Plan of Action TestFest #2 PKI-Security v0 · The second TESTFEST will work on Security/PKI and...
Transcript of Plan of Action TestFest #2 PKI-Security v0 · The second TESTFEST will work on Security/PKI and...
Plan of Action TestFest #2 PKI-Security v0.4
Grant Agreement No: INEA/CEF/TRAN/M2015/1143833 Action No: 2015-EU-TM-0159-S
Plan of Action Testfest #2 PKI-Security
draft 2 © InterCor Consortium
Control sheet
Version history
Version Date Main author Summary of
changes
0.1 Nov 30, 2017 Hacène Fouchal Initial draft
0.2 H. Labiod 17/12/17
0.4 Jan 26, 2018 Hacène Fouchal
Adaptation of
figures, references
to additional
documents
Prepared
Reviewed
Authorised
Circulation
Recipient Date of submission
INEA
InterCor consortium
Authors (full list):
Plan of Action Testfest #2 PKI-Security
draft 3 © InterCor Consortium
Project Coordinator
Ronald Adams
Rijkswaterstaat
Office address: Toekanweg 7, 2035 LC, Haarlem (NL)
Postal address: Postbus 2232, 3500 GE, Utrecht (NL)
Mobile: +31 6 518 480 77
Email: [email protected]
Legal Disclaimer
The information in this document is provided “as is”, and no guarantee or warranty is given
that the information is fit for any particular purpose. The content of this document reflects
solely the views of its authors.
The InterCor consortium members, jointly or individually, shall have no liability for damages
of any kind including, without limitation, direct, special, indirect, or consequential damages
that may result from the use of these materials.
Neither the European Commission nor the Innovation and Networks Executive Agency
(INEA) are liable for any use that may be made of the information contained therein.
Plan of Action Testfest #2 PKI-Security
draft 4 © InterCor Consortium
Plan of Action Testfest #2 PKI-Security
draft 5 © InterCor Consortium
TABLE OF CONTENTS
Plan of Action Testfest #2 PKI-Security
draft 6 © InterCor Consortium
LIST OF FIGURES
Plan of Action Testfest #2 PKI-Security
draft 7 © InterCor Consortium
LIST OF TABLES
Plan of Action Testfest #2 PKI-Security
draft 8 © InterCor Consortium
Terms and abbreviations
To be updated
Term / Abbreviation Definition
AC Advisory Committee
AL Activity Leader
ASR Action Status Report
CMT Core Management Team
EC European Commission
GA Grant Agreement
INEA Innovation and Networks Executive Agency
IPR Intellectual Property Right
CMT Core Management Team
ML Milestone Leader
MS Member State
PC Project Coordinator
TIC Technical & Interoperability Coordinator
Plan of Action Testfest #2 PKI-Security
draft 9 © InterCor Consortium
1 Introduction
This document is the plan of action for the InterCor PKI-Security TESTFEST, to be held in
April 23rd – 26th, 2018.
The aim of this document is to inform TESTFEST joint project team members as well as
participants1 of the TESTFEST about the TESTFEST scope and objectives, the site, the test
scenarios, the time schedule and other relevant items.
Université de Reims Champagne-Ardenne has drafted this document in cooperation with
SANEF, Telecom-ParisTech and IDNomic. The TESTEFEST#2team is composed of these 4
entities.
The scope of this document is primarily the event itself. For information on the project
InterCor, in which the UK, France, Belgium (Flanders) and the Netherlands cooperate, refer
to [2]
Figure 1 illustrates the most relevant parts of the InterCor-project-organization, under
responsibility of RWS, for the TESTFEST. In InterCor, the TESTFESTs are part of Activity 2,
Pilot Preparation. Totally there are four TESTFESTs in this project. This document focuses
on the second TESTFEST, which concerns PKI-Security scenarios and which is hosted by
the Université de Reims Champagne-Ardenne (partner of the InterCor project). Within
Activity 2 of InterCor, sub-activity 2.1c PKI Specification works on the specifications for PKI
to be used within the InterCor project. These specifications will be the base for the
TESTFEST and will be shared with all (registered) participants of this event2. Sub-activity 2.2
of InterCor focuses on carrying out the TESTFEST itself and does the reporting on the tests.
