November 5, 2020

The Ministry of Economy, Trade and Industry has created an “IoT Security and Safety Framework” that organizes the concept of ensuring the reliability of the connection between physical space and cyberspace in “Society 5.0” and “Connected Industries” realized by IoT and AI. It was formulated.

1. 1. Background / Purpose

On August 2, 1945, the Ministry of Economy, Trade and Industry examined security measures to ensure the reliability of “Layer 2: Connection between physical space and cyber space” under the Industrial Cyber Security Study Group WG1 (WG1). We have set up a “task force” (hereinafter referred to as “second layer TF”) and have been studying how to ensure the reliability of the connection between physical space and cyberspace.

In “Society 5.0” and “Connected Industries”, which are highly integrated cyberspace and physical space, information is accurately converted at the boundary between cyberspace and physical space, that is, the accuracy of transcription function is ensured. Is extremely important.

Security measures for devices / systems that connect physical space and cyberspace, that is, IoT devices / systems, need to be addressed not only based on the diversity of issues related to IoT devices / systems, but also on the diversity of the environment in which they are used. It will be.

Therefore, in the second layer TF, we will focus on the new risks brought about by the new mechanism that connects cyber space and physical space, and present the risk form and the method of typological security and safety measures corresponding to such risks. We have been developing the “Security and Safety Framework” (hereinafter referred to as “IoT-SSF”).

In the examination, the draft of IoT-SSF was announced including the English version, and public comments were made from March 31st to June 24th, 2nd year of Reiwa, and we received a wide range of opinions from home and abroad. The TF, Cross-Sectoral Sub-Working Group (SWG), and WG1 have also been conducting discussions based on public comments and opinions from experts.

This time, IoT-SSF was formulated based on the discussions in WG1, SWG, and Level 2 TF above. By utilizing IoT-SSF, we will categorize devices and systems based on the risks hidden in the devices and systems that connect physical and cyber, grasp the viewpoints of security and safety requirements required for each category, and inter-category. It is possible to compare with. As a result, it is possible to ensure a certain degree of consistency in the viewpoints and contents of security and safety measures required for each device / system that supports new mechanisms / services, even when considered in separate processes. is thinking.

2. Related Documents

3. 3. reference

In charge

Commerce and Information Policy Bureau Cyber Security Section Chief Okuie Person in charge: Irie, Ueda

Phone: 03-3501-1511 (ext. 3964)
03-3501-1253 (direct)
03-3580-6239 (FAX)