Rolling Plan for Ict Standardisation 2019

Home , EbXML, EN 50090, ISO 13584, ISO 20022, OASIS TOSCA, OpenDocument

ROLLING PLAN FOR ICT STANDARDISATION 2019

ICT Standardisation INTRODUCTION

European Commission DG Internal Market, Industry, Entrepreneurship and SMEs Standards for Growth able growth. able growth. challenges, innovation for thesinglemarket andsustain- four thematicareas:key enablersandsecurity, societal The RollingPlan2019identifies170actionsgroupedinto tions andprovides afollow-up mechanismfor theactions. ments for ICTstandardisation,translatesthemintoac- support EUpolicyobjectives.Italsodetailstherequire- Rolling Plan lists all areas where ICT standardisation could particular the Annual Union Work Programme (AUWP). The port EUpoliciesiscomplementarytootherinstruments,in Standardisation actionsidentifiedinthisdocumenttosup- work programmesofthevariousstandardisationbodies. EU policiesanddoesnotclaimtobeascompletethe tion. TheRollingPlanfocuses onactionsthatcansupport ed by themulti-stakeholder platform onICTstandardisa- involving a wide-range of interested parties as represent- goals. This document is the result of an annual dialogue ardisation makers’ efforts towards achievingEUpolicy gies (ICT).Thisallows for increasedconvergenceofstand- in thefieldofinformation andcommunicationtechnolo- bridge betweenEUpoliciesandstandardisationactivities The RollingPlanfor ICT standardisation provides aunique “Single EuropeanSky”tothe“Sustainablegrowth” chapter. curity” chapterand“Water managementDigitisation”and (EGNSS)” havebeenaddedtothe“Keyenablersandse- and the“EuropeanGlobalNavigationSatelliteSystem four newchapterswere added.“Artificialintelligence” The RollingPlanisalivingdocument.Inthe2019edition, indicated intheCommunication. Plan continuestoincludeactionssupportthepriorities energy and advanced manufacturing. The2019 Rolling in particulareHealth,intelligenttransportsystems,smart fit fromstandardsettinginthosehorizontaltechnologies, identified anumberofapplicationdomainsthatwillbene- for thecompletionof digitalsinglemarket.. Ithasalso (IoT) —whereitconsidersICTstandardisationmosturgent cloud, cybersecurity, big dataandtheinternetofthings The Commissionhasidentifiedfiveprioritydomains1—5G, 1 er associations(AGE, ANEC,ECOS,EDF, ETUC). ECIS, ETNO,EBU,EuroISPA, SBS,OFE,Orgalim)andstakehold- associations (BusinessEurope,CableDigitaleurope, IETF/IAB, OASIS,ECMA,W3C/ERCIM,UN/CEFACT), industry organisations (ETSI,CEN,CENELEC,ISO,IEEE,IEC,ITU,OMG, the EUMemberStates,EFTA States, standardsdeveloping active collaborationandfor making thisdocumentpossible: multi-stakeholder platform onICTStandardisationfor their The Commissionwouldlike tothankallmembersofthe Single Market, COM(2016)176 final. Communication onICTStandardisation Prioritiesfor theDigital 3 ROLLING PLAN FOR ICT STANDARDISATION • 2019 4 ROLLING PLAN FOR ICT STANDARDISATION • 2019 governed by theRegulationonEuropeanstandardisation and legislation.TheEuropeanstandardisationsystemis 3 2 Standards more recentlyfor cloudcomputingandblockchain. ity ofstandardsfor theinternet,World Wide Web and velopment bodies that are the developing the vast major- sortia haveemergedasworld-leadingICTstandardde- organisations, specialisedandmostlyglobalfora andcon- last decades.Alongsidethetraditionalstandardisation ICT standardisationhasdramaticallychangedover the Market. and form thecornerstone ofaneffective DigitalSingle fications ensuretheinteroperabilityofdigitaltechnologies systems, andgreaternetworkeffects. ICTtechnicalspeci- the benefitsofbroader, moreinteroperablemarkets and relies onstandardsandtechnicalspecificationstoreap market place,societyandeconomies.EUpolicymaking port totheEUfacechallengesposedby aglobal Innovation andtechnologyadoptionprovide criticalsup- involved indevelopingharmonisedstandards. the efficiency, transparencyandlegalcertainty forthose Commission willtake intheimmediatefuturetoimprove prove thesystem.Italsoincludedspecificactionsthat explaining the actions it had recently taken to further im- Commission issuedaCommunicationinNovember 2018, of harmonisedEUlegislation.Againstthisbackground, the with apresumptionofconformity withtherequirements used, provide manufacturersacrosstheSingleMarket law whenreferenced intheOfficialJournalandwhen monised standards.ThesestandardsbecomepartofEU and theirmembers.Itsuniquenessliesintheuseofhar- with theEuropeanStandardisationOrganisations(ESOs) and implemented through the public-private-partnership POLICY MAKING IN THE CONTEXT OF EU OF STANDARDISATION THE STRATEGIC ROLE Council of25October 2012onEuropeanstandardisation Regulation (EU)No1025/2012 oftheEuropeanParliament andof the Regulation onEuropean standardisation(1025/2012/EU). are specified inamoredetailed waydrawingon thedefinitions givenin the specifications” areused. Yet, wheneverrequiredinthis documenttheterms standardisation fora andconsortia–ortheterms “standardsandtechnical such deliverablesfrombothrecognisedstandards organisationsandfrom The term“standards”isusedinthisdocument inagenericwayfor all 2 play a critical role in supporting EU policies playacriticalroleinsupportingEUpolicies 3

(e.g. energy, environmentandtransport). In anumberofcasestheycome undersectorialregulation nical advisorygroupsthatare involved instandardisation In additionthereareanumber of otherCommissiontech- procurement (RegulationEU1025/2012,Art.13and14). be identified by theCommission for referencing inpublic the RollingPlanandonICTtechnicalspecificationsto among otherthings,providing adviceonthecontentof ers intheareaofICTstandardisation.Itstasksinclude, ing organisations,industry, SMEsandsocietalstakehold- other relevantstakeholders, including standardsdevelop- composed ofMemberStatesandEFTA countriesandall on allmattersrelatedtoICTstandardisation.TheMSPis sion Decision2011/C349/04toadvisetheCommission ardisation (MSP)isagroupofexpertsset-upby Commis- The Europeanmulti-stakeholder platform onICTstand- the prioritiesofthisCommunication. actions intheRollingPlansupportimplementationof ical tothecompletionofDigitalSingleMarket”. Many standardisation for priorityICTtechnologiesthatarecrit- out acomprehensivestrategicandpoliticalapproachto nication onICTstandardisationpriorities ital singlemarket, theCommissionadoptedCommu- plans tosupportasetofkey EUpriorityareasfor thedig- To furtherpromoteICTstandardisation anddevelopaction with Article10”. the Europeanstandardisationorganisationsinaccordance liverables thattheCommissionintendstorequestfrom European standardsandstandardisationde- Union long-termstrategiesfor growth. Itshallindicatethe orities for Europeanstandardisation,takingintoaccount EU regulation1025/2012and“shallidentifystrategicpri- Commission DecisioninaccordancewithArticle8ofthe high-level andnotonlyfocused onICT. Itisadopted by a standardisation isanotherEUplanningtoolthatmore The AnnualUnionWork Programme(AUWP)for European a singledocument. isation needsandactivitiesinsupportofEUpoliciesinto Standardisation toconsolidatethedifferent ICTstandard- bles. The Commission publishes the Rolling Plan for ICT spective policyobjectiveswithstandardisationdelivera- can respond to the proposed actions and support the re- aforementioned globalstandarddevelopmentbodiesthat tion Organisations(ESOs)-ETSI,CENandCENELEC- and objectives. ItreachesouttobothEuropeanStandardisa- technical specificationscanplayinachievingthepolicy ICT standardsandexplorestherolethat The RollingPlanaddressestechnologyareasinneedof 4 COM(2016) 176 4 in 2016 “to set in2016“toset and technology layers. . and technologylayers.. technologies, andcombiningthemwithothertechnologies tems into new, innovative complex systems, includingICT nologies orthetransformation oftechnologiesandsys- an importantroleinpromotingtheuptake ofnewtech- open ICTecosystems.Standardisationmaytherefore play specifications inICTensureinteroperabilityandpromote ing ICTstandardisationactivities.Standardsandtechnical interoperability in thosepolicyareasidentifiedas need- uptake ofstandardsingeneralordertoincreaseICT icy making.Anotherobjectiveistopromotetheuseand of theimportanceICTstandardsincontextpol- A key objectiveoftheRollingPlanistocreateawareness into it. and relies on the contributions received and incorporated complete. Itprovides aperspectiveatgivenpointintime The RollingPlandoesnotclaimtobecomprehensiveor needsingeneral. market/policy ardisation activitiesaswellstandardisationneedsand therefore helptopaintadetailedpictureonongoingstand- sented in the MSP provide regular input and feedback. They standardisation topicsandstrategies.Allstakeholders repre- The RollingPlanisbasedonbroad stakeholder inputon ICT Plan. Rolling dates areprovided asneededintheform ofaddendatothe MSP. InbetweentwoversionsoftheRollingPlan, factualup- based oninputfromtheCommissionandadvice The RollingPlanisadocumentthatreviewedeachyear based onasystematicsearch. respective policy objectives and topic areas,however it is not ities, technicalspecificationsandstandardsrelevant for the much aspossiblethebroadrangeofstandardisationactiv- The Rolling Plan is a living document. It aims to cover as IN SUPPORT OF POLICY MAKING THE USE OF ICT STANDARDISATION OF THE ROLLING PLAN DEVELOPMENT AND MAINTENANCE standards within the policy contexts. standards withinthepolicycontexts. is raisedontheimportance,benefitandneedofusing with broadstakeholder involvement,andthatawareness in whichspecificstandardsaretobeused,highlighted ed. Itisalsoimportantthattherespectivepolicycontexts, that theyarewidelydisseminated,usedandimplement- policy orlegislationhavebeenidentified,itisimportant a standards or technical specifications needed tosupport Once therelevantstandardisationactivities,specific regulatory orpublicpolicypurposes. that mayrequirestandardstobedevelopedandusedfor telligence, dataandprivacyprotection,areallchallenges IoT, togetherwiththereliabilityandvalidityofartificialin- and securityof‘smart’‘products,automateddevices, condition for implementingpolicyorlegislation.Thesafety instances, theavailabilityofstandardscanbecomeapre- European valuesfrompossible adverse effects. Insome benefits fromdigitaltransformation, whileprotectingour work force, EUpolicymakingaims to reapthemaximum world anditspossibleimplicationsfor oursocietiesand Digital SingleMarket. Giventhefastpaceofchangeinour goes beyondinteroperabilityrequiredfor completingthe computing and IoT, the importance of standardisation mains like artificialintelligence,bigdata,robotics,cloud With theemergenceofnewtechnologiesandICTdo- 5 ROLLING PLAN FOR ICT STANDARDISATION • 2019 6 ROLLING PLAN FOR ICT STANDARDISATION • 2019 Rolling Planfor ICTStandardisation2019 Horizontal buildingblocks Sustainable growth Innovation for thedigitalsinglemarket e-Government Societal challenges e-Privacy Annex I-ListofMemberStates’ Work PlansandStrategies Key enablersandsecurity Introduction 5G

ANNEX III-Terms DefinitionsandAbbreviations List ofLinkstoStandards Bodies’Web SitesWith- Up-to-dateInformation onOngoingWorkII Annex TABLE OF CONTENTS Main abbreviations Single EuropeanSky Water ManagementDigitisation Common Information SharingEnvironment(CISE)for theEUmaritimedomain Construction -buildinginformation modelling Robotics andautonomoussystems Advanced manufacturing Intelligent Transport Systems-ConnectedandAutomatedMobility(ITS-CAM)Electromobility European ElectronicToll Service (EETS) ICT Environmentalimpact Smart cities/technologiesandservicesfor smartandefficientenergyuse Blockchain andDistributedDigitalLedgerTechnologies Fintech andRegtechStandardization Preservation ofdigitalcinema Card, internetandmobilepayments e-Invoicing Policyandlegislationobjectives eCall Policyandlegislationobjectives Emergency communications e-Skills ande-Learning European GlobalNavigationSatelliteSystem(EGNSS) Artificial Intelligence Accessibility ofICTproductsandservices Broadband infrastructuremapping e-Infrastructures for researchdataandcomputingintensivescience Electronic identificationandtrustservicesincludinge-signatures Cybersecurity /networkandinformation security Internet ofThings Public sectorinformation, opendataandbig Cloud computing Integrated solutionsfor different industrydomains New waveofconvergence E-Procurement pre-andpostaward e-Health, healthylivingandageing DEFINITIONS TERMS ICT drivesinnovation inalleconomicsectors Smart gridsandsmartmetering ...... 160 .159 .159 165 158 106 164 162 166 165 153 150 148 146 142 136 127 125 120 114 107 102 10 86 64 98 96 93 89 87 82 80 77 73 65 61 58 53 48 45 41 37 32 25 20 15 11 2 1 7 ROLLING PLAN FOR ICT STANDARDISATION • 2019 8 ROLLING PLAN FOR ICT STANDARDISATION • 2019 BY ICT STANDARDISATION EU POLICY AREAS SUPPORTED 9 ROLLING PLAN FOR ICT STANDARDISATION • 2019 KEY ENABLERS AND SECURITY KEY ENABLERS AND SECURITY AND ENABLERS KEY

2019 • ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

10 The European Commission has called on Member States 5G and industry to commit to the following objectives:

POLICY AND LEGISLATION • a standardisation approach that preserves future evo- POLICY OBJECTIVES lution capabilities and aims at availability of 5G global standards by end of 2019; The 2015 digital single market (DSM) strategy and the • a holistic standardisation approach encompassing communication “Towards connectivity for a European gi- both radio access and core networks as coordinated gabit society” identify very high-capacity networks like activities within global standardisation bodies, en- 5G as a key asset for global competitiveness. The first compassing disruptive use-cases and promoting open phase of 5G standardisation has now been completed, innovation; with the publication by ETSI of its 3GPP Release-15 set • establishment of cross-industry partnerships by 2017, of specifications. 5G standardisation will continue in fur- at the latest, to support timely standard-setting, partly ther 3GPP releases. The Commission launched a 5G pub- by leveraging international cooperation partnerships, in lic-private-partnership (the 5G-PPP) to that end in 20135. particular towards the digitisation of industry. In addition to fibre-like performance for mobile networks, In December 2017, Commissioner Gabriel sent a letter the benefits of adopting 5G go beyond the telecom sec- to 3GPP, urging the standardisation bodies and the con- tor to enable a fully mobile and connected society and to cerned industrial actors to step-up their efforts for the empower socioeconomic transformations in a variety of rapid development of 5G standards addressing more im- ways (many of which are not possible at present). These mediate market needs while driving a clear strategy for a transformations include higher productivity, sustainability, 5G global standard bringing benefits to a wide range of well-being6 and innovation opportunities for smaller ac- industrial use cases, in line with the EU strategy targeting tors and start-ups. 5G makes a new wave of convergence 5G developments in support of “vertical” industries and of possible through digital business models reaching non- our wider objectives of digitising the European industry. ICT-native industrial sectors. In that context, the EU sees 5G as a core infrastructure to support the DSM strategy’s wider objectives for the digitisation of the industry. REFERENCES

The strategy for Digitising European Industry8 and the EC PERSPECTIVE AND PROGRESS Communication on ICT standardisation priorities for the REPORT digital single market9 announced the European Commis- sion’s intention to develop a 5G action plan for EU-wide The Communication on ICT standardisation priorities7] deployment, which was adopted in September 201610. The identifies 5G standards as key to competitiveness and communication draws on multiple consultations, events11 the interoperability of global networks, with stakeholders with stakeholders, a targeted survey12, several studies13, a from different standardisation cultures called upon to 5G industry manifesto14 and early results15 of the 5G-PPP. KEY ENABLERS AND SECURITY AND ENABLERS KEY collaborate. It also details the actions required. It presents a set of targeted actions for a timely and coordinated deployment of 5G networks in Europe through

The first phase of 5G standards from 3GPP focuses on a partnership between the Commission, Member States, 2019 • enhanced mobile broadband while also supporting ultra- and industry. It leverages the new opportunities offered by reliability and low latency. The second phase should deliver the revised telecommunication regulatory framework by the standards for other use-cases, such as those related putting it in the context of a concrete European project of to industrial applications. Here, availability of standards high added value for businesses and citizen. promoting open innovation and opportunities for start-ups is also key.

8 https://ec.europa.eu/digital-single-market/en/digitising-european-industry 9 COM(2016) 176 final, page 8 10 COM(2016) 588 final 5G for Europe: An Action Plan and accompanying Staff Working Document SWD(2016) 306 on 5G Global Developments 11 see: e.g. https://5g-ppp.eu/event-calendar/# 12 https://ec.europa.eu/digital-single-market/en/news/have-your-say- coordinated-introduction-5g-networks-europe 13 see footnotes 4 & 5 above

5 https://5g-ppp.eu 14 Industry Manifesto 7 July 2016: http://ec.europa.eu/newsroom/dae/ STANDARDISATION ICT FOR PLAN ROLLING 6 Next Generation Mobile Networks Alliance 5G White Paper, https://www. document.cfm?action=display&doc_id=16579; ngmn.org/de/5g-white-paper.html 15 White paper 5G Empowering Vertical Industries: 7 COM(2016) 176 final https://5g-ppp.eu/roadmaps/ 11 Furthermore, Member States, in the Ministerial Declara- IMT-2020 technology (the 5G label). Before this final sub- tion of Tallinn of July 2017 16have identified the objective mission, stakeholders consider that it is needed to widely of preserving 5G global interoperability as key in order to expose the work of 3GPP and the main characteristics of make 5G a success for Europe. Standards are of para- the proposal submitted to the ITU. mount importance to ensure the competitiveness and interoperability of global telecommunication networks. The Commission is also taking steps, through the FPI Therefore Member States endorse a “comprehensive and Project on internationalisation of EU ICT standardisation, inclusive approach to 5G standardisation as a priority for to support the organisation of more 3GPP meetings in the DSM”. Member States promote “cross-industry part- Europe, in order to facilitate the active participation of a nerships to support the timely definition of standards broad range of European delegates, from key industrial backed by industrial user experiments, including through players, but also SMEs, academia and research institu- the leveraging of international cooperation partnerships, tions. This project intends to provide financial support for in particular for the digitisation of industry. Encouraging the organisation of 3GPP meetings in the EU, and ech- innovation and development of products and services oes recurring requests from administration and smaller making use of 5G networks across the EU should be a industrial stakeholders to have SDO meetings organised priority” in Europe.

REQUESTED ACTIONS ACTIVITIES AND

The Communication on ICT standardisation priorities ADDITIONAL INFORMATION for the digital single market proposes priority actions on 5G, some of which are reflected in section C.2. RELATED STANDARDISATION ACTIVITIES ACTION 1 Global industry standards. Foster the emergence of global industry standards under EU leadership 3GPP for key 5G technologies (radio access network, core net- At the end of 2017 3GPP, the key standardisation body for global work) and network architectures notably through the ex- mobile communication network standardisation delivered the first ploitation of 5G public-private partnership results in key 5G specifications. In June 2018, building on this foundation, 3GPP has delivered the complete set of initial 5G specifications contained EU and international standardisation bodies (3GPP, ITU, in their Release 15. These have now been published by ETSI, a ETSI NFV) founding partner in 3GPP.

3GPP continues to develop the 5G specifications, working towards ACTION 2 High-level events. Ensure that 5G standards delivery of 3GPP Release 16 in mid-2019. In preparation, around 25 are compatible with innovative use-cases of vertical in- studies are already underway on topics as diverse as Multimedia dustries, notably through broader participation of indus- Priority Service, Vehicle-to-everything (V2X) application layer tries with sector-specific needs and in close collaboration services, 5G satellite access, Local Area Network support in 5G, KEY ENABLERS AND SECURITY AND ENABLERS KEY with other industry specific standards developing organi- wireless and wireline convergence for 5G, terminal positioning sations in 5G standardisation organisations. and location, communications in vertical domains and network automation and novel radio techniques. Further items being studied 2019

• include security, codecs and streaming services, Local Area Network In October 2018 the European Commission hosted a interworking, network slicing and the IoT. 3GPP workshop in the context of the submission of the As with previous generations of mobile technology, 3GPP will follow 3GPP 5G specifications to the ITU. The aim is toinform Release 16 with a continuous programme of 5G standardisation, the ITU sanctioned Evaluation Groups, policy makers and delivering performance enhancements and new features required interested experts on the progress of the 3GPP work to by the market in a series of periodic releases. meet and exceed the performance requirements for IMT- ETSI (DECT) 2020 radio interface technologies. 3GPP’s 5G standards are being submitted to the ITU evaluation process ending ETSI TC DECT has started the standardisation of the new DECT- in July 2019, which is the target date to submit to ITU 2020 system. DECT-2020 is a new radio interface supporting Ultra Reliable Low Latency Communications (URLLC) and Machine Type the candidate technologies to obtain acceptance as an Communications (MTC) as specified for IMT-2020 usage scenarios. The new DECT-2020 air interface will co-exist with the existing 16 Ministerial Declaration “Making 5G a success for Europe” signed during the DECT system. informal meeting of competitiveness and telecommunications ministers on

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING 18 July in Tallinn

12 ETSI’s DECT specification is the leading standard around the world IEEE for digital cordless telecommunications. Over 1 billion devices have IEEE has many efforts underway to develop standards in support been installed worldwide: the system has been adopted in over 110 of the next generation communications technologies for enhanced countries and more than 100 million new devices are sold every mobile broadband, massive machine type communications, and year. DECT products now account for more than 90% of the world’s ultra-reliable and low latency communications. These include both cordless market. The DECT standard has already been accepted as licensed and unlicensed band initiatives. Next generation wireless an IMT-2000 radio interface technology. standards for unlicensed spectrum include the following:

ETSI • IEEE P802.11ax is an extension of the current WLAN standards Network Functions Virtualisation (NFV) is a key technology enabler by improving aggregated throughput with high user density. for 5G: http://etsi.org/nfv/. The NFV Industry Specification Group P802.11ax targets Mid Band, sub 6GHz unlicensed spectrum (ISG) is developing a report aimed at documenting how 5G network • IEEE P802.11ay targets bonding 2GHz channels to achieve slicing use cases can be mapped to current NFV concepts and extremely high point to point throughput in excess of 20Mbps. supported by the ETSI NFV architectural framework. 5G networks P802.11ay is implemented in the unlicensed millimeter wave are anticipated to take advantage of Cloud-native principles for the band (60GHz) design of some of their network functions (e.g. to facilitate scaling • IEEE 802.11ax implementation of new energy saving options and and healing) and the ISG is developing a specification of criteria to the implementation of the frequency range 5925-6425 MHz help characterize such functions. • In addition, IEEE developed 802.11p/1609 to enable V2X communication for the automotive sector. ETSI has initiated a project to develop an Open Source NFV • IEEE standards and ongoing activities in support of various Management and Orchestration (MANO) software stack aligned wireless technologies include: with ETSI NFV - http://osm.etsi.org/ • Packet-based fronthaul transport networks in support of dense ETSI’s ISG on Multi-Access Edge Computing (MEC) develops deployments of very small cells (IEEE P1914.1) specifications to support placing computational functionality in • Radio over Ethernet (IEEE P1914.3) in support of backhaul and networks closer to the end user. This will reduce latency in a range fronthaul over ethernet of 5G applications. • Precision Timing Protocol (IEEE 1588) which enables phase synchronous wireless networks such as LTE TDD ETSI’s new group on Experiential Networked Intelligence (ENI) will • IEEE 802 access network (IEEE P802.1CF) and time sensitive help operators leverage Artificial Intelligence (AI) techniques to networking for fronthaul (P802.CM) address some of the challenges of future network deployment and • Tactile networking: P1918.1 covering application scenarios, operation. 5G will also be underpinned by an evolution of network architecture and functions, P1918.1.1 specifies Haptic Codecs protocols, an area explored by ETSI’s ISG on Next Generation • Radio Regulatory Technical Advisory Group (802.18) and Wireless

Protocols (NGP). The ETSI Summit on 5G Network Infrastructure Coexistence (802.19) in April 2017 explored how the development of core network infrastructure will complement radio access to meet overall 5G For a list of these and other IEEE standardization activities related system requirements. to 5G and next generation communications technologies, please see: https://ieeesa.io/rp-5g The advent of 5G will require fresh approaches to the efficient use of finite spectrum resources to meet projected growth in media-rich ITU traffic. ETSI continues to explore improvements in spectral efficiency In ITU, 5G technologies are discussed under the IMT-2020 banner. and advances in spectrum-sharing techniques. Of particular interest to 5G operators are as yet unexploited radio frequencies in the In November 2015 the ITU-T Focus Group on IMT-2020 delivered millimetre wave band. This is an area being explored by the ETSI a Gap Analysis document “overview of technical developments at KEY ENABLERS AND SECURITY AND ENABLERS KEY ISG on millimetre Wave Transmission (mWT). the network part of the 5G networks” including 85 technical areas for future 5G standardization and nine deliverables in the following areas: ETSI is developing standards for monitoring and controlling power consumption in 5G networks, in TC EE (Environmental Engineering). • terms and definitions for IMT-2020; 2019 This will be a significant factor in the viability of 5G, both • high-level network architecture for 5G; network softwarization; • economically and environmentally. • Information Centric Networking (ICN); • Fixed and Mobile Convergence. GSMA See a related flipbook at: http://www.itu.int/en/publications/ The GSMA (Global System for Mobile Communications) represents Documents/tsb/2017-IMT2020-deliverables/mobile/index.html#p=1 the interests of mobile operators worldwide, uniting nearly 800 operators with more than 300 companies in the broader mobile ecosystem, including handset and device makers, and software companies. Mobile operators will play a key role in 5G, as they will provide the infrastructure and services to a wide spectrum of 5G applications, from consumer mobile telephony to vertical industrial applications such as agricultural monitoring.

