BS ISO 18185-4-2007 Freight containers - Electronic seals - Data protection《货运集装箱 电子密封 数据保护》.pdf

1、 g49g50g3g38g50g51g60g44g49g42g3g58g44g55g43g50g56g55g3g37g54g44g3g51g40g53g48g44g54g54g44g50g49g3g40g59g38g40g51g55g3g36g54g3g51g40g53g48g44g55g55g40g39g3g37g60g3g38g50g51g60g53g44g42g43g55g3g47g36g58ICS 55.180.10Freight containers Electronic seals Part 4: Data protectionBRITISH STANDARDBS ISO 1818

2、5-4:2007BS ISO 18185-4:2007This British Standard was published under the authority of the Standards Policy and Strategy Committee on 31 May 2007 BSI 2007ISBN 978 0 580 50796 0Amendments issued since publicationAmd. No. Date Commentscontract. Users are responsible for its correct application.Complian

3、ce with a British Standard cannot confer immunity from legal obligations.National forewordThis British Standard was published by BSI. It is the UK implementation of ISO 18185-4:2007. The UK participation in its preparation was entrusted to Technical Committee TW/1, Freight containers and swap bodies

4、.A list of organizations represented on this committee can be obtained on request to its secretary.This publication does not purport to include all the necessary provisions of a Reference numberISO 18185-4:2007(E)INTERNATIONAL STANDARD ISO18185-4First edition2007-05-01Freight containers Electronic s

5、eals Part 4: Data protection Conteneurs pour le transport de marchandises Scells lectroniques Partie 4: Protection des donnes BS ISO 18185-4:2007ii iiiContents Page Foreword iv Introduction v 1 Scope . 1 2 Normative references . 1 3 Terms, definitions and abbreviated terms . 2 4 Data protection 3 4.

6、1 General. 3 4.2 Confidential information 3 4.3 Public information 3 4.4 Fixed data 3 4.5 Variable data 3 5 Device authentication. 3 5.1 General. 3 5.2 Physical authentication 4 5.3 Electronic authentication. 4 6 Conformance. 4 Annex A (normative) Electronic seal manufacturers security-related pract

7、ices 5 Bibliography . 10 BS ISO 18185-4:2007iv Foreword ISO (the International Organization for Standardization) is a worldwide federation of national standards bodies (ISO member bodies). The work of preparing International Standards is normally carried out through ISO technical committees. Each me

8、mber body interested in a subject for which a technical committee has been established has the right to be represented on that committee. International organizations, governmental and non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International E

9、lectrotechnical Commission (IEC) on all matters of electrotechnical standardization. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of technical committees is to prepare International Standards. Draft International Standards ad

10、opted by the technical committees are circulated to the member bodies for voting. Publication as an International Standard requires approval by at least 75 % of the member bodies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of pa

11、tent rights. ISO shall not be held responsible for identifying any or all such patent rights. ISO 18185-4 was prepared by Technical Committee ISO/TC 104, Freight containers, Subcommittee SC 4, Identification and communication. ISO 18185 consists of the following parts, under the general title Freigh

12、t containers Electronic seals: Part 1: Communication protocol Part 2: Application requirements Part 3: Environmental characteristics Part 4: Data protection Part 5: Physical layer BS ISO 18185-4:2007vIntroduction This part of ISO 18185 was prepared by ISO Technical Committee 104/Subcommittee 4/Worki

13、ng Group 2, using the drafting conventions of ISO/IEC Directives, Part 2. In early 2005, an extensive Vulnerability Assessment took place to analyse the use cases and potential data integrity threats posed to devices based on the ISO/IEC 18185 series as written. Based on learnings from that assessme

14、nt, spoofing and cloning were identified as potential data integrity risks to electronic seals. Device authentication became the highest priority solution to mitigate those identified risks, and the scope of the electronic seal standard-setting work was expanded to meet that objective. Three aspects

15、 are discussed in this part of ISO 18185: data protection, device authentication and conformance. Data protection addresses the confidentiality and integrity of transmitted data. ISO TC 104/SC 4/WG 2 decided that for this part of ISO 18185, all seal information has been deemed to be public informati

