EU: Misbehavior reporting - Secure Internet (ITS)
Description:
This solution is used within Australia and the E.U.. It combines standards associated with EU: Misbehavior reporting with those for I-I: Secure Internet (ITS). The EU: Misbehavior reporting standards include upper-layer standards required to support misbehavior reporting services. The I-I: Secure Internet (ITS) standards include lower-layer standards that support secure communications between ITS equipment using X.509 or IEEE 1609.2 security certificates.Relevant Regions:
- Australia
- European Union
Comm Profile: I-I: Secure Internet (ITS)
Comm Class: WAN - Wide Area Network
Standards in Profile:
Level | Standard |
---|---|
Access | Internet Subnet Alternatives |
Mgmt | Bundle: SNMPv3 MIB |
Security | Secure Session Alternatives |
TransNet | Internet Transport Alternatives |
TransNet | IP Alternatives |
Data Profile: EU: Misbehavior reporting
Standards in Profile:
Level | Standard |
---|---|
Facilities | ETSI 103 460 Malicious behavior detection |
ITS Application Entity | Application Specific |
Security | ETSI 103 460 Malicious behavior detection |
Solution Issues Severity: 17
The severity issue score calculation only includes issues associated with standards that are included by default.
Solution Issues:
Default | Severity | Name | Type | Description |
---|---|---|---|---|
True | Medium | Outdated security reference | Security Gap | The standard solution includes an outdated security reference. |
True | Medium | Performance not fully defined (medium) | ITS Info Gap | The performance rules are not fully defined for this information flow. |
True | Medium | Secure data access not provided | Security Gap | The solution does not define rules on how the application entity authenticates requests to accept or provide data. |
True | High | Draft not available (Critical) | Standardization Gap | The standards development organization has established a work item for the subject standard but a draft is not available for this critical feature to enable the interface. The draft may be missing due to the work item being new or simply a lack of activity on the work item. |
False | Medium | Option not standardized | Standardization Gap | The option set includes at least one option that is not (yet) defined in a standard. |
False | Medium | Uncertainty about trust revocation mechanism | Security Gap | The mechanisms used to prevent bad actors from sending authorized messages is unproven. |
Solution to Triples
This solution is used on the following information flow triples:
Source | Flow | Destination |
---|---|---|
ITS Object | misbehavior report | Cooperative ITS Credentials Management System |