The TESTEFEST#2 team prepares the test-site for this event. Under the responsibility of the
test-site manager on highways A4-A344 around Reims, a number of services will be active,
based on the common specifications of services and PKI defined in InterCor.
2 Registered public and private organisations (road operators, systems suppliers, services providers, vehicle manufacturers, etc.) that take part i.e. by bringing their own on-board units (suitable for the services) and vehicles
Plan of Action Testfest #2 PKI-Security
draft 10 © InterCor Consortium
In this context also C-ROADS should be mentioned. The C-ROADS Platform is a EU
member state driven platform, with the objective to harmonise C-ITS deployments across
Europe. In this respect several implementation projects on completely different levels are
cooperating and contributing to the C-Roads Platform, with their results regarding tests,
evaluations and deployment. All four countries in the InterCor project participate in C-ROADS
and contribute to this platform, in order to reach further EU-harmonisation
1.1 Cooperation with ESTI Plugtest 2018 and Scoop@F Cross-Test
The ETSI Plugtest dedicated to C-ITS security may (agreement pending) be held in the
same period in Reims as well the international Scoop@F CrossTest involving four countries
of the scoop project (FR, AU, ES, PL).
The ETSI support on test expertise will be of high interest for the InterCor and the scoop
projects. Common scenarios could be designed in order to optimise these 3 events.
1.2 InterCor Contractual References
InterCor (Interoperable Corridors) links the C-ITS corridor initiatives of the Netherlands
(among which the C-ITS Corridor Netherlands-Germany-Austria), the French (among which
the one defined in SCOOP@F) and extends to the United Kingdom and Belgium C-ITS
initiatives.
InterCor is an action co-financed by the European Union under the Grant Agreement number
INEA/CEF/TRAN/M2015/1143833. The Project duration is 36 months, effective from the 1st
of September 2016 until the 31st of August 2019. It is a contract with the Innovation and
Networks Executive Agency (INEA), under the powers delegated by the European
Commission.
Communication details of the Agency:
Any communication addressed to the Agency by post or e-mail shall be sent to the following
address:
Innovation and Networks Executive Agency (INEA)
Department C – Connecting Europe Facility (CEF)
Plan of Action Testfest #2 PKI-Security
draft 11 © InterCor Consortium
Unit C3 Transport
B - 1049 Brussels
Fax: +32 (0)2 297 37 27
E-mail addresses: General communication: [email protected]
For submission of requests for payment, reports (except ASRs) and financial statements:
Any communication addressed to the Agency by registered mail, courier service or hand-
delivery shall be sent to the following address:
Innovation and Networks Executive Agency (INEA)
Avenue du Bourget, 1
B-1140 Brussels (Evere)
Belgium
TEN-Tec shall be accessed via the following URL:
https://webgate.ec.europa.eu/tentec/
All communication with the INEA or the European Commission shall be done via the Project
Coordinator, Mr. Ronald Adams.
Plan of Action Testfest #2 PKI-Security
draft 12 © InterCor Consortium
2 TESTFEST#2 Security-PKI description 2.1 InterCor Overview
[1] [2] Being a part of Intelligent Transport Systems, cooperative ITS (C-ITS or cooperative
systems) encompass a group of technologies and applications that allow effective data
exchange through wireless communication technologies between components and actors of
the transport system, very often between vehicles (vehicle-to-vehicle or V2V) or between
vehicles and infrastructure (vehicle-to-infrastructure or V2I).
The deployment of C-ITS is an evolutionary process that will start with the less complex use
cases. These are referred to as “Day-1-services”, encompassing messages about traffic
jams, hazardous locations, road works and slow or stationary vehicles, as well as weather
information and speed advises to harmonise traffic. Using probe vehicle and infrastructure
related data, all C-ITS services shall be transmitted directly into the vehicles in a way that
allows users to get informed but not distracted.