16、on, and as such, can be transmitted in clear text. Data confidentiality and integrity requirements are presented in this part of ISO 18185 for both fixed data (e.g. data items created during the seal manufacturing process) and variable data (e.g. event information generated by and stored within the

17、seal during use). Device authenticity addresses the capability to identify the seal as a valid device. This first-generation specification outlines methods for physical authentication. Conformance addresses the requirement for electronic seals claiming compliance with ISO 18185 to also contain the p

18、hysical properties of high security mechanical seals in ISO/PAS 17712, and identifies best practices for electronic seal manufacturers. This part of ISO 18185 defines the first-generation specifications for device authentication and data protection. Further generations of this part of ISO 18185 may

19、be created upon further review of the potential benefits for these electronic seal devices using additional device authentication and data protection methods. BS ISO 18185-4:2007blank1Freight containers Electronic seals Part 4: Data protection 1 Scope This part of ISO 18185 specifies requirements fo

20、r the data protection, device authentication and conformance capabilities of electronic seals for communication to and from a seal and its associated reader. These capabilities include the accessibility, confidentiality, data integrity, authentication and non-repudiation of stored data. The protecti

21、on of this information is provided through a radio-communications interface providing seal identification and a method to determine whether a freight containers seal has been opened. This part of ISO 18185 specifies a freight container seal identification system, with an associated system for verify

22、ing the accuracy of use, having: a seal status identification system; a battery status indicator; a unique Seal Identifier including the identification of the manufacturer; a seal (tag) type. This part of ISO 18185 is intended for use in conjunction with the other parts of ISO 18185. This part of IS

23、O 18185 is designed to facilitate electronic device authentication. For mechanical seals, the seal manufacturer is able to determine the authenticity of the device if and when necessary, e.g. to determine the unauthorized opening of the seal. There are electronic authentication methods which can pro

24、vide similar validation without visual inspection. This part of ISO 18185 provides only the guidelines for those methods. This part of ISO 18185 applies to all electronic seals used on freight containers covered by International Standards ISO 668, ISO 1496-1 to ISO 1496-5 and ISO 8323 and should, wh

25、erever appropriate and practicable, also be applied to freight containers other than those covered by these International Standards. 2 Normative references The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies.

26、 For undated references, the latest edition of the referenced document (including any amendments) applies. ISO/IEC 17025, General requirements for the competence of testing and calibration laboratories ISO/PAS 17712, Freight containers Mechanical seals ISO 18185-3, Freight containers Electronic seal

27、s Part 3: Environmental characteristics BS ISO 18185-4:20072 3 Terms and definitions For the purposes of this document, the following terms and definitions apply: 3.1 AEI Automatic Equipment Identification 3.2 authentication method to verify the validity of a transmitted message and its originator 3

28、.3 asset anything an individual or a company owns which has value NOTE In the container environment, an asset could be a container, the containers contents, or information pertaining to the container. 3.4 electronic seal read-only, non-reusable freight container seal conforming to the high security

29、seal defined in ISO/PAS 17712 and conforming to this part of ISO 18185 that electronically evidences tampering or intrusion though the container doors 3.5 reader wireless RFID communication device which interacts with RFID tags and electronic seals 3.6 Radio Frequency Identification RFID electrical

30、transponder which stores information that can then be used to identify an item to which the transponder is attached, similar to the way in which a bar code on a label stores information that can be used to identify the item to which the label is attached 3.7 system complete end-to-end RFID tracking

31、solution of seal-to-reader-to-network-to-application-to-user 3.8 threat potential abuse of an asset created by exploiting a vulnerability in order to impair the value of an asset 3.9 validation process by which the integrity and correctness of data are established 3.10 vulnerability potential flaw o

32、r weakness in system security procedures, design, or implementation that could be exercised (accidentally triggered or intentionally exploited) and result in harm done to a system BS ISO 18185-4:200734 Data protection 4.1 General Data protection addresses the concern about the confidentiality and in

