>> Study Group 17
: Security, languages and telecommunication software
Question 9/17 - Secure Communication Services
(Continuation of Question L/17)
The telecommunications industry has been experiencing an exponential growth in areas such as mobile, web service and TTP (Trusted Third Party) services. Specifically, security of mobile communications and web services is crucial for the further development of the industry. Secure application protocol plays a very critical role in secure communication service. Standardization of the best comprehensive security solutions is vital for the industry that operates in a multi-vendor international environment. Due to some specific characteristics of the mobile communications (e.g. over the air transmission, limited computing power and memory size of the small mobile devices), providing security is an especially challenging task that deserves special attention and study. Furthermore, it is also required to study and develop other types of secure application services such as time stamping services, secure notary services, and PKI application services, etc. Web service security technologies such as security assertion and access control assertion become very critical in communication network.
Existing Recommendations: X.1121, X.1122.
a. How should secure communication services be identified and defined in mobile communication or web services?
b. How should threats behind communications services be identified and handled?
c. What are the security technologies for supporting secure communication services?
d. How should secure interconnectivity between communication services be kept and maintained?
e. What security techniques are needed for secure communication services?
f. What security techniques or protocol are needed for emerging secure web services?
g. What secure application protocols should be applied for secure communication services?
h. What are the global security solutions for secure communication services and their applications?
In collaboration with other Standards Development Organizations and ITU-T Study Groups, produce a comprehensive set of Recommendation for providing comprehensive security solutions for mobile telecommunications, secure communication services, and secure web services.
Recommendations: X.800 series, and others related to Security
Questions: 2/17, 4/17, 5/17, 6/17, 7/17, 8/17 and 10/17
Study Groups: ITU-T SGs 2, 4, 9, 11, 13, 16, 19; ITU-R
Standardization bodies: ISO/IEC JTC 1/SC 27; IETF; ATIS; ETSI; OASIS; W3C
Other bodies: Open Mobile Alliance (OMA); Liberty Alliance Project; 3GPP; 3GPP2