Specification/Standard

Security assessment guidelines for IOT-enabled field applications

Release date:2021-09-02 / File number:TAICS TR-0022(E) v1.0

The guidelines formulate information security risk assessments and protection verification procedures for IOT fields, and conduct the information security protection assessments to improve the security protection capability. In order to effectively reveal whether the application fields fulfill the requirements of information security protection, four procedures including Threat Modeling, Vulnerability Testing, Penetration Testing and Impact Analysis for IoT application scenarios are conducted. The guidelines were supported by National Development Council (NDC), R.O.C..

Download

HD Maps data contents and formats standard

Release date:2021-08-26 / File number:TAICS TS-0024(E) v1.0

The scope of this standard is to specify the contents and encoding formats of high-definition maps (HD Maps) for autonomous vehicles, including roads and their facilities, traffic signals, signs, and markings at all levels for decision-making usages. The attributes and codes follow the traffic laws and regulations in Taiwan. This standard is extensible, and is served as an intermediary format between the surveying industries and the autonomous vehicles industries, aiming to develop an open and interoperable sharing model to promote innovative applications in ITS systems and other fields, respectively. It also expands the cross-field integration applications to enhance the technology and services of the overall industry. The standard was supported by Ministry of the Interior (MOI), R.O.C..

Download

Verification and validation guidelines for HD Maps

Release date:2021-07-30 / File number:TAICS TR-0016(E) v1.0:2021

The HD (High definition) mapping quality verification process and product verification requirements set out in the guidelines are based on TAICS TR-0010 “HD Maps operation guidelines” and TAICS TS-0024 “HD maps data contents and formats standard”. In the guidelines, the check items including operation planning, control survey outcomes, and mobile mapping results. The verification items contain data post-processing in order to determine the data quality of point clouds and vector layers, leading to effectively control HD map data quality. According to the guidelines, academic institutions or associations with expertise in surveying and geomatics are taken as verification units, to ensure that the mapping data in the surveying and mapping industry meet the requirements of plane accuracy of 20 cm and three-dimensional accuracy of 30 cm, and to provide mapping data attributes for autonomous vehicles. The guidelines were supported by Ministry of the Interior (MOI), R.O.C..

Download

Infocom security test specification of embedded software on smartphone systems (ESS)

Release date:2021-01-28 / File number:TAICS TS-0030(E) v1.1:2021

The specification of TAICS TS-0030 v1.1 “Infocom security test specification of embedded software on smartphone systems” had been developed based on TAICS TS-0029 v1.0 “Infocom security standard of embedded software on smartphone systems”. The testing issues for each security requirement listed in TAICS TS-0029 v1.0, including testing items, testing environment setup, testing steps, and judgement criteria, will be described in detail. It’s expected the specification can be adopted by smartphone manufacturers, software developers, and testing laboratories for developing their smartphone business, respectively. This specification is supported by National Communications Commission (NCC), R.O.C. and will be the basis for ESS testing and certification.

Download

Infocom security standard of embedded software on smartphone systems (ESS)

Release date:2021-01-28 / File number:TAICS TS-0029(E) v1.0:2021

The standard of TAICS TS-0029 v1.0 “Infocom security standard of embedded software on smartphone systems” had been developed by combining “The testing specifications of embedded software on smartphone systems (智慧型手機系統內建軟體資通安全檢測技術規範)”and global relating standards for smartphones, including smartphone secure development guidelines, mobile security testing guides, and GSMA SGP.25. The scope of this standard covers security issues in following four aspects: (1) application programs layer, (2) communication protocols layer, (3) operating system layer, and (4) hardware layer. This standard is expected to be adopted by smartphone manufacturers, software developers, and testing laboratories for developing their smartphone business, respectively. This standard is supported by National Communications Commission (NCC), R.O.C. and will be the basis for ESS testing and certification.