For more details see https://www.gsma.com/futurenetworks/ technology/understanding-5g/ ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

13 Since then, ITU-T SG13, SG11, SG15 and SG5, complemented by ITU-R WP5D are driving the 5G standardization in ITU and have • Dependencies on ongoing IETF work: The IETF Deter- already approved 11 technical Recommendations, 3 Supplements ministic Networking (DETNET) Working Groupdefines and 8 Reports with about 37 open work items covering the mechanisms to guarantee deterministic delays for following topics: Information Centric Networking (ICN); Network some flows across a network. As one of the 5G use Sofwarization/MANO; Definitions; Slicing; Quality of Service (QoS); cases is time-critical communication and low-latency Network Architecture; Network Capability Exposure; Fixed- Mobile applications, this is a component technology that is Convergence (FMC); Disaster Relief Applications; Spectrum Management; Transport Networks (e.g. Fronthaul, Middlehaul, being looked at. Similarly, IETF routing-related work Backhaul); Radio-Over-Fibre (RoF); Signalling, Control and Protocols such astraffic engineering, service chainingandsource as well as Environmental Aspects of IMT-2020/5G. routingare likely tools for managing traffic flows in 5G

For more details see http://www.itu.int/en/ITU-T/ networks, as they are for other large service provider studygroups/2017-2020/13/Documents/5G networks. 5G-related topics are also discussed in the- Distributed Mobility ManagementWorking Group. • There are many IETF tools already for dealing with OTHER ACTIVITIES RELATED TO virtualisation and separation of networks (see 3.1.2 STANDARDISATION Cloud computing, below), so the first order of business is mapping what can be done with those tools for the EC 5G use cases. There are several projects funded by the European Commission, https://trac.ietf.org/trac/iab/wiki/ dealing with 5G standardisation. Also, the 5G PPP deals with some Multi-Stake-Holder-Platform#FiveG issues connected to 5G standardisation. https://5g-ppp.eu/

ADDITIONAL INFORMATION

Interactions between IETF and 5G developments fall into several categories:

• New dependencies on existing IETF technology: For instance, introducing a flexible authentication framework based on EAP (RFC 3748, RFC 5448). This work is being addressed in the EAP Method Update (EMU) Working Group. This working group has been chartered to provide updates to some commonly used EAP methods. Specifically, the working group shall produce documents to: KEY ENABLERS AND SECURITY AND ENABLERS KEY -- Provide guidance or updates to enable the use of TLS 1.3 in the context of EAP TLS (RFC 5216). 2019

• Update the security considerations relating to EAP TLS, to document the implications of using new vs. old TLS versions, any recently gained new knowledge on vulnerabilities, and the possible implications of pervasive surveillance. -- Update the EAP-AKA’ specification (RFC 5448) to ensure that its capability to provide a cryptographic binding to network context stays in sync with what updates may come to the referenced 3GPP specifications through the use of EAP in 5G. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

14 In 2012, the Article 29 data protection working party issued CLOUD on opinion on cloud computing. This opinion has outlined how the wide scale deployment of cloud computing COMPUTING services can trigger a number of data protection risks, mainly a lack of control over personal data as well as POLICY AND LEGISLATION insufficient information with regard to how, where and by POLICY OBJECTIVES whom the data is being processed/sub-processed.

Establishing a coherent framework and conditions for The proposed actions follow the direction as outlined in cloud computing was one of the key priorities of the digital the EU Communication on ICT standardisation priorities agenda for Europe. The digital single market strategy con- which identified cloud as a key priority for Europe. The ac- firmed the importance of cloud computing, which is driv- tions include a follow-up of cloud standards coordination ing a paradigm shift in the delivery of digital technologies, started in 2012/2013 when the Commission asked ETSI enhancing innovation, digital single market and access to to coordinate stakeholders to produce a detailed map of content. the necessary standards (e.g. for security, interoperability, data portability and reversibility).

EC PERSPECTIVEAND PROGRESS The Cloud Select Industry Group (C-SIG) has been open REPORT to all organisations, groups and individuals having a professional interest in cloud computing matters and are The key role of cloud computing is established through active in the European cloud market. The Communication the European Cloud Initiative and through the initiative on “Unleashing the Potential of Cloud Computing in Europe” Building a European Data Economy. Cloud computing is de- (2012) identified key actions to be supported by Cloud Se- veloping fast.Estimatesindicate that these developments lect industry Groups. See section C1 below. could lead to the growth of the European cloud market from €9.5bn in 2013 to €44.8bn by 2020, i.e. almost five The Commission is also pursuing international cooper- times the market size in 2013. The latestEurostat data- ation in the field of cloud computing, and a number of available (end of 2014) shows the current state of play in policy and joint research initiatives have been put in place the European Union regarding the use of cloud computing with Japan, Brazil and South Korea. by enterprises. The main findings are summarised below: The Commission has also funded the CloudWatch2 project • 19% of EU enterprises used cloud computing in 2014, which, among others, reported on the status of interoper- mostly for hosting their e-mail systems and storing ability and security standards, developed a catalogue of files in electronic form. cloud services, mapped EU cloud services and providers. • 46% of those firms used advanced cloud services relating to financial and accounting software applica- When it comes to certification and ways for customers KEY ENABLERS AND SECURITY AND ENABLERS KEY tions, customer relationship management or to the use to know and be assured that their data is equally safe of computing power to run business applications. no matter where they are located or who provides the

• Four out of ten enterprises (39%) using the cloud service, the Commission launched the study Certification 2019 • reported the risk of a security breach as the main limit- Schemes for Cloud Computing (SMART 2016/0029) and ing factor in the use of cloud computing services. a public consultation which ended in October 2017. • A similar proportion (42%) of those not using the cloud reported insufficient knowledge of cloud computing as In the view of facilitating a fair market for the consum- the main factor that prevented them from using it. ers, the Commission also launched a study on Switching cloud providers (SMART 2016/0032) to collect evidence The development of the cloud computing market and the on legal, economic, and technical issues when switching efficient delivery of cloud services particularly depend on from provider. the ability to build economies of scale. The establishment of a Digital Single Market will unlock the scale necessary for cloud computing to reach its full potential in Europe. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

15 In April 2018 the Commission launched two DSM (Dig- • Directive (EU) 2016/1148 of the European Parliament ital Single Market) Cloud Stakeholder groups (https:// and of the Council of 6 July 2016 concerning meas- ec.europa.eu/digital-single-market/en/news/cloud-stake- ures for a high common level of security of network holder-working-groups-start-their-work-cloud-switching- and information systems across the EU (NIS Directive). and-cloud-security). The DSM Working Group on Cloud Certification Scheme, which will explore an EU certification ICT Strategy of the German Federal Government: Digital scheme on cloud security, started working. The Group con- Germany 2015’ (TFRP011_DE_ict-strategy-digital-ger- sists of national cyber security authorities, cloud service many-2015.pdf), p.10. provider, cloud service customer as well as auditing entities. ‘The new cloud computing action programme comprises four fields of activity: harnessing innovation and eIDAS The European Security Certification Framework (EU-SEC) market potential (research programme for secure Internet strives to address the security, privacy and transparency services, cloud computing for small and medium-sized en- challenges associated with the greater externalisation terprises and the public sector — trusted cloud); creating a of IT to Cloud services. EU-SEC will create a certification pro-innovative framework (security and legal framework, framework under which existing certification and assur- standards, certification); co-shaping international develop- ance schemes can co-exist. EU-SEC is funded by Horizon ments; providing informational guidance’. 2020 and publishes its results at www.sec-cert.eu.

The other DSM Cloud Stakeholder group (working group on REQUESTED ACTIONS cloud switching/ porting data - SWIPO) will define self-regulatory codes of conduct to facilitate data portability and The Communication on ICT Standardisation Priorities for cloud switching. These portability codes intend to support the digital single market proposes priority actions in the article 6 of the proposed free-flow of non-personal data domain of Cloud. Actions mentioned below reflect some regulation due to be completed by the end of 2018. The of them. objective of SWIPO is to reduce the risk of ‘vendor lock- in’, as it will be easier to switch providers when it is clear ACTION 1 Identify needs for ICT standards to further which processes, technical requirements, timeframes and improve the interoperability, data protection and porta- charges apply in case a professional user wants to switch bility of cloud services and start respective development to another provider or port data back to its own IT sys- activities. tems. ACTION 2 Promote the use of the ICT standards needed A study on the role of open source in standard setting is to further improve the interoperability, data protection and currently carried out on behalf of JRC and its results are portability of cloud services. being presented and discussed (it is expected to finish in May 2019). The objective of the study is to identify pos- ACTION 3 Further strengthen the interlock between KEY ENABLERS AND SECURITY AND ENABLERS KEY sible commonalities and barriers for interaction between standardisation and open source in the area of Cloud and standardisation and open source (OSS) processes and in establish and support bilateral actions for close collabora- 2019

• particular the interplay between OSS and FRAND licensing tion of open source and standardisation. in standardisation. ACTION 4 Promote international standards on service level agreements (SLAs) and usage of the cloud code of REFERENCES conduct (CoC).

• COM(2016)176 “ICT Standardisation priorities for the ACTION 5 ESOs are asked to update the mapping of digital single market” cloud standards and guidelines for end-users (especially • COM(2016)178 “European cloud initiative — building a SMEs and the public sector), in collaboration with inter- competitive data and knowledge economy in Europe” national SDOs, cloud providers and end users. This action (Along with SWD(2016)106 and SWD(2016)107) could also draw on the material developed, e.g. to update • COM(2012)529 “Unleashing the potential of cloud the standards mapping carried out by cloud standards co- computing in Europe” ordination phases 1 & 2.

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING • COM(2015)192 “A digital single market strategy for Europe” 16 Interfaces (APIs) to enable MEC services. To application developers ACTION 6 Promote the use of the ISO/IEC JTC 1 reference and content providers, the access network offers a service cloud architecture and define generic cloud architecture environment with ultra-low latency and high bandwidth and direct building blocks. Map available standards to the generic access to real-time network information that can be used by cloud architecture building blocks. Define privacy, security applications and services to offer context-related services. and test standards for each building block. This will also ETSI ISG NGP is investigating communications and networking help determine which standards can be used for open protocols to provide the scale, security, mobility and ease of cloud platforms and architectures taking into account the deployment required for a connected society. The industry has key role of open source for cloud infrastructure design and reached a point where forward leaps in the technology of the local access networks (such as LTE-A, G.FAST, DOCSIS 3.1 and implementations. 5G) will not deliver their full potential unless, in parallel, the entire infoComms protocol stacks evolve more holistically. The driving vision is a considerably more efficient Internet that is far more ACTIVITIES AND attentive to user demand and responsiveness — whether “the user” is human or millions of things. Therefore, the ISG will stimulate ADDITIONAL INFORMATION closer cooperation over standardisation efforts for generational changes in communications and networking technology.

RELATED STANDARDISATION ISO/IEC ISO/IEC JTC 1/SC 38: Cloud computing and distributed ACTIVITIES applications A full suite of standards is available and in progress in ISO/IEC JTC CEN-CENELEC 1 SC 38 on cloud computing technologies including, most notably, When it comes to Cloud Security, CEN-CLC/JTC 13 ‘Cybersecurity the ISO Cloud Reference Architecture but also work on vocabulary, and Data protection’ mirrors the activities of ISO/IEC JTC 1 SC SLAs, etc. This is complemented by work in ISO/IEC JTC 1 SC27 on 38 ‘Cloud Computing and distributed platforms’, and considers in cybersecurity and on more specific work as on Virtualisation. Below this respect the potential adoption of International Standards as is a non-exhaustive list of relevant ISO standards. European Standards, where market relevant. CEN-CLC/JTC 13’s http://www.iso.org/iso/jtc1_sc38_home scope covers the development of standards for cybersecurity and • ISO/IEC 27017 — Code of practice for information security data protection covering all aspects of the evolving information controls based on ISO/IEC 27002 for cloud services society. This includes notably: Management systems, frameworks, • ISO/IEC 27018 — Code of practice for personally identifiable methodologies; Data protection and privacy; Services and products information (PII) protection in public cloud acting as PII evaluation standards suitable for security assessment for large processors companies and small and medium enterprises (SMEs); Competence • ISO/IEC 27036-4 — Information security for supplier requirements for cybersecurity and data protection; Security relationships — Part 4: Guidelines for security of cloud services requirements, services, techniques and guidelines for ICT systems, • ISO/IEC 19086-1 — Cloud computing — service level agreement services, networks and devices, including smart objects and (SLA) framework and terminology — Part 1: Overview and distributed computing devices. concepts [publication imminent] ETSI • ISO/IEC 19941 Cloud Computing — Interoperability and portability In January 2016, the (now closed) ETSI Cloud Standards • ISO/IEC 19944 Cloud Computing — Cloud services and devices: Coordination (CSC) Task Force has produced four reports on user’s data flow, data categories and data use KEY ENABLERS AND SECURITY AND ENABLERS KEY needs, on standards an open source, on interoperability and • ISO/IEC TR 22678 -- Cloud Computing -- Guidance for Policy security, and on standards maturity assessment, available under Development http://csc.etsi.org/. • ISO/IEC TR 23186 -- Cloud computing -- Framework of trust for 2019

Network Functions Virtualisation (NFV) adapts standard IT processing of multi-sourced data • virtualisation technologies, consolidating heterogeneous network • ISO/IEC 22624 -- Cloud Computing -- Taxonomy based data infrastructures based on disparate, ad hoc equipment types onto handling for cloud services (final stages of approval) industry standard servers, switches and storage. This sees network • ISO/IEC CD 22123 -- Cloud Computing -- CONCEPTS AND functions running as software on a homogeneous ‘off the shelf’ TERMINOLOGY (work in progress) infrastructure that can be introduced to various network locations • ISO/IEC TS 23167 -- Cloud Computing -- Common Technologies as needed. and Techniques (work in progress) • ISO/IEC TR 23188 -- Cloud computing -- Edge computing ETSI’s NFV Industry Specification Group (ISG) is developing landscape (work in progress) enhancements of the NFV architecture for providing “PaaS”-type • ISO/IEC JTC 1/SC 27: Security Techniques: Development of capabilities and supporting virtualised network functions (VNFs) standards for the protection of information and ICT which follow “cloud-native” design principles. It is also developing a specification of criteria to help characterize cloud-native VNFs. This includes generic methods, techniques and guidelines to address both security and privacy aspects Multi-access Edge Computing (MEC) provides IT and cloud http://www.iso.org/iso/iso_technical_committee?commid=45306 computing capabilities within the access segments of network

infrastructure, in close proximity to network users. ETSI’s ISG on STANDARDISATION ICT FOR PLAN ROLLING MEC is developing a set of standardized Application Programming 17 ITU The Network Virtualization Overlays (NVO3) Working Group develops a set of protocols and extensions that enable network ITU-T Study Group 13 leads ITU’s work on standards for future virtualization within a datacenter environment that assumes an networks and 5G and is the primary SG working on cloud IP-based underlay. An NVO3 solution provides layer 2 and/or layer 3 computing. To this end, it approved 15 recommendations covering services for virtual networks enabling multi-tenancy and workload different aspects of cloud computing from terminology and mobility, addressing management and security issues. overview to reference architecture and functional requirements for technologies supporting XaaS and inter-cloud computing. The System for Cross-domain Identity Management (SCIM) Working http://www.itu.int/rec/T-REC-Y/e Group worked on standardising methods for creating, reading, searching, modifying, and deleting user identities and identity- This work is complemented by SG11 for cloud computing related objects across administrative domains, with the goal of conformance and interoperability testing (Approved Q.Supplement simplifying common tasks related to user identity management in 65 on Cloud computing interoperability activities and services and applications. Recommendation ITU-T Q.4040 “The framework and overview https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder-Platform#Cloud. of Cloud Computing interoperability testing”) and SG17 for cloud computing security. The cloud computing roadmap, maintained by OGF SG13, lists and points to cloud computing standardisation efforts Open Grid Forum (OGF) is a leading standards development deliverables across telco/IT industry. organisation operating in the areas of grid, cloud and related forms https://extranet.itu.int/sites/itu-t/Roadmaps/SitePages/JCA-Cloud- of advanced distributed computing. The OGF community pursues Standard.aspx these topics through an open process for development, creation and Also, SG13 is progressing the work on distributed cloud, cloud promotion of relevant specifications and use-cases. service brokerage, data storage federation, containers and micro- http://www.ogf.org/ services requirements for physical machinery, requirements for inter-cloud data management and inter-cloud trust management. OMG http://itu.int/ITU-T/go/sg13 Object Management Group (OMG): the OMG’s focus is always SG17 started approval of Data security requirements for the on modelling, and the first specific cloud-related specification monitoring service of cloud computing (X.dsms), and is working on efforts have only just begun, focusing on modelling deployment of Security requirements of public infrastructure as a service (IaaS) in applications & services on the clouds for portability, interoperability cloud computing (X.SRIaaS) and Security requirements of Network & reuse. http://www.omg.org/ as a Service (NaaS) in cloud computing (X.SRNaaS). Hosted by the OMG is the Cloud Standards Customer Council, http://itu.int/ITU-T/go/sg17 which has produced a series of customer-oriented white papers on diverse topics related to cloud computing, all of which are publicly IEEE accessible at: http://www.cloud-council.org/resource-hub.htm In addition to continuing work on cloud computing standards projects, IEEE has new standards projects on edge and fog OASIS computing which further distributes and disperses computing OASIS hosts multiple standardisation projects for cloud computing assets. https://ieeesa.io/rp-cloudcomputing management, interoperability and functionality, including

IETF Cloud Application Management for Platforms (CAMP) https://www.oasis-open.org/committees/camp, The IETF has multiple groups working on standards for virtualization techniques, including techniques used in cloud Cloud Authorisation project, the OASIS Identity in the Cloud project computing and datacenters. https://www.oasis-open.org/committees/id-cloud, KEY ENABLERS AND SECURITY AND ENABLERS KEY

The Layer 2 Virtual Private Networks (L2VPN) Working OASIS Open Data Protocol (Odata) Protocol Group produced specifications defining and specifying solutions for https://www.oasis-open.org/committees/odata,

2019 supporting provider-provisioned Layer-2 Virtual Private Networks • Topology and Orchestration Specification for Cloud Applications (L2VPNs). They also addressed requirements driven by cloud (TOSCA) computing services and data centers as they apply to Layer-2 VPN https://www.oasis-open.org/committees/tosca. services. The L2VPN Service Model (L2SM) Working Group is tasked to created a data model that describes an L2VPN service. The OASIS TOSCA TC and ETSI NFV ISG are cooperating to provide comments on each other’s specifications, and sharing content, to The Layer 3 Virtual Private Networks (L3VPN) Working Group was align their Network Functions Virtualisation (NFV) service models responsible for defining, specifying and extending solutions for and specifications. supporting provider-provisioned Layer-3 (routed) Virtual Private https://www.oasis-open.org/committees/tc_cat.php?cat=cloud Networks (L3VPNs). These solutions provide IPv4, IPv6, and MPLS services including multicast.

The Layer Three Virtual Private Network Service Model (L3SM) Working Group was tasked to create a YANG data model that describes an L3VPN service (an L3VPN service model) that can be used for communication between customers and network operators, and to provide input to automated control and ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING configuration applications. 18 OFE TM Forum

Recently Open Forum Europe (OFE) carried out a study on behalf TM Forum: The primary objective of TM Forum’s Cloud Services of the European Commission, entitled “Standards and Open Source: Initiative is to help the industry overcome these barriers and assist bringing them together”. The aim of this study was to analyse and in the growth of a vibrant commercial marketplace for cloud- make practical progress on the collaboration models between SDOs based services. The centrepiece of this initiative is an ecosystem and cloud open source software development initiatives, and to of major buyers and sellers who will collaborate to define a range develop a roadmap of actions to improve the integration of open of common approaches, processes, metrics and other key service source communities in the standard setting process. enablers. http://www.tmforum.org/DigitalServices/13907/home.html https://ec.europa.eu/digital-single-market/en/news/ standards-and-open-source-bringing-them-together SNIA

Storage Networking Industry Association (SNIA): The Cloud Work Group exists to create a common understanding among buyers and OTHER ACTIVITIES RELATED TO suppliers of how enterprises of all sizes and scales of operation STANDARDISATION can include cloud computing technology in a safe and secure way in their architectures to realise its significant cost, scalability and C-SIGs agility benefits. It includes some of the industry’s leading cloud providers and end-user organisations, collaborating on standard The cloud select industry groups as a contribution from Europe to models and frameworks aimed at eliminating vendor lock-in for the global cloud standardisation community. enterprises looking to benefit from cloud products and services. Cloud Select Industry Group on Code of Conduct: the European http://www.snia.org/cloud Commission has been working with industry to finalise a code of conduct for cloud computing providers. The code of conduct supports a uniform application of data protection rules by cloud service providers. The Code of Conduct for Protection of Personal ADDITIONAL INFORMATION Data in cloud services has been published in June 2016. Strong relationship with ISO/IEC 27018 standard. Open source projects address particular aspects of cloud Cloud Select Industry Group on Service Level Agreements: the computing (e.g. OpenStack (IaaS), the Open Networking goal of this subgroup is to work towards the development of standardisation guidelines for SLAs for cloud services. Work was Foundation (ONF), Cloud Foundry (PaaS) and Docker (Con- submitted to ISO/IEC SC38 committee as input to the work on the tainer technology)) and as such, open source communities 19086 standards. should be encouraged to collaborate with standardisation

Cloud Select Industry Group on Certification Schemes: the Digital and submit their APIs for standardisation Single Market Strategy 2015 (DSM) committed the European Commission to delivering a European Cloud Initiative, including certification.

GICTF

Global Inter-Cloud Technology Forum (GICTF) is promoting standardisation of network protocols and the interfaces through which cloud systems inter-work with each other, to promote KEY ENABLERS AND SECURITY AND ENABLERS KEY

international interworking of cloud systems, to enable global provision of highly reliable, secure and high-quality cloud services,

and to contribute to the development Japan’s ICT industry and to 2019 the strengthening of its international competitiveness. • http://www.gictf.jp/index_e.html.