InterCor Action aims to streamline C-ITS implementation in four EU member states (MS)
linking the different national initiatives towards a harmonized strategic rollout and the use of
common specifications. C-ITS pilot sites able to send data through ITS-G5 and/or cellular
networks will be installed in the Netherlands, Belgium (Flanders), UK and France, for the
operation and evaluation of C-ITS services.
InterCor initially focuses on the deployment of “Day-1” services as recommended by EC “C-
ITS platform” such as Road Works Warning. Green Light Optimized Speed Advisory, In
Vehicle Signage and Probe Vehicle Data. In the second phase, it will also test other logistic
services such as Multimodal cargo optimization, Truck Parking and Tunnel logistics.
The InterCor Action is a study project with three main pilot activities:
• Pilot Roll out Preparation • Pilot Operations • Pilot Evaluation.
InterCor will commence with activity 2, the pilot preparations by developing a set of common
specifications for ITS-G5, Hybrid communication, PKI and C-ITS services on logistics and
traffic management and validating them in interoperability testing events (TESTFESTs) in the
four member states with the overall aim to deliver roll out guidelines for future deployment. In
the third activity, the project coordinates the pilot operations in the four member states by
providing a common pilot framework and rolling out the set of common specifications. In the
Plan of Action Testfest #2 PKI-Security
draft 13 © InterCor Consortium
fourth activity, called Pilots Evaluation, the study will provide a common evaluation
framework for all member states and deliver a technical evaluation, impact assessment and
user acceptance for the pilots in the four member states.
The first InterCor TESTFEST has worked on ETSI-G5 and has been organized, under
responsibility of RWS, by member state: The Netherlands.
The second TESTFEST will work on Security/PKI and will be organized, under responsibility
of Université de Reims Champagne-Ardenne, by member state France. Even the TESTFEST
is part of subactivity 2.2, other InterCor (sub)-activities are also involved and play an
important role, in particular subactivity 2.1c (PKI specifications).
The following table summarizes the functionalities to be tested during TESTFEST PKI
security.
Functionality The Netherlands France Belgium UK
Message signature/verification x x x
Use of Pseudonym certifcates x x x
Trust chain verification x x x
Table: Security-PKI functionalities
2.2 Objectives of TESTFEST #2
The objective of this TESTFEST is to validate the interopereability of the PKI specifications
defined within the InterCor project (subactivity 2.1c).
2.2.1 Main descriptions
This set of specifications needs to be validated against its main goal being to ensure the roll
out of internationally interoperable security and PKI functions. The validation is done, as
usual for functionalities based on specifications, by testing the interoperability of user devices
(Vehicle ITS stations) from the four Member states at one test location. This TESTFEST is a
second of a set of 4 TESTFEST interoperability events that have to be carried out, to assess
the quality of the common set of specifications and consistency with the resulting ITS station
and service application implementations.
Plan of Action Testfest #2 PKI-Security
draft 14 © InterCor Consortium
The focus is on service interoperability rather than on product interoperability, as OBUs from
several vendors from different countries will interoperate with a fixed set of RSUs at a test
site in France. Each TESTFEST will provide a report, describing the test setup and
summarising the outcome of this TESTFEST event.
Each TESTFEST event will be used as an indicator to assess the completion of the set of
specification at each stage of the activity 2.1.
The TESTEFEST#2 Security/PKI s expected to validate the common certificated policy (CP).
2.3 Preconditions
• Participation is non-exclusive for InterCor members. Invitations will be sent to all
interested actors.
• Participants take part in the TESTFEST at their own expense.
• Because of time and budget constraints, other use cases than described in this
document, will not be included for testing in this TESTFEST.
• Participants shall allow the use of all data transmitted for research and evaluation
purposes by the InterCor and the Scoop@F projects [5].
• All information that will be made available to the participants is public [5].
• During the tests on the highway, participants do not have a special status. They are
normal road-users, who have to obey all traffic rules [5].
• SANEF is responsible for maintaining safety on-site. All participants are to follow
generic French as well as specific site safety instructions [5].
• It is expected, that participants in the TESTFEST share their findings during the tests
(only those related to the common specifications). Those findings – made anonymous
on request - can be used for the reporting on the TESTFEST.
