Skip to main content

Functional Specification of Security and Privacy in IBC

Objective

The main objective of the project was to develop a basic set of security services supported by:

- security management
- security architecture
- security policy guidelines.
The main objective of the project was to develop a basic set of security services supported by security management, security architecture and security policy guidelines. This emphasis on the specification of a set of basic security services, necessary for the success of the integrated broadband communications (IBC) represented an addition to the original objectives, which were to define functions for IBC security to be integrated with the overall functional reference model (FRM).
The project team studied security requirements coming from users, network operators, service providers and conformance with existing and emerging standards. These activities led to a broad knowledge base on which the production of specifications of security functionalities, related to services as well as to management, has been based. Later, the project team concentrated on the development of definitions for a basic set of security services and the associated security management. These definitions and descriptions were derived for object and data origin authentication, integrity and confidentiality of information, nonrepudiation (with proof of origin, submission, transfer, delivery and reception) and denial of service detection.
The project also generated some architectural results with the introduction of the notion of servers, and security policy guidelines considered necessary to ensure an appropriate use of the security services offered to a customer.
Technical Summary

This emphasis on the specification of a set of basic security services, necessary for the success of the IBC represented an addition to the original objectives, which were to define functions for IBC security to be integrated with the overall FRM.

During the first two years the project team studied security requirements coming from users, network operators, service providers and conformance with existing and emerging standards. These activities led to a broad knowledge base on which the production of specifications of security functionalities, related to services as well as to management, has been based. Later, the project team concentrated on the development of definitions for a basic set of security services and the associated security management. These definitions and descriptions were derived for object and data origin authentication, integrity and confidentiality of information, non-repudiation (with proof of origin, submission, transfer, delivery and reception) and denial- of-service detection.

The project also generated some architectural results, with the introduction of the notion of servers, and security policy guidelines considered necessary to ensure an appropriate use of the security services offered to a customer.

The work of the project is reflected in six deliverables. The project collaborated in the development of related CFS's - C290 Security and Integrity aspects of services and H411 Management of security.

Coordinator

Forschungsinstitut der Deutschen Bundespost (DBP)
Address
Am Kavalleriesand 3
64295 Darmstadt
Germany

Participants (4)

BRITISH TELECOM PLC (BT)
United Kingdom
PTT Nederland (Research)
Netherlands
Service d'Études Communes de la Poste et de France Télécom
France
Address
42 Rue Des Coutures
14066 Caen
TELEVERKET Swedish Telecommunications
Sweden