1、Mai 2011 Normenausschuss Automobiltechnik (NAAutomobil) im DINDKE Deutsche Kommission Elektrotechnik Elektronik Informationstechnik im DIN und VDEPreisgruppe 18DIN Deutsches Institut fr Normung e. V. Jede Art der Vervielfltigung, auch auszugsweise, nur mit Genehmigung des DIN Deutsches Institut fr N
2、ormung e. V., Berlin, gestattet.ICS 43.040.15Zur Erstellung einer DIN SPEC knnen verschiedene Verfahrensweisen herangezogen werden: Das vorliegende Dokument wurde nach den Verfahrensregeln eines Fachberichts erstellt.!$nIl“1753873www.din.deDDIN CEN/TR 16152Elektronische Gebhrenerhebung Personalisier
3、ung und Einbau von Fahrzeuggerten der Erstausstattung;Englische Fassung CEN/TR 16152:2011Electronic fee collection Personalisation and mounting of first mount OBE;English version CEN/TR 16152:2011Perception de tlpage Personnalisation et installation des quipements embarqus en premire monte;Version a
4、nglaise CEN/TR 16152:2011Alleinverkauf der Spezifikationen durch Beuth Verlag GmbH, 10772 Berlin www.beuth.deGesamtumfang 45 SeitenDIN SPEC 70674DIN CEN/TR 16152 (DIN SPEC 70674):2011-05 Nationales Vorwort Dieses Dokument (CEN/TR 16152:2011) wurde vom Technischen Komitee CEN/TC 278 Telematik fr den
5、Straen-Verkehr und -Transport“ erarbeitet, dessen Sekretariat vom NEN (Niederlande) gehalten wird. Das zustndige deutsche Normungsgremium ist der Gemeinschaftsarbeitsausschuss NA 052-02-71 GA Telematik“ des Normenausschusses Automobiltechnik (NAAutomobil). Das Prsidium des DIN hat mit seinem Beschlu
6、ss 1/2004 festgelegt, dass von dem in den Regeln der Europischen Normungsarbeit von CEN/CENELEC verankerten Grundsatz, wonach Europische Normen in den drei offiziellen Sprachen Deutsch, Englisch und Franzsisch verffentlicht werden, in begrndeten Ausnahmefllen abgewichen und auf die Deutsche Sprachfa
7、ssung verzichtet werden kann. Mit steigender Nutzung von fahrzeuginternen Systemen (OBE) zur Mauterhebung (EFC) wchst der Bedarf an effizienter Verteilung. Die OBE knnte vom Fahrzeughersteller whrend der Produktion bereits ins Fahrzeug integriert werden. Der Europische Elektronische Mautservice (EET
8、S) Anbieter wrde bei diesem Szenario mit der Frage der Personalisierung einschlielich der relevanten Vertragsdaten zwischen Betreiber und Nutzer solcher Systeme konfrontiert werden. Diese Punkte sind sowohl fr DSRC- als auch satellitenbasierende Systeme relevant. Zur vorliegenden DIN SPEC wurde kein
9、 Entwurf verffentlicht. Erfahrungen mit dieser DIN SPEC sind erbeten vorzugsweise als Datei per E-Mail an naautomobildin.de in Form einer Tabelle. Die Vorlage dieser Tabelle kann im Internet unter http:/www.din.de/stellungnahme abgerufen werden; oder in Papierform an den Normenausschuss Automobiltec
10、hnik (NAAutomobil), Behrenstrae 35, 10117 Berlin 2 DIN CEN/TR 16152 (DIN SPEC 70674):2011-05 Begriffe Fr die Anwendung dieses Dokuments gelten die Begriffe nach CEN/TR 16152 und die folgenden Begriffe. 3.1 fahrzeuginternes System (en: on-board equipment, OBE) an Bord oder im Fahrzeug/am Equipment an
11、gebrachtes Gert zur Verwendung von Mautfunktionen 3.2 Elektronische Gebhrenerhebung (en: electronic fee collection, EFC) elektronische Mautabbuchung mittels Drahtlosschnittstelle 3.3 Straenrand-Systeme (en: roadside equipment) Stationen, welche an festen Positionen entlang der Strae aufgestellt sind
12、, mit der Absicht, Kommunikation mit vorbeifahrenden fahrzeuginternen Systemen zum Datenaustausch aufzubauen 3.4 Mauterhebung (en: Toll Charger) legale Funktionseinheit zur Gebhrenerhebung fr Fahrzeuge innerhalb einer Mautdomne 3.5 Maut-Serviceanbieter (en: Toll Service Provider) legale Funktionsein
13、heit, welche ihren Kunden Gebhrenerhebungsservices in einer oder mehreren Domne fr verschiedene Fahrzeugklassen anbietet ANMERKUNG Der Maut-Serviceanbieter kann eine eigene OBE oder eine Magnetkarte oder Smartcard fr OBE von Drittanbietern anbieten (wie ein Mobiltelefon mit SIM-Karte von Drittanbiet
14、ern). Der Maut-Serviceanbieter ist fr die korrekte Funktion der OBE verantwortlich. 3 DIN CEN/TR 16152 (DIN SPEC 70674):2011-05 4 Leerseite TECHNICAL REPORT RAPPORT TECHNIQUE TECHNISCHER BERICHT CEN/TR 16152 March 2011 English Version Electronic fee collection - Personalisation and mounting of first
15、 mount OBE Perception de tlpage - Personnalisation et installation des quipements embarqus en premire monte Elektronische Gebhrenerhebung - Personalisierung und Einbau von Fahrzeuggerten der Erstausstattung This Technical Report was approved by CEN on 17 January 2011. It has been drawn up by the Tec
16、hnical Committee CEN/TC 278. CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal
17、, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland and United Kingdom. EUROPEAN COMMITTEE FOR STANDARDIZATION COMIT EUROPEN DE NORMALISATION EUROPISCHES KOMITEE FR NORMUNG Management Centre: Avenue Marnix 17, B-1000 Brussels 2011 CEN All rights of exploitation in any form and by any means res