• The organisation of the TESTFEST cannot take any responsibility, if tests cannot be
carried out according to the planning, because of e.g. unexpected events on the
highway or unexpected failure of equipment.
• ITS-Stations are assumed to be compliant to standards, e.g. be able to pass the ETSI
plug tests. Compliancy is the responsibility of the participant; there will be no entry
tests.
• Participants should preferably bring their own vehicle. If they cannot do so, they
should bring OBUs with the complete periphery (cables, power supplies, adaptors,
antennas etc.).
Plan of Action Testfest #2 PKI-Security
draft 15 © InterCor Consortium
2.4 TestFest Participants
As of Jan 15th, 2018, the following participants have registered to take part in the TESTFEST:
Organization
Member State # OBUs # Vehicles
URCA France 2
SANEF France 1
DIRIF France 1
PSA France 1
Renault France 1
DIRO France 1
2.5 Side programme participants
As of of Jan 15th, 2018, the following participants have registered to take part in the Side
programme:
Name Organization (Member State)
Houda Labiod TPT, FR
Mounira Msahli Idnomic, FR
Marie Christine Esposito DIT, FR
Guy Fremont SANEF, FR
Atika Rivenq U. Valenciennes, FR
Hasnaa Annis IFSTAAR, FR
Plan of Action Testfest #2 PKI-Security
draft 16 © InterCor Consortium
3 Site
3.1 Description of the test site
The test site is located at the campus Moulin de la Housse, Université de Reims
Champagne-Ardenne, Rue des Crayères, 51100 Reims as shown in the Figure 2 below.
Building 17 will host the lab test as well as offices for the Testfest.
There is a room for each country. Another large room will be dedicated to general
presentations. Another large room for breaks and networking is available.
A RSU will be available on the building and will help participants during lab tests setup.
Figure 2 : Testfest headquater
3.2 Description of the Field test
The field test is composed of a parking having a distance of 400m that could be used to
setup some tests. The RSU of the building will deliver secure messages and the vehicles
could check the reception and the decoding of these messages.
3.3 Open road test trajectory
The trajectory to be followed by participant will start from the Campus and drives to reach the
highway at junction “Saint Rémi” on E46 highway. Drive direction Paris till “Gare de péage
Thillois” (Automatic Toll system). Go through the toll system and choose the left side
Plan of Action Testfest #2 PKI-Security
draft 17 © InterCor Consortium
direction “Strasbourg”. The first RSU is located nearby. Drive 11 Km along the A4 highway
following the direction Strasbourg. After 5 Km (the precise location will be indicated) another
RSU is found which will deliver some other DENMs. After 6km leave at junction (A4-A344),
go through the toll system (the third RSU is located nearby) and drive on the A344 (E46) till
junction “Saint-Rémi”. Go back to the Campus by following “Université”.
See the main Figure on Testefest-Reims-trajectory.pdf document on the project place for
more details. The document TESFEST Reims.kmz describes the location of involved RSUs
on GeogleEarth.
3.4 Validation of the test side
The lab test part has been used since 2 years within the scoop project. The test side is ready
for lab test and site test.
The road field pre test will held with local French partners on March 15th and 16th, 2018.
3.5 Project support team
This list will later on be customized for the participant’s version of the plan of action including only names of people relevant for the participants. Names already in bold will be (probably permanently) on site because of their specific responsibility.
Plan of Action Testfest #2 PKI-Security
draft 18 © InterCor Consortium
Name
Organization Role Phone number E-mail
Hacene Fouchal URCA TESTFEST leader ++33 6 12 58 02 53 [email protected]
Houda Labiod TPT TESTFEST leader Mounira Msalhi Idnonmi TESTFEST leader Ronald Adams
InterCor Projectmanager
InterCor
+31 6 51848077 [email protected]
Fred Verweij InterCor Sr. advisor
+31 6 15479061 [email protected]
Giacomo Somma
Ertico/InterCor TESTFEST leader [email protected]
Peter Schmitting
Ertico/InterCor TESTFEST leader +33 6 08515187 [email protected]
Peter Paul
Schackmann
InterCor InterCor Activity
leader 2
+31 6 51068427 [email protected]
Bart Netten
InterCor Leader evaluation
(NL)
Tommy van Dijk
Compass Projectmanager +31 6 22733099 [email protected]
Kees van Walraven Swarco Engineer CU [email protected]
3.6 Test Center facilities
The center is located in Campus Moulin de la Housse at Building 17.