OCC

The Open Cloud Consortium (OCC) supports the development of standards for cloud computing and frameworks for interoperating between clouds; develops benchmarks for cloud computing; and supports reference implementations for cloud computing, preferably open source reference implementations. The OCC has a particular focus in large data clouds. It has developed the MalStone Benchmark for large data clouds and is working on a reference model for large data clouds. http://opencloudconsortium.org/ ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

19 A common standard for the referencing of open data in PUBLIC SECTOR the European open data portals would be useful. A candidate for a common standard in this area is the Application INFORMATION, Profile for data portals in Europe (DCAT) and the FIWARE OPEN DATA AND open stack-based specification and open standards APIs18. The DCAT Application Profile has been developed as a BIG DATA common project from the ISA2 programme, the Publica- tions Office (PO) and CNECT to describe public-sector data POLICY AND LEGISLATION catalogues and datasets and to promote the specification POLICY OBJECTIVES to be used by data portals across Europe. Agreeing on a common application profile and promoting this among With the continuously growing amount of data (often re- the Member States is substantially improving the interop- ferred to as ‘big data’) and the increasing amount of open erability among data catalogues and the data exchange data, interoperability is increasingly a key issue in exploit- between Member States. The DCAT-AP is the specification ing the value of this data. used by the European Data Portal, which is part of the Connecting Europe Facility infrastructure, as well as by a Standardisation at different levels (such as metadata growing number of Member States open data portals. The schemata, data representation formats and licensing DCAT-AP related work, including its extensions to geospa- conditions of open data) is essential to enable broad data tial data (GeoDCAT-AP) and statistical data (StatDCAT-AP) integration, data exchange and interoperability with the also highlights the need for further work on the core overall goal of fostering innovation based on data. This standard. These are topics for the W3C smart descriptions refers to all types of (multilingual) data, including both & smarter vocabularies (SDSVoc) under the VRE4EIC Pro- structured and unstructured data, and data from different ject https://www.w3.org/2016/11/sdsvoc/. domains as diverse as geospatial data, statistical data, weather data, public sector information (PSI) and research The mapping of existing relevant standards for a num- data (see also the Rolling Plan contribution on ‘e-Infra- ber of big data areas would be beneficial. Moreover, it structures for data and computing-intensive science’), to might be useful to identify European clusters of indus- name just a few. tries that are with sufficiently similar activities to develop data standards. Especially for open data, the topics of data provenance and licensing (for example the potential EC PERSPECTIVEAND PROGRESS of machine-readable licences) need to be addressed, as REPORT encouraged in the current and proposed revision of the PSI Directive (see section B.1). Overall, the application of standard and shared formats and protocols for gathering and processing data from The PSI Directive encourages the use of standard licenc- KEY ENABLERS AND SECURITY AND ENABLERS KEY different sources in a coherent and interoperable manner es which must be available in digital format and be pro- across sectors and vertical markets should be encouraged, cessed electronically (Article 8(2)). Furthermore, the Direc- 2019

• for example in R&D&I projects and in the EU open data tive encourages the use of open licences available online, portal (https://data.europa.eu/euodp) and the European which should eventually become common practice across data portal (https://data.europa.eu/europeandataportal ). the EU (Recital 26). In addition, to help Member States transpose the revised provisions, the Commission adopted Studies conducted for the European Commission showed guidelines19 which recommend the use of such standard that businesses and citizens were facing difficulties in open licences for the reuse of PSI. finding and re-using public sector information. The Com- munication on Open data states that «the availability of the information in a machine-readable format and a thin layer of commonly agreed metadata could facilitate data cross-reference and interoperability and therefore considerably enhance its value for reuse”17.

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING 17 see http://ec.europa.eu/information_society/policy/psi/docs/pdfs/report/ 18 https://ec.europa.eu/isa2/solutions/dcat-application-profile-data-portals-eu- final_version_study_psi.docx for an overview and rope_en ; https://www.fiware.org/ http://ec.europa.eu/information_society/policy/psi/docs/pdfs/opendata2012/ 19 http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=uriserv:O- 20 open_data_communication/en.pdf J.C_.2014.240.01.0001.01.ENG On 25 April 2018, the Commission adopted the ‘data REFERENCES package’ — a set of measures to improve the availability and re-usability of data, in particular publicly held or • COM(2014) 442 Towards a thriving data-driven publicly funded data, including government data and pub- economy licly funded research results, and to foster data sharing in • COM(2016) 176 ICT Standardisation Priorities business-to-business (B2B) and business-to-government for the Digital Single Market (B2G) settings. The availability of data is essential so that • COM(2017) 9 final Building a European Data companies can leverage on the potential of data-driven Economy: A Communication on Building a European innovation or develop solutions using artificial intelligence. Data Economy was adopted on 10 January 2017. This Communication explores the following issues: free flow Key elements of the package are: of data; access and transfer in relation to machine generated data; liability and safety in the context of 1. Review of the Directive on the re-use of public emerging technologies; and portability of non-personal sector information, proposing: data, interoperability and standards. Together with the • enhancing access to and re-use of real-time Communication the Commission has launched a public data notably with the help of Application Pro- consultation. gramming Interfaces (APIs); • Decision (EU) 2015/2240 on interoperability • lowering charges for the re-use of public sector solutions and common frameworks for European information by limiting exceptions to the de- public administrations, businesses and citizens (ISA2 fault upper limit of marginal cost of dissemina- programme) as a means for modernising the public tion and by specifying certain high-value data sector (ISA2) sets which should be made available for free • The PSI Directive (2013/37/EU) on the re-use of (via a delegated act); public sector information (Public Sector Information • allowing for the re-use of new types of data, Directive) was published in the Official Journal on 27 including data held by public undertakings June 2013. The Directive requests to make available in the transport and utilities sector and data for reuse PSI by default, preferably in machine-read- resulting from publicly funded research; able formats. All Member States transposed it into • minimising the risk of excessive first-mover national legislation. advantage in regard to certain data, which • COM(2011) 882 on Open data could benefit large companies and thereby • COM(2011) 833 on the reuse of Commission limit the number of potential re-users of the documents data in question. • COM(2015)192 “A Digital single market strategy for 2. Review of the 2012 Recommendation on access to Europe” and preservation of scientific information, focusing on: • COM(2018)234 “Proposal for a Directive on the re- • evaluating the uptake of the 2012 Recommen- use of public sector information (recast) dation as well as its effectiveness in creating a • C(2018) 2375 final “Recommendation on access to KEY ENABLERS AND SECURITY AND ENABLERS KEY level playing field for Member States, research- and preservation of scientific information” ers and academic institutions; • COM(2018) 232 final “Communication Towards a

• updating and reinforcing the overall policy with common European data space” 2019 • the development of guidelines on opening up research data and the creation of incentive schemes for researchers sharing data; REQUESTED ACTIONS • ensuring coherence with the European Open Science Cloud. The Communication on ICT Standardisation Priorities for 3. Development of guidance on private sector data the Digital Single Market proposes priority actions in the sharing domain of Big Data. Actions mentioned herein below re- • The Commission has proposed guidance to com- flect some of them. panies that wish to make data available to other companies or to public authorities, which lays down principles of fair data sharing practices and includes guidance on legal, business and technical

aspects of B2B and B2G data sharing. STANDARDISATION ICT FOR PLAN ROLLING

21 ACTION 1 Invite the CEN to support and assist the DCAT- AP standardisation process. DCAT-AP contains specifica- ACTIVITIES AND tions for metadata records to meet the specific application needs of data portals in Europe while providing seman- ADDITIONAL INFORMATION tic interoperability with other applications on the basis of reuse of established controlled vocabularies (e.g. Eu- RELATED STANDARDISATION roVoc20 and mappings to existing metadata vocabularies ACTIVITIES (e.g. SDMX, INSPIRE metadata, Dublin Core, etc.). DCAT-AP and its extensions have been developed by multi-sectorial ETSI expert groups. Experts from international standardisation ETSI’s oneM2M Partnership Project has specified the oneM2M Base organisations participated in the group together with open Ontology (oneM2M TS-0012, ETSI TS 118 112) to enable syntactic data portal owners to ensure the interoperability of the and semantic interoperability for IoT data. resulting specification and to assist in its standardisa- ETSI TC SmartM2M is developing a set of reference ontologies, tion. These mappings have provided already a DCAT-AP mapped onto the oneM2M Base Ontology. This work has extension to cover geospatial datasets, called Geo/DCAT- commenced with the SAREF ontology, for Smart Appliances, but is being extended to add semantic models for data associated with AP. The specification was developed under the coordina- smart cities, industry and manufacturing, smart agriculture and the tion of the JRC team working on the implementation of food chain, water, automotive, eHealth/aging well and wearables. the INSPIRE Directive. Another extension to describe sta- ETSI’s ISG for cross-cutting Context Information Management tistical datasets, called Stat/DCAT-AP21, was published (CIM) has developed the NGSI-LD API (GS CIM 004 and GS CIM end 2016. This work has been coordinated by EUROSTAT 009) which builds upon the work done by OMA Specworks and and the Publications Office. FIWARE. NGSI-LD is an open framework for exchange of contextual information for smart services, aligned with best practise in linked ACTION 2 Promote standardisation in/via the open data open data. infrastructure, especially the European Data Portal be- ETSI’s ISG MEC is developing a set of standardized Application ing deployed in 2015-2020 as part of the digital service Programming Interfaces (APIs) for Multi-Access Edge Computing infrastructure under the Connecting Europe Facility pro- (MEC). MEC technology offers IT service and Cloud computing gramme, capabilities at the edge of the network. Shifting processing power

away from remote data centres and closer to the end user, it enables an environment that is characterized by proximity and ACTION 3 Support of standardisation activities at dif- ultra-low latency, and provides exposure to real-time network and ferent levels: H2020 R&D&I activities; support for inter- context information. nationalisation of standardisation, in particular for the ETSI’s TC ATTM committee has specified a set of KPIs for energy DCAT-AP specifications developed in the ISA2 programme management for data centres (ETSI ES 205 200-2-1). These have (see also action 2 under eGovernment chapter), and for been combined into a single global KPI for data centres, called specifications developed under the Future Internet pub- DCEM, by ETSI’s ISG on Operational energy Efficiency for Users lic-private-partnership, such as FIWARE NGSI and FIWARE (OEU), in ETSI GS OEU 001. CKAN.

KEY ENABLERS AND SECURITY AND ENABLERS KEY ITU-T

Recommendation Y.3600 provides requirements, capabilities and ACTION 4 Bring the European data community together, use-cases of cloud computing based big data together with the 2019

• including through the H2020 Big Data Value public-pri- system context. Cloud computing-based big data provides the vate partnership[6], to identify missing standards and de- capability to collect, store, analyse, visualize and manage varieties sign options for a big data reference architecture, taking of large volume datasets, which cannot be rapidly transferred and into account existing international approaches, in particu- analysed using traditional technologies. lar the work in ISO/IEC JTC 1 SC 42. http://itu.int/ITU-T/workprog/wp_item.aspx?isn=9853 SG13 published a roadmap for big data standardization in ITU-T ACTION 5 Encourage the CEN to coordinate with the rel- under the name of Y.3600-series Supplement 40 “Big Data evant W3C groups on preventing incompatible changes Standardisation Roadmap” that includes the standardisation landscape, identification/prioritization of technical areas and and on the conditions for availability of the standard(s), to possible standardisation activities. The work is progressing on big standardise the DCAT-AP. data exchange framework and requirements, requirements for data provenance, big data metadata framework and conceptual model, requirements for data integration, data storage federation, data preservation, functional architecture of big data and BDaaS and some aspects of big data-driven networking like requirement of big ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING data-driven networking mobile network traffic management and 20 http://eurovoc.europa.eu/drupal/ 21 https://joinup.ec.europa.eu/asset/stat_dcat_application_profile/home planning and application of DPI technology. 22 http://itu.int/itu-t/workprog/wp_search.aspx?sg=13 ITU-T SG20 “Internet of things (IoT) and smart cities & communities integrated with other XML systems, and increasingly used as a (SC&C)” is studying big data aspects of IoT and SC&C. For example standard format for publicly-released government information. ODF Recommendation ITU-T U.4114 “Specific requirements and was originally approved as ISO/IEC 26300:2006, and ODF v1.2 has capabilities of the IoT for big data” complements the developments been approved as ISO/IEC 26300:2015. Link: on common requirements of the IoT described in Recommendation https://www.oasis-open.org/committees/office ITU-T Y.4100/Y.2066 and the functional framework and capabilities OASIS XML Localisation Interchange File Format (XLIFF): XLIFF is of the IoT described in Recommendation ITU-T Y.4401/ Y.2068 in an XML-based format created to standardize the way in which terms of the specific requirements and capabilities that the IoT localizable text, metadata and instructions are passed between is expected to support in order to address the challenges related tools and services during a localization process to big data. This Recommendation also constitutes a basis for https://www.oasis-open.org/committees/xliff further standardization work such as functional entities, application programming interfaces (APIs) and protocols concerning big data ISO/IEC JTC1 in the IoT. The JTC 1 work program of work on big data was moved from The Focus Group on Data Processing and Management to support WG 9 to SC 42 in 2018, and WG 9 was disbanded. JTC 1 SC 42 IoT and Smart Cities & Communities was set up in 2017. The Focus has formed WG 2 which is progressing the current projects: ISO/ Group plays a role in providing a platform to share views, to develop IEC 20546 (overview and vocabulary) and ISO/IEC 20547 (big data a series of deliverables, and showcasing initiatives, projects, and reference architecture). In 2019 and beyond, it is anticipated that standards activities linked to data processing and management new projects will be initiated that build on these initial standards. and establishment of IoT ecosystem solutions for data focused There is opportunity for synergies with AI. cities. This Focus Group is expected to develop a standardization roadmap for data management, taking into consideration the IEEE activities currently undertaken by the various standards developing IEEE has a series of standards projects related to Big Data (mobile organizations (SDOs) and forums. health, energy efficient processing, personal agency and privacy) as https://itu.int/en/ITU-T/focusgroups/dpm well as pre-standardisation activities on Big Data and open data: SG17 is working on Security guidelines for Big Data as a https://ieeesa.io/rp-open-big-data Service and Security guidelines of lifecycle management for CEN/CENELEC telecom Big Data. http://itu.int/ITU-T/go/sg17 CEN/WS (Workshop) ISAEN «Unique Identifier for Personal Data Usage Control in Big Data» seeks to operationalize the bourgeoning W3C policy initiatives related to big data, in particular in relation to DCAT vocabulary (done in the linked government data W3C working personal data management and the protection of individuals’ group) fundamental rights. It is set against the backdrop of the rapidly http://www.w3.org/TR/vocab-dcat/ expanding digital era of big data. The unique identifier that will be described in the resulting CWA will serve as a measurement tool After a successful Workshop on Smart Descriptions & Smarter to empower individuals, help them take control of their data, and Vocabularies (SDSVoc) (www.w3.org/2016/11/sdsvoc/) W3C created make their fundamental right to privacy more actionable. the Dataset Exchange Working Group (https://www.w3.org/2017/ dxwg) to revise DCAT, provide a test suite for content negotiation by CEN/WS (Workshop) BDA: This workshop has developed a CWA application profile and to develop additional relevant vocabularies in that aims at defining some technical requirements that will response to community demand. enable innovation in the aquaculture sector, turning the available local and heterogeneous large volumes of data in a universally Work on licence in ODRL continues and has reached a very mature understandable open repository of data assets. These requirements KEY ENABLERS AND SECURITY AND ENABLERS KEY

state: https://www.w3.org/TR/odrl-model/ and https://www.w3.org/TR/ are the results of the research project AQUASMART of which main vocab-odrl/ objective is to enhance innovation capacity to the aquaculture The Data on the web best practices WG has finished its work sector, by addressing the problem of global knowledge access and 2019

successfully (https://www.w3.org/TR/dwbp ) also issuing data data exchanges between aquaculture companies and its related • quality, data usage vocabularies (https://www.w3.org/TR/vocab-dqv stakeholders. CWA 17239 ‘Big Data in Aquaculture’ has been ;https://www.w3.org/TR/vocab-duv) published in January 2018.

OASIS Moreover, CEN and CENELEC are cooperating with BDVA (Big Data Value Association), the private counterpart to the EU Commission to The project addresses querying and sharing of data across implement the BDV PPP programme (Big Data Value PPP). disparate applications and multiple stakeholders for reuse in enterprise, cloud, and mobile devices. Specification development OGC in the OASIS OData TC builds on the core OData Protocol V4 The Open Geospatial Consortium (OGC) defines and maintains released in 2014 and addresses additional requirements identified standards for location-based, spatio-temporal data and services. as extensions in four directional white papers: data aggregation, The work includes, for instance, schema allowing description of temporal data, JSON documents, and XML documents as streams. spatio-temporal sensor, image, simulation, and statistics data (such OData 4.0 and OData JSON 4.0 have been approved as ISO/IEC as “datacubes”), a modular suite of standards for Web services 20802-1:2016 and ISO/IEC 20802-2:2016 allowing ingestion, extraction, fusion, and (with the web coverage https://www.oasis-open.org/committees/odata

processing service (WCPS) component standard) analytics of STANDARDISATION ICT FOR PLAN ROLLING OpenDocument Format (ODF) is an open, standardised format massive spatio-temporal data like satellite and climate archives. for reports, office documents and free-form information, fully OGC also contributes to the INSPIRE project. 23 http://www.opengeospatial.org OTHER ACTIVITIES RELATED TO EU Commission A smart open data project by DG ENV led directly to the STANDARDISATION establishment of the Spatial Data on the Web Working group, a ISA and ISA2 programme of the European Commission collaboration between W3C and the OGC.

The DCAT application profile (DCAT-AP) has been defined. DCAT-AP G8 Open Data Charter is a specification based on DCAT (a RDF vocabulary designed to In 2013, the EU endorsed the G8 Open Data Charter and, with other facilitate interoperability between data catalogues published on the G8 members, committed to implementing a number of open data web) to enable interoperability between data portals, for example to activities in the G8 members’ collective action plan (publication of allow metasearches in the European Data Portal that harvests data core and high-quality datasets held at EU level, publication of data from national open data portals. on the EU open data portal and the sharing of experiences of open Extensions of the DCAT-AP to spatial (GeoDCAT-AP: https://joinup. data work). ec.europa.eu/node/139283 ) and statistical information (StatDCAT- Future Internet Public Private Partnership programme AP: https://joinup.ec.europa.eu/asset/stat_dcat_application_profile/ home ) have also been developed. Specifications developed under the Future Internet public-privatepartnership programme (FP7): https://joinup.ec.europa.eu/asset/dcat_application_profile/description https://joinup.ec.europa.eu/asset/dcat_application_profile/asset_ FIWARE NGSI extends the OMA Specworks NGSI API for context release/dcat-ap-v11 information management that provides a lightweight and simple means to gather, publish, query and subscribe to context CEF information. FIWARE NGSI can be used for real-time open data Under the framework of the Connecting Europe Facility programme management. ETSI’s ISG for cross-cutting Context Information support to the interoperability of metadata and data at national and Management (CIM) has developed the NGSI-LD API (GS CIM EU level is being developed through dedicated calls for proposals 004 and GS CIM 009) which builds upon the work done by OMA Specworks and FIWARE. AquaSmart FIWARE CKAN: Open Data publication Generic Enabler. FIWARE AquaSmart enables aquaculture companies to perform data mining CKAN is an open source solution for the publication, management at the local level and get actionable results. and consumption of open data, usually, but not only, through static The project contributes to standardization of open data in datasets. FIWARE CKAN allows its users to catalogue, upload and aquaculture. Results are exploited through the Aquaknowhow manage open datasets and data sources. It supports searching, business portal. browsing, visualising and accessing open data

www.aquaknowhow.com Big Data Value cPPP TF6 SG6 on big data standardisation: In the big data value contractual public-private-partnership, a Automat dedicated subgroup (SG6) of Task Force 6: Technical deals with big The main objective of the AutoMat project is to establish a novel data standardisation. and open ecosystem in the form of a cross-border Vehicle Big Data Marketplace that leverages currently unused information gathered from a large amount of vehicles from various brands. ADDITIONAL INFORMATION

This project has contributed to standardization of brand- Existing standards should be checked to take account of independent vehicle data. the protection of individuals with regard to personal data

KEY ENABLERS AND SECURITY AND ENABLERS KEY www.automat-project.eu processing and the free movement of such data in the BodyPass BodyPass aims to break barriers between health sector light of data protection principles. Specific privacy by de- and consumer goods sector and eliminate the current data silos. 2019

• sign standards should be identified and when necessary The main objective of BodyPass is to foster exchange, linking and developed. re-use, as well as to integrate 3D data assets from the two sectors. For this, BodyPass adapts and creates tools that allow a secure Since early 2014, French com panies and public bodies exchange of information between data owners, companies and subjects (patients and customers). have been working in the French association for standardisation AFNOR on a white paper on expectations re- The project aims at standardizing 3D data garding standards for big data; see http://www.afnor.org/ www.bodypass.eu liste-des-actualites/actualites/2015/juin-2015/big-data- Odine impact-et-attentes-pour-la-normalisation-decouvrez-le- The Open Data Incubator for Europe (ODINE) is a 6-month incubator livre-blanc-afnor for open data entrepreneurs across Europe. The action is funded with a €7.8m grant from the EU’s Horizon 2020 programme.

Some of the supported SMEs and projects provided contributions to

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING data standardisation. www.opendataincubator.eu 24 The report identified several priorities: INTERNET OF • Data access including open data and governance of data within companies (enhanced exploitation, data THINGS quality, security): mix the requirements of big data into the existing management standards. The development POLICY AND LEGISLATION of a standard regarding data management could be POLICY OBJECTIVES considered. • Data transformation, where three elements are The Internet of Things (IoT) is a key priority area of the dig- identified: ital single market. The IoT is an emerging technology that -- Processes and methods of reversibility in pseud- connects more objects to the internet — including indus- onymisation algorithms, evaluation of system trial processing machines and the items industrially pro- performance (ex: Hadoop), NoSQL query lan- cessed (cyber-physical systems) , household equipment, guage, or visualisation and manipulation process wearable electronics, vehicles, and sensors. The number of big data results ; of such connected devices is expected to exceed 20 billion -- Adapt infrastructures to big data, like cloud by 2020. Besides the innovation potential in many indus- computing for storage and massively parallel trial sectors, the IoT also has the potential to help address architectures; many societal challenges including climate change, re- -- Data quality and data identification source and energy efficiency and ageing. • criteria and methods for characterising sources and information, in terms of per- A large number of proprietary or semi-closed solutions ceived quality and trust in a specific context ; to address specific problems have emerged, leading to • indexing of unstructured data coming from non-interoperable concepts, based on different architec- social networks and data associated with tures and protocols. Consequently, the deployment of tru- mobility and sensors ; ly IoT applications, i.e. where information of connectable “things” can be flexibly aggregated and scaled, has been Identifying the use-cases for big data is essential. Highly limited to a set of “intranets of things — or goods”. visible issues for end-users should be addressed: technical interoperability, SLAs, traceability of treatment, data era- In the emerging IoT economy, voluntary global standards sure, regulatory compliance, data representation, APIs, etc. can accelerate adoption, drive competition, and enable cost -effective introduction of new technologies. Stand- ardisation facilitates the interoperability, compatibility, reliability, security and efficiency of operations on a global scale among different technical solutions, stimulating industry innovation and providing greater clarity to technology evolution. Interoperability between IoT networks KEY ENABLERS AND SECURITY AND ENABLERS KEY operated by different companies along the value chain opens up opportunities to address EU policy objectives,

e.g. greater resource efficiency for a more circular econ- 2019 • omy, sustainable and responsible supply chains through transparency and traceability, and others.

Industry is in the best position to develop the technological standards and solutions to address global IoT ecosystem opportunities and challenges. Therefore, there is a need for a secure solution that is interoperable and scales across a global IoT ecosystem. In this context, the Europe- an large-scale pilots (LSP), which were the subject of a call for proposals in 2016, are supporting the deployment of IoT solutions, by enhancing and testing their acceptability and adoption by users and the public, and by fostering

new market opportunities for suppliers to the EU. STANDARDISATION ICT FOR PLAN ROLLING

25 Large-scale pilots are providing the opportunity to demon- The need is to correctly position IoT standardisation vis- strate actual IoT solutions in real-life settings and should à-vis existing global initiatives such as ISO/IEC JTC 1/SC make it possible for providers to test business opportu- 41 Internet of Things and related technologies, oneM2M, nities. The concept has now been broadened and further and the ITU Study Group 20. Agreement to cooperate on extended to more vertical sectors in the context of the common topics and take up of European results in global ‘Digitising and transforming European industry and servic- action are very encouraging results. es’ focus area for cross-programme integrated activities around major challenges. Calls for proposals in 2018 and Semantic interoperability, security, privacy, and 5G/IoT in- 2019 will result in the launch of more LSPs to notably ad- teractions are emerging as priority topics. dress the digital transformation of manufacturing, health and care, agriculture, connected and automated driving, With the broadening of the vertical foot-prints of IoT the and include integration of space data and associated plat- main challenge is to work in cooperation across partner- forms. ships (PPPs and other alliances), and to ensure dissemination and adoption of best practices across domains, by continuing and deepening the cooperation towards EC PERSPECTIVE AND PROGRESS common objectives to ensure all standardisation efforts REPORT converge. As a concrete first step a joint working group between the DEI stakeholder governance and MSP has been The proposed actions on IoT in previous Rolling Plans fol- created to work on coordination of platform building and lowed the direction as outlined in the EU communication piloting activities and synchronisation and acceleration of on ICT standardisation priorities which identified Internet standardisation efforts. of Things as a key priority for Europe.

