1、 ETSI TS 103 487 V1.1.1 (2016-04) CYBER; Baseline security requirements regarding sensitive functions for NFV and related platforms TECHNICAL SPECIFICATION ETSI ETSI TS 103 487 V1.1.1 (2016-04)2 Reference DTS/CYBER-0017 Keywords Cybersecurity, NFV ETSI 650 Route des Lucioles F-06921 Sophia Antipolis
2、 Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de Grasse (06) N 7803/88 Important notice The present document can be downloaded from: http:/www.etsi.org/standards-search The present docume
3、nt may be made available in electronic versions and/or in print. The content of any electronic and/or print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any existing or perceived difference in contents between such versions and/or
4、 in print, the only prevailing document is the print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revision or change of status. Information on the current stat
5、us of this and other ETSI documents is available at https:/portal.etsi.org/TB/ETSIDeliverableStatus.aspx If you find errors in the present document, please send your comment to one of the following services: https:/portal.etsi.org/People/CommiteeSupportStaff.aspx Copyright Notification No part may b
6、e reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm except as authorized by written permission of ETSI. The content of the PDF version shall not be modified without the written authorization of ETSI. The copyright and the foregoing res
7、triction extend to reproduction in all media. European Telecommunications Standards Institute 2016. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTMand the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members. 3GPPTM and LTE are Trade Marks of ETSI registered for the benefit o
8、f its Members and of the 3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI TS 103 487 V1.1.1 (2016-04)3 Contents Intellectual Property Rights 4g3Foreword . 4g3Modal verbs terminology 4g3Introduction 4g31 Scope 5g32 References 5g
9、32.1 Normative references . 5g32.2 Informative references 5g33 Abbreviations . 5g34 Requirements on the hardware platform 6g34.1 Requirements possible using current technology . 6g34.2 Requirements for further study . 6g3History 7g3ETSI ETSI TS 103 487 V1.1.1 (2016-04)4 Intellectual Property Rights
10、IPRs essential or potentially essential to the present document may have been declared to ETSI. The information pertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can be found in ETSI SR 000 314: “Intellectual Property Rights (IPRs); Essential, or
11、 potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (https:/ipr.etsi.org/). Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ET
12、SI. No guarantee can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become, essential to the present document. Foreword This Technical Specification (TS) has been produced by ETSI Technical Committee C
13、yber Security (CYBER). Modal verbs terminology In the present document “shall“, “shall not“, “should“, “should not“, “may“, “need not“, “will“, “will not“, “can“ and “cannot“ are to be interpreted as described in clause 3.2 of the ETSI Drafting Rules (Verbal forms for the expression of provisions).
14、“must“ and “must not“ are NOT allowed in ETSI deliverables except when used in direct citation. Introduction The present document is based on the study performed in ETSI TR 103 308 i.1 establishing the fundamental security principles for hardware supporting virtualised network functions and focusing
15、 on the LI and RD aspects. ETSI ETSI TS 103 487 V1.1.1 (2016-04)5 1 Scope The present document defines security baseline requirements for sensitive functions including lawful interception (LI) and retained data (RD) in an NFV hardware/platform environment. 2 References 2.1 Normative references Refer
16、ences are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited version applies. For non-specific references, the latest version of the referenced document (including any amendments) applies. Referenced do
17、cuments which are not found to be publicly available in the expected location might be found at https:/docbox.etsi.org/Reference/. NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. The following referenced docume
18、nts are necessary for the application of the present document. Not applicable. 2.2 Informative references References are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited version applies. For non-speci
19、fic references, the latest version of the referenced document (including any amendments) applies. NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. The following referenced documents are not necessary for the app
20、lication of the present document but they assist the user with regard to a particular subject area. i.1 ETSI TR 103 308: “CYBER; Security baseline regarding LI and RD for NFV and related platforms“. 3 Abbreviations For the purposes of the present document, the following abbreviations apply: GSMA Glo
21、bal System for Mobile Communications ISO International Standards Organisation LEA Law Enforcement Agency LI Lawful Interception NFV Network Function Virtualisation RD Retained Data TPM Trusted Platform Module VNF Virtual Network Function VNFI Virtual Network Function Interface ETSI ETSI TS 103 487 V
22、1.1.1 (2016-04)6 4 Requirements on the hardware platform 4.1 Requirements possible using current technology The platform shall provide hardware support for the secure storage of LI target lists. The platform shall store LI target lists in such a way that the storage is resistant to a compromise of t
23、he hypervisor layer. The platform shall provide secured boot for the host. The platform shall provide secured boot for all VNFIs. Data storage and data communications systems shall prevent data tampering. The platform shall provide a location to store keys that cannot be compromised (e.g. by a privi
24、leged hypervisor manager, errant process, etc.). The platform shall provide the ability to perform cryptographic functions (such as decrypting LI target lists received from LEAs or signing LI VNFs prior to deployment) external to the virtualised platform. The platform shall provide a source of entro
25、py which is external to the virtualised environment. The platform shall provide a source of random numbers using a standardized random number generator (e.g. those standardized in GSMA or ISO). The platform shall provide the ability to assign geographic locations to physical hardware elements. The p
26、hysical hardware that hosts any virtual machine that runs LI entities shall provide a hardware root of trust, such as a TPM. The physical hardware that hosts any storage services for LI entities shall provide a hardware root of trust, such as a TPM. The host platform shall monitor resource usage by
27、VNFs hosted on the platform and prevent actions that may harm the host (e.g. by causing overheating). The host platform shall be uniquely identifiable. 4.2 Requirements for further study The hypervisor environment shall prevent unauthorised suspension of virtual machines. The hypervisor environment shall prevent the inspection of memory of virtual machines. ETSI ETSI TS 103 487 V1.1.1 (2016-04)7 History Document history V1.1.1 April 2016 Publication
