Download in PDF

v 0.7

Registration, Authentication and Security

System Architecture and Interfaces

• Registration and Commercial Accounts
• Only valid devices may register with the Database using proper FCCID and serial number
• Fixed & Mode-II devices must establish a commercial account with the Database administrator prior to receiving channel lists
• Flexible account structures may be required to ensure consumer convenience and adoption
• Devices should report their transmitting channel to the Database

Security Concerns

• The principle concern is interference, either purposeful or by accident
• Unauthorized Databases and purposefully mis-configured Mode-I devices are a significant concern
• Most security risks can be addressed by assuring the identity of and communication path between TVBDs and the Database
• Security Procedures
• Only authorized TVBDs may connect to a Database
• All TVBDs must only connect to and receive channel lists from an authorized Database

Security Technologies

• TVBDs and the Database must support and employ mutual authentication
• Fixed and Mode-II TVBDs should connect to the Database with an IPSEC tunnel
• If IPSEC is not possible, TVBDs may connect to the Database using TLS
• Unencrypted communications are not allowed between TVBDs and the Database