One of the major achievements over the last years has REFERENCES been the gradual build of cooperation amongst all actors concerned by IoT standardisation, the organisation of high • COM(216) 176: ICT standardisation priorities for the level events on strategic IoT standardisation issues has digital single market

been proven to be a successful instrument and is now • COM(2016) 180: Digitising European industry reaping common practice in several sectors. the full benefits of a digital single market • SWD(2016) 110/2: Advancing the internet of things ETSI TC Smart M2M has developed a mapping of stand- in Europe ards for IoT and gap analysis taking into account the most • COM(2009)278: “Internet of Things — An action plan promising business models and use-cases, published in for Europe”: Standardisation will play an important ETSI TS 103 375 and TS 103 376, role in the uptake of IoT, by lowering entry barriers to newcomers and operating costs for users, by being IoT standards are notably supporting the emergence of a prerequisite for interoperability and economies of KEY ENABLERS AND SECURITY AND ENABLERS KEY business models unleashing the commercial capabilities scale and by allowing industry to better compete at of systems and devices integrations. Beyond identify- international level. IoT standardisation should aim at 2019

• ing standards, it is also important to identify reference rationalising some existing standards or developing models of implementation that businesses can share. new ones where needed. This approach which was initially followed in the Future • BEREC BoR (16)39, Report on enabling the Internet Internet PPP (FI-PPP), has now been adopted in other in- of Things dustrial organisations such as for example the Alliance for Internet of Things Innovation (AIOTI) and PPPs such as the Big Data Value Association (BDVA) which are now cooperating on common standardisation subjects, as well as sectoral organisation such as the Open & Agile Smart Cities (OASC). AIOTI is also maintaining the High Level Ar- chitecture reference model by incorporating new results from priority topics (e.g. semantic interoperability, security, privacy..). ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

26 in IoT cutting-edge technologies and privacy from mandate M/436 (Privacy and public awareness of RFID applications). It has set up a REQUESTED ACTIONS dedicated ad hoc group to discuss the revision of EN 16570 (public awareness) and EN 16571 (Privacy Impact Assessment) for there The Communication on ICT standardisation priorities for are new consumer privacy and security issues linked to upcoming IoT the digital single market proposes priority actions in the applications. domain of internet of things. Actions mentioned below re- Vertical standardization flect some of them. CEN/TC 251 ‘Health informatics’ on a personal health data management model. ACTION 1 SDOs to complement ongoing gap analysis by CEN/TC 278 ‘Intelligent Transport Systems’ with standardised analysis of gaps in wireless technologies required by IoT, e-language for traffic and travel data exchange between traffic control including URLL (Ultra Reliable Low Latency) technologies centres, traffic information centres and service providers (DATEX). required by Industry Automation. CEN/TC 294 ‘Communication systems for meters’ cooperates with the Zigbee Alliance for the development of European Standards for ACTION 2 SDOs to continue ongoing work in the area of Smart Homes (e.g. application protocols, wired and wireless M-Bus semantic standards for better data interoperability. communication, Wireless mesh networking for meter data exchange).

CEN/TC 442 ‘Building Information Modelling’ for BIM object-oriented ACTION 3 SDOs to provide standards that can be used information, in cooperation with ISO. for compliance for IoT products, systems, applications and CENELEC processes. CLC/TC 57 ‘Power systems management and associated information exchange’ has notably developed European Standards ACTION 4 Develop a European standard for cyber securi- for data models in power systems (EN IEC 61850-x), Application ty compliance of products that is aligned with the current Program interfaces (EN IEC 61970-x) and Data and Communication compliance framework of organisations based on ISO security (EN IEC 62351-x). 270xx and the GDPR regulation. Preferably the standard CLC/TC 205 ‘Home and Building Electronic Systems (HBES)’ has could be used to harmonise the requirements set out in started in 2018 to develop a European Standard on IoT Semantic the NIS directive. Ontology Model Description (prEN 50090-6-2), which will explain the HBES IoT Model structures, semantically expressing the current ACTION 5 Promote the development and foster the HBES Open System solutions, with the goal of improving the adoption of the international Reference Architecture for semantic information HBES IoT gateways or HBES IoT devices IoT developed in ISO/IEC JTC 1 SC41. provide. ETSI

ETSI is addressing the issues raised by connecting potentially ACTIVITIES AND billions of smart objects into a communications network, by developing standards for data security, management, transport, ADDITIONAL INFORMATION and processing. This will ensure interoperable and cost-effective solutions, open up opportunities in new areas such as eHealth and KEY ENABLERS AND SECURITY AND ENABLERS KEY RELATED STANDARDISATION smart metering, and allow the market to reach its full potential. ACTIVITIES ETSI is one of the founding partners in oneM2M, the global

standards initiative for the IoT, and publishes all oneM2M 2019 CEN specifications. ETSI, with the support of the Commission, has • developed the SAREF standard ETSI TS 103 264, a reference Horizontal standardization ontology for smart appliances, which is a first ontology standard in CEN/TC 224 ‘Personal identification and related personal devices’ the IoT ecosystem and sets a template and a base for development addresses Protection Profiles (e.g.EN 419221-5:2018 on ‘Protection of similar standards for other industries, to unlock the full potential Profiles for TSP Cryptographic Modules - Part 5: Cryptographic Module of IoT. SAREF is mapped onto the oneM2M Base Ontology. for Trust Services’) and IoT privacy-related standardization solutions The new SAREF standard will allow appliances, of any type, make (e.g. EN 419212-4:2018 on ‘Application Interface for Secure Elements or manufacturer, to exchange energy related information, with any for Electronic Identification, Authentication and Trusted Service’). energy management system (at home or in the cloud) for energy CEN/TC 225 ‘AIDC technologies’ works in the field of automatic management and keeping the user informed. identification and data capture techniques such as 1D and 2D optical The SAREF model is being extended to add semantic models for data carriers, RFID and RTLS. These technologies are widely used as data associated with smart cities, industry and manufacturing, end points, allowing today the connection of billions of objects. Most IoT smart agriculture and the food chain, water, automotive, eHealth/ applications rely on these technologies, and an increasing number of aging well and wearables.

scenarii involve capturing and processing sensitive and personal data. STANDARDISATION ICT FOR PLAN ROLLING Any information leakage or misuse could seriously compromise users’ ETSI’s ISG on cross-cutting Context Information Management (ISG privacy or security. CEN/TC 225 draws its expertise and legitimacy CIM) is developing Group Specifications (GSs) for applications to 27 publish, discover, update and access context information, initially for parameters and definitions for sensor data related to Internet of a broad range of smart city applications and later for other areas. Things (IoT) implementations.

ETSI has developed Digital Enhanced Cordless Telecommunications For a list of these and other IEEE standardization activities on IoT, (DECT) Ultra-Low Energy (ULE) (ETSI TS 102 939-1 and TS 102 please see: https://ieeesa.io/rp-iot. 939-2), a low-power wireless technology providing optimal radio coverage in indoor scenarios for data services suitable for IETF many home automation applications. DECT ULE reuses the DECT The IETF has a number of Working Groups chartered to develop physical layer, spectrum and channel structure, but with significant standards to support the Internet of Things. differences in the Medium Access Control (MAC) layer, security The IPv6 Over Low Power WPAN (6LOWPAN) Working Group algorithms and channel selection. DECT ULE operates over exclusive developed standards to ensure interoperability between smart license-exempt spectrum (1 880 – 1 900 MHz) which provides object networks and defining the necessary security and a more reliable service than the congested 2,4 GHz band. Target management protocols and constructs for building such networks. applications include home automation and energy control, remote switches, the control of smart appliances, smart metering and The IPv6 over Networks of Resource-constrained Nodes (6LO) temperature controls, security, alarms and eHealth. Working Group develops IPv6 adaptation mechanisms to a wider range of radio technologies including “Bluetooth Low Energy” (RFC ETSI has started the developing of DECT-2020, a 5G radio 7668), ITU-T G.9959 (as used in Z-Wave, RFC 7428), and the Digital interface operating on license exempt spectrum that will support Enhanced Cordless Telecommunications (DECT) Ultra Low Energy Ultra Reliable and Low Latency use cases required by Industry (ULE) cordless phone standard and the low-cost wired networking Automation scenarios, according to IMT-2020 requirements. Two technology Master-Slave / Token-Passing (MS/TP) that is widely Technical Reports, TR 103 515 ‘Study of URLLC use cases” and used over RS-485 in building automation. TR 103 514 “DECT-2020 New Radio” have been published in 2018. The new DECT-2020 air interface will co-exist with the The IPv6 Over Low Power Wide-Area Networks (lpwan) WG focuses existing DECT system. on enabling IPv6 connectivity over the following selection of Low- Power Wide-Area networking technologies: SIGFOX, LoRa?, WI-SUN ETSI has a number of other activities related to radio systems and NB-IOT. for the IoT. These activities include Smart Body Area Networks developed in TC SmartBAN, and standards for ultra-narrowband The Light-Weight Implementation Guidance (LWIG) Working Group radio technology in the TC ERM LTN (Low Throughput Networking) focuses on helping the implementors of the smallest devices. The working group. These are used in existing commercial LPWAN goal is to be able to build minimal yet interoperable IP-capable networks. devices for the most constrained environments.

IEEE The Routing over Low Power and Lossy Networks (ROLL) Working Group is developing standards to support the routing of IEEE has a number of existing standards (current and under communications within low-power and lossy networks. development), activities, and events that are directly related to creating the environment needed for a vibrant IoT, recognising The Constrained RESTful Environments (CORE) Working Group is the value of the IoT to industry and the benefits this technology specifying protocols that allow applications running in resource- innovation brings to the public. Some key standards activities are: constrained environments to interoperate with each other and the rest of the Internet. CORE is one of the most active IoT groups. Its Architectural framework: main output centres around the “Constrained Application Protocol” The focus of IEEE P2413 is to develop a standard for the (CoAP, RFC 7252), a radically simplified UDP-based analog to HTTP. architectural framework for the Internet of Things, which includes Extensions to CoAP enable group communications (RFC 7390) and descriptions of various IoT domains, definitions of IoT domain low-complexity server-push for the observation of resources (RFC KEY ENABLERS AND SECURITY AND ENABLERS KEY

abstractions, and identification of commonalities between different 7641). This is complemented by a discovery and self-description IoT domains. The architectural framework defined in this standard mechanism based on a weblink format suitable for constrained devices (RFC 6690). Current WG activities focus on extensions 2019 will promote cross-domain interaction, aid system interoperability • and functional compatibility. that enable transfer of large resources, use of resource directories for coordinating discovery, reusable interface descriptions, and The focus of IEEE P1931.1, the standard for an architectural the transport of CoAP over TCP and TLS. CoRE is also looking at a framework for real-time onsite operations facilitation (ROOF) data format to represent sensor measurements, which will benefit defines how an end user is able to securely provision, commission from the “Concise Binary Object Representation” (CBOR) (RFC and decommission devices. 7049), a JSON analog optimised for binary data and low-resource Harmonization and security of IoT: The IEEE 1451-99 is focused implementations. on developing a standard for harmonization of Internet of Things Security aspects of the IoT are being addressed in the following (IoT) devices and systems. This standard defines a method for data Working Groups: sharing, interoperability, and security of messages over a network, where sensors, actuators and other devices can interoperate, • The Trusted Execution Environment Provisioning (TEEP) WG is regardless of underlying communication technology. working on standardising protocols for provisioning applications into secure areas of computer processors. Sensor Performance and Quality: Sensors are fundamental to IoT • The Software Updates for Internet of Things (SUIT) WG is working ecosystem with large volume of different sensors integrated into a on mechanisms for securely updating the firmware in IoT

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING complex framework. IEEE 2700 proposes a common framework for devices. sensor performance specification terminology, units, conditions and 28 limits is provided. IEEE P2510 defines quality measures, controls, • The Authentication and Authorisation for Constrained It is also the lead study group for Internet of things identification. Environments (ACE) WG is working on a standardised solution http://itu.int/go/tsg20 for authentication and authorisation to enable authorised access Definition of IoT in Recommendation ITU-T Y.4000/Y.2060 to resources on a device in constrained environments. In such “Overview of the IoT” http://itu.int/itu-t/Y.4000 environments, typical for the IoT, the network nodes are limited in CPU, memory and power. This work was supported by the IoT-relevant recommendations have been developed in various COSE WG that built simplified CBOR analogs for the JSON object ITU-T study groups and are now wound under the Y.4000 sub- signing and encryption methods that were developed in the JOSE series. WG. Among the approved standards are ITU-T Y.4111 “Semantics- • The DTLS In Constrained Environments (DICE) WG focused based requirements and framework of the IoT”, ITU-T Y.4112 on supporting the use of DTLS Transport-Layer Security in “Requirements of the plug and play capability of the IoT”, ITU-T these environments. Such constrained environments, including Y.4113 “Requirements of the network for the Internet of Things”, constrained devices (e.g. memory, algorithm choices) and ITU-T Y.4115 “Reference architecture for IoT device capabilities constrained networks (e.g. PDU sizes, packet loss), are typical for exposure”, ITU-T Y.4451 “Framework of constrained device the IoT, Smart grids, etc. networking in the IoT environments”, ITU-T Y.4453 “Adaptive While the IoT-oriented IETF working groups have already produced software framework for IoT devices” , ITU-T Y.4552 “Application the first wave of mature standards for IoT, new research questions support models of the IoT” and ITU-T Y.4553 “Requirements of are emerging based on the use of those standards. The IRTF Thing- smartphone as sink node for IoT applications and services”. to-Thing Research Group (T2TRG) was chartered in 2015 to The ITU-T joint coordination activity on IoT and smart cities investigate open research issues in IoT, focusing on issues that and Communities (JCA-IoT and SC&C) continues its role of exhibit standardisation potential at the IETF. promoting international coordination among SDOs in this area of ISO/IEC JTC 1 standardization. http://itu.int/en/ITU-T/jca/iot

ISO/IEC JTC 1 SC 41 (Internet of Things and related technologies) JCA-IoT and SC&C maintains the global online IoT standards has developed ISO/IEC 30141 (IOT reference architecture) and roadmap ISO/IEC 20924 (IOT vocabulary), and ongoing work includes the http://itu.int/en/ITU-T/jca/iot/Documents/deliverables/Free-download- following: IoT-roadmap.doc

• Support for interoperability of IoT systems (ISO/IEC 21823-1) A new Focus Group (FG) on Data Processing and Management to • IOT trustworthiness framework (ISO/IEC 30149) support IoT and Smart Cities & Communities was set up in 2017. • Methodology for trustworthiness of IOT system/device (ISO/IEC The FG provides a platform to develop deliverables, share views and 30147) showcase initiatives, projects, and standards activities linked to data • Data exchange platform requirements for IOT services (ISO/IEC processing and management and establishment of IoT ecosystem 30161) solutions for data focused cities. • Compatibility requirements and model for devices within https://itu.int/en/ITU-T/focusgroups/dpm industrial IOT systems (ISO/IEC 30162) ITU-T SG11 continues its role in developing testing specifications of • Diverse use-cases covered by IoT IoT, its applications and identification systems. • Monitoring the ongoing regulatory, market, business and ITU-T SG17 approved Supplement to ITU-T X.660 - Guidelines for technology IoT requirements using object identifiers for IoT, and is working on Security framework • IoT standards that build on the foundational standards in for IoT and Technical framework of PII (Personally Identifiable relevant JTC 1 subgroups Information) handling system in IoT environment. KEY ENABLERS AND SECURITY AND ENABLERS KEY The list of SC 41 projects can be found here: OASIS https://www.iec.ch/dyn/www/f?p=103:23:3095716894820::::FSP_ ORG_ID,FSP_LANG_ID:20486,25 OASIS runs a TC on message queuing telemetry transport (MQTT)

https://www.oasis-open.org/committees/mqtt. It has produced 2019 SC27 deals with a broad set of standards in the areas of security • a standard for the MQTT protocol compatible with MQTT V3.1, and data protection (“privacy”). Many of the existing standards can together with requirements for enhancements, documented usage be applied to IoT systems, such as the ISO/IEC 27001 standard on examples, best practices, and guidance for use of MQTT topics information security management. with commonly available registry and discovery mechanisms. As SC27 is currently running two separate study groups, one looking an M2M/IoT connectivity protocol, MQTT is designed to support at the security of IoT systems and the other examining privacy messaging transport from remote locations/devices involving small as applied to IoT systems. It is expected that any new proposed code footprints (e.g. 8-bit, 256KB ram controllers), low power, low standards for security and for privacy of IoT systems will emerge bandwidth, high-cost connections, high latency, variable availability, from these study groups. and negotiated delivery guarantees. MQTT also has been approved http://www.iso.org/iso/jtc1_home.html as ISO/IEC 20922:2016 https://www.oasis-open.org/committees/tc_home.php?wg_ ITU abbrev=mqtt

ITU-T Study Group 20 is responsible for studies relating to OASIS has produced the Advanced Message Queuing Protocol Internet of things (IoT) and its applications, and smart cities and (AMQP), a ubiquitous, secure, and reliable internet protocol for high-

communities (SC&C). This includes studies relating to big data speed transactional messaging. AMQP also has been approved as STANDARDISATION ICT FOR PLAN ROLLING aspects of IoT and SC&C, eservices and smart services for SC&C. ISO/IEC 19464:2014 https://www.oasis-open.org/committees/amqp. 29 3GPP W3C

3GPP, since Release 13, offers three new Low Power Wide Area W3C’s web of things https://www.w3.org/WoT/ is to support Network (LPWAN) radio access technologies for long-range, power overcoming the fragmentation of the IoT by introducing a web- efficient, massive machine-type communications: based abstraction layer capable of interconnecting existing IoT platforms and complementing available standards • Extended Coverage GSM Internet of Things (EC-GSM-IoT), • LTE for Machine-Type Communications (LTE-M) and OGC • Narrowband Internet of Things (NB-IoT). The Open Geospatial Consortium (OGC) defines and maintains Each has been standardized to ensure that increasingly diverse standards for location-based, spatio-temporal data and services. device and application types are supported by 3GPP networks, Some of the work is related to IoT, e.g. a modular suite of standards around the world. An overview is available here: http://www.3gpp. for web services allowing ingestion, extraction, fusion, and (with org/news-events/3gpp-news/1805-iot_r14 and more details here: the web coverage processing service (WCPS) component standard) http://www.3gpp.org/news-events/3gpp-news/1906-c_iot analytics of massive spatio-temporal data like satellite and climate 3GPP has been adding IoT-centric features, including capabilities archives. to avoid network congestion, use networks more effectively, ISO/TC 211 ‘Geographic information’ and OGC have a strong enhance security and, crucially, enable IoT devices to manage relation and cooperation in the development of standards for the power resources efficiently, to its specification set in Release 13 and geo-spatial domain, and particularly geospatial data. ISO/TC 211 Release 14. activities are mirrored at European level by CEN/TC 287. Massive IoT support is one of the key objectives of future 5G http://www.opengeospatial.org systems. This will be a focus of future work in 3GPP, given the already extensive IoT support in 4G. OTHER ACTIVITIES RELATED TO oneM2M STANDARDISATION

oneM2M was launched in 2012 as a global initiative to ensure AIOTI the most efficient deployment of Machine-to-Machine (M2M) communications systems and the Internet of Things (IoT) and it The Alliance for Internet of Things Innovation (AIOTI) was initially includes several SDOs and representatives of different industry created under the Commission’s auspices in 2015. Its goals are to promote sectors. The latest technical specifications can be found on their interoperability and convergence between standards, to facilitate policy website http://www.onem2m.org/technical/latest-drafts debates and to prepare a Commission’s initiative for large scale testing and experimentation, tabled for 2016. AIOTI has meanwhile been transformed oneM2M opens up the IoT ecosystem by creating an abstraction and set up as a stand-alone organisation. Forging new alliances between

layer that simplifies the exchange of cross-silo data. It offers a IoT sectors, stakeholders, large companies, SMEs and start-ups help Europe common IoT Service Layer which can be readily embedded within get a global lead in this field and will foster a digital single market for IoT. different hardware and software, connecting the numerous devices in the field with IoT application servers worldwide. To do this, AIOTI Working group 3 focuses on standardisation. oneM2M offers interworking with the most common technologies The Commission published a EUR 51 million call (H2020 ICT-30). and protocols used in the IoT today. The initiative cuts across several technological areas (smart systems oneM2M has published Release 2A in March 2018 and its Release 3 integration, cyber-physical systems, smart networks, big data), and in September 2018. Work is ongoing on Release 4. targets SME and IoT innovators for to create an open IoT environment.

