ITS Security Support Functional Area

Description

'ITS Security Support' provides communications and system security functions to the ITS Object, including privacy protection functions. It may include firewall, intrusion management, authentication, authorization, profile management, identity management, cryptographic key management. It may include a hardware security module and security management information base.

Included In

RTA Fixed Route Vehicles
City of Cleveland Signal Control System
Ohio DOT Safety Patrol Vehicles
Ohio DOT Maintenance and Construction Vehicles
Ohio DOT ATMS
Hopkins International Airport and Burke Lakefront Airport
Ohio Turnpike Central Dispatch
Traveler Information Devices
Ohio State Highway Patrol Vehicles
Ohio DOT District Offices
City of Cleveland Maintenance Dispatch
County Emergency Vehicles
Commercial Vehicles
Geauga County Transit Vehicles
Ohio Turnpike Maintenance Dispatch
Ohio Turnpike Maintenance and Construction Vehicles
County Maintenance Vehicles
Ohio DOT Connected Vehicle Roadside Equipment
Ohio Turnpike Connected Vehicle Roadside Equipment
Connected/Automated Vehicles
Ohio Turnpike Public Service Vehicles
Ohio Turnpike CV Authorizing Center
Ohio Turnpike CV Service Monitoring System
Ohio DOT CV Authorizing Center
Ohio DOT CV Service Monitor System
Ohio DOT Object Registration and Discovery System
Ohio DOT Wide Area Information Disseminator System
Ohio DOT Cooperative ITS Credentials Management System
Ohio DOT Event Streaming Platform
Case Western Reserve Transit Vehicles
County and City Connected Vehicle Roadside Equipment
Regional Airport/Port Authority Connected Vehicle Roadside Equipment
ITS Communications Equipment
County and City CV Service Monitoring Systems
Regional Airport/Port Authority CV Service Monitoring Systems
County and City CV Authorizing Center
Regional Airport/Port Authority CV Authorizing Center
Ohio DOT Traffic Signal Control Systems
Ohio DOT Certification System

Functional Requirements

IDRequirement
01The ITS Object shall obtain security policy information from the Cooperative Intelligent Transportation System Credentials Management System (CCMS).
02The ITS Object shall request enrollment credentials from the CCMS.
03The ITS Object shall obtain the CCMS' trust credentials.
04The ITS Object shall provide a mechanism for on–board applications to digitally sign messages using keys secured by the CCMS' trust authority.
05The ITS Object shall provide a mechanism for on–board applications to authenticate messages secured by the CCMS' trust authority.
06The ITS Object shall provide a mechanism for on–board applications to encrypt messages using keys secured by the CCMS' trust authority.
07The ITS Object shall provide a mechanism for on–board applications to decrypt messages using keys secured by the CCMS' trust authority.
08The ITS Object shall obtain a list of revoked credentials from the CCMS.
09The ITS Object shall make the list of revoked credentials available to on–board applications.
10The ITS Object shall maintain cryptographic secret information so that those secrets are accessible only to ITS Security Support, and not to any other Functional Object.
11The ITS Object shall request pseudonymous credentials from the CCMS.
12The ITS Object shall provide messages (that it receives) that indicate potential misbehavior/malfunction to the CCMS.
13The ITS Object shall request permissions from the Center that manages permissions requests.