Home
Scope
Stakeholders
Inventory
By Physical Object
By Stakeholder
Services
Roles and Resp
Needs
Functions
Interfaces
Communications
Agreements
Projects

TUF - Secure Internet (ITS)

Description

This solution is used within Australia, the E.U. and the U.S.. It combines standards associated with TUF with those for I–I: Secure Internet (ITS). The TUF standards include upper–layer standards required to install and update application software. The I–I: Secure Internet (ITS) standards include lower–layer standards that support secure communications between ITS equipment using X.509 or IEEE 1609.2 security certificates.

Includes Standards

LevelDocNumFullNameDescription
SecurityTUFThe Update FrameworkThe Update Framework (TUF) specification helps developers maintain the security of a software update system, even against attackers that compromise the repository or signing keys. TUF provides a flexible framework and specification that developers can adopt into any software update system.
ITS Application EntityNo Standard NeededNo Standard NeededThe services related to this portion of the stack are not critical within the scope of this solution.
FacilitiesTUFThe Update FrameworkThe Update Framework (TUF) specification helps developers maintain the security of a software update system, even against attackers that compromise the repository or signing keys. TUF provides a flexible framework and specification that developers can adopt into any software update system.
Access Internet Subnet AlternativesA set of alternative standards that includes any Subnet Layer method of connecting to the Internet.

Readiness: High–Moderate

Readiness Description

One significant or possibly a couple minor issues. For existing deployments, the chosen solution likely has identified security or management issues not addressed by the communications solution. Deployers should consider additional security measures, such as communications link and physical security as part of these solutions. They should also review the management issues to see if they are relevant to their deployment and would require mitigation. For new deployments, the deployment efforts should consider a path to addressing these issues as a part of their design activities. The solution does not by itself provide a fully secure implementation without additional work.

Issues

IssueSeverityDescriptionAssociated StandardAssociated Triple
Unvetted by communityMediumThe proposed solution uses a suite of standards that is accepted within some communities, but has not necessarily been accepted for use within the context of this information triple.(None)(All)
Not a standard (minor)LowThe document is publicly available and widely used but it is not currently a formal standard.The Update Framework(All)

Supports Interfaces

SourceDestinationFlow
Cincinnati Public Services DepartmentCity and County Connected Vehicle Roadside EquipmentRSE application install/upgrade
City and County Maintenance OperationsCity and County Connected Vehicle Roadside EquipmentRSE application install/upgrade
Hamilton County Maintenance DivisionCity and County Connected Vehicle Roadside EquipmentRSE application install/upgrade
INDOT Traffic Signal Control SystemINDOT Connected Vehicle RSERSE application install/upgrade
KYTC Traffic Signal Control SystemCVG Airport Connected Vehicle Roadside EquipmentRSE application install/upgrade
KYTC Traffic Signal Control SystemODOT / KYTC Connected Vehicle Roadside EquipmentRSE application install/upgrade
ODOT ATMSINDOT Connected Vehicle RSERSE application install/upgrade
ODOT ATMSODOT / KYTC Connected Vehicle Roadside EquipmentRSE application install/upgrade
ODOT Traffic Signal Control SystemODOT / KYTC Connected Vehicle Roadside EquipmentRSE application install/upgrade
Other City and County Maintenance Dispatch FacilitiesCity and County Connected Vehicle Roadside EquipmentRSE application install/upgrade
TRIMARC (KYTC)ODOT / KYTC Connected Vehicle Roadside EquipmentRSE application install/upgrade
Privacy Policy | Terms of Use & Accessibility