The oneM2M includes specifications covering requirements, Among AIOTI’s European largest technical and digital companies are: KEY ENABLERS AND SECURITY AND ENABLERS KEY architecture, protocols, security, and management, abstraction Alcatel, Bosch, Cisco, Hildebrand, IBM, Intel, Landis+Gyr, Nokia, ON and semantics. Release 2 added new functionality, particularly by Semiconductor , Orange , OSRAM, Philips, Samsung , Schneider Electric, expanding management, abstraction and semantics, security, and Siemens, NXP Semiconductors, STMicroelectronics, Telecom Italia, 2019

• interworking with underlying technologies. oneM2M Release 3 adds Telefonica, Telit, Vodafone, Volvo, and start-ups (SIGFOX)… seamless interworking with 3GPP network services for IoT. Representatives of different industries: nanoelectronics/ A distinguishing feature of oneM2M is its Basic Ontology semiconductor companies, telecom companies, network operators, specification, which enables semantic and syntactic interoperability platform providers (IoT/Cloud), security, service providers, sectors: across the IoT. This will become increasingly important as greater energy, utilities, automotive, mobility, lighting, buildings, manufacturing, quantities of data are generated and shared across the IoT. healthcare, supply chains, cities etc. https://ec.europa.eu/digital-agenda/en/news/launch-alliance-internet- OIC things-innovation OIC works on defining the connectivity requirements for devices including the definition of the specification, certification and EC branding to deliver reliable interoperability; IP protection; and Several projects funded by the European Commission clustered providing an open source implementation of the standard. under the IoT European Platforms Initiative (https://iot-epi.eu/) https://openconnectivity.org/developer deal with aspects of interoperability, information sharing and standardisation in IoT. They represent a total funding of 50 million Euro funding and a network of 120 partners. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

5 large-scale pilots and 2 coordination and support actions are part 30 of the Horizon 2020 IoT Focus Area https://european-iot-pilots.eu. They started in 2017, funded with a budget of 100 million Euro. More than 50 use cases are running are based on reference architectures ADDITIONAL INFORMATION implementations. There are a number of global activities ongoing in the area Following a call for proposals launched in 2018 several more large scale pilots will address interoperability and standardisation in the of IoT standardisation. In particular there are: the oneM2M ‘Digitising and transforming European industry and services’ focus partnership project, to which ETSI contributes; relevant areas for which a budget of 250 million Euro has been earmarked. standardisation activities in IEC; a focus group in ISO/IEC

Finally another cluster of 8 IoT security and privacy research JTC 1; the standards project on MQTT in OASIS; the IoT ref- projects was launched in 2018 with a budget of 37 million EUR. erence architecture; and the IoT Interoperability standards They are coordinated by a support action to share experiences on at ISO/IEC JTC/1 WG10. approaches and tools for risk assessment and threat analysis in IoT domain and contribute to standards, offering a joint position of the The IoT requirements of e.g. from retail manufacturing, group of IoT security related and practical oriented projects. the automotive, aeronautics, pharmaceutical, and medical https://www.ngiot.eu/community/iot-esp-projects/ equipment industries and the medical sector in general IVA should be taken fully into consideration. Security, privacy, IVA is a subproject of ´ICT for Sweden´, with the objective of and management of control of the access to and own- supporting the entire value chain, from business benefits to sensors. ership of data are essential for the development of IoT. http://www.iva.se/IVA-seminarier/Internet-of-Things-IoT---fran- Without acceptance by commercial users and consumers, affarsnytta-till-sensorer/ the role of IoT would be limited to specific vertical mar- UK kets. Wide acceptance is essential in commoditising IoT mechanismes and make them accessible e.g. to manufac- The KTN (Knowledge Transfer Network) has an IoT interest group https://connect.innovateuk.org/web/internet-of-things turing and for manufactured products, or into m/e/Health applications. Finland

An IoT cluster supports investment in IoT IoT requires the interlinking of often disparate standards.

http://www.investinfinland.fi/industries/rd-and-innovation/internet-of- These standards are often the product of different SDOs. things-in-finland/124 There is a need to bring these bodies and their standards together to achieve the often small changes needed to

LoRa Alliance allow products and services to interoperate. Specifications intended for wireless battery-operated things in regional, national or global networks. LoRaWAN targets Existing standards should be checked to take account of key requirements of the IoT such as secure bi-directional the protection of individuals with regard to personal data communication, mobility and localisation services processing and the free movement of such data in the IIC light of - the General Data Protection Regulation. Specif- Works on promoting the uptake of technologies around the ic privacy by design standards should be identified and industrial internet including: where necessary developed.

building confidence around new and innovative approaches to KEY ENABLERS AND SECURITY AND ENABLERS KEY

security;

• developing use-cases and test beds; 2019

• influencing global standards development; and • • facilitating open forums to share and exchange best practices. • Denmark The Nordic IoT center is supported by the Danish Agency for Science and Higher Education, to enable partnerships in the Nordic region and completing the value chain for IoT products and services and documenting compliance to international standards http://www.nordiciotcentre.com/ ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

31 CYBERSECURITY REFERENCES • Cybersecurity Strategy of the European Union: An / NETWORK AND Open, Safe and Secure Cyberspace — JOIN(2013) 1 final — 7/2/2013 INFORMATION • Joint Communication on Resilience, Deterrence and Defence: Building strong cybersecurity for the EU, SECURITY JOIN(2017) 450 final, 13.9.2017 • COM(2017)477 Proposal for a Regulation of the POLICY AND LEGISLATION European Parliament and of the Council on ENISA, the POLICY OBJECTIVES “EU Cybersecurity Agency”, and repealing Regulation (EU) 526/2013, and on Information and Communication Tech- The European cybersecurity strategy and the Directive nology cybersecurity certification (‘’Cybersecurity Act’’) on network and information security provide for action • Commission Recommendation (EU) 2017/1584 of 13 to promote the development and take-up of ICT security September 2017 on coordinated response to large-scale standards. cybersecurity incidents and crises - C/2017/6100 • Directive (EU) 2016/1148 of the European Parliament The communication setting up ICT standardisation priori- and of the Council of 6 July 2016 concerning measures ties for the DSM refers to cybersecurity as a priority do- for a high common level of security of network and infor- main for Europe. mation systems across the EU (NIS Directive) • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of EC PERSPECTIVE AND PROGRESS natural persons with regard to personal data processing REPORT and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) The Communication on ICT standardisation priorities for • COM(2016)176 ICT Standardisation Priorities for the the digital single market proposes actions on cybersecuri- Digital Single Market

ty, considered as priority domain for Europe • COM(2015)192 A Digital single market strategy for Europe • For security and notification requirements for operators • COM(2017)225 Proposal for a REGULATION OF THE EU- of essential services, the focus will be on establishing ROPEAN PARLIAMENT AND OF THE COUNCIL on ENISA, a number of reference standards and/or specifications the “EU Cybersecurity Agency”, and repealing Regulation relevant to network and information security, including, (EU) 526/2013, and on Information and Communication where relevant, harmonised standards, to serve as a basis Technology cybersecurity certification (‘’Cybersecurity Act’’) for encouraging the coherent adoption of standardisation • COM(2017)228 Communication on the Mid-Term practices across the EU. Review on the implementation of the Digital Single KEY ENABLERS AND SECURITY AND ENABLERS KEY • For security and notification requirements for digital Market Strategy - A Connected Digital Single Market service providers, in line with the objectives of the Digital for All and accompanying Staff Working Document 2019

• single market strategy, the Directive aims to establish a SWD(2017)155 harmonised set of requirements so that they can expect similar rules wherever they operate in the EU. REQUESTED ACTIONS It is important that all levels of an organisation–particularly the strategic level and the management board The Communication on ICT standardisation priorities for - are aware of the need for standards and frameworks the digital single market proposes priority actions in the for cybersecurity. Moreover, between organisations that domain of cyber-security. Actions mentioned below reflect are partners in (vital) online chains, clear agreements will some of them. have to be made on the different standards. ACTION 1 SDOs to develop standards for critical infrastructure protection and thus in support of and responding to the requirements laid down in the NIS Directive. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

32 ACTION 2 SDOs to assess the standards required to support the European Cyber-security Certification Framework ACTIVITIES AND to ensure that standards are available for providing the core of any certification activity. In particular, SDOs are en- ADDITIONAL INFORMATION couraged to work on standards related to the specification and assessment of security properties in ICT products and RELATED STANDARDISATION services as well as those related to security in processes ACTIVITIES related to the design, development, delivery and maintenance of an ICT product or service. CEN, CENELEC In June 2017, CEN and CENELEC created a new Joint Technical ACTION 3 SDOs to investigate the issue of malware on Committee on ‘Cybersecurity and data protection’ (CEN-CLC/JTC 13). personal computers. ENISA (the European union agency The lack of interoperable solutions, practices (process standards) and trustworthy IT solutions are, among other, affecting the for network and information security) has concluded that European single market. On this basis, cybersecurity was identified many personal computers contain malware that is can as one of the ICT standardization priorities for the Digital Single monitor (financial) transactions. As we are becoming in- Market and the creation of CEN-CENELEC/JTC 13 aims to address creasingly dependent on eBusiness and e-transactions, a the growing demand for standards in this field. In 2019, CEN-CLC/ European initiative should investigate this topic JTC 13 will continue to develop standards for data protection, information protection and security techniques with specific focus on cybersecurity covering all concurrent aspects of the evolving ACTION 4 SDOs to investigate options for collaboration information society, including: Organizational frameworks and to defeat and remedy attacks. No single organization has methodologies, including IT management systems; Data protection enough information to create and maintain accurate situ- and privacy guidelines; Processes and products evaluation schemes; ational awareness of the threats facing itself or its users. ICT security and physical security technical guidelines; smart This limitation can be overcome by sharing relevant cyber- technology, objects, distributed computing devices, data services. threat information among trusted partners and commu- CLC/TC 65X ‘Industrial-process measurement, control and nities consistent with the agreed interests of their users automation’ contributes, supports and coordinates the preparation of European Standards for systems and elements used for industrial process measurement, control and automation (e.g. ACTION 5 SDOs to investigate requirements for secure

EN IEC 62443-4-1 Security for industrial automation and control protocols for networks of highly constrained devices and systems – Secure product development lifecycle requirements). heavily constrained protocol interaction (low bandwidth/ The IEC EN 62443 series, as developed by CLC/TC 65X, addresses ultra-short session duration (50ms)/low processing capa- operational technology found in industrial and critical infrastructure, bilities) including but not restricted to power utilities, water management systems, healthcare and transport systems. These are horizontal standards, which are technology independent and can be applied ACTION 6 SDOs to investigate the availability of stand- across many technical areas. ards as regards to the security and incident notification requirements for digital service providers as defined in the In this context, CEN and CENELEC are responsible for the NIS Directive development and adoption at European level of the EN IEC 62443 KEY ENABLERS AND SECURITY AND ENABLERS KEY

series (CLC/TC 65X) - which focuses on operational technology (OT) and which is concerned with keeping cyber-physical systems ACTION 7 SDOs to develop a “guided” version of ISO/IEC operating as intended - and the EN ISO/IEC 27000 series (CEN-CLC/

270xx series (information security management systems JTC 13) - which focuses on information technology (IT) and which is 2019 • including specific activity domains) specifically addressed concerned about the flow and accuracy of data, data privacy, etc. to SMEs, possibly coordinating with ISO/IEC JTC1 SC27 CEN and CENELEC are also active in the following areas: WG1 to extend the existing guidance laid out in ISO/IEC • CEN/TC 224 ‘Personal identification and related personal devices 27003. This guidance should be 100% compatible with with secure element, systems, operations and privacy in a multi ISO/IEC 270xx and help SMEs to practically apply it, includ- sectorial environment’ is responsible for the EN 419251 series on ing in scarce resource and competence scenarios ‘Security requirements for device for authentication’. The TC has also developed EN 419241-1 ‘Trustworthy Systems Supporting Server Signing - Part 1: General System Security Requirements’ • CEN/TC 301 ‘Road Vehicles’ is responsible for developing requirements for Vehicle to Grid communication interface (physical layer and data link layer) • CEN/TC 377 ‘Air traffic management’ on ‘Information security for organisations supporting civil aviation operations’ (prEN 16495) and specifications for software assurance levels (CEN/TS 16501) ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING • CLC/TC 9X ‘Electrical and electronic applications for railways’ is active in the development of requirements for Cybersecurity 33 • CLC/TC 13 ‘Electrical energy measurement and control’ develops virtualisation (ETSI NFV ISG), intelligent transport systems (ITS the EN 62056 series on ‘Electricity metering data exchange’ WG5), digital enhanced cordless telecommunications (DECT™), • CLC/TC 57 ‘Power systems management and associated M2M/IoT communications (oneM2M published standards, latest information exchange’ develops EN 62351-7 ‘Data and drafts), reconfigurable radio systems (RRS WG3) and emergency communications security – Network and system management telecommunications (including terrestrial trunked radio (TETRA)). data object models’. Moreover, the CEN-CLC-ETSI Coordination Finally ETSI works on specific security topics, including smart cards Groups on ‘Smart Energy Grids’ and ‘Smart Meters’ are also and secure elements (SCP), cryptography and lawful interception active on Cybersecurity. End 2014, the Coordination Group on and data retention. In terms of cryptography, ETSI develops security Smart Energy Grids finalized several mandated reports, including algorithms, it works on quantum safe cryptography (QSC) and on cybersecurity quantum key distribution (QKD). The CEN-CLC Focus Group on Blockchain and Distributed Ledger Technologies will strengthen in 2019 its links with CEN-CLC/JTC IEC 13 ‘Cybersecurity and Data protection’ to further investigate the IEC TC 65 ‘Industrial-process measurement, control and automation’ cybersecurity requirements for Distributed Ledger Technologies, in develop International Standards for systems and elements used for the context of the activities of ISO/TC 307. industrial-process measurement and control concerning continuous and batch processes. ETSI IEC TC 65 WG 10 ‘Security for industrial process measurement ETSI’s work on cybersecurity ranges from general and transversal and control - network and system security’ is responsible for the guidelines and standards, to securing complete technological IEC 62443 series on Industrial communication networks, which systems/areas, down to specific security topics. addresses the prevention of illegal or unwanted penetration, TC CYBER coordinates ETSI cybersecurity work and offers market- intentional or unintentional interference with the proper and driven cyber security standardization solutions, advice and guidance intended operation, or inappropriate access to confidential to users, manufacturers, network, infrastructure and service information in industrial automation and control systems. IEC TC 65 operators and regulators. In particular, ETSI TC CYBER published WG 19 ‘Life-cycle management for systems and products used in TR 103 306 which describes the global cybersecurity ecosystem industrial-process measurement, control and automation’ defines providing an overview of cybersecurity work occurring in multiple consistent set of generic reference models, which are applicable to technical forums worldwide. The TR is revised regularly to provide automation products and systems in various industries (automation latest information. product life-cycle model, automation product integration in the functional system hierarchy, compatibility model of automation ETSI TC CYBER (TC CYBER publications and TC CYBER work products). programme) covers privacy in response to European Commission

(EC) Mandate M/530 on Privacy by Design, with a new TS on The publication of the following International Standards is foreseen mechanisms for privacy assurance and the verification of in 2019: IEC 62890 ‘Life-cycle management for systems and Personally Identifiable Information, a TS on identity management products used in industrial-process measurement, control and and naming schema protection mechanisms, which will identify automation’, IEC 62443-4-2 ‘Security for industrial automation and means to prevent identity theft and resultant crime, and a control systems - Part 3-2: security risk assessment and system practical introductory guide to privacy related standards. TC CYBER design’, and IEC 62443-4-2 ‘Security for industrial automation and also released two specifications on Attribute-Based Encryption control systems - Part 4-2: Technical security requirements for IACS (ABE) that describe how to protect personal data securely—with components’. fine-grained access controls (TS 103 458 and TS 103 532).ETSI In Europe, IEC TC 65 is mirrored by CLC/TC 65X ‘Industrial- TC CYBER develops standards for secure by default solutions, process measurement, control and automation’. This CENELEC with publications on critical security controls, baseline security KEY ENABLERS AND SECURITY AND ENABLERS KEY standardization work is carried out for equipment and systems, and requirements regarding sensitive functions for NFV and on security closely coordinated with IEC TC 65. aspects for lawful interception and retained data interfaces,

2019 guidance on security by default for products and services and threat IEC TC57 is responsible for the IEC 62351 standards series. The • information sharing. One major ongoing activity is the specification different security objectives of this series include authentication of of middlebox security protocols allowing transparent management data transfer through digital signatures, ensuring only authenticated of middleboxes in networks while enhancing cybersecurity posture access, prevention of eavesdropping, prevention of playback of networks. and spoofing, and intrusion detection.

ETSI TR 103 456 provides advice on implementing the NIS Directive IECEE/ICAB and guidance on the available technical specifications and those Conformity Assessment (CA) is any activity, which results in in development by major cybersecurity communities in the world determining whether a product or other object corresponds to the which are designed to meet the legal measures and technical requirements contained in a standard or specification. The IEC runs requirements of the NIS Directive. four CA systems, each of which operates Schemes based on third- TC CYBER has a dedicated working group on Quantum-safe party conformity assessment certification. They establish that a cryptography. product is reliable and meets expectations in terms of performance, ISG ISI (Information Security Indicators) works on measurement of safety, efficiency, durability, etc. This is especially crucial for information security risks (see ISG ISI published standards, ISG ISI Cybersecurity.

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING work programme). IECEE, the IEC system for Conformity Assessment Schemes ETSI works on securing overall systems and technologies such for Electrotechnical Equipment and Components, which issues 34 as mobile communications (3GPP SA3), network functions internationally recognized certification on Cybersecurity, operates the CB scheme, facilitating cooperation among accepted National • ISO/IEC 29115: entity authentication assurance framework Certification Bodies (NCBs) worldwide. NCBs perform market • ISO/IEC 29151 — Code of practice for PII protection surveillance functions, which ensure that the overall production line • ISO/IEC 29190 — Privacy capability assessment model is constantly compliant with the initial testing/certification. • ISO/IEC 19770-1 is a management system standard for IT asset management, a revised edition of which is due to be published The IECEE Full Certification Scheme is an extension of the IECEE CB in the near future. These standards have significant take-up, for Scheme, where initial and/or periodic surveillance of production is example in the US. performed. The Scheme provides the evidence that each certified • ISO/IEC 19770-2 on Software Identification (SWID) tags is a product offers the same quality/safety level as type-tested sample. standard for the identification of software which is important for The CAB (Conformity Assessment Board) is responsible for setting improving both the management of software, and for improving the IEC’s conformity assessment policy, promoting and maintaining cybersecurity, in particular for the automation of cybersecurity. relations with international organizations on conformity assessment • IECEE/ICAB: System of Conformity Assessment Schemes for matters. Electrotechnical Equipment and Components

OASIS ITU-T

For the PKCS 11 standardisation project for cryptographic tokens In the standardisation sector of the ITU, the UN specialized controlling authentication information (such as personal identity), agency for ICTs, ITU-T Study Group 17 (Security) develops globally see harmonized standards on telecommunication and information https://www.oasis-open.org/committees/pkcs11 security, application security, cyberspace security, identity management and authentication. On application security, currently Key management interoperability protocol (KMIP) for enterprise ITU-T SG17 works specifically on software defined networking, encryption key administration and deployment. https://www.oasis- cloud computing, intelligent transport systems, distributed ledger open.org/committees/kmip technologies etc. Nearly 200 ITU-T Recommendations have been Cyber Threat Intelligence (CTI)TCA committee defining a set of developed including the security Recommendations under the ITU-T information representations and protocols to support automated X-series. information sharing for cybersecurity situational awareness, http://itu.int/ITU-T/go/sg17 real-time network defence, and sophisticated threat analysis. The http://www.itu.int/ITU-T/recommendations/index_sg.aspx?sg=17. Structured Threat Information eXpression (STIX) language provides SG17 / Q10/17 — Identity management architecture and a common set of descriptors for security threats and events, and mechanisms the Trusted Automated Exchange of Indicator Information (TAXII) http://www.itu.int/itu-t/workprog/wp_block.aspx?isn=2048 specification provides common message exchange patterns. http://www.oasis-open.org/committees/cti Study Group 20 under question Q6/20 studies aspects related to Security, Privacy, Trust and Identification for IoT and SC&C. In August SAML TC 2017, it approved Recommendation ITU-T Y.4805 Identifier service https://www.oasis-open.org/committees/tc_home.php?wg_ requirements for the interoperability of Smart City applications abbrev=security which specifies a set of requirements for identifier services in smart ISO/IEC JTC 1 city.

SC 27 work is ongoing on the following work areas W3C

• Security requirements capture methodology W3C runs several groups in the area of Security • Management of information and ICT security; in particular • Web Cryptography working group, which is defining an API information security management systems (ISMS), security that lets developers implement secure application protocols KEY ENABLERS AND SECURITY AND ENABLERS KEY processes, security controls and services for web applications, including message confidentiality and • Cryptographic and other security mechanisms, including but authentication services, by exposing trusted cryptographic not limited to mechanisms for protecting the accountability,

primitives from the browser. 2019

availability, integrity and confidentiality of information • • Web Application Security “WebAppSec” working group, which • Security management support documentation including is developing standards to ensure that web applications are terminology, guidelines and procedures for the registration of delivered free from spoofing, injection, and eavesdropping. security components • Hardware-based secure services community group, which • Security aspects of identity management, biometrics and privacy analyses use-cases where browser (and web application)’s • Conformance assessment, accreditation and auditing developers could benefit from secure services in the field of requirements in the area of information security cryptographic operation, citizen identity and payment to native • Security evaluation criteria and methodology applications. http://www.iso.org/iso/home/standards_development/ • Web bluetooth community group, which is developing list_of_iso_technical_committees/iso_technical_committee. a specification for bluetooth APIs to allow websites to htm?commid=45306 communicate with devices in a secure and privacy-preserving Ongoing projects and important deliverables: way. • Web NFC community group, which is creating a near field • ISO/IEC 15408: Common Criteria for Information Technology communication API that is browser-friendly and adheres to the Security Evaluation web’s security model.

• ISO/IEC 27001 — Information security management systems — STANDARDISATION ICT FOR PLAN ROLLING https://www.w3.org/Security Requirements • ISO/IEC 29101 — Privacy architecture framework 35 IEEE OTHER ACTIVITIES RELATED TO IEEE has standardisation activities in cybersecurity and NIS space, and in anti-malware technologies, including in the encryption, fixed STANDARDISATION and removable storage, and hard copy devices areas, as well as ECSO applications of these technologies in smart grids https://ieeesa.io/rp-nis The European Cyber Security Organisation (ECSO) This contractual PPP (cPPP) will be instrumental in structuring and IETF coordinating digital security industrial resources in Europe. WG1 The following IETF WGs are active in this area : focuses on standardisation, certification, labelling and supply chain The Managed Incident Lightweight Exchange (MILE) WG develops https://ec.europa.eu/digital-single-market/en/cybersecurity-industry standards to support computer and network security incident management. The WG is focused on two areas: IODEF (Incident OIDF Object Description Exchange Format, RFC5070), the data format Risk and incident sharing and coordination working group [RISC] and extensions to represent incident and indicator data, and RISC (chartered 2015) provides data sharing schemas, privacy RID (Real-time Inter-network Defense, RFC6545), the policy and recommendations and protocols to share information about transport for structured data. important security events in order to thwart attackers from using The Security Automation and Continuous Monitoring (SACM) compromised accounts with one service provider to gain access WG is working on standardising protocols to collect, verify, and with other service providers. RISC focuses on peer to peer sharing of update system security configurations that allow high degree of information related to the state of individual accounts. automation. This facilitates securing information and the systems http://openid.net/wg/risc/charter/ that store, process, and transmit that information. The focus of the NIST WG is the assessment of network endpoint compliance with security policies so that corrective measures can be provided before they are NIST has started work in several areas, active documents with exposed to those threats. two reports already published which provide guidance on critical security controls and security by default for products and services. The aim of DDoS Open Threat Signalling (DOTS) WG is to develop Other areas of work include critical infrastructure protection, privacy a standards based approach for the realtime signalling of DDoS matters, cybersecurity issues. related telemetry and threat handling requests and data between elements concerned with DDoS attack detection, classification, Cyber-Physical Systems for Global Cities Project traceback, and mitigation. Cybersecurity for Smart Grid Systems The goal of the Interface to Network Security Functions (I2NSF)

Cybersecurity for Smart Manufacturing Systems WG is to define a set of software interfaces and data models for controlling and monitoring aspects of physical and virtual NSFs. National Institute of Standards and Technology Initiates A Network Security Function (NSF) is a function used to ensure Development of New Cybersecurity integrity, confidentiality, or availability of network communications, Reference Architecture for Cyber-Physical Systems Project to detect unwanted network activity, or to block or at least mitigate Framework the effects of unwanted activity. The hosted, or cloud-based, security service is especially attractive to small and medium Cyber Security PPP size enterprises who suffer from a lack of security experts to The cPPP will be instrumental in structuring and coordinating digital continuously monitor networks, acquire new skills and propose security industrial resources in Europe immediate mitigations to ever increasing sets of security attacks. KEY ENABLERS AND SECURITY AND ENABLERS KEY

The Source Address Validation Improvements (savi) WG develops https://ec.europa.eu/digital-single-market/en/cybersecurity-industry standardised mechanisms that prevent nodes attached to the same

2019 IP link from spoofing each other›s IP addresses. • The full list of IETF Working Groups in the Security Area is available here: https://datatracker.ietf.org/wg/#sec

3GPP

SA WG3 is responsible for security and privacy in 3GPP systems, determining the security and privacy requirements, and specifying the security architectures and protocols. The WG also ensures the availability of cryptographic algorithms which need to be part of the specifications. http://www.3gpp.org/specifications-groups/sa-plenary/sa3-security ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

36 ADDITIONAL INFORMATION ELECTRONIC The Danish business community has developed a cor- porate partnership to increase ICT security in the Danish IDENTIFICATION business community. The partnership will develop preventive security measures and launch efforts to promote AND TRUST businesses’ use of international security standards. SERVICES The Dutch government has selected a group of security specifications for its comply-or-explain policy: DNS- INCLUDING SEC, DKIM, TLS, SPF, DMARC, STARTTLS, DANE, SAML, ISO E-SIGNATURES 27001/2, and is actively using different adoption strategies to get the specifications implemented. A very useful tool is te website www.internet.nl . Organisations and in- POLICY AND LEGISLATION dividuals can, by entering a domain name of a website or POLICY OBJECTIVES email service, easily test whether websites offer support for the modern Internet Specifications. The result is a test This relates to Regulation (EU) No 910/2014 of the Eu- report with detailed explanations. The website is available ropean Parliament and of the Council of 23 July 2014 in English, Dutch and Polish. In addition business, industry on electronic identification and trust services for electronic and government collectively established the ‘Safe Email transactions in the internal market and repealing Directive Coalition’ to fight abuse such as phishing and eavesdrop- 1999/93/EC. ping in e-mail.

In Germany, the Federal Agency for Information Securi- EC PERSPECTIVE AND PROGRESS ty (BSI) bases several national cyber-security standards REPORT -concerning both critical infrastructures and SMEs- on the ISO/IEC EN 270xx family and the Federal Network Agency In the context of the e-signatures Directive, in January (BNetzA) mandates the use of ISO/IEC 27019 (with a few 2010, the Commission mandated the ESOs to rationalise additional requirements in the national IT Security cata- the standards for e-signatures and related trust services logue) for grid network operators with mandatory certi- to form a coherent and up-to-date framework (mandate fication. M/460).