18、erved worldwide for CEN national Members. Ref. No. CEN/TR 16152:2011: EICS 43.040.15CEN/TR 16152:2011 (E) 2 Contents Page Foreword 3 Introduction .4 1 Scope 5 1.1 Background and expected benefits of first-mount OBE .5 1.2 Personalisation concept .5 2 Normative references 6 3 Terms and definitions .6
19、 4 Symbols and abbreviations 6 5 Context Description .7 5.1 General 7 5.2 Actors and Roles .8 5.3 Overview of Assets . 10 5.4 Use cases 12 5.4.1 Initialisation: Mounting of OBE . 12 5.4.2 Initialisation: Assignment of individual data . 12 5.4.3 Initialisation: Assignment of vehicle data 13 5.4.4 Con
20、tracting of the OBE with the Service Provider 14 5.4.5 Enabling long range mobile communication . 15 5.4.6 Change of the vehicle for the same contract . 16 5.4.7 Cancellation of an existing contract . 17 5.4.8 Change of the contract for the same vehicle . 17 5.4.9 Normal EFC use cases: charging and
21、enforcement . 18 5.4.10 Repair and upgrade of the OBE 19 5.4.11 Change of vehicle properties 20 5.4.12 Decommissioning and replacement of the OBE . 21 6 Personalisation concept 22 6.1 Overall requirements 22 6.1.1 Functional requirements 22 6.1.2 Security Requirements . 26 6.2 Vehicle interface requ
22、irements and constraints . 34 6.2.1 Introduction . 34 6.2.2 Installation principles . 35 7 Personalisation data . 35 7.1 EFC Attibutes 35 7.2 OBE related data . 37 7.3 Access protection information 37 7.4 Vehicle registration data 37 8 Recommendations 38 Bibliography . 40 DIN CEN/TR 16152 (DIN SPEC
23、70674):2011-05 CEN/TR 16152:2011 (E) 3 Foreword This document (CEN/TR 16152:2011) has been prepared by Technical Committee CEN/TC 278 “Road transport and traffic telematics”, the secretariat of which is held by NEN. Attention is drawn to the possibility that some of the elements of this document may
24、 be the subject of patent rights. CEN shall not be held responsible for identifying any or all such patent rights. DIN CEN/TR 16152 (DIN SPEC 70674):2011-05 CEN/TR 16152:2011 (E) 4 Introduction With the increased use of OBE for EFC, the need for effective distribution is growing. The OBE could poten
25、tially be integrated into the vehicle by the vehicle manufacturer as part of manufacturing process. The EETS provider (according to ECs European Electronic Toll Service business model) would in such a scenario be faced with the issue on how to personalize the data in the OBE, including the data rela
26、ted to the contract between him and the user. This issue is relevant for both DSRC and satellite based OBEs. The issues addressed by the document include: 1) vehicle interfacing requirements and constraints a) vehicle data buses b) requirements and constraints from the automotive industry (e.g. in t
27、erms of electronic, mechanics) c) safety d) security 2) personalization requirements and constraints a) Access to the protected data inside the OBE e.g. ContractNumber b) Where are the EETS and contract data located? (inside the OBE or in a smart card). c) Activation and deactivation of the OBE This
28、 Technical Report is not a substitute for regulations and standards and these should always be respected and used by manufacturers. DIN CEN/TR 16152 (DIN SPEC 70674):2011-05 CEN/TR 16152:2011 (E) 5 1 Scope 1.1 Background and expected benefits of first-mount OBE It could be foreseen that in future th
29、e DSRC OBE will be delivered by car manufacturer as a feature of the vehicle as they do today with car radio which are parts of the most sold vehicles. For the vehicle owner, the OBE supplier is the car manufacturer acting as an OEM (Original Equipment Manufacturer). The integration of first mount O
30、BE by car manufacturer is the only way to create a future mass market for EFC application based upon DSRC as well as GNSS/CN, as at present the integration of this type of OBEs cannot be achieved except for heavy goods vehicles. Regarding DSRC, this is also an opportunity to extend the capability of
31、 todays EFC technologies by providing increased quality of service, and possibly a greater range of services using in-vehicle electronics and resources. 1.2 Personalisation concept The personalisation procedure is the procedure where the EFC Service Provider initialize, customise, and finally activa
32、te the EFC interoperable service to OBE, for a customer with or without existing account. Two different kinds of personalisation methods can be defined: a) the personalisation procedure can be done “over the air”. In such case, personalisation data can be encoded in the OBE by the Service Provider o
33、ver a secure air-link, or b) personalisation data can be loaded directly by the driver into the OBE or Service Provider via a personal storage media. Theses are two fundamentally different approaches. The second method is perfectly fitted for critical initialisation data, such as encryption keys, to
