1、 IEEE Standard for Wireless Access in Vehicular EnvironmentsSecurity Services for Applications and Management Messages Sponsored by the Intelligent Transportation Systems Committee IEEE 3 Park Avenue New York, NY 10016-5997 USA IEEE Vehicular Technology SocietyIEEE Std 1609.2-2016(Revision ofIEEE St
2、d 1609.2-2013) IEEE Std 1609.2-2016 (Revision of IEEE Std 1609.2-2013) IEEE Standard for Wireless Access in Vehicular EnvironmentsSecurity Services for Applications and Management Messages Sponsor Intelligent Transportation Systems Committee of the IEEE Vehicular Technology Society Approved 29 Janua
3、ry 2016 IEEE-SA Standards Board Abstract: This standard defines secure message formats and processing for use by Wireless Access in Vehicular Environments (WAVE) devices, including methods to secure WAVE management messages and methods to secure application messages. It also describes administrative
4、 functions necessary to support the core security functions. Keywords: cryptography, IEEE 1609.2, security, wireless access in vehicular environments (WAVE) The Institute of Electrical and Electronics Engineers, Inc. 3 Park Avenue, New York, NY 10016-5997, USA Copyright 2016 by The Institute of Elec
5、trical and Electronics Engineers, Inc. All rights reserved. Published 1 March 2016. Printed in the United States of America. IEEE is a registered trademark in the U.S. Patent fitness for a particular purpose; non-infringement; and quality, accuracy, effectiveness, currency, or completeness of materi
6、al. In addition, IEEE disclaims any and all conditions relating to: results; and workmanlike effort. IEEE standards documents are supplied “AS IS” and “WITH ALL FAULTS.” Use of an IEEE standard is wholly voluntary. The existence of an IEEE standard does not imply that there are no other ways to prod
7、uce, test, measure, purchase, market, or provide other goods and services related to the scope of the IEEE standard. Furthermore, the viewpoint expressed at the time a standard is approved and issued is subject to change brought about through developments in the state of the art and comments receive
8、d from users of the standard. In publishing and making its standards available, IEEE is not suggesting or rendering professional or other services for, or on behalf of, any person or entity nor is IEEE undertaking to perform any duty owed by any other person or entity to another. Any person utilizin
9、g any IEEE Standards document, should rely upon his or her own independent judgment in the exercise of reasonable care in any given circumstances or, as appropriate, seek the advice of a competent professional in determining the appropriateness of a given IEEE standard. IN NO EVENT SHALL IEEE BE LIA
10、BLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO: PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIAB
11、ILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE PUBLICATION, USE OF, OR RELIANCE UPON ANY STANDARD, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE AND REGARDLESS OF WHETHER SUCH DAMAGE WAS FORESEEABLE. Translations The IEEE consensus development process involves t
12、he review of documents in English only. In the event that an IEEE standard is translated, only the English version published by IEEE should be considered the approved IEEE standard. Official statements A statement, written or oral, that is not processed in accordance with the IEEE-SA Standards Board
13、 Operations Manual shall not be considered or inferred to be the official position of IEEE or any of its committees and shall not be considered to be, or be relied upon as, a formal position of IEEE. At lectures, symposia, seminars, or educational courses, an individual presenting information on IEE
14、E standards shall make it clear that his or her views should be considered the personal views of that individual rather than the formal position of IEEE. Comments on standards Comments for revision of IEEE Standards documents are welcome from any interested party, regardless of membership affiliatio
15、n with IEEE. However, IEEE does not provide consulting information or advice pertaining to IEEE Standards documents. Suggestions for changes in documents should be in the form of a proposed change of text, together with appropriate supporting comments. Since IEEE standards represent a consensus of c
16、oncerned interests, it is important that any responses to comments and questions also receive the concurrence of a balance of interests. For this reason, IEEE and the members of its societies and Standards Coordinating Committees are not able to provide an instant response to comments or questions e
17、xcept in those cases where the matter has previously been addressed. For the same reason, IEEE does not respond to interpretation requests. Any person who would like to participate in revisions to an IEEE standard is welcome to join the relevant IEEE working group. Comments on standards should be su
