ETSI White Paper – Security
ETSI White Paper – Security
ETSI White Paper – Security
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
FOREWORD<br />
The increasingly rapid evolution and growth in the complexity of new systems and<br />
networks, coupled with the sophistication of changing threats and the presence of<br />
intrinsic vulnerabilities, present demanding challenges for maintaining the security of<br />
Information and Communications Technology (ICT) systems and networks. To minimise<br />
exposure to risks, security must be built in from the beginning when designing new<br />
architectures, not added on later as an optional feature.<br />
As a response to such challenges, Information <strong>Security</strong> standards are essential to<br />
ensure interoperability among systems and networks, compliance with legislation and<br />
adequate levels of security. These standards provide the means for protecting the user,<br />
creating a more secure and profitable environment for the industrial sector, from SMEs<br />
to large global companies, and providing benefits for a diverse range of interest groups<br />
that include government organisations, research bodies and universities.<br />
<strong>ETSI</strong> is an independent, non-profit organisation, with over 20 years of experience of<br />
successfully pursuing its mission to produce globally-applicable ICT standards. It has<br />
always maintained a strong focus on security matters.<br />
<strong>ETSI</strong> is committed to the establishment and continuous improvement of effective and<br />
interoperable telecommunications systems for the benefit of the global community.<br />
Addressing security issues in Next Generation Networks, protecting citizens in<br />
emergency scenarios, and combatting global climate change by lowering power<br />
consumption are examples which highlight some of <strong>ETSI</strong>'s commitments. <strong>ETSI</strong><br />
continues to intensify its focus on matters related to security innovation by participating<br />
actively in EU security research and innovation initiatives which aim to provide Europe,<br />
and the rest of the world, with the tools necessary to create a secure environment for the<br />
global citizen.<br />
Standardisation activities carried out within various <strong>ETSI</strong> Technical Committees,<br />
Working Groups, Industry Specification Groups and Partnership Projects cover a broad<br />
spectrum of security issues, of which this <strong>White</strong> <strong>Paper</strong> provides an overview.<br />
Carmine Rizzo, <strong>ETSI</strong> <strong>Security</strong> Standardisation Projects, <strong>ETSI</strong> Secretariat<br />
Charles Brookson, Chairman, <strong>ETSI</strong> OCG <strong>Security</strong><br />
Acknowledgements<br />
I would like to thank the following persons whose contributions have been essential to<br />
this work:<br />
Charles Brookson, for the benefit of his incredibly deep knowledge and<br />
experience in the vast security arena and related <strong>ETSI</strong> work: thanks for verifying<br />
the completeness and accuracy of this document;<br />
Paul Reid for his help with the editorial content;<br />
For their precious and indispensable inputs and contributions, colleagues at the<br />
<strong>ETSI</strong> Secretariat: Andrea Lorelli, Anthony Wiles, Antoinette van Tricht, Bernt<br />
Mattsson, Chantal Bonardi, Dionisio Zumerle (special thanks as co-author of the<br />
first edition of this paper), Igor Minaev, John Meredith, Laurent Velez, Laurent<br />
Vreck, Marlène Forina, Martin Arndt, Nathalie Guinet, Nathalie Kounakoff,<br />
Nathalie Martin, Sebastian Müller, Silvana Castro Viguera, Sonia Compans and<br />
Xavier Piednoir.<br />
3<br />
Carmine Rizzo