ENISA and the European Computer Security Inci- The eIDAS Regulation adopted on 23 July 2014 address- dent Response Team (CSIRT) community have jointly es in one comprehensive piece of legislation, electronic set up a task force with the goal of reaching a consensus identification, electronic signatures, electronic seals, time on a ‘Reference Security Incident Classification Taxono- stamping, electronic delivery, electronic documents and KEY ENABLERS AND SECURITY AND ENABLERS KEY my’. Following a discussion among the CSIRT community website certificates as core instruments for electronic during the ‘51st TF-CSIRT meeting’ (15 May 2017 in The transactions. To support the implementation of this highly

Hague, Netherlands), it was concluded that there is an ur- technical regulation, further standardisation work will be 2019 • gent need for a taxonomy list and name that serves as a needed. In the case of trust services, the planned sec- fixed reference for everyone. This is where the so-called ondary legislation refers extensively to the availability ‘Reference Incident Classification Taxonomy Task Force’ of standards as possible means to meet the regulatory comes into play. The aim of this task force is to enable the requirements. Existing standards should be checked to CSIRT community in reaching a consensus on a universal take account of the protection of individuals with regard reference taxonomy. Additionally, the task force covers the to personal data processing and the free movement of following objectives: such data. Specific privacy by design standards should be identified and where needed developed. The accessibili- • Develop a reference document ty needs of persons with disabilities should also be taken • Define and develop an update and versioning into account. mechanism • Host the reference document

• Organise regular physical meetings with stakeholders STANDARDISATION ICT FOR PLAN ROLLING

37 REFERENCES quests for Commission support for these standardisation activities. Further domains of interest include eIdentifica- • Regulation (EU) No. 910/2014 of the European tion, eDelivery, and website authentication certificates. Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electron- ACTION 3 Take ongoing EU policy activities into account ic transactions in the internal market and repealing in standardisation, e.g. in ISO/IEC JTC 1 SC 27 WG5 (iden- Directive 1999/93/EC tity management and privacy technologies) and other • Commission Implementing Regulation (EU) working groups of ISO/IEC JTC 1 SC 27. Furthermore, in 2015/1501 of 8 September 2015 on the interopera- order to promote the strengths of the European approach bility framework to electronic identification and trust services at global lev- • Commission Implementing Regulation (EU) el and to foster mutual recognition of electronic identifi- 2015/1502 of 8 September 2015 on setting out cation and trust services with non-EU countries, European minimum technical specifications and procedures for and international standards should be aligned wherever assurance levels for electronic identification means possible. The “internalisation” and promotion of related • Commission Implementing Decision (EU) European standards should be favoured. 2015/1984 of 3 November 2015 defining the circumstances, formats and procedures of notification Finally, e-signatures standards ensure accessibility for • Commission Implementing Regulation (EU) people with disabilities (see mandate 376 on European 2015/806 of May 2015 laying down specifications accessibility requirements for public procurement of prod- relating to the form of EU trust mark for qualified trust ucts and services in the ICT domain). Services • Commission Implementing Decision (EU) ACTION 4 Support and improve the development of in- 2015/1506 of 8 September 2015 laying down spec- teroperable standards by facilitating the organisation of ifications relating to formats of advanced electronic plugtests (interoperability events) and developing and signatures and advanced seals to be recognised by enhancing conformity testing tools. Such interoperability public sector bodies events may address CAdES, XAdES, PAdES, ASiC, use of • Commission Implementing Decision (EU) trusted lists, signature validation, etc.

2015/1505 of 8 September 2015 laying down technical specifications and formats relating to trusted lists ACTION 5 Disseminate information to raise awareness • Commission Implementing Decision (EU) and promote the uptake of standards, in particular en- 2016/650 of 25 April 2016 laying down Standards courage the industry to develop new solutions and use for the security assessment of qualified signature on trust services embedded in sector applications. seal creation devices ACTIVITIES AND REQUESTED ACTIONS ADDITIONAL INFORMATION KEY ENABLERS AND SECURITY AND ENABLERS KEY

ACTION 1 Complete and complement the work done RELATED STANDARDISATION 2019

• under Mandate M/460, e.g. in the following way: ad- ACTIVITIES dress the trust service providers (TSP) providing signature creation services, the TSPs providing signature validation CEN services, and standards for trust application service pro- CEN/TC 224 develops standards for strengthening the viders . interoperability and security of personal identification and its related personal devices, systems, operations and privacy. CEN/TC 224 multi-sectoral environment involves sectors such as Government/ ACTION 2 The Commission intends to request the ESOs Citizen, Transport, Banking, e-Health, as well as Consumers and (for instance via standardisation requests) and other rel- providers from the supply side such as card manufacturers, evant bodies to update existing standards and to devel- security technology, conformity assessment body and software op additional ones in order to address the new require- manufacturers. In 2018, CEN/TC 224 will continue to develop ments and the innovations of the eIDAS Regulation (EU) European Standards notably on Trustworthy Systems Supporting N°910/2014 adopted by the European Parliament and Server Signing (prEN 419241-1), Protection Profile for Trust Service Provider Cryptographic modules (prEN 419221-5) , Biometrics Council, and related Implementing Regulations. Alterna- multilingual vocabulary (prEN 17054), Breeder documents.

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING tively or additionally, ESOs may autonomously submit re-

38 ETSI ISO/IEC JTC 1

Under the standardisation mandate M/460 on e-signatures, ETSI TC 37 is responsible for the standardisation of generic biometric TC ESI provided an initial set of upgraded and new standards technologies pertaining to human beings to support interoperability within a rationalized framework thanks to five grant agreements and data interchange among applications and systems. Generic that ran until June 2016. ETSI TC ESI provides standards for human biometric standards include: common file frameworks, introducing the overall framework of standards, for trust service biometric application programming interfaces, biometric data providers supporting digital signatures but also presentation interchange formats, related biometric profiles and other standards services, edelivery services, for signature creation and validation, for in support of technical implementation of biometric systems, cryptographic suites and for trust service status lists providers. evaluation criteria to biometric technologies, methodologies for performance testing and reporting, cross-jurisdictional and A summary of ETSI TC ESI publications and ongoing work can societal aspects of biometric implementation. SC 37 Biometrics be found at https://portal.etsi.org/TBSiteMap/ESI/ESIActivities. home page: http://www.iso.org/iso/home/standards_development/ aspx. ESI deliverables aim at supporting Regulation (EU) No list_of_iso_technical_committees/jtc1_home/jtc1_sc37_home.htm. 910/2014 as well as supporting the general requirements of The complete list of standards published or under development the international community to provide trust and confidence in can be found in ISO Standards Catalogue of ISO/IEC JTC 1/SC 37 — electronic transactions. Work done in 2018 covers standards for Biometrics registered eDelivery trust services, registered email trust services, and signature creation and signature validation by trust service Published standards and ongoing projects related to the topics providers. Started in 2018 and progressing in 2019, TC ESI works include the series of biometric data interchange standards for in particular on signatures preservation, signatures policies and different biometric modalities, biometric technical interfaces, related the promotion and internationalization of the work done for trust biometric profiles and other standards in support of technical service providers. implementation of biometric systems, and cross jurisdictional and societal aspects of biometric implementation. Representative ISO projects: amendments of ISO/IEC 19794-x: 2011/Amd. 2:2015 data ISO/TC 154: Processes, data elements and documents in commerce, format standards specifying XML encoding, extensible biometric industry and administration data interchange formats ISO/IEC 39794-x. e.g., generic extensible data interchange formats for the representation of data: a tagged http://www.iso.org/iso/iso_technical_ binary data format based on an extensible specification in ASN.1 committee%3Fcommid%3D53186 and a textual data format based on an XML schema definition Ongoing work: (both capable of holding the same information), ISO/IEC 30107-x Biometric presentation attack detection multi-part standard and • Requirements and roles & responsibilities for fulfilling trusted ISO/IEC 24779-x — Cross-Jurisdictional and societal aspects of

e-communications in commerce, industry and administration implementation of biometric technologies — pictograms, icons and • Qualified trust services for long-term signature of kinds of symbols for use with biometric systems multi-part standard. electronic documents • Validation of long-term signature ITU-T • Trusted (or qualified) electronic registered delivery services (or Study Group 3 is responsible, inter alia, for studying international platform) telecommunication/ICT policy and economic issues and tariff and • Dematerialisation and proof of dematerialisation accounting matters (including costing principles and methodologies), • Requirements for providing trusted e-communications in the with a view to informing the development of enabling regulatory mobile environment models and frameworks. SG3 is also tasked with a study on the • Requirements for providing trusted e-communications in the economic and regulatory impact of the Internet, convergence cloud environment KEY ENABLERS AND SECURITY AND ENABLERS KEY (services or infrastructure) and new services. SG3 is currently Projects include: working on a guideline for digital identity under the new Question 9/3 - economic and policy aspects of big data and digital identity in • ISO 14533-1:2014 — Processes, data elements and documents 2019

international telecommunications services and networks. • in commerce, industry and administration -- Long term signature http://itu.int/en/ITU-T/studygroups/2017-2020/03 profiles -- Part 1: Long term signature profiles for CMS Advanced Electronic Signatures (CAdES) SG13 published three technical reports on trust provisioning for • ISO 14533-2:2012 — Processes, data elements and documents future ICT infrastructures and services and two Recommendations in commerce, industry and administration -- Long term signature ITU-T Y.3051 “The basic principles of trusted environment in profiles -- Part 2: Long term signature profiles for XML Advanced information and communication technology infrastructure” Electronic Signatures (XAdES) and Y.3052 “Overview of trust provisioning for information and • ISO/DIS 14533-3 — Processes, data elements and documents in communication technology infrastructures and services”. There commerce, industry and administration -- Long term signature are currently three more work items under development covering profiles -- Part 3: Long term signature profiles for PDF Advanced areas such as trustworthy networking, trust-based media services Electronic Signatures (PAdES) and trust index for ICT infrastructures and services. These studies • ISO JTC1 SC27 is responsible for international IT security will contribute to the development of more reliable techniques to standards and therefore one of the primary stakeholders cope with the risks of knowledge sharing thus moving towards a affected. knowledge society. To complement this work from the infrastructure ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

39 perspective, SG13 approved Recommendation ITU-T Y.3514 identity. It also developed security schemes for presenting “Cloud computing - trusted inter-cloud computing framework and authorisation tokens to access a protected resource. requirements” and is working on overview of inter-cloud trust The ongoing standardisation effort within the OAUTH working group management. is focusing on enhancing interoperability of OAUTH deployments. https://itu.int/en/ITU-T/studygroups/2017-2020/13 The Public Notary Transparency (TRANS) WG develops a Study Group 17 is responsible for the study of the appropriate core standards-track specification of the Certificate Transparency questions on identity management. In addition, in consultation with protocol (RFC6962) that allows detection of the mis-issuance of other relevant study groups and in collaboration, where appropriate, certificates issued by CAs or via ad-hoc mapping by maintaining with other standards bodies, SG17 has the responsibility to define cryptographically verifiable audit logs. and maintain the overall framework and to coordinate, assign (recognising the mandates of other study groups) and prioritise the The Automated Certificate Management Environment (ACME) studies to be carried out by the study groups, and to ensure the WG specifies conventions for automated X.509 certificate preparation of consistent, complete and timely recommendations. management, including validation of control over an identifier, http://itu.int/en/ITU-T/studygroups/com17 certificate issuance, certificate renewal, and certificate revocation. The initial focus of the ACME WG is on domain name certificates Study Group 20 is the lead study group for IoT identification. SG20 (as used by web servers), but other uses of certificates can be is studying what the identification systems are capable of in terms considered as work progresses. of fulfilling the requirements of IoT and SC&C including security, https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder- privacy and trust; how authentication technologies can work with Platform#eIdentity identification systems; what options or measures are available for identification of IoT objects; how identification mechanisms can W3C support interoperability in IoT and SC&C and mitigate risks, among The Web Authentication Working group (http://www.w3.org/2015/12/ others. web-authentication-charter.html ) is tasked with reducing the use https://itu.int/en/ITU-T/studygroups/2017-2020/20 of shared secrets, i.e. passwords, as authentication credentials, OASIS facilitating instead multi-factor authentication support and hardware-based key storage while respecting the ‘same origin Projects for e-signature management and functionality, including policy’. standards for Digital Signature Services (DSS) and the Key Management Interoperability Protocol (KMIP). W3C also runs a community-driven group (not standard track) on WebID: https://www.w3.org/wiki/WebID and has in the past run a Identity management and access control functions include workshop on Identity in the Browser (https://www.w3.org/2011/ standards for the eXtensible Access Control Markup Language identity-ws/report.html ).

(XACML, also approved as ITU-T Recommendation X.1144); the Security Assertion Markup Language (SAML, also ITU-T The W3C Credentials Community Group discusses credential Recommendation X.1141); cross-enterprise security and privacy storage and exchange systems for the web. Some of their ideas authorisation (XSPA); the Authentication Step-Up Protocol and are being discussed in the Web Payments Interest Group via the Metadata (Trust Elevation) for identity trust level elevation, and the Verifiable Claims Task Force (as of January 2016). extensible resource identifier (XRI) and XRI data interchange (XDI) IEEE standards, as well as a suite of web services specifications including Web Services Federation (WS-Fed); Web Services Trust (WS-Trust) The IEEE has standards and pre-standards activities relevant to and Web Services Secure Exchange (WS-SX). Electronic Identification and Trust Services, including dealing with blockchain technology and biometric identification. More information OASIS’ Biometric Services TC also hosts specifications for

KEY ENABLERS AND SECURITY AND ENABLERS KEY can be found at: standardized biometric device service calls compatible with standard media types and the biometric data formats of ISO/IEC https://ieeesa.io/rp-eidentification 19785 and 19794. 2019 • OIDF OTHER ACTIVITIES RELATED TO Set of standards and related certification profiles addressing STANDARDISATION identity transactions over the internet. Active working groups in this area include: the OpenID Connect WG, AccountChooser WG, e-SENS Native Applications WG, Mobile operator Discovery, Registration and e-SENS (Electronic Simple European Networked Services) is a Authentication WG (MODRNA), Health Related Data Sharing WG large-scale pilot launched within the ICT policy support programme (HEART), and Risk and Incident Sharing and Coordination WG (RISC) (ICT PSP), under the competitiveness and innovation framework http://openid.net/wg/ programme (CIP). The aim of the project is to develop an IETF infrastructure for interoperable public services in Europe. It builds upon and consolidates building blocks such as eID, e-Documents, The following IETF Working Groups are active in this area: e-Delivery, and e-Signature etc. from previous pilot projects and The Web Authorization Protocol (OAUTH) WG developed a integrates them into a European digital platform for cross-sector, protocol suite that allows a user to grant a third-party Web site interoperable eGovernment services. or application access to the user›s protected resources, without http://www.esens.eu/home.html. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING necessarily revealing their long-term credentials, or even their 40 STORK EU co-funded project to establish a European eID interoperability E-PRIVACY platform that will allow citizens to establish new e-relations across- borders, just by presenting their national eID. POLICY AND LEGISLATION The STORK 2.0 project was the continuation of STORK and has POLICY OBJECTIVES worked on extending the specification to roles and mandates. In the context of the eIDAS Regulation and the implementing act on The enforcement of the EU data protection and privacy the interoperability framework for eID technical specifications are legal framework would be made easier if data processing being developed for the eIDAS nodes. These technical specifications products and processes are designed and built from the will provide further details on technical requirements as set out in the Regulation. The specifications for the eIDAS were developed beginning with legal requirements in mind. This is referred through Member State collaboration in a technical sub-committee as ‘data protection by design’. Standards may lay out the of the eIDAS Expert Group. basic requirements for data protection by design for prod- https://www.eid-stork2.eu/. ucts and processes, minimising the risk of (i) divergent

SSEDIC national approaches, with their related risks to freedom of movement of products and services, and (ii) the devel- Scoping the single European digital identity community –SSEDIC opment of several, potentially conflicting, private de-facto http://www.eid-ssedic.eu standards. FIDIS

Future of identity in the information society — FIDIS This could be combined with the emergence of certifica- http://www.fidis.net tion services: businesses who want their products and processes audited as being “privacy by design”-compli- PRIME ant, would have to fulfil a set of requirements defined Privacy and identity management for Europe — PRIME through appropriate EU standards and robust, independ- https://www.prime-project.eu ent third-party certification mechanisms.

The principles of data protection by design and by default, as well as the need to undergo a data protection impact assessment for data protection and privacy are included in the recently adopted General Data Protection Regula- tion 2016/679/EU (GDPR). This regulation replaced the Data Protection Directive 95/46/EC and applies since 25 May 2018.

EC PERSPECTIVE AND PROGRESS

REPORT SECURITY AND ENABLERS KEY

The focus will be on establishing a number of reference

standards and/or specifications relevant to privacy in the 2019 • electronic communications environment to serve as a basis for encouraging the consistent adoption of standardised practices across the EU and, where relevant, on developing harmonised standards.

The Commission has recently proposed a mandate to European standards organisations seeking to routinely include privacy management methodologies in both the design and production phases of cybersecurity technologies generally. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

41 REFERENCES REQUESTED ACTIONS The following legal instrument should be considered at European level: In the light of the accountability and privacy by design principles, ICT standards generally should be created in • The Directive 2002/58/EC of the European Parliament order to ensure a high-level of protection of individuals and of the Council of 12 July 2002 concerning the pro- with regard to personal data processing, and the free cessing of personal data and the protection of privacy movement of such data, and the application of privacy by in the electronic communications sector (ePrivacy Di- design methodologies. Privacy and data protection stand- rective). This Directive is under revision with the Com- ards should thus be examined, developed or improved if mission that adopted on 10 January 2017 a proposal necessary, so as to provide standardised methods that a Regulation on privacy and electronic communications support that review and improvement in due respect of that will replace the old directive and address its flaws EU data protection rules. to ensure an increased level of protection of citizens’ confidentiality of communications22]. Proposed specific areas for SDOs to focus on are: -- Regulation (EU) 2016/676 on the protection of natural persons with regard to personal data ACTION 1 Continuing work on standardising browser func- processing and on the free movement of such tionalities and defaults to enable users to easily control data, and repealing Directive 95/46/EC (General whether they want to be tracked. Data Protection Regulation). Article 253 calls for data protection by design and by default. ACTION 2 Location data used by mobile applications. -- ·The Directive 2014/53/EU on the harmonization of the laws of the Member States relating ACTION 3 SDOs to investigate standards needed in support to the making available on the market of radio of the ePrivacy Regulation and support compliance and certi- equipment and repealing the Radio Equipment fication of compliance with GDPR and possible other EU data and Telecommunications Terminal Equipment privacy requirements via standardisation. (R&TTE) Directive 1999/5/EC. Article 3(3)(c)

of this Directive requires that radio equipment ACTION 4 Promote EU-wide attention to standardisation of within certain categories or classes shall be so privacy statements and terms & conditions, given that there is constructed that it […] incorporates safeguards mandatory acceptance of diverse, ambiguous and far-reach- to ensure that the personal data and privacy ing online privacy conditions, and taking into account the new of the user and of the subscriber are protect- data protection Directive. The Kantara CIS work and the data ed”. The Commission is empowered to adopt use statements described in ISO/IEC 19944 could be used as delegated acts specifying which categories or a basis for this action. classes of radio equipment are concerned by each of the requirements. ACTION 5 SDOs to continue investigating technical meas- KEY ENABLERS AND SECURITY AND ENABLERS KEY ures apt to make personal data anonymous or pseu- In June 2015, the Commission published a study on the donymised (and therefore unintelligible by those who are not 2019

• “ePrivacy Directive: assessment of transposition, effec- authorised to access them). tiveness and compatibility with the proposed data protection regulation, SMART 2013/0071”. It contains an in- ACTION 6 SDOs to continue investigating how to warrant a depth analysis of the national implementation of several user-centric approach in privacy & access management: see key provisions (namely Article 1 and 3 on the scope, Arti- http://www.laceproject.eu/blog/give-students-control-data/ cle 5 on confidentiality of communications, Article 5(3) on and http://www.lvm.fi/julkaisu/4440204/mydata-a-nor- cookies and similar technologies, Article 6 and 9 on traffic dic-model-for-human-centred-personal-data-manage- and location data and Article 13 on commercial communi- ment-and-processing. cations. See the study: http://ec.europa.eu/digital-agenda/ en/news/eprivacy-directive-assessment-transposition-ef- ACTION 7 SDOs to prevent unwarranted pervasive moni- fectiveness-and-compatibility-proposed-data toring by default when developing standards. This is not only relevant in the context the internet but also the IoT. 22 Proposal for a Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING data in electronic communications and repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications), 10.01.2017, COM (2017)10 final https://ec.europa.eu/digital-single-market/en/news/propos- 42 al-regulation-privacy-and-electronic-communications CENELEC Joint Working Group 8. The scope of CEN-CLC/TC 8 covers ACTION 8 SDOs to develop secure coding standards for privacy and personal data protection in products and services. The secure application development: EU-wide attention to stand- TC will aim at developing standards on Privacy protection by design ardisation of privacy statements and terms & conditions, and by default in products and services. CEN-CLC/JTC 8 works in given the existing state of mandatory acceptance of diverse, the context of Mandate 530 (privacy and personal data protection ambiguous and far-reaching online privacy conditions, tak- management in the design and development and in the production and service provision and process in the security technologies). ing into account the new data protection directive and the In this context, the JTC has created a new work item in 2018 on emergence of the IoT, where (embedded) devices process the ‘Privacy protection by design and by default’, that will be further device owner’s personal data, creating additional challenges developed in 2019. This Standard will provide the component to transparency and informed consent. and subsystems developers with an early formalized process for identification of privacy objects and requirements, as well as the necessary guidance on associated assessment. ACTIVITIES AND Moreover, CEN/TC 224 develops standards for strengthening the interoperability and security of personal identification and its related ADDITIONAL INFORMATION personal devices, systems, operations and privacy. In 2018, CEN/ TC 224 will continue to develop European Standards notably on Trustworthy Systems Supporting Server Signing (prEN 419241-1), RELATED STANDARDISATION Protection Profile for Trust Service Provider Cryptographic modules ACTIVITIES (prEN 419221-5), Biometrics multilingual vocabulary (prEN 17054), Breeder documents. CEN/TC 224 will continue to support the eIDAS Various activities are in place, as detailed in the table below. regulation.

