UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ETSI - GR ETI 002

Encrypted Traffic Integration (ETI); Requirements definition and analysis

active, Most Current
Organization: ETSI
Publication Date: 1 March 2023
Status: active
Page Count: 19
scope:

The present document identifies the requirements for allowing Encrypted Traffic Integration (ETI) across an abstracted network architecture. The present document is informed by the ETI Problem Statement [i.1] and the Zero Trust Architecture (ZTA) security model [i.6] and its application, to provide an explicitly trusted commutations environment across all enabled layers of the Open Systems Interconnection (OSI) model. In addition the present document describes a security model, by way of ZTA, that enforces transparency and explicability of the role of security functions, particularly encryption.

NOTE 1: The OSI model [i.3], and the OSI based security model [i.4], [i.5] when implemented may not explicitly enable some layers, in particular layers 5 (Session) and 6 (Presentation) are often implied.

In addition, the present document defines use cases where ETI might not be sufficient to enable a ZTA environment and identifies mitigations to maintain ETI, while adhering to ZTA.

NOTE 2: The ZTA model begins by not trusting anything and builds and reinforces trust continuously during operation.

Document History

GR ETI 002
March 1, 2023
Encrypted Traffic Integration (ETI); Requirements definition and analysis
The present document identifies the requirements for allowing Encrypted Traffic Integration (ETI) across an abstracted network architecture. The present document is informed by the ETI Problem...

References

This document references:
GR ETI 001 - Encrypted Traffic Integration (ETI); Problem Statement
Published by ETSI on June 1, 2021
The present document describes the problem arising from pervasive encrypted traffic in electronic/digital communications networks. The present document identifies the impact of encrypted traffic on a...
This document references:
TR 103 309 - CYBER; Secure by Default - platform security technology
Published by ETSI on August 1, 2015
The present document is intended to encourage development and adoption of 'secure by default' platform security technologies by showing how they can be used to effectively solve real business...
This document references:
TS 102 165-2 - Telecommunications and Internet converged Services and Protocols for Advanced Networking (TISPAN); Methods and protocols; Part 2: Protocol Framework Definition; Security Counter Measures
Published by ETSI on February 1, 2007
A description is not available for this item.
This document references:
TS 103 523-1 - CYBER; Middlebox Security Protocol; Part 1: MSP Framework and Template Requirements
Published by ETSI on December 1, 2020
The present document is the first part of the Middlebox Security Protocol (MSP) series [i.22]. It is intended to be used by MSP profile developers, MSP profile implementors and MSP specification...
This document references:
IETF RFC 6749 - The OAuth 2.0 Authorization Framework
Published by IETF on October 1, 2012
The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction...
This document references:
ISO/IEC 7498-2 - Information Processing Systems - Open Systems Interconnection - Basic Reference Model - Part 2: Security Architecture
Published by ISO on February 15, 1989
Scope and field of application This part of ISO 7498: a) provides a general description of security services and related mechanisms, which may be provided by the Reference Model; and b) defines the...
This document references:
ISO/IEC 7498-1 - Information Technology - Open Systems Interconnection - Basic Reference Model: the Basic Model
Published by ISO on November 15, 1994
The purpose of this Reference Model of Open Systems Interconnection is to provide a common basis for the coordination of standards development for the purpose of systems interconnection. while...
This document references:
ITU-T X.800 - Security Architecture for Open Systems Interconnection for CCITT Applications (Study Group VII) 49 pp
Published by ITU-T on January 1, 1991
A description is not available for this item.
This document is referenced by:
TS 103 962 - CYBER; Optical Network and Device Security; Security provisions in Optical Access Network Devices
Published by ETSI on December 1, 2023
The present document provides the baseline requirements specific to Optical Access Network (OAN) and devices which provides network access service to network service subscribers. The present document...
View Less
View All
Advertisement