HOME   Cart(0)   Quotation   About-Us Policy PDFs Standard-List
www.ChineseStandard.net Database: 189759 (12 Oct 2025)

GB/T 40855-2021 PDF English

US$245.00 · In stock · Download in 9 seconds
GB/T 40855-2021: Technical requirements and test methods for cybersecurity of remote service and management system for electric vehicles
Delivery: 9 seconds. True-PDF full-copy in English & invoice will be downloaded + auto-delivered via email. See step-by-step procedure
Status: Valid
Standard IDContents [version]USDSTEP2[PDF] deliveryName of Chinese StandardStatus
GB/T 40855-2021English245 Add to Cart 0-9 seconds. Auto-delivery Technical requirements and test methods for cybersecurity of remote service and management system for electric vehicles Valid

Excerpted PDFs (Download full copy in 9 seconds upon purchase)

PDF Preview: GB/T 40855-2021
      

Similar standards

GB/T 40857   GB/T 40861   GB/T 40856   

GB/T 40855-2021: Technical requirements and test methods for cybersecurity of remote service and management system for electric vehicles


---This is an excerpt. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.), auto-downloaded/delivered in 9 seconds, can be purchased online: https://www.ChineseStandard.net/PDF.aspx/GBT40855-2021
GB NATIONAL STANDARD OF THE PEOPLE’S REPUBLIC OF CHINA ICS 43.020 CCS T 40 Technical requirements and test methods for cybersecurity of remote service and management system for electric vehicles Issued on. OCTOBER 11, 2021 Implemented on. MAY 01, 2022 Issued by. State Administration for Market Regulation; Standardization Administration of the People’s Republic of China.

Table of Contents

Foreword... 3 1 Scope... 4 2 Normative references... 4 3 Terms and definitions... 4 4 Abbreviations... 6 5 Information security requirements... 6 5.1 Overall structure diagram... 6 5.2 Security requirements for on-board terminal... 7 5.3 Security requirements for communication between platforms... 9 5.4 Security requirements for communication between on-board terminal and platform... 11 5.5 Platform security requirements... 11 6 Test method... 11 6.1 Overview... 11 6.2 Requirements for on-board terminal information security test samples... 12 6.3 On-board terminal information security test environment... 12 6.4 On-board terminal information security test... 13 6.5 Communication security test between platforms... 18 6.6 Communication security test between on-board terminal and platform... 19

1 Scope

This document specifies the requirements and test methods for cybersecurity of remote service and management system for electric vehicles. This document applies to data communication between the on-board terminals of battery electric vehicles, plug-in hybrid electric vehicles and fuel-cell electric vehicles, vehicle enterprise service and management platforms and public service and management platforms.

2 Normative references

The contents of the following documents constitute the indispensable clauses of this document through normative references in the text. For dated references, only the version corresponding to that date is applicable to this document; for undated references, the latest version (including all amendments) is applicable to this document. GB/T 19596, Terminology of electric vehicles GB/T 32960.1-2016, Technical specifications of remote service and management system for electric vehicles - Part 1.General principle GB/T 32960.3-2016, Technical specifications of remote service and management system for electric vehicles - Part 3.Communication protocol and data format

3 Terms and definitions

Terms and definitions determined by GB/T 19596, GB/T 32960.1-2016, GB/T 32960.3-2016, and the following ones are applicable to this document. 3.1 Remote service and management system for electric vehicles A system for collecting, processing and managing electric vehicle information, and providing information services for networked users. It is composed of a public service and management platform, an enterprise service and management platform and an on-board terminal. 3.2 Public service and management platform A platform, which is established by the state, local government or its designated agency, for data collection and unified management of electric vehicles within the jurisdiction. 3.3 Enterprise service and management platform A platform, which is established by the vehicle companies themselves, or by a third-party technical unit on a commission basis, to manage electric vehicles and users within the service range, and to provide safe operation services and management. 3.4 On-board terminal A device or system, which is installed on the motor vehicle to collect and save the key state parameters of the vehicle and system components, and to send it to the platform. 3.5 Client platform When data is exchanged between platforms, it serves as a remote service and management platform for the sender of vehicle data. 3.6 Server platform When data is exchanged between platforms, it serves as a remote service and management platform for the receiver of vehicle data.