Due account should also be taken of the activities of the IEEE DG GROW working group on “Privacy by Design”, which in- IEEE has several standards activities in the ePrivacy space: cludes standardisation participants and other stakeholders. The Commission issued in October 2014 the standardisation • A draft recommended practice to specify a privacy threat model request M/530 “Standards for privacy & personal data pro- for IEEE 802 technologies and provide recommendations on how to protect against privacy threats, which is important as IEEE 802 tection management”, in support of privacy management in technologies play a major role in Internet connectivity. design, development, production, and service provision pro- • Several projects in the area of personal data privacy, as an cesses of security technologies. The goal is that manufactur- outcome of the IEEE Global Initiative for Ethical Considerations in ers & providers manage privacy & personal data protection Autonomous and Intelligent Systems. issues through privacy-by-design. • A new pre-standardization activity will develop a framework towards solutions that facilitate digital inclusion, trust, personal ETSI data agency and security. • IEEE also has other new Projects for privacy in consumer wireless ETSI TC CYBER (TC CYBER publications and TC CYBER work devices and drones. https://ieeesa.io/rp-eprivacy programme) covers privacy in response to European Commission (EC) Mandate M/530 on Privacy by Design, with a new TS on W3C mechanisms for privacy assurance and the verification of Personally Identifiable Information, a TS on identity management An initiative to develop specifications by which Internet users may and naming schema protection mechanisms, which will identify exress their permission (or the withholding of their permission) to KEY ENABLERS AND SECURITY AND ENABLERS KEY means to prevent identity theft and resultant crime, and a practical have their presence and activities on websites tracked (the “Do Not introductory guide to privacy related standards. TC CYBER also Track” concept), and to help Internet users to express their consent released two specifications on Attribute-Based Encryption (ABE) that or refusal to be tracked on the internet. The working group will be 2019

describe how to protect personal data securely—with fine-grained closed towards year end 2018. Information will remain available at: • access controls (TS 103 458 and TS 103 532). http://www.w3.org/2011/tracking-protection/

Also the work done on middlebox security protocols can be used to The W3C Data Privacy Vocabularies and Controls CG (DPVCG) prevent pervasive monitoring by default. develops a taxonomy of privacy terms, which includes in particular https://www.etsi.org/technologies-clusters/technologies/cyber- terms from the new European General Data Protection Regulation security (GDPR), such as a taxonomy of personal data as well as a classification of purposes (i.e., purposes for data collection), and CEN/CENELEC events of disclosures, consent, and processing such personal data. This will help to create data protection aware data handling policies CEN-CLC/JTC 13 “Cybersecurity and Data protection” has been for systems based on linked data such as the Web of Things. created in 2017, to develop standards for data protection, information protection and security techniques with specific focus OASIS on cybersecurity covering all concurrent aspects of the evolving information society, including privacy guidelines. The TC will adopt Privacy by design documentation for software engineers standards international standards (such as JTC 1) as ENs, with additional project (PbD-SE): https://www.oasis-open.org/committees/pbd-se

specific European requirements in the context of the GDPR and the STANDARDISATION ICT FOR PLAN ROLLING NIS directive, to support privacy protection in the European context. Privacy management reference model (PMRM) In 2017, CEN and CENELEC created the CEN-CENELEC/TC 8 ‘Privacy https://www.oasis-open.org/committees/pmrm 43 Management in Products and Services”, as a continuation to CEN- IETF Kantara

The SIP Best-practice Recommendations Against Network Dangers User-Managed Access (UMA) UMA is an OAuth-based protocol to privacY (sipbrandy) WG will define best practices for establishing designed to ensure the privacy of websites by giving web users a two-party, SIP-signaled SRTP sessions with end-to-end security unified control point for authorising access to online personal data, associations, including a single, preferred SRTP key exchange content, and services, no matter where they are hosted. mechanism. These practices are expected to be deployable across http://kantarainitiative.org/confluence/display/uma/Home typical SIP networks, without the sharing of SRTP keying material with intermediaries or third parties. These practices should protect Consent & Information Sharing Workgroup (CIS) against man-in-the-middle attacks. People’s capacity to manage their privacy is increased if they are The DNS PRIVate Exchange (dprive) WG develops mechanisms to able to aggregate and manage consent & information sharing provide confidentiality to DNS transactions, to address concerns relationships with consent receipts. Standardised consent receipts surrounding pervasive monitoring (RFC 7258). The set of DNS also provide the opportunity for organisations to advertise trust. requests that an individual makes can provide an attacker with a The core receipt specification addresses general, or regulatory, large amount of information about that individual. DPRIVE aims to consent requirements. More elaborate consent receipts can become deprive the attacker of this information. a vehicle for trust networks, federations, trust marks, privacy icons, assurances, certifications and self-asserted community and industry The Internet Architecture Board has established a Privacy and reputations. Security Program to serve as a forum for synthesizing privacy https://kantarainitiative.org/confluence/display/infosharing/Home thinking within the technical standards community and to create privacy design considerations for use within the IETF. RFC6973 «Privacy Considerations for Internet Protocols» offers guidance for developing privacy considerations for inclusion in protocol ADDITIONAL INFORMATION specifications. https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder- Management of controls over the access to and owner- Platform#ePrivacy ship of data should be considered essential for effective ISO/IEC JTC1 implementation of privacy measurements23. Subcommittee 27 on IT Security Technologies published a Code of Practice for the protection of personally identifiable information (PII) in the public cloud (ISO/IEC 27018:2014), and is developing a draft international standard privacy capability assessment model (ISO/

IEC DIS 29190)

Another relevant working item is ISO/IEC 27552 - Enhancement to ISO/IEC 27001 for privacy management – Requirements http://www.iso.org/iso/iso_technical_committee?commid=45306

ITU-T

The ITU, through a variety of activities, is examining matters related to building confidence and security in the use of ICT, including stability and measures to combat spam, malware, etc., and the protection of personal data and privacy (ref. Plenipotentiary KEY ENABLERS AND SECURITY AND ENABLERS KEY Conference, Guadalajara 2010, Resolution 130). ITU-T has been developing ITU-T standards which address protection of personally identifiable information such as in Recommendations ITU-T 2019 • H.233, H.234, H.235.0, H.235.9, J.93, J.96, J.125, T.807, X.272, X.1081, X.1086, X.1092, X.1142, X.1144, X.1171, X.1250, X.1252, X.1275, X.1580, Y.2720, and Y.2740 23 See also for data measurements the standard ISO-IEC 25024. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

44 Underpinning the efforts of the research communities, E-INFRASTRUCTURES e-infrastructures foster innovation and scientific progress across disciplines and between the private and public FOR RESEARCH sector. A large number of data e-Infrastructures, mixing the capabilities of scientific communities and technology DATA AND providers, have been launched in domains of astronomy, earth and ocean observation, climate, environment and COMPUTING biodiversity, etc. Moreover, pan European e-Infrastructures initiatives were launched across disciplinary domains pro- INTENSIVE viding a participatory network of open access repositories SCIENCE at European scale. These initiatives fill the gap between user-application and generic e-Infrastructure layers for high-volume storage, data interoperability, high-perfor- POLICY AND LEGISLATION mance computing and connectivity layers. POLICY OBJECTIVES Building on these existing EU-funded e-Infrastructures, Research data and computing infrastructures fostering a the European Open Science Cloud and the European Data paradigm shift in science (digital science/eScience). Infrastructure, as presented in the Communication “Euro- pean Cloud Initiative”, will consolidate the efforts to accel- The emergence of data driven science reflects the increas- erate and support the transition to more effective open ing value of a range of observational, sensor, simulation, science and open innovation in the digital single market. In streaming and experimental data in every field of science. this context, the implementation of standards and recom- Data e-Infrastructures link knowledge territories, which mendations will be of utmost importance in order to allow blur geographical and disciplinary boundaries. for interoperability, avoid fragmentation and improve the efficiency and effectiveness of research by optimizing re- The present European and global research data land- sources and encouraging economies of scale. scape is highly fragmented, by disciplines or by domains (oceanography, life sciences, health, agriculture, space, climate, etc.). A variety of institutions, some national, some EC PERSPECTIVE AND PROGRESS international, strive to deal with some aspects of data, REPORT but there is no effort to seek or achieve some degree of coherence. Research/science funders have a common problem when tackling the area of research data infrastructure. The land- Some research domains are experiencing exponen- scape is geographically fragmented and different disci- tial growth in data produced with the rate doubling in a plines have different practices. It is difficult to build critical timeframe that can be as short as a few months (seven mass and provide common services to different scientific KEY ENABLERS AND SECURITY AND ENABLERS KEY months in the case of second generation sequencing of disciplines and to take advantage of economies of scale. genes), while others plan new instruments that will sud- Some scientific communities are pushing the envelope denly produce enormous amounts of data. and adopting new technologies while others are lagging 2019 • behind. Scientists are, at the end of the day, the genera- To create a competitive European research area, Europe tors and users of research data in their experiments, sim- has already invested a significant amount of resources ulations, visualization of complex data arrays, etc. There into modernising the European landscape of research in- is a need to bring together capabilities from different sci- frastructures and facilities of excellence. entific fields and also the competences of technology and service providers to use the potential of ICT. The ESFRI roadmap stretches across a range of scientific disciplines in different European nations and includes rec- Interoperable data infrastructures will allow researchers ommendations for a suite of ambitious initiatives in areas and practitioners from different disciplines to access and such as biological and medical sciences, environment, so- process the data they need in a timely manner. They can cial sciences and humanities, geophysics and astronomy, collaborate across different domains of science and engi- physical and engineering. neering. The innovative power of industry and enterprise

will be used trough by clear and efficient arrangements for STANDARDISATION ICT FOR PLAN ROLLING data exchange between private and public sectors. 45 Today, EU-funded e-Infrastructures play a fundamental the European Economic and Social Committee and the role in the life of European researchers and innovators. Committee of the Regions: Digitising European Industry E-Infrastructure projects funded under the Horizon 2020 - Reaping the full benefits of a Digital Single Market. work programme 2014-2015 and 2016-2017 are help- • COM(2016) 176 final: Communication from the ing researchers tackle the challenges posed by one specif- Commission to the European Parliament, the Council, ic societal challenge. the European Economic and Social Committee and the Committee of the Regions: ICT Standardisation Priorities for the Digital Single Market. REFERENCES Back in 2012, the European Commission adopted in July The European Commission adopted in April 2016 the dig- 2012 a package consisting of a Communication and a ital single market technologies and public service mod- Recommendation on aspects of open access, preservation ernisation package in which the following Communication and e-Infrastructures for scientific information. It outlines was included: a framework to optimise the incentives for scientific discovery and support collaboration across disciplinary and COM(2016) 178 final Communication from the Com- geographical boundaries, and to further develop the Euro- mission to the European Parliament, the Council, the Eu- pean innovation capacity. ropean Economic and Social Committee and the Commit- tee of the Regions: “European Cloud Initiative — Building • COM(2012) 401 final: Communication from the a competitive data and knowledge economy in Europe”. Commission to the European Parliament, the Council, This Communication sets out a strategy to strengthen the the European Economic and Social Committee and the EU’s position in data-driven innovation, improve its co- Committee of the Regions — Towards better access to hesion, and help create a digital single market. This is a scientific information: Boosting the benefits of public fundamental step towards the reinforcement of the EU’s investments in research. competitiveness in digital technologies and in innovation. • COM(2012) 4890 final: Commission Recommen- The European Cloud Initiative will provide European sci- dation on access to and preservation of scientific ence, industry and public authorities with world-class data information. infrastructures, high-speed connectivity and increasingly powerful high performance computers. It will make it easier for researchers, businesses and public services to fully REQUESTED ACTIONS exploit the benefits of big data by making it possible to move, share, re-use and process data seamlessly across EU funded projects and initiatives are actively working global markets and borders, and among institutions and with recommendations, models and standards. An exam- research disciplines. ple of this could be the work of OpenAIRE and EuroCRIS initiatives to expand the CERIF model to also include re- The initiative will establish the European Open Science search outputs. CERIF was initially conceived to document KEY ENABLERS AND SECURITY AND ENABLERS KEY Cloud (EOSC) as a virtual environment to store and pro- and exchange research information (funding programmes cess large volumes of information generated by the big and projects, researchers and research institutions, etc.) 2019

• data revolution. This will be supported by the European and has since been adopted by many Member States and Data Infrastructure (EDI), deploying the high-bandwidth institutions. networks and the supercomputing capacity necessary to access and process large datasets stored in the cloud. Moreover, the Research Data Alliance has been ap- proached and has engaged in the process of identifying Both the EOSC and the EDI will build on existing EU-fund- Technical Specifications as ICT specifications for public ed e-infrastructures and will bring networking, data and procurement within the EU. These might come from ex- computing services closer to European researchers and isting initiatives in specific research fields or from estab- innovators. lished general purpose initiatives.

Together with the European Cloud Initiative, the package ACTION 1 SDOs to work closely with service providers, includes also the following Communications which are rel- RDA and other similar initiatives on identifying stand- evant within the e-infrastructure context: ards needs and developing them in the area of research

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING data in the context of the European Open Science Cloud. • COM(2016) 180 final: Communication from the 46 Commission to the European Parliament, the Council, The intent of this Recommendation is to provide solutions to deter ACTIVITIES AND the spread of counterfeit IoT devices worldwide. SG13 approved new standards on trust for ICT infrastructures and ADDITIONAL INFORMATION services: • Recommendation ITU-T Y.3051 “The basic principles of trusted RELATED STANDARDISATION environment in ICT infrastructure” provides the definition, common requirements and the basic principles of creating ACTIVITIES trusted environment. • Recommendation ITU-T Y.3052 “Overview of trust provisioning The Research Data Alliance (RDA) is not primarily a stand- for information and communication technology infrastructures ardisation body but is a mechanism to speed-up the and services” describes the key characteristics of trust. In adoption of standards for research data and computing addition, the trust relationship model and trust evaluation based on the conceptual model of trust provisioning are introduced. infrastructures. The RDA also provides some technical specification and the Commission with the advice of the SG13 continue working on the attributes that can represent Multi-Stakeholder Platform on ICT standardisation has trustworthiness, which can be applied to ICT infrastructures and services. There are several on-going work on Y.turstworthy-media identified a number of RDA Technical Specifications as ICT (Trustworthy smart media services), Y.trustnet-fw (Trustworthy specifications for public procurement within the EU. networking), etc. From the perspectives of standardization, trust should be quantitatively and/or qualitatively calculated In order to facilitate and improve the process of develop- and measured, which is used to evaluate the values of physical ing recommendations that are relevant and have the po- components, value-chains among multiple stakeholders, and tential of becoming ICT specifications, there is an ongoing human behaviors including decision making. Accordingly, a new work on trust index to evaluate and quantify trustworthiness has effort of promoting industrial participation within the RDA also been started. http://itu.int/ITU-T/go/sg13 processes.

Research Data Alliance (RDA) Supports the Commission’s strategy to achieve global scientific OTHER ACTIVITIES RELATED TO data interoperability in a way that real actors (users and producers of data, service providers, network and computing infrastructures, STANDARDISATION researchers and their organisations) are in the driving seat.

It has memorandums of understanding (MoUs) with related Related topics in H2020 WP on research infrastructures standardisation activities/organisations: IETF, W3C, ICSU/CODATA. including e-Infrastructures (proposals selected within Synergies with other organisations/activities will need to be these calls may contribute to standardisation): identified in the future. EINFRA-1-2014 ITU-T Managing, preserving and computing with big research data Regarding the global e-Infrastructure, the ITU is using the digital object architecture (DOA), on which the recommendation ITU-T EINFRA-3-2014 X.1255 “Framework for discovery of identity management Towards global data e-Infrastructures — research data alliance information” is based. KEY ENABLERS AND SECURITY AND ENABLERS KEY EINFRA-8-2014 SG11 is studying the global problem of combating counterfeiting. Within this activity, SG11 developed the Technical Report Research and education networking — GÉANT

on Counterfeit ICT Equipment. SG11 continues developing a 2019 • new Recommendation Q.FW_CCF “Framework for solution to INFRASUPP-7-2014 combat counterfeit ICT Devices” and two technical reports such e-Infrastructure policy development and international cooperation as “Guidelines on Best Practice and Solutions for Combating Counterfeit ICT Devices”and “Technical Report on use of anti- EINFRA-22-2016 counterfeiting technical solutions relying on unique and persistent User driven e-infrastructure innovation mobile device identifiers”. EINFRA-21-2017 SG11 has a mandate to study issues related to combating stolen ICT equipment. Currently, SG11 is developing a framework for Platform-driven e-infrastructure innovation Combating the use of Stolen Mobile ICT Devices. http://itu.int/ITU-T/go/sg11 EINFRA-12-2017

SG5 (Question 7) is studying and analysing the effects of Data and Distributed Computing e-Infrastructure for Open Science counterfeit equipment in relation with e-waste and their INFRASUPP-02-2017 environmental impact. Policy and International cooperation measures for research SG20 is working on a Recommendation on Information STANDARDISATION ICT FOR PLAN ROLLING infrastructures (RDA) Management Digital Architecture to combat counterfeiting in IoT. 47 ADDITIONAL INFORMATION BROADBAND RDA will be a good support to turn the proposed framework for action for data infrastructures into practice. The INFRASTRUCTURE Commission run a public consultation on the key priority areas for H2020 on data Infrastructures which received MAPPING an excellent feedback. Stakeholders are motivated and, above all, ready to come together and turn the identified POLICY AND LEGISLATION priorities into real action. Europe will consolidate its role POLICY OBJECTIVES of a global partner and a global leader in research data infrastructures. The digital single market24] must be built on reliable and trustworthy data. In this context, the European Commis- sion has launched a project to map fixed and mobile quality of broadband services in Europe. This tool, currently under deployment, consists of an interactive online mapping application that aggregates and visualizes various dimensions of quality of service (QoS) delivered by broadband networks (fixed and mobile) in the European Union. The project constitutes a crucial instrument to assess and monitor the achievement of the new connectivity goals as described in the Communication on Connectivity for a Competitive Digital Single Market – Towards a European Gigabit Society[25]and the 5G action plan26 .In Novem- ber 2016, the first data collection campaign started, 22 Member States have already provided data sets to the Platform and 4 more will do so in the next months.

In 2017, in order to complement the deployment of the EU broadband mapping platform, the Commission has launched a new study on Fixed and Mobile Convergence in Europe (SMART 2016/0046). On the basis of the datasets collected in the EU broadband mapping platform, the study will support the EU policy-making process by assessing the technical/political/economic obstacles that prevent the definition of common (fixed and mobile) network performance measurements in the Union. KEY ENABLERS AND SECURITY AND ENABLERS KEY

2019

• EC PERSPECTIVE AND PROGRESS REPORT

Telecom manufacturers, operators and other stakeholders have an interest in assuring a minimum of interoperability of broadband infrastructure mapping to facilitate the deployment of next-generation networks, simplify their operation, reduce cost and finally open up a single market dimension.

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING 24 COM (2015) 192 final A Digital Single Market Strategy for Europe 25 COM (2016)587 final Connectivity for a Competitive Digital Single Market – Towards a European Gigabit Society 48 26 COM (2016)588 final 5G for Europe: An Action Plan In order to achieve the EU broadband objectives of the In 2017, in order to complement the deployment of the Digital Agenda Europe, it is fundamentally important that EU broadband mapping platform, the Commission has there is reliable and valid data on existing and planned launched a new study on Fixed and Mobile Convergence broadband infrastructures, services offered; and demand in Europe (SMART 2016/0046). On the basis of the data- and investment. A standardised mapping of broadband sets collected in the EU broadband mapping platform, the infrastructures and services as well as of other related study aimed at supporting the EU policy-making process data will help identify gaps of broadband coverage and by assessing the technical/political/economic obstacles quality of service level and identify suitable areas of inthat prevent the definition of common (fixed and mobile) vestment. Increasing the reliability of coverage data (QS1) network performance measurements in the Union. The will be particularly useful to avoid duplication of financing study argued that the greatest challenges for the Digi- as subsidies can be allocated to areas truly affected by tal Single Market (DSM) will not just be politico-econom- market failure and regulatory needs linked to market reg- ic but increasingly regulatory and technical including the ulation. Gathering reliable quality of service data (QS2 and need to define common standards and concluded that QS3) based on common methodologies will feed into oth- the possibility of agreement on the delivery of the new er regulatory aspect linked to net neutrality and consumer digital infrastructure that consumers and business will protection as well as assisting in the provision of reliable need over the next decade should take place in this criti- 5G services to vertical industries. cal moment. It could be possible to reach agreement with the key stakeholders, the national regulatory authorities The Broadband mapping project has revealed that in the (NRAs), essentially through their consultative bodies, such absence of a commonly agreed methodologies for all as BEREC, on the quality measures necessary, in terms of three aspects, Member States administrations have de- indicators, metrics methods and benchmark values. veloped a variety of different methodologies to map coverage and quality of service resulting in multiple mapping The report Fixed and Mobile Convergence in Europe initiatives using different data sets and attributes (which aimed at future design of practical 5G ecosystems for NRAs, Ministries, regional agencies are sometimes running vertical industry applications. There are several proposals in parallel). Mapping data is not comparable across the EU for improving network quality indicators to assure high and often public authorities lack detailed and reliable data performance, with reliable and resilient operation. Addi- to set policies, to ensure that public funding is compliant tionally, the scope of network quality of experience (QoE) with relevant regulation, to programme funds and suc- for the end-user is extended to fit the reality of today’s cessfully monitor the execution of these actions at region- digital society. Broadly speaking, the study found that al, national and European level. This lack of reliable data there is no international example outside the EU that of- risks resulting in policy paralysis, in regulatory uncertainty, fers a model for the EU to follow in terms of QoS/QoE and poor planning of broadband projects. metrics, coverage obligations, measurement methods or enforcement practices. That is why the study suggested The EU mapping platform collects three data sets con- the creation of a framework within which they could be cerning fixed and wireless services including: organized and implemented. Their basis is collective EU- KEY ENABLERS AND SECURITY AND ENABLERS KEY wide agreements agreed in collaboration with all stake- • QoS-1: Calculated availability of service, network per- holders, along with implementation plan, which would

formance of existing infrastructure (coverage); probably need to be phased and with a selected number 2019 • • QoS-2: Measured provision of service, excluding end of key quality indicators (KQIs) which would be based on user’s environment; the QoE/QoS parameters. To build a complete European • QoS-3: Measured experience of service, including end framework for networking quality, the following actions user’s environment would be required: a common platform for measurement, financing the common platform, the establishment of a European KQI database of quality measurement for consumers, including key elements such as reliability and resilience which will become benchmark parameters as networks advance. Indeed, uniform minimum standards for continuity of service throughout Europe will be increasingly important as society’s dependence on network services grows. Standards could look into energy efficiency and

pollution reduction, Network security, Privacy and identity STANDARDISATION ICT FOR PLAN ROLLING protection and Health and safety rules. Finally, the study suggests the creation of a regional model for mobile cov- 49 erage obligations. To reach optimum levels of ubiquitous broadband access, a variety of forms of public support REQUESTED ACTIONS and funding may be necessary27. ACTION 1 SDOs to develop standardised methodology and In 2018, the Commission launched a study to develop a guidelines to assess and map availability and quality of fixed common methodology to map fixed and wireless broad- and wireless/mobile broadband services (including coverage, band coverage and future investment needs, which will QoS and QoE, key quality indicators - KQI) also in view of the support decision making in the fields of: policy, funding, development of VHC (very high-capacity) and 5G services for implementation and monitoring of broadband deploy- a range of public and private users including the large indus- ment. The EC is currently preparing the procurement call tries such as vertical industrial sectors. for the further development of (the third phase) the EU mapping platform with a view to make progress and col- ACTION 2 SDOs to develop standardised methodology lect comparable data sets based on common methodol- to run public consultations and map future broadband in- ogy for all three types of datasets. BEREC members and vestments in the EU. relevant working groups will continue to be fully involved into the work with a view to achieve an agree EU-wide approach in each domain and exploring the possibility to ACTIVITIES AND achieve common international standards over the coming years. ADDITIONAL INFORMATION RELATED STANDARDISATION REFERENCES ACTIVITIES

• Directive 2002/22/EC of the European Parliament CEN/CENELEC and of the Council on universal service user’s rights CLC/TC 209 has developed and maintains a complete set of European relating to electronic communication networks and ser- standards in the field of cable networks for television signals, sound vices (Amended by Directive 2009/136/EC) signals and interactive services. This EN series, EN 60728, deals

with cable networks, including equipment and associated methods • European Electronic Communication Code COM(2016) of measurement for headend reception, processing and distribution 590 final/2 of television and sound signals and for processing, interfacing and • Directive 2002/ 21/EC of the European Parliament transmitting all kinds of data signals for interactive services using all and of the Council on a common regulatory framework applicable transmission media. These signals are typically transmitted for electronic communications networks and services in networks by frequency-multiplexing techniques. (amended by Directive 2009/140/EC) These include: • Directive 2007/2/EC of the European Parliament • regional and local broadband cable networks (i.e. based on and of the Council establishing an Infrastructure optical fibre and coaxial cables) for Spatial Information in the European Community • extended satellite and terrestrial television distribution networks KEY ENABLERS AND SECURITY AND ENABLERS KEY

(INSPIRE) or systems • BEREC Net neutrality measurement tool (October • individual networks or systems that receive satellite and

2019 terrestrial television, and all kinds of equipment, systems and

• 2017) installations used in such cable networks, distribution and • BEREC Common Position on monitoring of mobile receiving systems. network coverage (July 2018) • RSPG and BEREC joint report on mobile connectivity in The extent of this standardisation work is from the antennas and/or special signal source inputs to the headend or other interface points ‘challenge areas’ (December 2017) to the network up to the terminal input of the customer premises • Study from the EC commissioned to IMIT - Fixed and equipment. Mobile Convergence in Europe: SMART 2016/0046 The standardisation takes into account coexistence with users of the RF https://ec.europa.eu/digital-single-market/en/news/ spectrum in wired and wireless transmission systems. study-fixed-and-mobile-convergence-europe-2017 • BEREC preliminary report in the view of a Common Typical data rates for internet access in these kind of networks range from 30 Mbit/s to 200 Mbit/s, with cable network operators now Position on monitoring of mobile network coverage starting to introduce gigabit services to their customers. (December 2017) https://www.cenelec.eu/dyn/www/f?p=104:7:327929463237701::::FSP_ ORG_ID,FSP_LANG_ID:1258287,25 ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING CLC/TC 215 have published, among others, EN 50173-4 on 27 FINAL REPORT PUBLISHED:https://ec.europa.eu/digital-single-market/en/ broadband cabling of private homes (both copper and optical 50 news/study-fixed-and-mobile-convergence-europe-2017 fibre cabling) and EN 50700 on fibre optic access network cabling design. CLC/TC 46X ‘Communication cables’ have published and will measurements which can be established at the national or maintain cable standards to support those different systems (e.g. international level. These give public telecom networks’ customers EN 60966 series, EN 50117 series, EN 50288 series, EN 50441 the chance to estimate the access related performance. series, EN 50407 series). http://www.itu.int/itu-t/q.3960

ETSI Based on the framework ITU-T Q.3960, SG11 is currently developing a companion draft Recommendation ITU-T Q.3961 ETSI has continually developed an extensive set of standards aimed “Testing methodologies of Internet related performance at measurement, testing, quality assurance and quality of service in measurements including e2e bit rate within the fixed and mobile communications networks. operator’s networks “. It describes the testing procedures of data ETSI TC STQ (Speech and Multimedia Transmission Quality) is transmission speed within the fixed and mobile operator’s networks. responsible for standardisation relating to terminals and networks https://itu.int/ITU-T/workprog/wp_item.aspx?isn=13819 for speech and media quality, end-to-end single media and SG11 developed ITU-T Q.3713 “Signalling requirements for multimedia transmission performance, Quality of Service (QoS) broadband network gateway pool” which describes the scenarios, parameters for networks and services and Quality of Experience architecture and signalling for Broadband Network Gateway (BNG) (QoE) descriptors and methods. STQ have developed a series pool in order to achieve the following outstanding benefits: high of standards dealing with quality of service as perceived by the reliability for broadband access services, resource sharing and user, performance metrics and measurement methods. STQ are load balancing among multiple BNG devices which composed a developing a Technical Report on best practices for robust network pool, simplified OAM and reduction of OPEX&CAPEX. Also, SG11 QoS benchmark testing and ranking (TR 103 559), They have is developing standards on signalling requirements for dynamic also developed TRs and ETSI Guides on throughput measurement bandwidth adjustment on demand on broadband network gateway guidelines. implemented by SDN technologies.

