EU: SIRI - Secure Wireless Internet (EU)
Description:
This solution is used within the E.U.. It combines standards associated with EU: SIRI with those for I-M: Secure Wireless Internet (EU). The EU: SIRI standards include upper-layer standards required to implement C2C information flows for real-time public transport information. The I-M: Secure Wireless Internet (EU) standards include lower-layer standards that support secure communications between two entities, either or both of which may be mobile devices, but they must be stationary or only moving within wireless range of a single wireless access point (e.g., a parked car). Security is based on X.509 certificates. A non-mobile (if any) endpoint may connect to the service provider using any Internet connection method.Relevant Regions:
- European Union
Comm Profile: I-M: Secure Wireless Internet (EU)
Comm Class: WAN - Wide Area Network
Standards in Profile:
| Level | Standard |
|---|---|
| Access | Wireless Internet Alternatives (EU) |
| Mgmt | Bundle: SNMPv3 MIB |
| Security | Secure Session Alternatives |
| TransNet | Internet Transport Alternatives |
| TransNet | IP Alternatives |
Data Profile: EU: SIRI
Standards in Profile:
| Level | Standard |
|---|---|
| Facilities | CEN 15531-2 PublicTrans - SIRI Communications |
| ITS Application Entity | CEN 12896-4: Transmodel Operations monitoring and control |
| ITS Application Entity | CEN 12896-6: Transmodel Passenger Information |
| ITS Application Entity | CEN 15213-4 After-theft systems - long range comms |
| ITS Application Entity | CEN 15531-3 PublicTrans - SIRI Functional interfaces |
| ITS Application Entity | CEN 15531-5 PublicTrans - SIRI Situation Xchange |
Solution Issues Severity: 3
The severity issue score calculation only includes issues associated with standards that are included by default.
Solution Issues:
| Default | Severity | Name | Type | Description |
|---|---|---|---|---|
| True | Medium | Secure data access not provided | Security Gap | The solution does not define rules on how the application entity authenticates requests to accept or provide data. |
| False | Medium | Option not standardized | Standardization Gap | The option set includes at least one option that is not (yet) defined in a standard. |
| False | Medium | Uncertainty about trust revocation mechanism | Security Gap | The mechanisms used to prevent bad actors from sending authorized messages is unproven. |
Solution to Triples
This solution is used on the following information flow triples:
| Source | Flow | Destination |
|---|---|---|
| Transit Vehicle OBE | transit vehicle schedule performance | Transit Management Center |