Security Document for Smart Parking Gate based on Common Criteria Framework

This research used Common Criteria Framework to design more complete security requirements than the previous research for smart parking gate. Common Evaluation Methodology (CEM) mentions that Common Criteria Framework must use ISO 15408. This research used ISO 15408 as a guideline for analyzing, designing, and documenting the system security requirements in a more complete and comprehensive smart parking gate. The initial stage of Common Criteria Framework is to analyze the threats that might occur on the system. This research refers to the threat tree analysis in ISO 15446 to obtain a list of threats that may occur in the system. Based on the threat tree analysis, there were 6 threats to the system built. The next step is mapping the threats to security objectives and obtaining 7 Security Objectives (SO). At the end of this study, the functional requirement of security for the system referring to the references obtained in the previous stage were analyzed. Therefore, 17 Security Functional Requirements (SFR) were obtained. Those 17 SFR can be used as references in developing a system on the smart parking gate to ward off the threats that have been identified initially.

[1]  S. Takahashi,et al.  A 128 kb FeRAM macro for a contact/contactless smart card microcontroller , 2000, 2000 IEEE International Solid-State Circuits Conference. Digest of Technical Papers (Cat. No.00CH37056).

[2]  Sattar J. Aboud,et al.  Cryptanalysis of password authentication system , 2014, 2014 6th International Conference on Computer Science and Information Technology (CSIT).

[3]  Xiaodong Lin,et al.  An Intelligent Secure and Privacy-Preserving Parking Scheme Through Vehicular Communications , 2010, IEEE Transactions on Vehicular Technology.

[4]  Rahmat Yasirandi,et al.  Security Protection Profile on Smart Card System Using ISO 15408 Case Study: Indonesia Health Insurance Agency , 2018, 2018 6th International Conference on Information and Communication Technology (ICoICT).

[5]  Vasant N. Bhonge,et al.  Wireless Sensor Network and RFID for Smart Parking System , 2013 .

[6]  Georgios K. Ouzounis,et al.  Smart cities of the future , 2012, The European Physical Journal Special Topics.

[7]  Chanboon Sathitwiriyawong,et al.  Privacy-preserving offline mobile payment protocol based on NFC , 2016, 2016 International Computer Science and Engineering Conference (ICSEC).

[8]  Marco Zennaro,et al.  On the Design of Smart Parking Networks in the Smart Cities: An Optimal Sensor Placement Model , 2015, Sensors.

[9]  Djamel Djenouri,et al.  Car park management with networked wireless sensors and active RFID , 2015, 2015 IEEE International Conference on Electro/Information Technology (EIT).

[10]  Bala Srinivasan,et al.  On the commonality of iris biometrics , 2011, MoMM '11.

[11]  Yong-Sung Jeon,et al.  Design of an LPWAN communication module based on secure element for smart parking application , 2018, 2018 IEEE International Conference on Consumer Electronics (ICCE).

[12]  M. Hossein Ahmadzadegan,et al.  Investigating NFC technology from the perspective of security, analysis of attacks and existing risk , 2015, 2015 2nd International Conference on Knowledge-Based Engineering and Innovation (KBEI).

[13]  Jin Kwak,et al.  Countermeasure of NFC relay attack with jamming , 2015, 2015 12th International Conference & Expo on Emerging Technologies for a Smarter World (CEWIT).

[14]  Samy El-Tawab,et al.  Secure Smart Parking at James Madison University via the Cloud Environment (SPACE) , 2016, 2016 IEEE Systems and Information Engineering Design Symposium (SIEDS).

[15]  Christof Rath Usable Privacy-Aware Logging for Unstructured Log Entries , 2016, 2016 11th International Conference on Availability, Reliability and Security (ARES).

[16]  R.C.-W. Phan,et al.  On the security & design of MyKad , 2003, 9th Asia-Pacific Conference on Communications (IEEE Cat. No.03EX732).

[17]  Debra S. Herrmann,et al.  Using the Common Criteria for IT Security Evaluation , 2002 .

[18]  Kamal Jambi,et al.  A novel and secure smart parking management system (SPMS) based on integration of WSN, RFID, and IoT , 2018, 2018 15th Learning and Technology Conference (L&T).

[19]  Mohsine Eleuldj,et al.  Vulnerabilities and storage security in cloud computing , 2015, 2015 International Conference on Cloud Technologies and Applications (CloudTech).

[20]  Eftychios Protopapadakis,et al.  Smart parking solutions for urban areas , 2013, 2013 IEEE 14th International Symposium on "A World of Wireless, Mobile and Multimedia Networks" (WoWMoM).

[21]  Yadnesh Joshi,et al.  Smart parking management system using RFID and OCR , 2015, 2015 International Conference on Energy Systems and Applications.

[22]  Haytham Elmiligi,et al.  NFC security analysis and vulnerabilities in healthcare applications , 2013, 2013 IEEE Pacific Rim Conference on Communications, Computers and Signal Processing (PACRIM).

[23]  Naveed Ashraf Chattha NFC — Vulnerabilities and defense , 2014, 2014 Conference on Information Assurance and Cyber Security (CIACS).

[24]  Kuldip Singh,et al.  An improvement of Wang et al.'s authentication scheme using smart cards , 2010, 2010 National Conference On Communications (NCC).

[25]  Shariq Haseeb,et al.  Rapid development of smart parking system with cloud-based platforms , 2014, The 5th International Conference on Information and Communication Technology for The Muslim World (ICT4M).

[26]  M.K. Khan,et al.  An efficient and secure remote mutual authentication scheme with smart cards , 2008, 2008 International Symposium on Biometrics and Security Technologies.

[27]  Raksha,et al.  SMART PARKING SYSTEM-A SURVEY , 2016 .