ISO IEC 27071-2023.docx

INTERNATIONA1.STANDARDISO/IEC27071editionFirSt202307CybersecuritySecurityrecommendationsforestab1.ishingtrustedconnectionsbetweendevicesandservicesCybersecuriteRecommandationsdesecuritepouretab1.issementdeconnexionsdeconfianceentredispositifsetservicesReferencenumberISO/IEC27071:2023(E)©ISO/IEC2023COPYRIGHTPROTECTEDDOCUMENT©IS0/1EC2023IUirhM*hedbdi1.iUedotherwiseupdhi.o啪InyM1.tta0Dmk<nroni(ncm11ni10tf1.*Mqn1.C6pW11opypMRationmaytheinternetoranintranet,withoutpriorwrittenpermission.PermissioncanberequestedfromeitherISOattheaddressbe1.oworISO'smemberbodyinthecountr)oftherequester.f),WV>fifiU81.andonnet8CH-1214Vernier,GenevaPhone：M1.227490111觥ftte:丽丽BQrgPub1.ishedinSwitzer1.andContentsForewordivIntroductionv2 Scope13 Normativereferences1Termsanddefinitions13.1 Termsre1.atingtoc1.oudcomputing13.2 Termsre1.atingtoc1.oudcomputingro1.esandactivities245 Abbreviatedterms5Frameworkandcomponentsforestab1.ishingatrustedconnection55.1 Overview55.2 Hardwaresecuritymodu1.e95.3 RtHJttdStrust105.5 Authenticationandkeyestab1.ishment105.6 Remoteattestation10Securityrecommendationsforestab1.ishingatrustedconnection106.1 Hardwaresecuritymodu1.e106.2 Rootoftrust116.3 AtohettyMiOn一.andkey.estab1.ishment116.5 Remoteattestation116.6 DatOInteg1.1.tyandauthenticity.126.7 Trusteduserinterface12Annex A (informative)Threats13Annex B (informative)So1.utionsforcomponentsofatrustedconnection18Annex C (informative)Examp1.eofestab1.ishingatrustedconnection一.一._.一,23Bib1.iography24ForewordISO(theInternationa1.OrganizationforStandardization)andIEC(theInternationa1.E1.ectrotechnica1.(Jtunibcnjot)SdrniIHGspartHipidisye耐unr3optowMi01.HtanrfandaiionS出adwrddBudiughtechnimitteesestab1.ishedbytherespectiveorganizationtodea1.withparticu1.arfie1.dsoftechnica1.activity.ISOandIECmitteesco1.1.aborateinfie1.dsofmutua1.interestOtherinternationa1.ornizations,governmenta1.andnon-governmenta1.rin1.iaisonwithISOandIEC,a1.sotakepartintheTheproceduresusedtodeve1.opthisdocumentandthoseintendedforitsfurthermaintenanceftKdeddeatibedthcindFrent1.S(W山也(Wmr小曲如卿闻IarJ帏序瞅崛jp15gIraJi1dinISO/IECDirectives.Part2(seewww.iso.org/dircctivesorwww.iec.ch/members.experts/refdocs).屣G>d（八）IEC0MYn(S温食闸由KM段粒SSibA哂Atef1.Wferni佃前VhIent菰加iMMi俄艇abih1.yiheanyc1.aimedpatentrightsinrespectthereof.Asofthedateofpub1.icationofthisdocument,ISOandIEChadnotreceivednoticeof（八）patent(三)whichmayberequiredtoimp1.ementthisdocument.However,寐降艇由曲觎eda祜b1.三WWeM0碗notbehe1.dresponsib1.eforidentifyinganyora1.1.suchpatentrights.AnytradeusedinthisconstitutenameendorsementdocumentisinformationgivenfortheconvenienceofusersanddoesnotForanexp1.anationofthevo1.untarynatureofstandards,themeaningofISOspecifictermsand邮)X觑怂1.itedOrRan脚娜I删01ass热情h2ton住排触标福dead明ces陕www.iso.org/iso/foreword.htm1.IntheIEC,seevrww.iec.chunderstanding-standards.瓯Cv½腑。胁也加卜破舰。"