18、bmitted to the following address: Secretary, IEEE-SA Standards Board 445 Hoes Lane Piscataway, NJ 08854 USA Laws and regulations Users of IEEE Standards documents should consult all applicable laws and regulations. Compliance with the provisions of any IEEE Standards document does not imply complian
19、ce to any applicable regulatory requirements. Implementers of the standard are responsible for observing or referring to the applicable regulatory requirements. IEEE does not, by the publication of its standards, intend to urge action that is not in compliance with applicable laws, and these documen
20、ts may not be construed as doing so. Copyrights IEEE draft and approved standards are copyrighted by IEEE under U.S. and international copyright laws. They are made available by IEEE and are adopted for a wide variety of both public and private uses. These include both use, by reference, in laws and
21、 regulations, and use in private self-regulation, standardization, and the promotion of engineering practices and methods. By making these documents available for use and adoption by public authorities and private users, IEEE does not waive any rights in copyright to the documents. Photocopies Subje
22、ct to payment of the appropriate fee, IEEE will grant users a limited, non-exclusive license to photocopy portions of any individual standard for company or organizational internal use or individual, non-commercial use only. To arrange for payment of licensing fees, please contact Copyright Clearanc
23、e Center, Customer Service, 222 Rosewood Drive, Danvers, MA 01923 USA; +1 978 750 8400. Permission to photocopy portions of any individual standard for educational classroom use can also be obtained through the Copyright Clearance Center. Updating of IEEE Standards documents Users of IEEE Standards
24、documents should be aware that these documents may be superseded at any time by the issuance of new editions or may be amended from time to time through the issuance of amendments, corrigenda, or errata. An official IEEE document at any point in time consists of the current edition of the document t
25、ogether with any amendments, corrigenda, or errata then in effect. Every IEEE standard is subjected to review at least every ten years. When a document is more than ten years old and has not undergone a revision process, it is reasonable to conclude that its contents, although still of some value, d
26、o not wholly reflect the present state of the art. Users are cautioned to check to determine that they have the latest edition of any IEEE standard. In order to determine whether a given document is the current edition and whether it has been amended through the issuance of amendments, corrigenda, o
27、r errata, visit the IEEE-SA Website at http:/ieeexplore.ieee.org/xpl/standards.jsp or contact IEEE at the address listed previously. For more information about the IEEE SA or IEEEs standards development process, visit the IEEE-SA Website at http:/standards.ieee.org. Errata Errata, if any, for all IE
28、EE standards can be accessed on the IEEE-SA Website at the following URL: http:/standards.ieee.org/findstds/errata/index.html. Users are encouraged to check this URL for errata periodically. Patents Attention is called to the possibility that implementation of this standard may require use of subjec
29、t matter covered by patent rights. By publication of this standard, no position is taken by the IEEE with respect to the existence or validity of any patent rights in connection therewith. If a patent holder or patent applicant has filed a statement of assurance via an Accepted Letter of Assurance,
30、then the statement is listed on the IEEE-SA Website at http:/standards.ieee.org/about/sasb/patcom/patents.html. Letters of Assurance may indicate whether the Submitter is willing or unwilling to grant licenses under patent rights without compensation or under reasonable rates, with reasonable terms
31、and conditions that are demonstrably free of any unfair discrimination to applicants desiring to obtain such licenses. Essential Patent Claims may exist for which a Letter of Assurance has not been received. The IEEE is not responsible for identifying Essential Patent Claims for which a license may
32、be required, for conducting inquiries into the legal validity or scope of Patents Claims, or determining whether any licensing terms or conditions provided in connection with submission of a Letter of Assurance, if any, or in any licensing agreements are reasonable or non-discriminatory. Users of th
33、is standard are expressly advised that determination of the validity of any patent rights, and the risk of infringement of such rights, is entirely their own responsibility. Further information may be obtained from the IEEE Standards Association. Copyright 2016 IEEE. All rights reserved. vi Particip
34、ants At the time this IEEE standard was completed, the Dedicated Short Range Communications Working Group had the following membership: Thomas M. Kurihara, Chair Justin McNew, John Moring, William Whyte, Vice Chairs Mike Brown Hanbyeog Cho Hans-Joachim Fischer Ramez Gerges Aleksandar Gogic Shubha Go
