Telecommunications and Internet converged Services and Protocols for Advanced Networking (TISPAN); TISPAN NGN Security (NGN_SEC); Threat@ Vulnerability and Risk Analysis (V3.1.1)
The present document presents the results of the Threat Vulnerability Risk Analysis (TVRA) for the NGN. The present document follows the method and proforma for carrying out a TVRA defined in TS 102 165-1 [i.4] and incorporates material of the NGN threat and risk analysis herein. The present document identifies security-relevant interfaces in the NGN@ identifies security-relevant scenarios for use in the NGN@ analyses NGN in terms of security threats and risks by performing a security threat and risk analysis@ and classifies the identified vulnerabilities and the associated risk presented to the NGN. This threat and risk analysis makes a number of assumptions that are believed to hold for typical deployment scenarios of the NGN. NOTE 1: Depending on the actual instantiation of the NGN some of the assumptions declared in the present document may not fully hold and this may alter the associated risks. NOTE 2: Whilst the present document is a technical report it identifies requirements for future work. In all cases these requirements are considered indicative pending their ratification in formal ETSI Technical Specifications within the TISPAN Work Programme.