4 Abbreviations

The following abbreviations apply to this document. AES. Advanced Encryption Standard IP. Internet Protocol JTAG. Joint Test Action Group LTE. Long Term Evolution PCB. Printed Circuit Board SPI. Serial Peripheral Interface SSL. Secure Sockets Layer TCP. Transmission Control Protocol TLS. Transport Layer Security

5 Information security requirements

5.1 Overall structure diagram See Figure 1 for the overall structure of information security of the remote service and management system for electric vehicles. 5.2 Security requirements for on-board terminal 5.2.1 General requirements The on-board terminal shall ensure the hardware, firmware, software systems, data storage, network port transmission, remote upgrades, logs, and system information security, and meet the basic requirements of confidentiality, integrity, and availability. 5.2.2 Functional requirements 5.2.2.1 On-board terminal hardware The hardware security requirements of the on-board terminal are as follows. 5.2.2.2 On-board terminal firmware The on-board terminal shall be equipped with the function of security startup, and shall be able to protect the root of trust which is used for secure start, through the root of trust entity. 5.2.2.3 On-board terminal software system The software system requirements of the on-board terminal are as follows. Public service and management platform 5.2.2.4 On-board terminal data storage The data storage requirements of the on-board terminal are as follows. 5.2.2.5 On-board terminal network port transmission security The security requirements of the on-board terminal network port transmission are as follows. 5.2.2.6 On-board terminal remote upgrades If the on-board terminal is provided with the remote upgrade function, the on- board terminal shall have an upgrade package verification mechanism to verify the integrity of the upgrade package and the authenticity of the source. 5.2.2.7 On-board terminal log The log function requirements of the on-board terminal are as follows. 5.2.2.8 On-board terminal system security The on-board terminal shall not have high-risk and higher security vulnerabilities that were announced by authoritative vulnerability platforms 6 months ago and have not been dealt with. 5.3 Security requirements for communication between platforms 5.3.1 General requirements The remote service and management system for electric vehicles shall meet the confidentiality, integrity and availability requirements of the transmitted data. The remote service and management system for electric vehicles shall perform two-way authentication with the server platform before the client platform performs platform login. 5.3.2 Communication protocol stack The communication protocol stack of the remote service and management system for electric vehicles shall include a secure communication protocol, to establish a secure communication connection between the client platform and the server platform, to ensure the security of the business application layer communication defined in GB/T 32960.3-2016. 5.3.3 Secure communication protocol Requirements for the secure communication protocol are as follows. 5.3.4 Data unit encryption The remote service and management data required by GB/T 32960.3-2016 includes at least the real-time information report data in 7.2 of GB/T 32960.3- 2016.The encryption requirements are as follows. 5.4 Security requirements for communication between on-board terminal and platform The communication from the on-board terminal to the platform shall meet the two-way identity authentication and the confidentiality, integrity and availability requirements of the transmitted data. When the on-board terminal reports the real-time information report data required by GB/T 32960.3-2016 to the platform in real time, it shall be encrypted according to 5.3.4.The secure communication protocol from the on-board terminal to the platform should meet the technical requirements of 5.3.3. 5.5 Platform security requirements 5.5.1 Enterprise service and management platform The enterprise service and management platform shall monitor and manage the information security of the on-board terminal, and shall be able to provide on-board terminal-related data and traceability methods for information security emergency response after information security problems occur to the on-board terminal. 5.5.2 Public service and management platform The public service and management platform can monitor the information security status of the on-board terminal.