35、palakrishna Gloria Gwynne Ronald Hochnadel Carl Kain John Kenney Bill Lattin Jules Madey Sean Maschue Jim Misener Frank Perry Randy Roebuck Richard Roy Kevin Smith Jasja Tijink Michaela Vanderveen George Vlantis Jason Wang Aaron Weinfield The following members of the individual balloting committee v
36、oted on this standard. Balloters may have voted for approval, disapproval, or abstention. Nobumitsu Amachi Lee Armstrong William Byrd Keith Chow Sourav Dutta Richard Edgar Marc Emmelmann Pedro Fernandes Randall Groves Gloria Gwynne Ronald Hochnadel Werner Hoelzl David Hunter Noriyuki Ikeuchi Piotr K
37、arocki John Kenney Stuart Kerry Dmitri Khijniak Thomas M. Kurihara Paul Lambert Jeremy Landt Justin McNew John Moring Michael Newman Alexandros Nikitas Satoshi Oyama Venkatesha Prasad Alon Regev Richard Roy Bartien Sayogo Kevin Smith Rene Struik Walter Struppler Jasja Tijink Steven Tilden Thomas Tul
38、lia Dmitri Varsanofiev John Vergis George Vlantis Hung-Yu Wei William Whyte When the IEEE-SA Standards Board approved this standard on 29 January 2016, it had the following membership: Jean-Philippe Faure, Chair Vacant, Vice Chair John Kulick, Past Chair Konstantinos Karachalios, Secretary Chuck Ada
39、ms Masayuki Ariyoshi Ted Burse Stephen Dukes Jianbin Fan J. Travis Griffith Gary Hoffman Ronald W. Hotchkiss Michael Janezic Joseph L. Koepfinger* Hung Ling Kevin Lu Annette D. Reilly Gary Robinson Mehmet Ulema Yingli Wen Howard Wolfman Don Wright Yu Yuan Daidi Zhong *Member Emeritus Copyright 2016
40、IEEE. All rights reserved. vii Introduction This introduction is not part of IEEE Std 1609.2-2016, IEEE Standard for Wireless Access in Vehicular EnvironmentsSecurity Services for Applications and Management Messages. 5.9 GHz Dedicated Short Range Communications for Wireless Access in Vehicular Envi
41、ronments (DSRC/WAVE, hereafter simply WAVE), as specified in a range of standards including those generated by the IEEE P1609 working group, enables vehicle-to-vehicle (V2V) and vehicle-to-infrastructure (V2I) wireless communications. This connectivity makes possible a range of applications that rel
42、y on communications between road users and road operators, including vehicle safety, public service, commercial fleet management, tolling, and other operations. With improved communications come increased risks, and the safety-critical nature of many WAVE applications makes it vital that services be
43、 specified that can be used to protect messages from attacks such as eavesdropping, spoofing, alteration, and replay. Additionally, the fact that the wireless technology will be deployed in personal vehicles, whose owners have a right to privacy, means that in as much as possible the security servic
44、es should respect that right and not leak personal, identifying, or linkable information to unauthorized parties. With this in mind, at the time that IEEE P1609 was established to develop the standards for the WAVE wireless networking protocols, the IEEE also established IEEE P1556 (later renumbered
45、 as IEEE Std 1609.2) to develop standards for the security techniques that will be used to protect the services that use these protocols. These applications face unique constraints. Many of them, particularly safety applications, are time-critical: the processing and bandwidth overhead due to securi
46、ty must be kept to a minimum, to improve responsiveness and decrease the likelihood of packet loss. For many applications, the potential audience consists of all vehicles on the road in North America; therefore, the mechanism used to authenticate messages must be as flexible and scalable as possible
47、, and must accommodate the smooth removal of compromised WAVE devices from the system. Additionally, as mentioned above, the privacy of privately owned and operated vehicles, and potentially other personal devices within the WAVE system, must be respected as far as technically and administratively f
48、easible. Copyright 2016 IEEE. All rights reserved. viii Contents 1. Overview 1 1.1 Scope . 1 1.2 Purpose 1 1.3 Document organization 2 1.4 Document conventions 2 1.5 Testing considerations . 2 2. Normative references 2 3. Definitions, abbreviations, and acronyms 4 3.1 Definitions . 4 3.2 Abbreviatio
49、ns and acronyms 10 4. General description 12 4.1 WAVE protocol stack overview .12 4.2 Secure data service (SDS) 15 4.3 Security services management entity (SSME) 18 4.4 Behavior of SDEEs .20 5. Cryptographic operations and validity.20 5.1 Certificate validity 20 5.2 Signed SPDU validity .33 5.3 Cryptographic operations 41 6. Data structures .46 6.1 Presentation and encoding 46 6.2 Integer types .46 6.3 Secured protocol data units (SPDUs) .47 6.4 Certificates and other security management data structures .59 7. Certificate revocation lists (CRLs) and the CRL Verification En