Managing Security in Intelligent Transport Systems

This paper describes an innovative security architecture for managing security in Intelligent Transport Systems (ITS), based on research carried out as part of the still-ongoing ICSI ("Intelligent cooperative Sensing for Improved Traffic Efficiency") EU 7th Framework Programme (FP7) funded research project. The authors first present an overview of the security requirements to enforce in ICSI: The protection of the ICSI system itself, the protection of application data and, last, but not least, user privacy. The core of the work is two key technical aspects, which are the base for a successful enforcement of appropriate security policies, including privacy: Firstly, the authors' work in advanced access control (proximity-based, redaction/filtering-based, and attribute-based) forms the basis for user privacy protection in ICSI, because here standard access control models like Discretionary Access Control (DAC), Role-Based Access Control (RBAC) and Mandatory Access Control (MAC) are not sufficient. At this time of writing, two first prototypes are implemented. The authors also briefly evaluated European Telecommunications Standards Institute (ETSI) Machine-to-Machine (M2M) security, with not very promising results, especially the access control part is insufficient for ICSI, and does not meet the requirements of privacy protection. Secondly, the authors' security architecture and implementation for the Object Management Group's (OMG) Data Distribution Service (DDS), and secondly, advanced access control. The DDS security architecture and implementation, which is available as prototype enforcing security policies based on topics, publishers and subscribers, is the base for infrastructure protection of the ICSI Data Distribution Platform (DDP). The authors' prototype implementation is based on the upcoming OMG security standards and leverages ObjectSecurity's OpenPMF ("Open Policy Management Framework) functionality for policy definition and management, and for logging. In addition, the authors describe a draft of the overall ICSI security architecture. It integrates ETSI M2M security, DDS security and the "model-driven security" based OpenPMF Policy Management Framework.

Language

  • English

Media Info

  • Media Type: Web
  • Features: References;
  • Pagination: pp 48-53
  • Monograph Title: 18th International IEEE Conference on Intelligent Transportation Systems (ITSC 2015)

Subject/Index Terms

Filing Info

  • Accession Number: 01600859
  • Record Type: Publication
  • ISBN: 9781467365956
  • Files: TRIS
  • Created Date: May 2 2016 3:21PM