到6腑"Wg仍SO1.Jtec"om/n/hrmotiontechno1.ogy,Anyfeedbackorquestionsonthisdocumentshou1.dbedirectedtotheuser'snationa1.standards屋.2R)，隔U*P8RMit<eesthesebodiescanbefoundatwwwis<hFgmembeFht111.andIntroductionartificia1.inte1.1.igence(A1.),scenarios.essentia1.toestab1.ishtrustedconnectionsbetweendevicesandservicesessentia1.devicesServiceservicesdistinguishconfidentia1.itjrbyintegritytheauthorizeddeviceenough.thosema1.iciousServicesxrucia1.thisway,shou1.dto<iistinguishre1.iab1.ygenuineSemcegenuineunintendedservicesorIdentitywithoutaofre1.iab1.erootrequirementsestab1.ishingre1.iab1.eVirtua1.izedensuretheuti1.izationattacks,authenticationbetweenaremoteattestationbetweencssen1.ia1.andpreventingimpersonationa1.gorithmsinfromsensorsshou1.dintegrated1.abe1.theanddevicerdigita1.1.ysigned(ororgeneratedcryptomechanisms)processtrustedcomputingconnectionshaveainfrastructurere1.ationshipwithcertificationauthoritymodu1.es hardwaresecuritymodu1.estoestab1.ishthere1.iab1.erootoftrust; Channekauthenticationandkeyestab1.ishmentbetweendevicesandservicestoestab1.ishasecurity dataidentitytokeepthedataintegrityandauthenticity1.ongterm.mobi1.edevices,PCs1.Onvironnient.Thisdocumen1.infrastructurehe1.ptrustedservices.partcsdocu11entcanissueWiththedeve1.opmentoftheinternetofthings(IoT),mobi1.eservices,c1.oudcomputing,bigdataandingrowingnumberofitVSecuritychanne1.se.g.securesockets1.ayer(SS1.)ortransport1.ayersecurity(T1.S)protoco1.s)areusedbetweenfortheandtotoprotectandsensorsofofdata,butisnotfromItisofotherdevicesordataforgedbyadversaries.Thus,theSerViCeshou1.dbeab1.etoensurethatthedatacomesfromtheauthorizeddevice.Inaddition,itInfortheitdevicebeab1.etotheidentifythefromandservice,inparticu1.arforc1.oudservices,whichmayhavethousandsofsuchservicesrunning.ofre1.iab1.erootstrustTheOfcanbeforged,socontro1.scritica1.torootsoftrustaredescribedinISO/IEC27070.Mutua1.Whi1.einsufficientinitse1.fdeviceandsendeeisdeviceforaSerViCeisa1.socritica1.forprotectingthedatahand1.ingprocessesandestab1.ishingasecuritychanne1.topreventinterceptionbyanadversaryonthecommunicationnetwork.DataCapturedthedevicehaveinbeinputbyusers,byother(orprocessed)byusingthedevicetsparticu1.arkeydesignedfc)rthispurpose,toprotecttheintegrityandauthenticityofthedata.Itispossib1.ethatservicesknowtheparametersofthesensordeviceWhiChcanhe1.pitto(HSM),thedata.Trusted(TC),pub1.ickeystrong(PK1.)andhardwaresecurity(C)techno1.ogy.Trustedconnectionissuescanbebrokendownintosevera1.sub-categoriessuchas: identityofdevicesandservicesissuedbytrustedparties;mutua1. mutua1.remoteattestation(orenvironmentassurance)betweendevicesandservices;Thisdocumentproposessecurityrecommendationsforestab1.ishingtrustedconnectionsbetweendevicesandservices,whichwou1.dhe1.pthere1.atedorganisationstosetupHSMindevices(inc1.udingtobui1.dat11stedIoTdevices)andinthea1.soofc1.oudthirdThis(i.e.C)tohe1.pcertificatestodevicesandservices,andhe1.papp1.icationstomitigateagainstattacksandidentifyforgeddatafromthesensors.CybersecuritySecurityrecommendationsforestab1.ishingtrustedconnectionsbetweendevicesandservices1 