6 Test method

6.1 Overview Information security test methods of the remote service and management system for electric vehicles include information security technical document verification and test sample information security function verification of the remote service and management system for electric vehicles. 6.2 Requirements for on-board terminal information security test samples The on-board terminal test sample shall determine the time zone as. UTC+08.00 Beijing, and calibrate it. 6.3 On-board terminal information security test environment 6.3.1 Hardware test environment The topological structure of the on-board terminal information security hardware test is shown in Figure 3. 6.3.2 Communication test environment The topological structure of the on-board terminal information security communication test and verification is shown in Figure 4. 6.4 On-board terminal information security test 6.4.1 On-board terminal hardware information security test Detect the hardware information security of the on-board terminal by the following methods. 6.4.2 On-board terminal firmware information security test 6.5 Communication security test between platforms 6.5.1 Verification of certification mechanism Check whether there is an authentication mechanism for communication access between platforms. 6.5.2 Communication confidentiality transmission test Use network monitoring tools to monitor network transmission data; detect whether the data transmitted between the enterprise service and management platform and the public service and management platform is ciphertext. 6.5.3 Communication integrity transmission test After destroying the data reported by the on-board terminal, detect whether the transmission between the enterprise service and management platform and the public service and management platform fails. 6.5.4 Network port redundancy and unauthorized access test Scan the network port of the enterprise service and management platform through the network scanning tool. 6.5.5 Verification of protocol version Check whether the secure communication protocol is TLS 1.2 or above, and whether downgrade is allowed, such as downgrading to TLS 1.1, TLS 1.0 or SSL 3.0, SSL 2.0. 6.5.6 Protocol function verification Check whether the secure communication protocol disables TLS session renegotiation and TLS compression. 6.5.7 Security algorithm check Check whether the selection of the security algorithm of the TLS protocol meets the requirements of 5.3.3e) and f). 6.6 Communication security test between on-board terminal and platform 6.6.1 Security verification of communication between on-board terminal and platform 6.6.2 Test of the communication transmission protocol between the on- board terminal and the platform Use the network packet capture tool to monitor the external network transmission data of the on-board terminal; analyze whether the data packet adopts TLS 1.2 or above. 6.6.3 Two-way identity authentication test for communication between on- board terminal and platform Capture the communication flow packets between the on-board terminal and the platform on the communication link; analyze the captured data messages; detect whether the communication parties have exchanged certificate flow characteristics or whether there are two-way authentication methods such as security authentication heartbeat packet flow characteristics. 6.6.4 Encryption test of communication data between on-board terminal and platform Use network packet capture tools to monitor network transmission data; detect whether the data transmitted between the on-board terminal and the platform is ciphertext. 6.6.5 Integrity test of communication data between on-board terminal and platform Destroy the transmitted data; check whether the transmission between the on- board terminal and the platform fails after the data is destroyed. ......
Source: Above contents are excerpted from the full-copy PDF -- translated/reviewed by: www.ChineseStandard.net / Wayne Zheng et al.


      

Tips & Frequently Asked Questions

Question 1: How long will the true-PDF of English version of GB/T 40855-2021 be delivered?

Answer: The full copy PDF of English version of GB/T 40855-2021 can be downloaded in 9 seconds, and it will also be emailed to you in 9 seconds (double mechanisms to ensure the delivery reliably), with PDF-invoice.

Question 2: Can I share the purchased PDF of GB/T 40855-2021_English with my colleagues?

Answer: Yes. The purchased PDF of GB/T 40855-2021_English will be deemed to be sold to your employer/organization who actually paid for it, including your colleagues and your employer's intranet.

Question 3: Does the price include tax/VAT?

Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countries

Question 4: Do you accept my currency other than USD?

Answer: Yes. www.ChineseStandard.us -- GB/T 40855-2021 -- Click this link and select your country/currency to pay, the exact amount in your currency will be printed on the invoice. Full PDF will also be downloaded/emailed in 9 seconds.

How to buy and download a true PDF of English version of GB/T 40855-2021?

A step-by-step guide to download PDF of GB/T 40855-2021_EnglishStep 1: Visit website https://www.ChineseStandard.net (Pay in USD), or https://www.ChineseStandard.us (Pay in any currencies such as Euro, KRW, JPY, AUD).
Step 2: Search keyword "GB/T 40855-2021".
Step 3: Click "Add to Cart". If multiple PDFs are required, repeat steps 2 and 3 to add up to 12 PDFs to cart.
Step 4: Select payment option (Via payment agents Stripe or PayPal).
Step 5: Customize Tax Invoice -- Fill up your email etc.
Step 6: Click "Checkout".
Step 7: Make payment by credit card, PayPal, Google Pay etc. After the payment is completed and in 9 seconds, you will receive 2 emails attached with the purchased PDFs and PDF-invoice, respectively.
Step 8: Optional -- Go to download PDF.
Step 9: Optional -- Click Open/Download PDF to download PDFs and invoice.
See screenshots for above steps: Steps 1~3    Steps 4~6    Step 7    Step 8    Step 9