This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
ITU-T Perspectives on the Standards-Based Security
Landscape (SG 17 Main Focus)
www.oasis-open.org
Abbie Barbir, [email protected] ITU-T Q6/17 Cybersecurity Question RapporteourOASIS IDTrust MS Steering Committe OASIS Telecom MS Co-chairOASIS TABISO JTC1 CAC SC6 Vice-ChairSenior Advisor CEA, SOA, Web Services, IdM, SecurityStrategic StandardsNortel
• Introduction to ITU• Security work at ITU Study Groups• SG 17 Security work• Higlight of Current Activities• Challenges
OutlineOutline
What is International Telecommunication Union (ITU) ?
Headquartered in Geneva, is the UN specialized agency for telecom
ITU-TITU-TTelecommunicationstandardization of
network and serviceaspects
ITU-DITU-DAssisting implementation
and operation oftelecommunications indeveloping countries
ITU-RITU-RRadiocommunicationstandardization and
global radio spectrummanagement
Study Group OrganizationStudy Group Organization
(TSAG)
(WTSA)(WTSA) SG 17, Security, Languages and Telecommunication Software
Lead Study Group on Telecommunication SecurityLead Study Group on Telecommunication Security
SG 2, Operational Aspects of Service Provision, Networks and Performance
SG 4, Telecommunication Management SG 5, Protection Against Electromagnetic Environment Effects SG 9, Integrated Broadband Cable Networks and Television and Sound Transmission SG 11, Signalling Requirements and Protocols SG 13, Next Generation Networks SG 15, Optical and Other Transport Network Infrastructures SG 16, Multimedia Terminals, Systems and Applications SG 19, Mobile Telecommunication Networks
Strategic Direction
Cybersecurity – one of the top priorities of the ITUCybersecurity – one of the top priorities of the ITU ITU’s role in implementing the outcomes of the World Summit on the
Information Society (WSIS) Plenipotentiary Resolution 140 (2006) Study of definitions and terminology relating to building confidence and
security in the use of information and communication technologies Plenipotentiary Resolution 149 (2006)
WTSA-04 Resolution 50, Cybersecurity – Instructs the Director of TSB to develop a plan to undertake evaluations of ITU-T “existing and evolving Recommendations, and especially signalling and communications protocol Recommendations with respect to their robustness of design and potential for exploitation by malicious parties to interfere destructively with their deployment”
WTSA-04 Resolution 52, Countering spam by technical means – Instructs relevant study groups “to develop, as a matter of urgency, technical Recommendations, including required definitions, on countering spam”
Highlights of current activities (1) ITU Global Cybersecurity Agenda (GCA)
A Framework for international cooperation in cybersecurity Five key work areas: Legal, Technical, Organisational, Capacity
Building, International Cooperation High-Level Experts (HLEG) working on global strategies
GCA/HLEG met 26 June 2008 to agree upon a set of recommendations on all five work areas for presentation to ITU Secretary-General
ISO/IEC/ITU-T Strategic Advisory Group on Security Coordinates security work and identifies areas where new
standardization initiatives may be warranted. Portal established. Workshops conducted.
Identity Management Effort jump started by IdM Focus Group which produced 6 substantial
reports (265 pages) in 9 months JCA –IdM and IdM-GSI established – main work is in SGs 17 and 13
Core security (SG 17) Covering frameworks, cybersecurity, countering spam, home
networks, mobile, web services, secure applications, telebiometrics, etc.
Work underway on additional topics including IPTV, multicast, security; risk management and incident management; traceback, Bots, Privacy,
Questionnaire issued to developing countries to ascertain their security needs