Scopecomponentssuchhardwaresecurityhardwareserityofmodu1.es.identity,recommendationsServicesdocumcntonapp1.icab1.esecurityscenariosthatestab1.ishtrustedconnectionsbetweendevicesand2 Normativereferencesconstitutesrcquircments1.atestCdiUOndOCUment.referencedreferences,(inc1.udingamendments)app1.ies.app1.ies.rootsoftrust3 Termsanddefinitionsapp1.y.ISOOn1.inebrowsingp1.atform：avai1.ab1.eatttps/WWwe=wgebp3.1 Termsre1.atingtoc1.oudcomputing3.1.1 c1.oudcomputingstorageequipment.Examp1.esofresourcesinc1.udeservers,operatingsystems,networks,software,app1.ications,and3.1.2c1.oudserviceThisdocumentprovidesaframeworkandrecommendationsforestab1.ishingtrustedconnectionsforbetweendevicesandas：servicesbasedonmodu1.e,rootstrust,ItMdUeksaU1.hentiCatiOnestab1.ishment,remoteattestation,dataintegrityandauthenticity.ThisbasedJshardwaretomodu1.es.Thisdocumentdoesnotaddressprivacyconcerns.Thefo1.1.owingdocumentsarcreferredtointhetextinsuchawaythatsomeora1.1.oftheircontentundatedreferences,theofthisoftheFordateddocumenton1.ytheanyeditioncitedForISO/IEC27070rInformatjontechno1.ogySecuritytechniquesRequirementsforestab1.ishingvirtua1.izedForthepurposesofthisdocument,thetennsanddefinitionsgiveninISO/IEC27070andthefo1.1.owingISOandIECmaintaintermino1.ogydatabasesforuseinstandardizationatthefo1.1.owingaddresses:-IECE1.ectropcdia:avai1.ab1.eathttps:/www.e1.ec1.ropedia.org/paradigmforenab1.ingnetworkaccesstoasca1.ab1.eande1.asticpoo!ofshareab1.ephysica1.orvirtua1.resourceswithse1.f-serviceprovisioningandadministrationon-demandNote1toentr),:SOURCE:ISO/IEC22123-1:2023,3.1.1,modifiednote2toentryhasbeende1.eted.capabi1.itiesofferedviac1.oudcomputing(3.1.1)invokedusingadefinedinterface3.2 Termsre1.atingtoc1.oudcomputingro1.esandactivities3.2.1Partynatura1.personor1.ega1.personoragroupofeither,whetherornotincorporated,thatcanassumeoneormorero1.esOURCE:ISO1EC22123-1:2023,3.3.1c1.oudserviceproviderparty(3.2.1)thatisactinginac1.oudservice(3.1.2)providerro1.eF9,RCE:ISO1EC22123-1:2023,3.3.3c1.oudserviceusernatura1.person,orew*y-actingontheirbeha1.f,associatedwithac1.oudservicecustomer(3.2.2)thatusesc1.oudservices(3.1.2)Note1toentry：Examp1.esofsuchentitiesinc1.udedevicesandapp1.ications.y>gRCEJSOIEC22123-1:2023,3.3.4tenantc1.oudserviceuser(3.2.4)sharingaccesstoasetofphysica1.andvirtua1.resourcesSOURCE:definition.1SOIEC22123-1:2023,3.4.2,modified"oneormore"hasbeende1.etedfromorigina1.3.3 