Cybersecurity Gateway

Standards development bodies have a vital role to play in addressing security vulnerabilities in protocols. As well as many key security Recommendations, ITU has developed overview security requirements, security guidelines for protocol authors, security specifications for IP-based systems it defines (NGN, H.323, IPCableCom, etc), guidance on how to identify cyber threats and countermeasures to mitigate risks.

ITU also provides the international platform for the development of the protocols that protect current and Next-Generation Networks (NGN). ITU’s work addresses security aspects in NGN architecture, quality of service, network management, mobility, billing and payment for NGN. ITU’s work on secure communication services reviews enhancements to security specifications for mobile end-to-end data communications and considers security requirements for web services and application protocols.

In the move to Internet Protocol (IP)-based services, ITU’s H.235.x series Recommendations on “H.323 Security” defines the security infrastructure and services (including authentication and privacy) for use by the H.300-Series IP multimedia systems (such as VoIP and videoconferencing) in point-to-point and multipoint applications.

The H.235.x standards provide privacy to service providers and enterprises, whilst ensuring interoperability of multimedia products. The identity of users communicating through IP media is correctly authenticated and authorized using H.235.x, protecting their communications against different critical security threats.

Real-time multimedia encryption adds a further layer of security, guarding against call interception. ITU’s J.170 “IPCablecom Security Specification” defines security requirements for IPCablecom architecture enabling cable TV operators to deliver secure two-way capability in the provision of a variety of IP services, including VoIP.

ITU’s work on security covers a broad range of activities in security from network attacks, theft or denial of service, theft of identity, eavesdropping, telebiometrics for authentication, security for emergency telecommunications and telecommunication network security requirements.

ITU’s X.805 Recommendation defines the security architecture for systems providing end-to-end communications that can provide end-to-end network security. This Recommendation allows operators to pinpoint vulnerable points in a network and address them. ITU’s security framework extends this with guidelines on protection against cyber attacks.

The results of ITU’s work are evident: one of the most important security standards in use today is X.509, an ITU-developed Recommendation for electronic authentication over public networks. X.509 is the definitive reference for public-key certificates and designing applications related to public key infrastructure.

The elements defined within X.509 are widely used in securing connections between web-browsers and servers to agreeing the encryption key that protects the information exchanged and providing the digital signatures that enable e-commerce transactions.

Public key certificates are also used to authenticate and protect e-mail – an electronic document with a digital certificate supported by an X.509 certificate is widely recognized as the most credible form of electronic document.

ITU-T X.1205 “Overview of Cybersecurity” provides a definition of cybersecurity and a taxonomy of security threats. It discusses the nature of the cybersecurity environment and risks, possible network protection strategies, secure communications techniques and network survivability (even under attack).

Overview

Cybersecurity Gateway

Site map