US: NTCIP CCTV - SNMPv3/TLS
Description
This solution is used within the U.S.. It combines standards associated with US: NTCIP CCTV with those for I–F: SNMPv3/TLS. The US: NTCIP CCTV standards include upper–layer standards required to implement center–to–field CCTV communications (data only). The I–F: SNMPv3/TLS standards include lower–layer standards that support secure center–to–field and field–to–field communications using simple network management protocol (SNMPv3); implementations are strongly encouraged to use the TLS for SNMP security option for this solution to ensure adequate security.
Includes Standards
| Level | DocNum | FullName | Description |
|---|
| Mgmt | NTCIP 1201 | NTCIP Global Object (GO) Definitions | This standard defines SNMP objects (data elements) used by a wide range of field devices like time and versioning information. |
|---|
| Security | IETF RFC 6353 | Transport Layer Security (TLS) Transport Model for the Simple Network Management Protocol (SNMP) | This standard (RFC) defines how to use the TLS authentication service to provide authentication within the access control mechanism of SNMP. |
|---|
| ITS Application Entity | NTCIP 1205 | NTCIP Objects for CCTV Camera Control | This standard defines SNMP objects (data elements) for control and monitoring of closed–circuit television (CCTV) camera controllers. |
|---|
| Facilities | NTCIP 1205 | NTCIP Objects for CCTV Camera Control | This standard defines SNMP objects (data elements) for control and monitoring of closed–circuit television (CCTV) camera controllers. |
|---|
Readiness: High–Moderate
Readiness Description
One significant or possibly a couple minor issues. For existing deployments, the chosen solution likely has identified security or management issues not addressed by the communications solution. Deployers should consider additional security measures, such as communications link and physical security as part of these solutions. They should also review the management issues to see if they are relevant to their deployment and would require mitigation. For new deployments, the deployment efforts should consider a path to addressing these issues as a part of their design activities. The solution does not by itself provide a fully secure implementation without additional work.
Issues
| Issue | Severity | Description | Associated Standard | Associated Triple |
|---|
| Out of date (medium) | Medium | The standard includes normative references to other standards that have been subject to significant changes that can impact interoperability or security of systems and the industry has not specified if and how these updates should be implemented for deployments of this standard. | IETF RFC 6353 TLS for SNMP | (All) |
|---|
| Update data to SNMPv3 | Low | Data has been defined for SNMPv1, but needs to be updated to SNMPv3 format. | (None) | (All) |
|---|
| Use TLS for SNMP Option | Low | The standard allows for multiple security mechanisms. The only defined mechanism that meets the requirements for C–ITS is the one based on TLS. | (None) | (All) |
|---|
Supports Interfaces
| Source | Destination | Flow |
|---|
| Cincinnati Field Equipment | Cincinnati Traffic Control Center | traffic image meta data |
|---|
| City and County Cameras | City and County Traffic Control Center | traffic image meta data |
|---|
| City and County Cameras | KYTC District 6 Planning | traffic image meta data |
|---|
| Hamilton County Field Equipment | Hamilton County Signal Operations | traffic image meta data |
|---|
| INDOT Cameras | INDOT Traffic Operations Center | traffic image meta data |
|---|
| ODOT / KYTC Cameras | ODOT Statewide TMC | traffic image meta data |
|---|