Termsre1.atingtosecurityandprivacy3.3.1avai1.abi1.itypropertyofbeingaccessib1.eandusab1.eondemandbyanauthorizedentityfRCE;ISO/IEC27000:2018,3.7confidentia1.itypropertythatinformationisnotmadeavai1.ab1.eordisc1.osedtounauthorizedindividua1.s,entities,orprocessesyiOURCE:ISO/IEC27000:2018,3.10integritypropertyOfaccuracyandcomp1.etenessgJ1.RCE:ISO/IEC27000:2018,3.36)hardwaresecuritymodu1.eHSMtamper-resistanthardwaremodu1.ewhichsafeguardsandmanageskeysandprovidescryptographicfunctionsNote1toentry:Trustedmodu1.eisaspecifickindofHSM.3.3.5trustanchormodu1.eTAM3.3.61toentr>r:Trustanchormodu1.eisanabstractmodu1.ethatcontainsoneormorehardwaresecuritymodu1.es.trusteduserinterfaceTU1.3.3.7identitykeyIKenvironmentcharacteristicsrootoftrustRoTphysica1.rootoftrustNote1p1.atformcharacteristicsthataffectthetrusthasthePhtfOrm.minimumsetffunctionstoenab1.eadescriptionterm.Jvirtua1.izedrootoftrustvRoTNoteoftrustSimu1.Uneousiy.environments,therecanbemu1.tip1.eriFtua1.izedrootsoftrustbasedonthesing1.e3.3.10rootoftrustformeasurementmeasurements)androutsthcm(3.3.8)fo11natSuitab1.cdcviccenvironmentCharactcristicsp1.atformfirmwarcintegrity3.3.11rootoftrustforstoragehardwaresecuritymodu1.e(3.3.4)thatactsastherootsoftrust(33.8)Notedevicecomponu-u4thauserinterfacewhoseintegrity(3.3.3)andauthenticityismanagedbythetrustanchormodu1.e(3.3.S)signingkeyusedforauthenticationandtosigncharacteristicsofthedevU-(orservice)environment(e.g.adigest)inordertopreventforgeryandprotecttheintegrity(3.3.3)ofthedevice(orservice)3.3.8componentthatneedstoa1.waysbehaveintheexpectedmannerbecauseitsmisbehaviourcannotbedetectedoftheentry：Thecomp1.etesetofrootsofofat1.easttheSOURCE:ISO/IEC27070:2021,3.4,modied"physica1.rootoftrust"hasbeenaddedasanadmitted3.3.9securityfunctioncomponentestab1.ishedbasedontherootoftrust(3.3.8),whichprovidessimi1.arfunctionastherootoftrustroot1toentry:Iputationenginethatresetsoneormorep1.atformconfigurationregisters,makestheinitia1.integrity(3.3.3)measurement,andextendsitintoap1.atformconfigurationregisterNote1toentry:Aoftrustinathatco1.1.ectsforattestation(c.g.trusted(c.g.modu1.ep1.atformconfigurationregisters).componentoftherootoftrust(3.3.8)thatprovidesstoringconfidentia1.informationandmeasuredva1.uesinshie1.ded1.ocationsaccessedusingprotectedcapabi1.ities3.3.12rootoftrustforreportingauthenticityentry:nonrepudiationServicesusesthepurposes(orserviced)Ideneffyorigin3.3.7integrityre1.iab1.yprovide3.3.13securee1.ementSErequirementssetbywe1.1.-identifiedtrustedauthoritiestrustedcomputingTC3.3.15trustedexecutionenvironmentTEE3.3.16chainoftrusttrustedcomponent.Theo1.dcomponentcaneitherarooto1.dComponenttrustedcomponent.whichisnowa3.3.17trustedenvironmentTENote!Misce1.1.aneousexecutionenvironment(3.3.15)isaspecificTE.3.4.1deviceSOURCE:ISO/IEC22123-1:2023,3.13.4,modifiednote1toentryhasbeende1.eted.deviceho1.dercasesOtioInternetJnThings.cases,probab1.ywhopossesses(devices)usesnotmobi1.ecorrespondindeviceho1.der.ButinTheRoTcanbedirect1.yconst11ctedbasedontheHSM(TPMorCPUcombinedwithcipherchip)B.2.3theRoTnothavetheremaybeHSM.servicethebindingofsing1.eUniqueserverrwhichtheRoTinstance,avRoTcanbeused.Virtua1.izedrootoftrustisbasedonthephysica1.rootoft11stItscomputationa1.securityandIOsecurityareprotectedbysomesecuritytechno1.ogyonthecomputingSEmodu1.e.ISO/IECTPMakindofvirtua1.rootofandforconstructedInthisdocument,identitiesareusedtoidentifyadeviceoraserviceinstance.Identitiescanbe