1、 I n t e r n a t i o n a l T e l e c o m m u n i c a t i o n U n i o n ITU-T Series X TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU Supplement 31 (09/2017) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY ITU-T X.660 Guidelines for using object identifiers for the Internet of thing
2、s ITU-T X-series Recommendations Supplement 31 ITU-T X-SERIES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS X.1X.199 OPEN SYSTEMS INTERCONNECTION X.200X.299 INTERWORKING BETWEEN NETWORKS X.300X.399 MESSAGE HANDLING SYSTEMS X.400X.499 DIRECTORY X.500X.599
3、 OSI NETWORKING AND SYSTEM ASPECTS X.600X.699 OSI MANAGEMENT X.700X.799 SECURITY X.800X.849 OSI APPLICATIONS X.850X.899 OPEN DISTRIBUTED PROCESSING X.900X.999 INFORMATION AND NETWORK SECURITY General security aspects X.1000X.1029 Network security X.1030X.1049 Security management X.1050X.1069 Telebio
4、metrics X.1080X.1099 SECURE APPLICATIONS AND SERVICES (1) Multicast security X.1100X.1109 Home network security X.1110X.1119 Mobile security X.1120X.1139 Web security X.1140X.1149 Security protocols (1) X.1150X.1159 Peer-to-peer security X.1160X.1169 Networked ID security X.1170X.1179 IPTV security
5、X.1180X.1199 CYBERSPACE SECURITY Cybersecurity X.1200X.1229 Countering spam X.1230X.1249 Identity management X.1250X.1279 SECURE APPLICATIONS AND SERVICES (2) Emergency communications X.1300X.1309 Ubiquitous sensor network security X.1310X.1319 Smart grid security X.1330X.1339 Certified mail X.1340X
6、.1349 Internet of things (IoT) security X.1360X.1369 Intelligent transportation system (ITS) security X.1370X.1389 Distributed legder technology security X.1400X.1429 Security protocols (2) X.1450X.1459 CYBERSECURITY INFORMATION EXCHANGE Overview of cybersecurity X.1500X.1519 Vulnerability/state exc
7、hange X.1520X.1539 Event/incident/heuristics exchange X.1540X.1549 Exchange of policies X.1550X.1559 Heuristics and information request X.1560X.1569 Identification and discovery X.1570X.1579 Assured exchange X.1580X.1589 CLOUD COMPUTING SECURITY Overview of cloud computing security X.1600X.1601 Clou
8、d computing security design X.1602X.1639 Cloud computing security best practices and guidelines X.1640X.1659 Cloud computing security implementation X.1660X.1679 Other cloud computing security X.1680X.1699 For further details, please refer to the list of ITU-T Recommendations. X series Supplement 31
9、 (09/2017) i Supplement 31 to ITU-T X-series Recommendations ITU-T X.660 Guidelines for using object identifiers for the Internet of things Summary Supplement 31 to the ITU-T X-series Recommendations provides guidelines on how to use object identifiers (OIDs) to identify objects in the Internet of t
10、hings (IoT). It includes guidelines on how to structure OIDs, how to implement resolution systems as well as how to establish management procedures based on existing ITU-T Recommendations and international standards. History Edition Recommendation Approval Study Group Unique ID* 1.0 ITU-T X Suppl. 3
11、1 2017-09-06 17 11.1002/1000/13411 Keywords Internet of things, object identifiers, OID, identification system. * To access the Recommendation, type the URL http:/handle.itu.int/ in the address field of your web browser, followed by the Recommendations unique ID. For example, http:/handle.itu.int/11
12、.1002/1000/11830-en. ii X series Supplement 31 (09/2017) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications, information and communication technologies (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) i
13、s a permanent organ of ITU. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years,
14、 establishes the topics for study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessa
15、ry standards are prepared on a collaborative basis with ISO and IEC. NOTE In this publication, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this publication is voluntary. However, the pu
16、blication may contain certain mandatory provisions (to ensure, e.g., interoperability or applicability) and compliance with the publication is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are
17、used to express requirements. The use of such words does not suggest that compliance with the publication is required of any party. INTELLECTUAL PROPERTY RIGHTSITU draws attention to the possibility that the practice or implementation of this publication may involve the use of a claimed Intellectual
18、 Property Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the publication development process. As of the date of approval of this publication, ITU had not received notice of
