b><\/td>\n<td>6.5 Security objectives <br \/> 6.5.1 Summary and comparison by scenario  <\/td>\n<\/tr>\n<tr>\n<td><b>41<b><\/td>\n<td>6.5.2 Analysis  <\/td>\n<\/tr>\n<tr>\n<td><b>42<b><\/td>\n<td>6.6 SFR and rationales  <\/td>\n<\/tr>\n<tr>\n<td><b>49<b><\/td>\n<td>6.7 Comparison to other common criteria PPs <br \/> 6.7.1 General <br \/> 6.7.2 Summary and analysis of gaps <br \/> 6.7.3 Gap analysis with Car2Car HSM PP  <\/td>\n<\/tr>\n<tr>\n<td><b>51<b><\/td>\n<td>6.7.4 Gap analysis against V-ITS base PP  <\/td>\n<\/tr>\n<tr>\n<td><b>55<b><\/td>\n<td>6.7.5 Gap analysis against V-ITS Comms Module PP <br \/> 7 ISO\/TS 21177 access control implementation guidance <br \/> 7.1 General  <\/td>\n<\/tr>\n<tr>\n<td><b>56<b><\/td>\n<td>7.2 High level architecture and access scenario  <\/td>\n<\/tr>\n<tr>\n<td><b>57<b><\/td>\n<td>7.3 Application protocol architecture and ISO\/TS 21177 integration <br \/> 7.3.1 General <br \/> 7.3.2 Example protocol architecture  <\/td>\n<\/tr>\n<tr>\n<td><b>59<b><\/td>\n<td>7.3.3 Protocol integration strategy  <\/td>\n<\/tr>\n<tr>\n<td><b>60<b><\/td>\n<td>7.4 Access control policy structure  <\/td>\n<\/tr>\n<tr>\n<td><b>61<b><\/td>\n<td>7.5 Access control approach  <\/td>\n<\/tr>\n<tr>\n<td><b>64<b><\/td>\n<td>7.6 Access control use cases and sequence diagrams <br \/> 7.6.1 General <br \/> 7.6.2 Define an access policy  <\/td>\n<\/tr>\n<tr>\n<td><b>68<b><\/td>\n<td>7.6.3 Load an access control policy  <\/td>\n<\/tr>\n<tr>\n<td><b>72<b><\/td>\n<td>7.6.4 Configure TLS  <\/td>\n<\/tr>\n<tr>\n<td><b>74<b><\/td>\n<td>7.6.5 Start a secure TLS session  <\/td>\n<\/tr>\n<tr>\n<td><b>77<b><\/td>\n<td>7.6.6 Secure access-controlled resource discovery  <\/td>\n<\/tr>\n<tr>\n<td><b>83<b><\/td>\n<td>7.6.7 Server controls access to UGP service based on role  <\/td>\n<\/tr>\n<tr>\n<td><b>87<b><\/td>\n<td>8 C-ITS CP security requirements gaps and needs <br \/> 8.1 General  <\/td>\n<\/tr>\n<tr>\n<td><b>88<b><\/td>\n<td>8.2 Overview of European C-ITS CP  <\/td>\n<\/tr>\n<tr>\n<td><b>89<b><\/td>\n<td>8.3 PKI threat categories and mitigations  <\/td>\n<\/tr>\n<tr>\n<td><b>100<b><\/td>\n<td>8.4 European C-ITS CP changes to support news C-ITS applications <br \/> 8.4.1 General <br \/> 8.4.2 CP Section 1.6.1  <\/td>\n<\/tr>\n<tr>\n<td><b>101<b><\/td>\n<td>8.4.3 CP Section 1.6.2 <br \/> 8.4.4 CP Section 6.1.5.2  <\/td>\n<\/tr>\n<tr>\n<td><b>102<b><\/td>\n<td>8.4.5 CP Section 4.1.2.4  <\/td>\n<\/tr>\n<tr>\n<td><b>103<b><\/td>\n<td>Annex A (informative)  Scenario threats  <\/td>\n<\/tr>\n<tr>\n<td><b>117<b><\/td>\n<td>Annex B (informative)  Scenario security objectives to security functional requirements mapping  <\/td>\n<\/tr>\n<tr>\n<td><b>119<b><\/td>\n<td>Annex C (informative)  Informative proposal for improvements of TS 21177:2019: CRL request  <\/td>\n<\/tr>\n<tr>\n<td><b>126<b><\/td>\n<td>Annex D (informative)  Informative proposal for complements to TS 21177:2019: Ownership and access policy  <\/td>\n<\/tr>\n<tr>\n<td><b>130<b><\/td>\n<td>Annex E (informative)  Informative proposal for improvements of TS 21177:2019: Errata, additional rationale material, and session persistence across certificate expiry  <\/td>\n<\/tr>\n<tr>\n<td><b>134<b><\/td>\n<td>Bibliography  <\/td>\n<\/tr>\n<\/table>\n","protected":false},"excerpt":{"rendered":"<p><b>Cooperative intelligent transport systems (C-ITS). Guidelines on the usage of standards &#8211; Security<\/b><\/p>\n<table class=\"shortdes-table\" style=\"width: 100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td>Published By<\/td>\n<td>Publication Date<\/td>\n<td>Number of Pages<\/td>\n<\/tr>\n<tr>\n<td><a href=\"https:\/\/pdfstandards.shop\/product-category\/publishers\/bsi\/\"><b>BSI<\/b><\/a><\/td>\n<td>2021<\/td>\n<td>136<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"featured_media":372486,"template":"","meta":{"rank_math_lock_modified_date":false,"ep_exclude_from_search":false},"product_cat":[2641],"product_tag":[],"class_list":{"0":"post-372476","1":"product","2":"type-product","3":"status-publish","4":"has-post-thumbnail","6":"product_cat-bsi","8":"first","9":"instock","10":"sold-individually","11":"shipping-taxable","12":"purchasable","13":"product-type-simple"},"_links":{"self":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product\/372476","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product"}],"about":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/types\/product"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media\/372486"}],"wp:attachment":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media?parent=372476"}],"wp:term":[{"taxonomy":"product_cat","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_cat?post=372476"},{"taxonomy":"product_tag","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_tag?post=372476"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}