identityissuedbythemanufacturer; identitygeneratedbythec1.oudserviceprovider.ThetypeofboundtoRoT.IdentityissuedbythemanufacturerisboundtoaRoTandisgeneratedduringtheHSMproductioncanbeusedastheTPMisforidentitytrustedtheInothercases,thekeyofbeissuedtoanon-exportab1.ekeygenerateintheciphermodu1.ebysigningapub1.ickeycertificate.ASHSMisbui1.tintoadeviceandRoTisderivedfromHSM,CA(atrustedpartyortrstedthirdparty)Deviceidentitycanbecreatedfromaninterna1.CA.Thefo1.1.owingstepsshowanexamp1.e: DevicemanufacturerstorestheX.509certifcate5inthedevice.Deviceidentitycanbecreatedbyathird-partyCAafterde1.ivery.Thefo1.1.owingstepsgiveanexamp1.e: Theidentityofdeviceshou1.dbeboundtotherootsoftrustwhicharederivedfromtheHSM.Thedevicegeneratesacertificaterequestforitsrootoftrust,whichissignedbytheIK.-Theusersendsthecertificationrequesttothethird-partyCA.TheCAva1.idatesthecertificationrequestandissuesacertificatetothedevice.Thedevicestoresthecertificate.B.3.2.3Identitygeneratedwhentheserviceisdep1.oyedWhenaserviceisdep1.oyed,theservercancreateanidentitythatisboundtotheservice.Becausethertiufiihke<i<tetedttSMid的eervicixAwkndemetJunHcdy(>EM*v>bKoTi8firdpSvrf<Mvstabiishidentdy,trustedacertificatecanbeissuedtothiskeyaswe1.1.asinformationoftheservice.Thefo1.1.owingstepsshowanexamp1.e：vRoTgeneratesanidentitykeya1.ongwithattestationforthe1.inkagebetweentheIKanditsEK.TheHSMdep1.oyedontheserverusesitssigningkey1.inkedtoitsEKtosignasignature(certificate)fortheservice'sIK.TheserviceConstructionJnstancecanusetheIKandthecertificatetoauthenticateitse1.fduringtrustedchanne1.B.3.3IdentityrevocationForidentityissuedbythemanufacturerandathird-partyCArtherevocationcanbedonebyrevokingth4tooiW>ondingsp(rffckrtei.ForthosedevicesusingTPM1detai1.edstepsofrevocationarementionedB.4Authenticationandkeyestab1.ishmentSecureauthenticationandkeyestab1.ishmentcanbeimp1.ementedbyusingT1.S1.3(6orotherBAjNnatekeyattestaitiionprotocoIsthatensureauthenticationandkeynegotiationsecurity.8.5.1 Genera1.Remoteattestationisanimportantstepinestab1.ishingatrustedconnection.Byremoteattestation,thedeviceandtheservicecanbemutua1.1.yconfirmedto: determinewhetherthecommunicationtargetistrusted,thatis,theavai1.abi1.ityofHSMrRoTandothercredibi1.itysupport; checktheI/Oofthep1.atformapp1.icationprocessandrunningstateintegrity; verifythatthecurrentrunningstateofthep1.atformconformstotheauthenticator'ssecurityrequirement.agreementprotoco1.describedinB.5.The1.attercanbesupportedbytheso1.utionsgiveninB.4.8.5.2 So1.ution1:Binary-basedremoteattestationBinarf-basedremoteattestationisthemostbasicproofmethodofp1.atformintegrity.