Plan of Action Testfest #2 PKI-Security
draft 19 © InterCor Consortium
3.7 Internet access
WiFi access is available in the building.
3.8 Evaluation
See document PK-security TESTFEST Evaluation.pdf provided by activity 4.0. Test scenarios
Plan of Action Testfest #2 PKI-Security
draft 20 © InterCor Consortium
4 Introduction and general approach
The main objective of the tests is to verify messages authentication and validate the trust
chain as illustrated in Figure 1.
Figure 1: Trust chain validation
We consider signed messages exchanges with preloaded ATs and preloaded common
InterCor_CTL and InterCor_CRL.
4.1 Test configuration
In TESTFEST#2 PKI-Security, the direct interaction between ITS stations and the PKIs is not
considered. The needed certificates (ATs) as well as the InterCor_CRL and the
InterCor_CTL are preloaded in each ITS station and are ready to be used.
Initial registration of ITS stations (vehicles) and ITS stations (RSU) are also done.
Construction and upload of the InterCor_CTL and InterCor_CRL into the ITS station will be
done manually.
4.1.1 Certificate formats
Certificate data structure formats for TESTFEST#2 partners are as follows:
NL FR
ETSI TS 103097
Security header and
certificate formats
Version: 1.2.1 Version: 1.2.1
4.1.2 Common InterCor_CTL and InterCor_CRL formats
The adopted formats are as follows:
Plan of Action Testfest #2 PKI-Security
draft 21 © InterCor Consortium
NL FR
CRL ASN.1 notation
definition
SCOOP_2446.pdf
See section 3.2.6 in [1]
SCOOP_2446.pdf
see section 3.2.6 in [1]
CTL ASN.1 notation definition
SCOOP_2446.pdf
See section 3.2.7 in [1]
SCOOP_2446.pdf
see section 3.2.7 in [1]
Plan of Action Testfest #2 PKI-Security
draft 22 © InterCor Consortium
5 General information
5.1 Time schedule
Refer to Time schedule for PKI-Security Testfest2.pdf available on project plan.
5.2 Visitor information
The test center is 3 km away from the city center. Hotels are available in the city center.
5.3 Access and route description
The test center can be accessed either by car or by public transport. The test centre is
located at Building 17, Campus Moulin de la Housse, Reims.
Coming
from Paris
• Follow the A344 motorway (direction: Strasbourg). • Take the exit 16
Coming
from
Strasbourg
• Follow the A344 motorway (direction: Paris). • Take the exit 16
Public
transport
• From Reims central train station, take city bus 2 (direction Moulin de la Housse).
• Exit at bus stop Moulin de la Housse. Walk for 5 minutes:
Taxi • From Reims central train station, a metered cab to the test centre will charge you about € 15 (7 minutes ride)
5.4 Airports
Nearby airports serving international flights include:
Airport
Road distance to test centre
Charles de Gaulle Airport 120 km Orly Airport 140 km Vatry Airport 60 km
Plan of Action Testfest #2 PKI-Security
draft 23 © InterCor Consortium
5.5 Hotels
Reims city center hotels are recommended.
5.6 Catering
During the TESTFEST, all TESTFEST participants will be provided with coffee, tea and water and refreshments. Lunch will be served daily from 12:30 till 13:00h.
From 15:00h a selection of cold drinks will be available. There will be no alcoholic beverages.
5.7 Amenities
For participants only the following amenities will be available:
Amenity
Description
Internet access At the test site, Broadband WiFi wireless access will be available trough:
Hotspot: TESTFEST-2
Password: testfest-urca2 Project share The TESTFEST information share can be found at: