etsi security activities charles brookson chairman ocg security source: etsi gtsc-1 agenda item...
Post on 18-Dec-2015
212 Views
Preview:
TRANSCRIPT
ETSI Security activitiesETSI Security activities
Charles Brookson
Chairman OCG Security
Source: ETSIGTSC-1 Agenda item 7.1.6For: Information
GSC-8 060
GTSC#1- April 2003, OTTAWA Slide 2
Security activitiesSecurity activities
• ETSI has, since inception, has taken the lead in setting security standards.
• Started GSM, which included authentication, anonymity and customer privacy. – The first full worldwide deployment of encryption and smart cards.
• Other security standards include DECT, Video standards, Multimedia IP such as TIPHON, and subsequent mobile and fixed services
GTSC#1- April 2003, OTTAWA Slide 3
External bodies
EC3GPPOMAetc
Security working methodsSecurity working methods
ETSI OCG Security is co-ordinated for new issues
by email discussion group
ETSI Board
ETSI working groups
GTSC#1- April 2003, OTTAWA Slide 4
Lawful interceptionLawful interception
• ETSI LI is defining overall standards to cover the delivery of intercepted material in the Technical Committee LI
• Each individual technology contributes towards the delivery specification
• Standards supporting LI include Mobile, Internet.
GTSC#1- April 2003, OTTAWA Slide 5
Algorithms ETSI SAGEAlgorithms ETSI SAGE
• ETSI SAGE has developed algorithms to meet the requirements of ETSI work groups.
• Recent work has been to produce algorithms for– 3GPP (Kasumi and Milenage),
– new security to improve GSM (A5/3, G Milenage) and GPRS (GEA3).
• SAGE also continuously reviews the published literature to ensure that existing algorithms withstand new types of attack.
GTSC#1- April 2003, OTTAWA Slide 6
Electronic Signatures and Electronic Signatures and InfrastructuresInfrastructures
• To meet the requirements of business and commerce.– By providing a secure framework
• Supporting the Digital Signatures Directive within Europe.– Provides standards for an open environment.– Influence early developments.
GTSC#1- April 2003, OTTAWA Slide 7
Mobile securityMobile security
• 3G continues in new areas such as Digital Rights Management, Wireless LANs and security within and between networks.
• TETRA is now a mature standard, as is GSM for the Railways (GSM-R).
• Smart card work continues within the Smart Card Platform group, which is defining the UICC platform for 3GPP and 3GPP2, and the card application toolkit.
GTSC#1- April 2003, OTTAWA Slide 8
The future challengesThe future challenges
• Convergence of conventional switched telephony and IP solutions.
• Terminal devices are also becoming smarter, opening the possibility of attack
• We are noticing an increase in legislation worldwide, driven by security concerns over the last two years.
top related