UNLIMITED FREE ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already an Engineering360 user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your Engineering360 Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ETSI - GR CIM 007

Context Information Management (CIM); Security and Privacy

active, Most Current
Organization: ETSI
Publication Date: 1 March 2022
Status: active
Page Count: 31
scope:

The present document provides a security and privacy review of the ISG CIM specifications, in particular the NGSI-LD API [i.1] and the Data Model [i.2]. The review identifies the risks from attack and means to mitigate the risk in the form of core security objectives and privacy protection objectives to be met by NGSI-LD Systems.

NOTE: The scope of the security and privacy protection objectives include those related to data provenance, and the role of data aggregation as impacting the attack surface of NGSI-LD System deployments.

Document History

GR CIM 007
March 1, 2022
Context Information Management (CIM); Security and Privacy
The present document provides a security and privacy review of the ISG CIM specifications, in particular the NGSI-LD API [i.1] and the Data Model [i.2]. The review identifies the risks from attack...
GR CIM 007
March 1, 2022
Context Information Management (CIM); Security and Privacy
The present document provides a security and privacy review of the ISG CIM specifications, in particular the NGSI-LD API [i.1] and the Data Model [i.2]. The review identifies the risks from attack...

References

This document references:
GS CIM 009 - cross-cutting Context Information Management (CIM); NGSI-LD API
Published by ETSI on August 1, 2022
The purpose of the present document is the definition of a standard API for Context Information Management (NGSI-LD API) enabling close to real-time (right-time) access to context/digital twin...
This document references:
EN 303 645 - CYBER; Cyber Security for Consumer Internet of Things: Baseline Requirements
Published by ETSI on June 1, 2020
The present document specifies high-level security and data protection provisions for consumer IoT devices that are connected to network infrastructure (such as the Internet or home network) and...
This document references:
GS CIM 006 - Context Information Management (CIM); Information Model (MOD0)
Published by ETSI on July 1, 2019
The purpose of the present document is to give property graphs a formal semantic grounding based on RDF/RDFS/OWL, with blank nodes reification, geared to JSON-LD serialization. On top of it, a set of...
This document references:
GS CIM 009 - cross-cutting Context Information Management (CIM); NGSI-LD API
Published by ETSI on August 1, 2022
The purpose of the present document is the definition of a standard API for Context Information Management (NGSI-LD API) enabling close to real-time (right-time) access to context/digital twin...
This document references:
TR 103 719 - Guide to Identity-Based Cryptography
Published by ETSI on March 1, 2022
The present document describes the use and application of Identity-Based Cryptography (IBC) applied to both encryption, as Identity-Based Encryption (IBE), and to digital signature, as Identity-Based...
This document references:
TS 102 165-1 - CYBER; Methods and protocols; Part 1: Method and pro forma for Threat, Vulnerability, Risk Analysis (TVRA)
Published by ETSI on January 1, 2022
The present document defines a method primarily for use by ETSI standards developers in undertaking an analysis of the threats, risks and vulnerabilities of an Information and Communications...
This document is referenced by:
GS CIM 019 - cross-cutting Context Information Management (CIM); handling of provenance information in NGSI-LD
Published by ETSI on August 1, 2022
The present document designs a solution to verify integrity and to precisely evaluate attribution and authenticity of NGSI-LD [i.2] Context Information, throughout its lifecycle. It defines technical...
View Less
View All
Advertisement