US: Security Credentials - Secure Internet (ITS)

Description:

This solution is used within Canada and the U.S.. It combines standards associated with US: Security Credentials with those for I-I: Secure Internet (ITS). The US: Security Credentials standards include upper-layer standards required to provide and revoke security credentials, define security policy, and handle enrollment coordination. The I-I: Secure Internet (ITS) standards include lower-layer standards that support secure communications between ITS equipment using X.509 or IEEE 1609.2 security certificates.

Relevant Regions:

Canada
United States

Comm Profile: I-I: Secure Internet (ITS)

Comm Class: WAN - Wide Area Network

Standards in Profile:

Level	Standard
Access	Internet Subnet Alternatives
Mgmt	Bundle: SNMPv3 MIB
Security	Secure Session Alternatives
TransNet	Internet Transport Alternatives
TransNet	IP Alternatives

Data Profile: US: Security Credentials

Standards in Profile:

Level	Standard
Facilities	IEEE 1609.2.1 WAVE - Certificate Management
ITS Application Entity	Not Needed
Security	IEEE 1609.2.1 WAVE - Certificate Management

Solution Issues Severity: 11

The severity issue score calculation only includes issues associated with standards that are included by default.

Solution Issues:

Default	Severity	Name	Type	Description
False	Medium	Uncertainty about trust revocation mechanism	Security Gap	The mechanisms used to prevent bad actors from sending authorized messages is unproven.
False	Medium	Unvetted by community	Standardization Gap	The proposed solution uses a suite of standards that is accepted within some communities, but has not necessarily been accepted for use within the context of this information triple.
True	Medium	Outdated security reference	Security Gap	The standard solution includes an outdated security reference.
True	High	Draft not available (Critical)	Standardization Gap	The standards development organization has established a work item for the subject standard but a draft is not available for this critical feature to enable the interface. The draft may be missing due to the work item being new or simply a lack of activity on the work item.

Solution to Triples

Source	Flow	Destination
Authorization CA	auth certs	Registration Authority
Commercial Vehicle Check Equipment	security credentials	Commercial Vehicle Service Provider Center
Cooperative ITS Credentials Management System	security credential revocations	ITS Object
Cooperative ITS Credentials Management System	security credentials	ITS Object
Cooperative ITS Credentials Management System	security policy and networking information	ITS Object
Device Configuration Manager	enrollment cert	ITS Object
Device Configuration Manager	RA cert	ITS Object
Distribution Center	certificate revocations	Location Obscurer Proxy
ITS Object	auth request	Supplementary Authorization Server
Location Obscurer Proxy	auth certs	ITS Object
Location Obscurer Proxy	CA certs	ITS Object
Location Obscurer Proxy	certificate chain file	ITS Object
Location Obscurer Proxy	certificate revocations	ITS Object
Location Obscurer Proxy	enrollment cert	ITS Object
Location Obscurer Proxy	RA cert	ITS Object
Location Obscurer Proxy	signed CTL	ITS Object
Registration Authority	auth certs	Location Obscurer Proxy
Registration Authority	CA certs	Location Obscurer Proxy
Security Credentials Registry	security credentials	Commercial Vehicle Check Equipment
Supplementary Authorization Server	auth token	ITS Object