Download

Intelligent streetlight system security standard- Part 2: Intelligent lighting

Release date:2020-07-27 / File number:TAICS TS-0027-2(E) v1.0

TAICS TS-0027-2(E) “Intelligent streetlight system security standard- Part 2: Intelligent lighting” addresses specific security issues of intelligent lighting in intelligent streetlight systems, and defines necessary security requirements for lighting equipment, lighting control/monitor servers and lighting control gateways, which comply with the seven basic security requirements defined in TAICS TS-0027-1(E): (1) Identification, Authentication and Authorization, (2) Information Confidentiality and Integrity, (3) System Integrity, (4) Software and Firmware Updates, (5) Warnings and Logs, (6) Known Vulnerabilities and (7) Applications Software. This standard shall serve as the basic criteria of cybersecurity for system integrators, equipment suppliers and software developers of their product design and system architecture in reaching the goal of risk management and control. This series of standards are supported by Industrial Development Bureau (IDB) of Ministry of Economic Affairs (MoEA), R.O.C..

Download

Intelligent streetlight system security standard- Part 1: General requirements

Release date:2020-07-27 / File number:TAICS TS-0027-1(E) v1.0

TAICS TS-0027-1(E) “Intelligent streetlight system security standard- Part 1: General requirements” addresses general security issues of intelligent streetlight systems, and defines basic security requirements for the systems including their streetlight gateways and monitoring/control servers. These basic requirements cover seven aspects: (1) Identification, Authentication and Authorization, (2) Information Confidentiality and Integrity, (3) System Integrity, (4) Software and Firmware Updates, (5) Warnings and Logs, (6) Known Vulnerabilities and (7) Applications Software. This standard shall serve as the basic criteria of cybersecurity for system integrators, equipment suppliers and software developers of their product design and system architecture in reaching the goal of risk management and control. This series of standards are supported by Industrial Development Bureau (IDB) of Ministry of Economic Affairs (MoEA), R.O.C..

Download

Cybersecurity Test Specification for Video Surveillance System-Part 4: Network Attached Storage

Release date:2019-05-30 / File number:TAICS TS-0015-4(E) v1.0

TAICS TS-0015-4(E) “Cybersecurity Test Specification for Video Surveillance System-Part 4: Network Attached Storage” describes specific testing methods and criteria to verify whether network attached storage used in video surveillance systems comply with the following six categories of security criteria: (1) physical security, (2) system security, (3) communication security, (4) authentication of identities and authorization mechanism security, (5) privacy protection and (6) application security specified in TAICS TS-0014-4(E). This series of test specifications are supported by National Communications Commission (NCC) and Industrial Development Bureau (IDB) of Ministry of Economic Affairs (MoEA), R.O.C..

Download

Cybersecurity Test Specification for Video Surveillance System-Part 3: Video Recorder

Release date:2019-05-30 / File number:TAICS TS-0015-3(E) v1.0

TAICS TS-0015-3(E) “Cybersecurity Test Specification for Video Surveillance System-Part 3: Video Recorder” describes specific testing methods and criteria to verify whether video recorders used in video surveillance systems comply with the following six categories of security criteria: (1) physical security, (2) system security, (3) communication security, (4) authentication of identities and authorization mechanism security, (5) privacy protection and (6) application security specified in TAICS TS-0014-3(E). This series of test specifications are supported by National Communications Commission (NCC) and Industrial Development Bureau (IDB) of Ministry of Economic Affairs (MoEA), R.O.C..

Download

Cybersecurity Test Specification for Video Surveillance System-Part 2: IP Camera

Release date:2019-05-30 / File number:TAICS TS-0015-2(E) v2.0

TAICS TS-0015-2(E) “Cybersecurity Test Specification for Video Surveillance System-Part 2: IP Camera” describes specific testing methods and criteria to verify whether IP cameras used in video surveillance systems comply with the following five categories of security criteria: (1) physical security, (2) system security, (3) communication security, (4) authentication of identities and authorization mechanism security and (5) privacy protection specified in TAICS TS-0014-2(E). This series of test specifications are supported by National Communications Commission (NCC) and Industrial Development Bureau (IDB) of Ministry of Economic Affairs (MoEA), R.O.C..

Download
  • total
  • 2
  • pages (
  • 15
  • items)