19、intellectual property, protected by patents, which may be required to implement this publication. However, implementers are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2017 All r
20、ights reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. X series Supplement 31 (09/2017) iii Table of Contents Page 1 Scope . 1 2 References . 1 3 Definitions 1 3.1 Terms defined elsewhere 1 3.2 Terms defined in this Supple
21、ment 2 4 Abbreviations and acronyms 2 5 Conventions 2 6 The target and requirements of identifying objects in the IoT . 2 7 Characteristics of object identifiers useful for IoT . 3 7.1 Overview 3 7.2 Identifying anything . 4 7.3 Communication between things . 4 7.4 Association between physical and v
22、irtual objects 4 7.5 Networking technology independency of IoT devices . 4 7.6 Mapping identifiers to objects 4 8 General procedure for establishing OID-based IoT identification systems 4 9 Considerations when designing/choosing identification schemes for OIDs 5 9.1 Factors considered for identifica
23、tion schemes . 5 9.2 Recommended structures of OIDs in IoT . 5 10 Considerations when establishing resolution systems and deploying distributed servers . 7 11 Considerations when establishing OID-based authorities and operational procedures . 7 X series Supplement 31 (09/2017) 1 Supplement 31 to ITU
24、-T X-series Recommendations ITU-T X.660 Guidelines for using object identifiers for the Internet of things 1 Scope This Supplement includes the following items: requirements for identifying objects in the Internet of things (IoT) and how object identifiers (OIDs) satisfy these requirements; general
25、procedures for establishing OID-based IoT identification systems; detailed considerations for establishing OID-based IoT identification systems, including considerations when designing/choosing identification schemes for OIDs, considerations when establishing a resolution system and considerations w
26、hen establishing OID authorities and operational procedures. 2 References ITU-T X.660 Recommendation ITU-T X.660 (2011) | ISO/IEC 9834-1:2012, Information technology Procedures for the operation of object identifier registration authorities: General procedures and top arcs of the international objec
27、t identifier tree. ITU-T X.672 Recommendation ITU-T X.672 (2010) | ISO/IEC 29168-1:2011, Information technology Open systems interconnection Object identifier resolution system (ORS). ITU-T Y.4000 Recommendation ITU-T Y.4000/Y.2060 (2012), Overview of the Internet of things. ITU-T Y.4801 Recommendat
28、ion ITU-T Y.4801/F.748.1 (2014), Requirements and common characteristics of IoT identifier for the IoT service. ISO/IEC 10646 ISO/IEC 10646:2014, Information technology Universal Coded Character Set (UCS). ISO/IEC 29168-2 ISO/IEC 29168-2:2011, Information technology Open systems interconnection Part
29、 2: Procedures for the object identifier resolution system operational agency. 3 Definitions 3.1 Terms defined elsewhere This Supplement uses the following terms defined elsewhere: 3.1.1 application-specific OID resolution process ITU-T X.672: Actions by an application to retrieve application-specif
30、ic information from the information returned by the general OID resolution process. 3.1.2 general OID resolution process ITU-T X.672: That part of the ORS where an ORS client obtains information from the DNS (recorded in a zone file) about any specified OID and returns it to an application. 3.1.3 ob
31、ject identifier ITU-T X.660: An ordered list of primary integer values from the root of the international object identifier tree to a node, which unambiguously identifies that node. 2 X series Supplement 31 (09/2017) 3.1.4 registration ITU-T X.660: The assignment of an unambiguous name to an object
32、in a way which makes the assignment available to interested parties. 3.2 Terms defined in this Supplement None. 4 Abbreviations and acronyms This Supplement uses the following abbreviations and acronyms: AIDC Automatic Identification and Data Collection APP Application DNS Domain Name System IoT Int
33、ernet of Things OID Object Identifier OID-IRI Object Identifier Internationalized Resource Identifier ORS OID Resolution System RFID Radio Frequency Identification SNMP Simple Network Management Protocol 5 Conventions None. 6 The target and requirements of identifying objects in the IoT In IoT, ever
34、y “thing“ should be identified by a globally or locally unique identifier to be accessed as shown in Figure 1. There are some special situations where these “things“ do not need global and unique identifiers, but they have to be unique in a local environment. X series Supplement 31 (09/2017) 3 Sourc
