TUF - Secure Wireless Internet (ITS)

Description:

This solution is used within Canada and the U.S.. It combines standards associated with TUF with those for I-M: Secure Wireless Internet (ITS). The TUF standards include upper-layer standards required to install and update application software. The I-M: Secure Wireless Internet (ITS) standards include lower-layer standards that support secure communications between two entities, either or both of which may be mobile devices, but they must be stationary or only moving within wireless range of a single wireless access point (e.g., a parked car). Security is based on X.509 or IEEE 1609.2 certificates. A non-mobile (if any) endpoint may connect to the service provider using any Internet connection method.

Relevant Regions:

Comm Profile: I-M: Secure Wireless Internet (ITS)

Comm Class: WAN - Wide Area Network

Standards in Profile:

Data Profile: TUF

Standards in Profile:

Solution Issues Severity: 7

The severity issue score calculation only includes issues associated with standards that are included by default.

Solution Issues:

Default Severity Name Type Description
True Low Not a standard (minor) Standardization Gap The document is publicly available and widely used but it is not currently a formal standard.
True Medium Outdated security reference Security Gap The standard solution includes an outdated security reference.
True Medium Unvetted by community Standardization Gap The proposed solution uses a suite of standards that is accepted within some communities, but has not necessarily been accepted for use within the context of this information triple.
False Medium Option not standardized Standardization Gap The option set includes at least one option that is not (yet) defined in a standard.
False Medium Overlap of standards Overlap Multiple standards have been developed to address this information and it is unclear which standard should be used to address this specific information flow.
False Medium Regulatory Permission Needed Standardization Gap Deployment of this standard requires regulatory approval, which is currently subject to significant delays.
False Medium Uncertainty about trust revocation mechanism Security Gap The mechanisms used to prevent bad actors from sending authorized messages is unproven.
False High Regulatory Issue Standardization Gap Deployment of this standard is subject to regulatory approval, which is not currently expected to be granted for deployments in the near-term.

Solution to Triples

This solution is used on the following information flow triples: