ETSI releases Technical Report on requirements for smart lifts for IoT

Sophia Antipolis, 4 June 2020

To facilitate upcoming standards, the ETSI SmartM2M technical committee has released ETSI TR 103 546, a Technical Report on smart lifts, collecting and developing the type and range of data which should be exchanged between lifts and their relevant management applications. This study paves the way for technical requirements to monitor the activities and the performance of such lifts and describe their interaction with IoT devices and applications.

Read More...

ETSI advisor at the Stakeholder Cybersecurity Certification Group launched by the EC

Sophia Antipolis, 24 June 2020

ETSI is pleased to announce that it has been invited to be part of the newly formed Stakeholder Cybersecurity Certification Group. The kick-off meeting took place today. Together with the European Cybersecurity Certification Group (ECCG), composed of Member States’ representatives, the newly established Stakeholder Cybersecurity Certification Group (SCCG) will advise the Commission on strategic issues regarding the European cybersecurity certification framework. It will also assist the Commission in the preparation of the Union rolling work programme, which sets the priorities for the definition of schemes within the EU cybersecurity certification framework. ETSI will bring in its long-standing experience in cybersecurity, with standards developed both for enterprises and consumers within several of its technical bodies, including the Technical Committee CYBER.

Read More...

ETSI issues New White Paper on Artificial Intelligence

Sophia Antipolis, 29 June 2020

ETSI is pleased to unveil a new White Paper on Artificial Intelligence (AI). This White Paper explores key issues of AI that present both huge opportunities and new challenges for information and communication technologies (ICT).

This ETSI White Paper surveys the many technical activities in ETSI that consider AI. They include 5G systems, network optimization, privacy/security, data management, semantic interoperability and testing across all areas. Each area is considering the use of aspects of AI, including Health and Human Factors scenarios. Key references from other bodies are included for global context.

Read More...

ETSI Multi-Access Edge Computing extends services to WiFi to address enterprise needs

Sophia Antipolis, 16 July 2020

The ETSI Industry Specification Group on Multi-Access Edge Computing, ISG MEC, has recently released ETSI MEC GS 028 to extend network information services to the world of WiFi and thus squarely into enterprises space.

Read More...

New ETSI white paper: Harmonizing standards for edge computing, a synergized architecture leveraging ETSI ISG MEC and 3GPP specifications

Sophia Antipolis, 27 July 2020

Members and officials of the ETSI Multi-access Edge Computing group and the 3GPP SA WG6 have just published a new white paper which aims to harmonize standards for edge computing. The white paper highlights the role of standards for edge when edge computing is deployed in conjunction with mobile networks. It also reviews the leading efforts in the industry and introduces a synergized architecture which leverages the ETSI ISG MEC and 3GPP specifications. This paper highlights the value proposition of different standards streams and how those standards may be combined when it comes to deployments. Some deployment options are discussed.

Read More...

ETSI Fifth Generation Fixed Network White Paper paves the way for Fibre to Everywhere and Everything

Sophia Antipolis, 30 September 2020

The ETSI ISG F5G (Fifth Generation Fixed Network) has released a White Paper that sets the scene for the evolution of on-premise, fixed access, and aggregation networks. In this White Paper, ETSI presents the vision, value, use cases, features, and technologies of F5G, aiming to foster a global effort to realize its full potential.

Read More...

ETSI Unveils First Cloud-Native VNF Management Specifications

Sophia Antipolis, 17 November 2020

The ETSI group on Network Functions Virtualization (ETSI Industry Specification Group NFV) is pleased to unveil its first specification enabling containerized VNFs to be managed in an NFV framework. The ETSI GS NFV-IFA 040 specifies requirements for service interfaces and an object model for OS (Operating System) container management and orchestration.

Read More...

ETSI experts complete specifications for Vulnerable Road Users

Sophia Antipolis, 24 November 2020

A group of experts in ETSI TC ITS, the committee in charge of Intelligent Transport Systems, has just completed a set of three standards related to Vulnerable Road Users (VRU) protection with the specification ETSI TS 103 300-3. This standard defines the VRU awareness service together with its key interfaces and protocols as well as the VRU awareness message (VAM) format, semantics and syntax. The specification completes the Technical Report, ETSI TR 103 300-1 on use cases and the Technical specification, ETSI TS 103 300-2, addressing the functional architecture and requirements for VRU. The development of the standards included stakeholders from around the world and received a large set of contributions from representatives working on different types of vulnerable road users, for example bicycles and motorcycles.

Read More...

ETSI releases Middlebox Security Protocols framework specification

Sophia Antipolis, 17 December 2020

ETSI is pleased to announce a new specification, ETSI TS 103 523-1: Part 1 of the Middlebox Security Protocol (MSP) series, which defines the security properties of a Middlebox Security Protocol.

Read More...

ETSI Report Paves the Way for First World Standards in Securing Artificial Intelligence

Sophia Antipolis, 19 January 2021

The ETSI Securing Artificial Intelligence Industry Specification Group (SAI ISG) last month released its first Group Report, ETSI GR SAI 004, which gives an overview of the problem statement regarding the securing of AI. ETSI SAI is the first standardization initiative dedicated to securing AI.

The Report describes the problem of securing AI-based systems and solutions, with a focus on machine learning, and the challenges relating to confidentiality, integrity and availability at each stage of the machine learning lifecycle. It also points out some of the broader challenges of AI systems including bias, ethics and ability to be explained. A number of different attack vectors are outlined, as well as several cases of real-world use and attacks.

Read More...

ETSI releases Middlebox Security Protocols specification for fine-grained access control

Sophia Antipolis, 2 March 2021

ETSI is pleased to announce a new specification, ETSI TS 103 523-2: Transport Layer MSP (TLMSP), Part 2 of the Middlebox Security Protocol (MSP) series, which defines a protocol for varied (fine-grained) access control to communications traffic. This specification was developed by the ETSI Technical Committee CYBER.

Read More...

ETSI releases Mitigation Strategy Report on Securing Artificial Intelligence

Sophia Antipolis, 18 May 2021

ETSI has recently released ETSI GR SAI 005, a report which summarizes and analyses existing and potential mitigation against threats for AI-based systems. Setting a baseline for a common understanding of relevant AI cyber security threats and mitigations will be key for widespread deployment and acceptance of AI systems and applications. This report sheds light on the available methods for securing AI-based systems by mitigating known or potential security threats identified in the recent ENISA threat landscape publication and ETSI GR SAI 004 Problem Statement Report. It also addresses security capabilities, challenges, and limitations when adopting mitigation for AI-based systems in certain potential use cases.

Read More...

ETSI releases IoT testing specifications for MQTT, CoAP and industrial automation and control systems

Sophia Antipolis, 25 June 2021

The ETSI committee on Methods for Testing and Specifications (TC MTS) has recently completed a first set of seven standards addressing the testing of the IoT MQTT and CoAP protocols, and the foundational security IoT-Profile.

Read More...

ETSI releases specifications boosting trustful end-to-end network and service automation

Sophia Antipolis, 13 September 2021

ETSI is pleased to announce the release of three major specifications and reports developed by its Zero-touch network and Service Management (ZSM) group. ETSI GS ZSM 003, defines end-to-end network slicing management and orchestration architecture blueprint and solutions, and ETSI GS ZSM 009-1 specifies the enablers for closed-loop automation. The general security aspects related to the ZSM framework and solutions, and potential mitigation options are introduced in the ETSI GR ZSM 010.

Read More...

ETSI launches first specification for the 5th Generation Fixed Network, F5G technology landscape

Sophia Antipolis, 23 September 2021

ETSI's 5^th Generation Fixed Network group (F5G ISG) has just released its first specification, ETSI GS F5G 003, entitled F5G Technology Landscape. In this specification, the ISG studies the technical requirements, existing standards and gaps for 10 different new use cases, for home, enterprises or industrial needs.

ETSI GS F5G 003 use cases include PON (passive optical network) on-premises and passive optical LAN. In this case, a PON system could connect end devices (like HDTV, HD surveillance cameras and VR/AR helmets) and provide higher data rate, better coordination and controlled latency than current Ethernet and Wi-Fi mesh.

Read More...

ETSI releases test specification to comply with world-leading Consumer IoT Security standard

Sophia Antipolis, 12 October 2021

ETSI has released the test specification for the existing ETSI EN 303 645, the world leading consumer IoT security standard. This test specification, ETSI TS 103 701, describes how a conformity assessment is performed in a structured and comprehensive way. This will allow supplier organizations such as manufacturers, vendors or distributers to assess the compliance of their devices against ETSI ETSI EN 303 645 in self-assessments or via testing labs. User organizations can also apply the test specification for in-house testing.

Read More...

ETSI Announces First Specification for Smart Contracts

 Sophia Antipolis, 18 January 2022

ETSI has just released GS PDL 011 the first in a series of specifications that are concerned with the implementation of permissioned distributed ledgers (PDL). This and following specifications will help with the realisation of the numerous operational and security advantages of a decentralised approach to the recording of transactions, while simultaneously being both inexpensive to perform and inherently scalable.

Read More...

ETSI releases first specification on 5^th Generation Fixed Network (F5G) architecture

Sophia Antipolis, 12 May 2022

ETSI's 5^th Generation Fixed Network group (ISG F5G) has released its first specification for F5G Network Architecture ETSI GS F5G 004. This architecture will deliver a variety of services to residential and business customers over a single physical network with guaranteed SLAs (service level agreements).

Read More...

ETSI releases new specification on Quality of Service for F5G

Sophia Antipolis, 20 June 2022

The ETSI's 5^th-Generation Fixed Network group (F5G ISG) has released a new specification, ETSI GS F5G 005 on “High-Quality Service Experience Factors”. This specification studies the end-to-end Quality of Experience (QoE) factors for services over the broadband network. High QoE reflects the overall performance of services from the end user's perspective. It also analyses the general factors that impact service performance and identifies the overall high-QoE dimensions for each service, mainly using Virtual Reality (VR) as a benchmark for F5G applications.

Read More...

ETSI simplifies ICT end-users’ lives with a guide available in 19 European languages

Sophia Antipolis, 21 July 2022

ETSI is pleased to announce the new version of the ETSI Guide EG 203 499, developed by experts from the Human Factors Technical Committee. The guide aims to further simplify end-user access to ICT devices, services and applications by providing recommended terms for basic and commonly used ICT-related objects and activities, notably the terms that end users are commonly exposed to.

Read More...

ETSI releases first O-RAN specification

ETSI - Sophia Antipolis/France, O-RAN ALLIANCE - Bonn/Germany, 15 September 2022

ETSI and O-RAN are pleased to announce that ETSI has adopted the first O-RAN specification as ETSI TS 103 859, namely ‘O-RAN Fronthaul Control, User and Synchronization Plane Specification v7.02’. The document focuses on Open Fronthaul, one of the interfaces in the O-RAN Architecture for open and intelligent Radio Access Networks. It specifies the control plane, user plane and synchronization plane protocols used over the fronthaul interface linking the O-DU (O-RAN Distributed Unit) and the O-RU (O-RAN Radio Unit) for the lower layer functional splits. The scope of TS 103 859 includes both LTE and NR (5G). 

Read More...

New ETSI specification allows single UICC to support the use of multiple applications simultaneously

Sophia Antipolis, 26 October 2022

New specifications released by ETSI will enable multiple subscriptions and identities to exist in the same smartphone handset without needing several SIM cards to be within the device.

The mobile telecom industry has been facing an increasing demand for applications running on mobile devices like banking, payments, transport and identity for some time. These new specifications address this demand by adding the possibility to host and address several "virtual secure elements" into the same UICC. This allows multiple virtual secure elements to coexist logically separated, whilst having the ability to be addressed independently through the same physical interface.

Read More...

ETSI’s Activities in Artificial Intelligence: Read our New White Paper

Sophia Antipolis, 21 December 2022

ETSI has a long history of developing standards in the field of artificial intelligence (AI) and systems that use and support AI. Today ETSI is pleased to release a new White Paper developed by a variety of members and experts. They include companies from telecom and network communication sectors, from large and small and medium enterprises, based either in Europe, Asia or America.

This White Paper entitled ETSI Activities in the field of Artificial Intelligence supports all stakeholders and summarizes ongoing effort in ETSI and planned future activities. It also includes an analysis on how ETSI deliverables may support current policy initiatives in the field of artificial intelligence.  A section of the document outlines ETSI activities of relevance to address Societal Challenges in AI while another addresses the involvement of the European Research Community.

Read More...

Sophia Antipolis, 11 July 2023

ETSI is pleased to announce three new Reports developed by its Securing AI group (ISG SAI). They address explicability and transparency of AI processing and provide an AI computing platform security framework. The last Report is a multi-partner Proofs of Concepts framework.

Read More...

Sophia Antipolis, 30 November 2023

ETSI is pleased to announce a new White Paper developed by some of the members of its F5G Industry Specification Group, entitled “All-optical network facilitates the Carbon Shift”, highlighting the role of fibre networks as a key ICT enabler to meet the UN sustainability goals.

Read More...

As the project celebrates the 25th anniversary of the signing of the 3GPP Project Agreement, the 3GPP Organizational Partners have today issued the following joint press release.

Sophia Antipolis, 4 December 2023

With its work on 3G, 4G and 5G specifications used by billions of communications services consumers globally, 3GPP stands ready to create the 6G future.

Read More...

Sophia Antipolis, 21 December 2023

The ETSI Open Source MANO community is proud to announce OSM Release FIFTEEN, meeting the well-established cadence of two releases per year. The OSM community delivers one Long Term Support (LTS) and one regular release every year, to ensure the OSM user base is provided with continuous innovations and production-ready stability.

Read More...

Sophia Antipolis, 12 January 2024

In a significant step highlighting the critical importance of security for mobile device users, the French National Cybersecurity Agency (ANSSI) has certified ETSI's Consumer Mobile Device Protection Profile under the Common Criteria global certification framework. This represents the first certification by a national administration of a comprehensive suite of specifications for assessing the security of smartphones.

Read More...

Sophia Antipolis, 9 July 2024

ETSI is excited to announce OpenCAPIF Release 1 is now available in the ETSI Labs.

OpenCAPIF develops a Common API Framework as defined by 3GPP and this new version introduces several improvements and new features to deliver a more robust, secure, and efficient API Management Platform. These advancements are developed in tight collaboration and incorporating feedback from a growing Research Ecosystem including SNS projects such as 6G-SANDBOX, FIDAL, IMAGINEB5G, SAFE6G, ORIGAMI, ENVELOPE and SUNRISE6G.

Read More...

Starts: Wed, 04 Dec 2024 19:00:00 -0500
12/04/2024 05:30:00PM
Location: Montreal, Canada

New essay by Kevin K. Gaines, "Racial Uplift Ideology in the Era of the Negro Problem," added to Freedom's Story: Teaching African American Literature and History, TeacherServe from the National Humanities Center.

Here is a Storify round up of the SpotOn London session: Enhanced eBooks & BookApps: The

Jenny Evans has created a Storify summary of her SpotOn London session: Collaborating and building your online

Here is a Storify summary of the SpotOn London session: BrainSpace, a global interest graph for

Julia Schölermann is the organiser for this year’s SpotOn London session on, What should the scientific

Here is a Storify collecting the online conversations from the Wikipedia editing workshop at this year’s

Twenty five years after the launch of CVE, the Tenable Security Response Team has handpicked 25 vulnerabilities that stand out for their significance.

Background

In January 1999, David E. Mann and Steven M. Christey published the paper “Towards a Common Enumeration of Vulnerabilities” describing an effort to create interoperability between multiple vulnerability databases. To achieve a common taxonomy for vulnerabilities and exposures, they proposed Common Vulnerabilities and Exposures (CVE). In September 1999, the MITRE Corporation finalized the first CVE list, which included 321 records. CVE was revealed to the world the following month.

As of October 2024, there are over 240,000 CVEs. including many that have significantly impacted consumers, businesses and governments. The Tenable Security Response Team has chosen to highlight the following 25 significant vulnerabilities, followed by links to product coverage for Tenable customers to utilize.

25 Significant CVEs

CVE-1999-0211: SunOS Arbitrary Read/Write Vulnerability

CVE-2010-2568: Windows Shell Remote Code Execution Vulnerability

CVE-2014-0160: OpenSSL Information Disclosure Vulnerability

CVE-2014-6271: GNU Bash Shellshock Remote Code Execution Vulnerability

CVE-2015-5119: Adobe Flash Player Use After Free

CVE-2017-11882: Microsoft Office Equation Editor Remote Code Execution Vulnerability

CVE-2017-0144: Windows SMB Remote Code Execution Vulnerability

CVE-2017-5638: Apache Struts 2 Jakarta Multipart Parser Remote Code Execution Vulnerability

CVE-2019-0708: Remote Desktop Services Remote Code Execution Vulnerability

CVE-2020-0796: Windows SMBv3 Client/Server Remote Code Execution Vulnerability

CVE-2019-19781: Citrix ADC and Gateway Remote Code Execution Vulnerability

CVE-2019-10149: Exim Remote Command Execution Vulnerability

CVE-2020-1472: Netlogon Elevation of Privilege Vulnerability

CVE-2017-5753: CPU Speculative Execution Bounds Check Bypass Vulnerability

CVE-2017-5754: CPU Speculative Execution Rogue Data Cache Load Vulnerability

CVE-2021-36942: Windows LSA Spoofing Vulnerability

CVE-2022-30190: Microsoft Windows Support Diagnostic Tool Remote Code Execution

CVE-2021-44228: Apache Log4j Remote Code Execution Vulnerability

CVE-2021-26855: Microsoft Exchange Server Server-Side Request Forgery Vulnerability

CVE-2021-34527: Microsoft Windows Print Spooler Remote Code Execution Vulnerability

CVE-2021-27101: Accellion File Transfer Appliance (FTA) SQL Injection Vulnerability

CVE-2023-34362: Progress Software MOVEit Transfer SQL Injection Vulnerability

CVE-2023-4966: Citrix NetScaler and ADC Gateway Sensitive Information Disclosure Vulnerability

CVE-2023-2868: Barracuda Email Security Gateway (ESG) Remote Command Injection Vulnerability

CVE-2024-3094: XZ Utils Embedded Malicious Code Vulnerability

Identifying affected systems

A list of Tenable plugins for these vulnerabilities can be found on the individual CVE pages:

• CVE-1999-0211
• CVE-2010-2568
• CVE-2014-0160
• CVE-2014-6271
• CVE-2015-5119
• CVE-2017-11882
• CVE-2017-0144
• CVE-2017-5638
• CVE-2019-0708
• CVE-2020-0796
• CVE-2019-19781
• CVE-2019-10149
• CVE-2020-1472
• CVE-2017-5753
• CVE-2017-5754
• CVE-2021-36942
• CVE-2022-30190
• CVE-2021-44228
• CVE-2021-26855
• CVE-2021-34527
• CVE-2021-27101
• CVE-2023-34362
• CVE-2023-4966
• CVE-2023-2868
• CVE-2024-3094

TORONTO – The Ontario Securities Commission (OSC) today released a new report that studied the impact of gamification on investors.

TORONTO – The Ontario Securities Commission (OSC) today released the results of a study examining the influence of environmental, social and governance (ESG) factors on retail investor decision making.

#solo12fraud

Finding sources for funding research can be a demanding task, and one that's not always successful. A new trend that's emerging out of the necessity to fund projects that have no traditional means of support is "crowdfunding." A panel at SpotOnLondon weighs the resulting apprehensions and benefits.

Dr Anne Osterrieder is a Research and Science Communication Fellow in Plant Cell Biology at the Department of

Here is a Storify round up of the SpotOn London session: Incentivising Open Access and Open

Here is a Storify round up of the SpotOn London session: ORCID – why do we

Here is a Storify round up of the SpotOn London session: What do you need to

Here is a Storify round up of the SpotOn London session: Tackling the terabyte: how should

Here is a Storify collating the online conversation around the Open, Portable, Decoupled – How should

Here is a Storify collecting the online conversations from the Science games: does play work? session at

Here is a Storify collecting the online conversations from the Communicating Science in an Open Access