35、e: Modified from ITU-T Y.2060. Figure 1 Targets of identification in the IoT There are some typical IoT devices that are used to support the connection of every “thing“ to the IoT, and these devices are identified as shown in Figure 2, according to ITU-T Y.2060. Among these four types of devices, da
36、ta carrying devices can be identified by radio frequency identification (RFID) since these will be attached to physical things such as boxes and bottles. Source: modified from ITU-T Y.2060. Figure 2 Types of devices to be identified in the IoT The requirements of identifying objects in IoT are speci
37、fied in ITU-T Y.4801. 7 Characteristics of object identifiers useful for IoT 7.1 Overview Object identifiers (OIDs) are jointly developed by ISO/IEC and ITU-T, and have many characteristics. OIDs satisfy the requirements of clause 6 as explained below. 4 X series Supplement 31 (09/2017) 7.2 Identify
38、ing anything An OID has a hierarchical tree structure, which can flexibly extend its layers and the length of the identifiers. An OID is able to identify anything (physical or virtual, devices or non-devices), and is able to connect them with global information and communication infrastructures. 7.3
39、 Communication between things An OID has independent arcs under its top level, and can accommodate short-range communication technologies. An OID is also used to identify things in which communication capabilities are unnecessary, such as digital certificates, algorithms and organizations. Thus, an
40、OID is able to provide a harmonized way to integrate the identifiers of devices, which need communication capabilities, and the identifiers of things, which do not. 7.4 Association between physical and virtual objects An OID can be used for tag-based identification to associate a physical object wit
41、h its information stored in servers. OIDs have also been used extensively in network device management and various data and data structures. The concept of OIDs integrates the identifiers of physical objects and the identifiers of virtual objects. 7.5 Networking technology independency of IoT device
42、s In IoT environments, numerous devices may connect to each other using different networking technologies. OIDs are independent of networking technologies and have been widely used to identify objects in different networking contexts, such as simple network management protocol (SNMP)-enabled network
43、 management systems, data structures of databases, cloud storage objects of cloud computing, etc. 7.6 Mapping identifiers to objects An OID is a type of universal identifier that can be used to identify things from different layers, including identifier schemes which are used to identify different k
44、inds of things, such as radio frequency identification (RFID), 2-dimensional (2D) barcode, etc. The character encoding technology specified in ISO/IEC 10646 could be used with OIDs to offer various formats of characters, such as the object identifier - internationalized resource identifier (OID-IRI)
45、. OIDs can be supported by various OID resolution services as specified in ITU-T X.672. Therefore, an OID satisfy the requirement of mapping identifiers to objects in different layers and can integrate them easily. 8 General procedure for establishing OID-based IoT identification systems This clause
46、 introduces the general procedure for establishing an OID-based IoT identifier system for a specific application area, as follows: Step 1: Analysis of business requirements: Analyse what kind of objects should be identified. Step 2: Classification of objects: Categorize the objects in IoT according
47、to their characteristics. Step 3: Design for the structure of OID: More details for step 1, step 2 and step 3 can be found in clause 9. Step 4: Deployment of OID resolution system (ORS): Address how to establish resolution systems and how to deploy distributed servers. More details can be found in c
48、lause 10. Step 5: Establishing authorities and procedures: Administrative authorities and operational procedures should be established. Additional details can be found in clause 11. X series Supplement 31 (09/2017) 5 The general procedure for establishing OID-based IoT identifier systems is describe
49、d in Figure 3. Figure 3 General procedure of establishing OID-based IoT identification systems 9 Considerations when designing/choosing identification schemes for OIDs 9.1 Factors considered for identification schemes There are many factors that should be considered when designing/choosing identification schemes for OIDs. Before designing OID identification schemes for IoT objects, the business requirements of the IoT application should be analysed fir