34、 enable the driver to use the same EFC contract in different vehicles, and also to send personalisation data via post to a large number of customers. In any case, the personalisation procedure shall be implemented in a practical way. It was reminded that the very large majority of Service Provider d
35、istribution networks (and related point of sales) are not suited to allow point-to-point communication with vehicles. They are suited mainly for front-desk operations such as initialisation of an account, data collection of user information, and so on. For both methods, all access protection informa
36、tion, OBE contract information, shall be stored in a secure storage area within the OBE. During the personalisation procedure, any OBE and Service Provider service point will only communicate, but only further to a successful check of access rights. The use of an air-link for personalisation purpose
37、s includes some risks with respect to the security of the EFC system. The present document addresses appropriate measures to counteract these risks. Security services such as integrity protection and authentication protocols shall be defined to prevent unauthorised access to the content of the OBE m
38、emory area retaining personalisation data. This statement of principles summarises essential aspects to be taken into account for the personalisation of OBE. These principles are valid: a) whether the EFC system is based upon DSRC, GNSS-CN, or a combination of both technologies; b) for permanently i
39、nstalled OBE; c) for both original equipment manufacturers (first mount) and after sales permanently attached to the vehicle by OBE manufacturers. DIN CEN/TR 16152 (DIN SPEC 70674):2011-05 CEN/TR 16152:2011 (E) 6 2 Normative references The following referenced documents are indispensable for the app
40、lication of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. EN ISO 14906, Road transport and traffic telematics Electronic fee collection Application interfaces definition f
41、or dedicated short-range communication (ISO 14906:2004) CEN ISO/TS 175751, Electronic fee collection Application interface definition for autonomous systems Part 1: Charging (ISO/TS 17575-1:2010) ISO 11568-2, Banking Key management (retail) Part 2: Symmetric ciphers, their key management and life cy
42、cle prEN ISO 17573, Electronic fee collection System architecture for vehicle related tolling (ISO 17573:2010) 3 Terms and definitions For the purposes of this document, the following terms and definitions apply. 3.1 on-Board Equipment (OBE) equipment fitted within or on the outside of a vehicle and
43、 used for toll purposes 3.2 electronic fee collection (EFC) toll charging by electronic means via a wireless interface 3.3 roadside equipment equipment located along the road transport network, for the purpose of communication and data exchanges with on-board equipments 3.4 Toll Charger legal entity
44、 charging toll for vehicles in a toll domain 3.5 Toll Service Provider legal entity providing to his customers toll services on one or more toll domains for one or more classes of vehicles NOTE The Toll Service Provider may provide the OBE or may provide only a magnetic card or a smart card to be us
45、ed with OBE provided by a third party (like a mobile telephone and a SIM card can be obtained from different parties). The Toll Service Provider is responsible for the operation (functioning) of the OBE. 4 Symbols and abbreviations CC Common Criteria AID Application Interface Definition BST Beacon S
46、ervice Table CESARE Common EFC System for ASECAP Road tolling European system DIN CEN/TR 16152 (DIN SPEC 70674):2011-05 CEN/TR 16152:2011 (E) 7 DSRC Dedicated Short-Range Communication DTCO Digital TaCOgraph EAcK Element Access Key EAuK Element Authentication Key EC European Commission ECU Electroni
47、c Control Unit EID Element Identifier EFC Electronic Fee Collection HGV Heavy Goods Vehicle KVC Key Verification Code L1 Layer 1 of DSRC (Physical Layer) L2 Layer 2 of DSRC (Data Link Layer) L7 Layer 7 of DSRC (Application Layer) LLC Logical Link Control MAC Message Authentication Code MEAcK Master
48、Element Access Key MEAuK Master Element Authentication Key MMI Man-Machine Interface OBE On-Board Equipment OBU On-Board Unit PAN Personal Account Number RSE Road-Side Equipment T-APDU Transfer-Application Protocol Data Unit VST Vehicle Service Table 5 Context Description 5.1 General In many existin
49、g systems OBEs are delivered by the Service Provider. The process to add vehicle and service user data is normally a part of the contract between the Service Provider and the OBE manufacturer. In this situation there is one Security Domain within which full trust must exist. As it is foreseen that the OBE will be integrated with the vehicle the personalization process of the OBE must support that the OBE is mounted to the Vehicle when the personalisation takes place. DIN CEN/TR 16152 (DIN S