33、tegrity of the data presented by the electronic seal. 4.2 Confidential information Under the terms of this first-generation part of ISO 18185, the current communication with the electronic seal is performed in clear text and does not include any confidential information. Consequently, there are no r

34、equirements regarding confidential information at this time. 4.3 Public information All current information communicated by the electronic seal has been determined to be public information, and as such, shall be communicated in clear text format. While it is not necessary to transmit public informat

35、ion using confidentiality methods, there is a need to prevent the accidental or fraudulent alteration of the data contained within the electronic seal. 4.3.1 Fixed data Fixed data is defined as all seal information which will not change after the time of manufacture. This includes the manufacturer I

36、D, the tag ID (serial number), the protocol ID, the model number, the product version, the seal tag type and the protocol version. Fixed data shall be protected against erasure or alteration during the manufacturing process such that it cannot be modified or deleted by an outside entity. The technic

37、al details of how fixed data protection is performed are beyond the scope of this part of ISO 18185 and are left to the individual electronic seal manufacturer. 4.3.2 Variable data Variable data is defined as all seal event information which, after the time of manufacture, can and most probably will

38、 change throughout the life of the seal. This includes the time of seal closure, the time of seal opening and the battery status. Event information shall be added to the seals memory upon each status change. Once written into the event log, this information shall become a permanent record within the

39、 seal and shall not be modified or erased by either the seal or an outside entity. Variable data shall be protected against erasure or alteration within the device throughout the lifetime of the seal. The technical details of how variable data protection is performed are beyond the scope of this par

40、t of ISO 18185 and are left to the individual electronic seal manufacturer. 5 Device authentication 5.1 General In addition to the integrity of the data communicated, this part of ISO 18185 requires the capability to verify the authenticity of the electronic seal. BS ISO 18185-4:20074 5.2 Physical a

41、uthentication The ability for forensic authentication is necessary for both the mechanical and the electronic components of a seal. The seal manufacturer shall be able to identify and authenticate the seal as a valid seal based on proprietary information, its unique manufacturing characteristics, an

42、d the fixed data defined in 4.3.1. Presented with the physical device, the seal manufacturer shall be able to validate the authenticity of the mechanical and electronic components of the seal. The technical details of how physical device authentication is performed are beyond the scope of this part

43、of ISO 18185 and are left to the individual electronic seal manufacturer. 5.3 Electronic authentication Under the terms of this first-generation part of ISO 18185, there are no requirements for the ability to electronically authenticate a seal through data transmissions. 6 Conformance Electronic sea

44、ls claiming compliance with this part of ISO 18185 shall have the high security mechanical seal physical properties defined in ISO/PAS 17712. They shall further comply with the electronic seal manufacturers security-related practices identified in Annex A. BS ISO 18185-4:20075Annex A (normative) Ele

45、ctronic seal manufacturers security-related practices A.1 Introduction This annex addresses security-related practices relevant to the manufacture and distribution of electronic security seals (electronic seals) and related equipment that conform to all parts of ISO 18185. Since electronic seals req

46、uire interrogators (reader/writers) for communication, this annex also addresses security-related practices related to the manufacture and distribution of such related equipment. The annex is similar to the normative annex to ISO/PAS 17712 with modifications appropriate to electronic seals and relat

47、ed equipment. The structure of this part of ISO 18185 reflects the six stages in the life of a freight container electronic seal, as shown in Table A.1. Since this part of ISO 18185 is about the security-related practices of electronic seal/device manufacturers, the focus within each stage is on the

48、 actions within the purview of those manufacturers. “Manufacturer”, as used in this annex, refers to the entity responsible for the design and sale of the product. While that entity usually owns and operates the producing factory, this is not always the case since firms may subcontract the actual pr

49、oduction. In the case of subcontracted production, “manufacturer” refers to the firm that drives the process and brings the product to market, not to the operator/owner of the xyz factory. Table A.1 Six stages in the life of a freight container electronic seal Stage number Stage name Role of electronic seal/device manufacturers 1 Electronic seal/equipment design process Total responsibility. 2 Manufacturing Total responsibility. 3 Distribution Shall set standards and expectations of distributors and res