ETSI TC INT (Core Network and Interoperability Testing) is Study Group 15 is responsible in ITU T for the development of responsible for the development of core network test specifications standards for the optical transport network, access network, for interoperability, conformance, performance and security. TC INT home network and power utility network infrastructures, systems, is developing a TS for a methodology for end to end internet related equipment, optical fibres and cables. This includes related customer experience measurements for fixed and mobile networks. installation, maintenance, management, test, instrumentation and It will describe the concept, the requirements, the parameters and measurement techniques, and control plane technologies to enable the procedures which should be used for Internet speed quality the evolution toward intelligent transport networks, including the measurements, and is being developed in cooperation with ITU-T support of smart-grid applications. SG.11. http://www.itu.int/ITU-T/go/sg15

ETSI TC Cable is responsible for standardisation related to IETF integrated broadband cable telecommunication network technologies. TC Cable is developing a TS on measurement methods The Large-Scale Measurement of Broadband Performance (LMAP) for the network performance of broadband data services which will Working Group standardised the LMAP measurement system for enable consumers to compare the performance of different service performance measurements of broadband access devices such providers. as home and enterprise edge routers, personal computers, mobile devices, and set top boxes, whether wired or wireless. ITU-T Measuring portions of the Internet on a large scale is essential Study Group 12, the lead ITU-T study group on Quality of for accurate characterisations of performance over time and Service (QoS) and Quality of Experience (QoE), approved new geography, for network diagnostic investigations by providers and Recommendation ITU-T Y.1545.1 “Framework for monitoring the KEY ENABLERS AND SECURITY AND ENABLERS KEY

their users, and for collecting information to support public policy quality of service of IP network services”. This Recommendation is a development. The goal is to have the measurements (made using diagnostic reference for IP network QoS monitoring, and is primarily the same metrics and mechanisms) for a large number of points

a guide used to assist regulators in monitoring the QoS of Internet on the Internet, and to have the results collected and stored in the 2019 • provided by service providers (although subscribers and network same form. service providers may also benefit). ITU-T Y.1545.1 highlights the https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder-Platform#BImap» necessity of testing the QoS of network services offered by ISPs, from a diagnostic and regulatory point of view. Italso addresses QoS evaluation scenarios, sampling methodology and testing tools for regulators. This Recommendation gives guidance to regulators OTHER ACTIVITIES RELATED TO about minimum QoS parameters for evaluating the quality of STANDARDISATION Internet services. https://itu.int/ITU-T/Y.1545.1

SG12 continues studying performance of packet-based networks INSPIRE and other networking technologies, including updates and Thematic working group utility and government services from maintenance on Y.1540 IP performance parameters and Y.1541 European Commission Joint Research Centre set out on 2013 IP-based network objectives. “Data Specification on Utility and Government Services — Technical SG11 approved a new Recommendation ITU-T Q.3960 on a Guidelines”, a “non-paper” document. “Framework for Internet related performance measurements” ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING which describes a framework for Internet related performance 51 SMART 2012/2022 SMART 2012/0046

A “Broadband and infrastructure mapping study” contracted by the The internet is important basic infrastructure, but public efforts European Commission. to monitor this complex system have been somewhat scattered. http://www.broadbandmapping.eu. This study is analysing existing internet monitoring tools and methodologies. It provides concrete recommendations about the SMART 2016/0046 needs and the next steps that Europe should take in this area. “Study on Fixed and Mobile Convergence in Europe” http://internet-monitoring-study.eu/ The project is expected to facilitate the identification of key SMART 2014/0016 elements to define a common European standard to measure network performance taking into account on-going international The Commission launched the project SMART 2014/0016 — standardisation activities for network performance measurements Mapping of broadband services in Europe on 05/07/2015. This with a view to align European and international efforts in this mapping project aims at the development of an EU integrated domain while ensuring the involved of relevant stakeholders. monitoring platform that will gather and benchmark mapping https://ec.europa.eu/digital-single-market/en/news/study-fixed-and- measurements of the services provided by broadband networks, mobile-convergence-europe-2017 notably from two dimensions: quality of service (QoS — data on marketed speeds/quality) and quality of experience (QoE — actual VIRGO data from user experiences to be pulled from crowdsourcing In the context of standards-based infrastructure mapping, applications). The contractor will build a sustainable database a European project VIRGO (Virtual Registry of the Ground which can be easily updated and be statistically relevant doing Infrastructure) began in 2014 with a focus on mapping cloud data pulling and collection from existing sources while designing computing. It is coordinated by Infratel Italia which is active in the qualification process of the self-reporting applications and an broadband mapping in Italy. associated mapping application. This will allow the mapping of broadband at EU, national and regional levels using GIS-based state ECC Report 195 of the art applications.

The Electronic Communications Committee (ECC) drafted Report https://etendering.ted.europa.eu/cft/cft-display.html?cftId=747 195, ´Minimum Set of Quality of Service Parameters and Measurement Methods for Retail Internet Access Services´. http://www.erodocdb.dk/Docs/doc98/official/pdf/ECCREP195.PDF

ECC recommendation (15)03, ´Provision of Comparable Information on Retail Internet Access Service Quality´.

http://www.erodocdb.dk/Docs/doc98/official/pdf/REC1503.PDF

ITU-T projects

The ITU-T reference guide G.1011: ITU-T has a suitable recommendation for the QoS of different types of most important services in its reference guide G.1011, Table 9-1. https://www.itu.int/rec/T-REC-G.1011/en

ITU-T interactive transmission maps of backbone broadband connections worldwide. The scope of this ITU project is to research, process and create maps of core transmission networks (optical KEY ENABLERS AND SECURITY AND ENABLERS KEY fibres, microwaves, submarine cables and satellite links) for the following ITU regions: Arab region, CIS region, the EUR region, the Asia-Pacific region, the North America region, Latin America and the 2019

• Caribbean region, and the Africa region. http://www.itu.int/en/ITU-D/Technology/Pages/ InteractiveTransmissionMaps.aspx ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

52 The Directive on the accessibility of public sector bodies’ ACCESSIBILITY OF websites and mobile application includes a presumption of conformity that websites and mobile applications which ICT PRODUCTS meet the relevant harmonised standards will comply with the Directive’s essential requirements. It also states that AND SERVICES until references to harmonised standards have been published, the European standard EN 301 549 V1.1.2 POLICY AND LEGISLATION (2015-04) (result of Mandate M/376 on accessibility re- POLICY OBJECTIVES quirements for products and services in the ICT domain suitable for public procurement purposes) should provide Accessibility of ICT products and services includes tele- a presumption of conformity. Regarding mobile applica- communications, TV and broadcasting, the web and new tions, the Directive includes the task of setting technical emerging technologies both mainstream and in assistive specifications that meet the Directive’s accessibility re- technology, including interoperability of the two. quirements, until the harmonised standards include the specification needed. The Directive also requires drafing of This area is related to EU implementation of the UN Con- a methodology for monitoring the conformity of websites vention on the Rights of Persons with Disabilities to which and mobile applications with the requirements. the EU and Member States are a party. There is therefore a need to adapt EN 301 549 to include The Commission adopted the European disability strategy provisions on the accessibility of mobile applications, and 2010-2020 with the aim of supporting the implementa- to develop methodologies to test compliance with the es- tion of the Convention in the EU. Regulation 1025/2012 sential requirements of perceivability, operability, under- states: standability and robustness set in the Directive.

“(24) The European standardisation system should also On 27 April 2017, the European Commission issued the fully take into account the United Nations Convention on standardisation request M/554 to the European stand- the Rights of Persons with Disabilities. It is therefore im- ardization organizations in support of Directive (EU) portant that organisations representing the interests of 2016/2102 of the European Parliament and of the consumers sufficiently represent and include the interests Council on the accessibility of the websites and mobile of people with disabilities. In addition, the participation applications of public sector bodies. M/554 requests the of people with disabilities in the standardisation process development of a Harmonized Standard (hEN) covering should be facilitated by all available means”. the essential requirements included in the Directive on the accessibility of the websites and mobile application In this specific policy area, the Directive on the accessibility of public sector bodies, based on the EN 301 549 V1.1.2 of public sector bodies’ websites is covered through the (2015-04). CEN, CENELEC and ETSI accepted this stand- use of a harmonised standard based on globally agreed ardization request in June 2017. As a consequence of this KEY ENABLERS AND SECURITY AND ENABLERS KEY web accessibility guidelines. This area also relates to the mandate, EN 301 549 has been revised accordingly by proposal for a Directive on accessibility of products and the CEN-CENELEC-ETSI Joint Working Group on eAcces- services, also referred to as the European Accessibility Act. sibility (with collaboration of W3C) and has been adopt- 2019 • ed by the ESOs and published at https://www.etsi.org/ deliver/etsi_en/301500_301599/301549/02.01.02_60/ EC PERSPECTIVE AND PROGRESS en_301549v020102p.pdf. Subsequently, following the REPORT fitness checks required under the standardization Regu- lation, and in line with its obligations under the WAD, the Standardisation needs arise, for instance from the UN Commission is expected to publish the references to the Convention, Article 9 of which requires the development new hEN by December 23, 2018. A further version is be- of accessibility standards, and from the general obliga- ing preprared - see sectio C below. tions to promote universal design when drafting standards. Work on this area needs to advance at European REFERENCES level in coordination with related work at international level, to support harmonised market requirements within • The UN Convention on the Rights of Persons with

Europe. Disabilities (UN CRPD): http://www.un.org/disabilities/ STANDARDISATION ICT FOR PLAN ROLLING convention/conventionfull.shtml or http://www.un.org/ disabilities/default.asp?navid=14&pid=150 53 The UN Convention establishes accessibility as one of its ACTION 2 Develop a technical report on potential caus- general principles, which also applies to ICT and systems, es of problems reported by hearing impaired people, and including internet and electronic services; Article 9, on ac- identification of areas where the standard models for pre- cessibility, requires the State Parties to take the necessary dicting speech quality may need to be updated. measures to ensure to persons with disabilities have access on an equal basis with others. Under the Convention, ACTION 3 SDOs to produce a technical report, based on this includes measures related to all services open or pro- the relevant European projects and empirical and other vided to the public sources, delivering availability and quality of service parameters addressing the availability and intelligibility of • Directive (EU) 2016/2102 of the European Parliament telecommunication topics, as required, perceived and ex- and of the Council of 26 October 2016 on the accessi- perienced by people with disabilities bility of the websites and mobile applications of public sector bodies (http://data.europa.eu/eli/dir/2016/2102/ ACTION 4 SDOs to produce a technical report describing oj) requirements for ICT products and services to be designed • On 2 December 2015, the Commission adopted to meet the needs of persons with cognitive and learning a proposal for a Directive on the approximation of disabilities; the report should propose enhancements to the laws, regulations and administrative provisions relevant existing standards and identify needs for further of the Member States as regards the accessibility standardisation requirements for products and services (the ‘European Accessibility Act COM(2015) 615 final - https://eur-lex. ACTION 5 SDOs to continue work on M/473, providing the europa.eu/legal-content/EN/TXT/?uri=COM:2015:0615:- deliverables agreed including the European standard and FIN) to improve the functioning of the internal market methodology for mainstream accessibility in standardisa- of accessible goods and services. Some ICT goods and tion processes and the revision of existing standards as services are among the areas under examination to agreed in the Mandate deliverable 3.1 be covered. The proposal is in negotiation with Council and Parliament ACTION 6 Stimulate further global cooperation on web • The Tallinn Declaration on eGovernment, which accessibility standardisation based on work by the World mentions universal design and accessibility: https:// Wide Web Consortium (W3C) on the web content accessi- ec.europa.eu/digital-single-market/en/news/ bility guidelines (WCAG) ministerial-declaration-egovernment-tallinn-declaration • The Commission’s eGovernment Action Plan 2016 ACTION 7 EDF to produce a report on the principles to - 2020, which also refers to accessibility: https://ec.eu- be followed by emerging technologies, such as Internet ropa.eu/digital-single-market/en/news/communica- of Things, Artificial Intelligence, wearables, and virtual and tion-eu-egovernment-action-plan-2016-2020-acceler- augmented reality, to be accessible for persons with dis- ating-digital-transformation abilities • The European Disability Strategy 2010-2020 KEY ENABLERS AND SECURITY AND ENABLERS KEY

http://eurlex.europa.eu/LexUriServ/LexUriServ. ACTION 8 SDOs to consider and propose a possible ex- do?uri=COM:2010:0636:FIN:EN:PDF pansion of the vocabulary and language coverage of EG 2019

• 203 499 (currently under production) to all official EU/ NOTE: The Audiovisual Media Services Directive (AVMS), as well EFTA languages (and possibly, the minority languages as the draft European Electronic Communication Code, both used in Europe). EG 203 499 will specify a basic, most adoted pending publicaiton, may include additional requirements frequently used set of user-centred and accessible ICT in terms of eAccessibility, which may have an impact on future standardisation work. terminology for existing and upcoming devices, services and applications (currently covering only five languages: English, French, German, Italian and Spanish)

REQUESTED ACTIONS ACTION 9 SDOs to perform a horizontal action relevant to most key enabler topics (non-exhaustively including ACTION 1 SDOs to develop a live consolidated inven- Accessibility of ICT, Cloud computing, e-Health and active tory of accessibility standards, improving the information ageing, e-Privacy, IoT, Electronic invoicing, Trust services in existing lists such as http://standards.cen.eu/dyn/ww- and 5G) and develop recommendations and design guide-

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING w/f?p=204:105:0. lines addressing the human factors aspects and technical parameters relevant to the user experience of service 54 information, availability, understandability, accuracy and standards on accessibility, e.g. those adopted by the US Access trust including aspects of access and service priorities, Board, W3C WAI and some related ISO work. The resulting EN 301 quality and availability 549 standard and other related deliverables have been published and contains the requirements of WCAG 2.0 Level AA. The possibility ACTION 10 SDOs to produce a technical report and de- of proposing it as an international standard is under consideration velop recommendations and guidelines for applying and within the JWG on eAccessibility which decided to wait until the US has published its revised standards under Section 508 in order to integrating accessibility and usability requirements, activ- consider further possible alignments to the EN standard. ities, practices and measures with distributed, collabora- http://ec.europa.eu/enterprise/standards_policy/mandates/database/ tive, agile service development and deployment. This is index.cfm?fuseaction=search.detail&id=333#; quickly becoming the main-stream development method http://webapp.etsi.org/WorkProgram/Report_WorkItem.asp?WKI_ used in the ICT world of virtualised network functions and ID=30873 segments, clouds, fogs and virtual and distributed realities M/473 and collaborative development practices. Otherwise, there is a considerable risk that these highly technology-fo- This is ongoing standardisation work aiming to mainstream accessibility following `design for all’ principles in relevant European cused topics will ignore, or at least not properly and in a standardisation initiatives (other than M/376); in addition it requires timely manner take into consideration, the all-important the development of standards to support manufacturers and accessibility and usability requirements for the end user, service providers including accessibility following design for all, therewith not exploiting the full potential of important and to facilitate the implementation of the accessibility provisions technologies in European standards, which could cover the majority of the standardisation work covered by this Rolling Plan. http://www.etsi.org/images/files/ECMandates/m473.pdf ACTIVITIES AND M/420 ADDITIONAL INFORMATION This mandate, while focusing on accessibility of the built environment, might also include ICT that is used in that context http://ec.europa.eu/enterprise/standards_policy/mandates/database/ RELATED STANDARDISATION index.cfm?fuseaction=refSearch.search# ACTIVITIES CEN-CENELEC-ETSI

M/554 CEN-CENELEC-ETSI have started working on the revision of EN 301 549, that relates to the accessibility of ICT products and M/554 has been issued in April 2017 and requests the services. The revised EN will be developed to meet the essential development of a Harmonized Standard (hEN) covering the requirements included in the Directive on the accessibility of the essential requirements included in the Directive on the accessibility websites and mobile application of public sector bodies. of the websites and mobile application of public sector bodies, based on the EN 301 549 V1.1.2 (2015-04). CEN, CENELEC and CEN-CENELEC ETSI accepted this standardization request in June 2017. As a CEN-CENELEC/TC 11 is working on the standardization consequence of this mandate, EN 301 549 has been revised deliverables in relation with M/420, which will include the following accordingly by the CEN-CENELEC-ETSI Joint Working Group on standards: eAccessibility (with collaboration of W3C) and was adopted KEY ENABLERS AND SECURITY AND ENABLERS KEY and publshed at https://www.etsi.org/deliver/etsi_en/301500_3 • Accessibility and usability of the built environment - Functional 01599/301549/02.01.02_60/en_301549v020102p.pdf . The requirements (EN) hEN also refers to the recent W3C standard WCAG 2.1, which • Accessibility and usability of the built environment - Technical 2019

include accessibility requirements useful for mobile application performance criteria and specifications (TR) • accessibility. A Technical Report on the conformity assessment for the Given that the part in support of the Web Accessibility Directive and accessibility and usability of the built environment will also be covered by M554 has been delivered, i.e. the publication of the hEN developed. 301 549 v.2.1, work can now move to the overall revision of this EN which will lead to the publication of the EN version 3.1 in 2019. This BSI major revision, after the priority areas of web and mobile for the BS 8878:2010 is the first British standard to outline a framework WAD, was also foreseen in M376, and now the work towards the EN for web accessibility when designing or commissioning web v.3.1 has already started. products http://www.ihs.com/products/industry-standards/ The mandate also foresaw a rapid revision of the hEN, to take organisations/bsi/index.aspx account of detailed developments of the WCAG and mobile W3C accessibility; work has started to prepare version 3.1, and this is ISO/IEC JTC 1 expected to be adopted during 2019. The W3C WCAG-EM project has published a stable “working group M/376 note”: STANDARDISATION ICT FOR PLAN ROLLING This addressed ICT accessibility standardisation at European level; https://www.w3.org/TR/WCAG-EM/. See also https://www.w3.org/WAI/ it takes into consideration relevant national and international eval/ 55 The work ISO/IEC JTC1 SWG-A was doing (TR 29138-2) was passed ISO to JTC1 SC35. ISO/IEC Guide 71, Guidelines for standards developers to address A framework for personalization and adaptation of user interfaces the needs of older persons and persons with disabilities was at runtime, based on the context of use (consisting of a user’s published in 2014 and adopted by CEN and the CENELEC as needs and preferences, their envisioned tasks, their equipment, and CEN/ CENELEC guide 6:2014. ITU also adopted it as H-Series environmental parameters of interaction). The framework is based Supplement 17. on the well-known REST protocol, and JSON and XML formats. A JTC1 SWG-A (special working group on accessibility) has been registry-based approach is employed for the definition of terms disbanded. Work has been transferred to ISO/IEC/JTC1 SC35 (User describing a user’s personal preferences and needs. Interfaces). Currently, the following standards are being developed as part of https://www.iso.org/standard/57385.html this framework: ITU • ISO/IEC CD 24571-1 Information Technology – Individualised adaptability and accessibility in e-learning, education and training ITU produced relevant work on accessibility and human factors, a – Part 1: Framework and reference model sample of which is found in the ITU Accessibility Portal. • ISO/IEC DIS 24752-8 Information technology -- User interfaces https://itu.int/en/ITU-T/accessibility -- Universal remote console -- Part 8: User interface resource Related technical groups include Question 26/16 on accessibility framework and Question 24/16 on human factors, which include various CEN experts with disabilities and cooperate with advocacy organizations (such as the G3ict, WFD and RNIB), in addition to other technical CEN formed a Strategic Advisory Group on Accessibility (SAGA) groups such as ITU-T, D, R Study Groups and ISO/IEC JTC1 SC35. to consider how to address accessibility throughout the https://itu.int/itu-t/workprog/wp_search.aspx?Q=26/16 standardisation process; this group includes representatives of national standards bodies, CENELEC and ETSI, and organisations Recommendation ITU-T F.790 on accessibility guidelines for older representing disabled and older persons persons and persons with disabilities is complemented by ITU http://www.cencenelec.eu/standards/Sectors/Accessibility/Pages/ H-series Supplement 17 (2014), which mirrors the new edition of default.aspx ISO/IEC Guide 71 containing guidelines for standards developers to address the needs of older persons and persons with disabilities. ETSI https://itu.int/rec/T-REC-F.790 ETSI continues to produce accessibility standards on specific https://itu.int/rec/T-REC-H.Sup17 ICT topics and is planning to produce a guide to user-centred ITU-T F.791 contains recommended terminology for accessibility for terminology for existing and upcoming devices and services use in the international context and assists in defining context for and recommendations for the design of ICT devices for persons procurement activities of accessible systems and services. with cognitive disabilities; initial early investigations are being https://itu.int/rec/T-REC-F.791 made into transmission quality and its possible link to reported intelligibility problems for some hearing impaired people; see also The checklist in ITU-T FSTP-TACL on how to prepare ICT standards EG 202 952, a set of guidelines to identify “Design for All” aspects that include accessibility from their inception is also available. Two in ETSI deliverables other ITU-T technical papers describe arrangements for accessible http://www.etsi.org/technologies-clusters/technologies/human- meetings and for accessible remote participation in meetings (FSTP- factors/accessibility; http://webapp.etsi.org/WorkProgram/Report_ AM — Guidelines for accessible meetings; and FSTP-ACC-RemPart WorkItem.asp?WKI_ID=35174; http://webapp.etsi.org/WorkProgram/ — Guidelines for supporting remote participation in meetings for all) Report_WorkItem.asp?WKI_ID=37153; http://webapp.etsi.org/ that aim at increasing the participation of persons with disabilities KEY ENABLERS AND SECURITY AND ENABLERS KEY WorkProgram/Report_WorkItem.asp?WKI_ID=35796 at real and virtual meetings. https://itu.int/pub/T-TUT-FSTP IEC

2019 In addition to the work for mainstreaming accessibility recent • IEC TC 100/TA 16 is producing international publications addressing completed work includes ITU-T F.921 (03/2017) “Audio-based aspects of active assisted living (AAL), including issues related network navigation system for persons with vision impairment”, to accessibility, usability and specific user interfaces related to https://itu.int/rec/T-REC-F.921. audio, video and multimedia systems and equipment within the scope of TC 100. W3C http://www.iec.ch/dyn/www/f?p=103:7:0::::FSP_ORG_ID,FSP_LANG_ Develops and maintains the internationally recognized “web content ID:11009,25 accessibility guidelines (WCAG) 2.0”: https://www.w3.org/WAI/intro/ wcag and IETF https://www.w3.org/TR/WCAG20 Relevant work may be found in the ART area. For instance RFC WCAG 2.0 is also available as ISO/IEC 40500:2012, and is partially 3551 identifies the requirements for SIP to support the hearing included in EN 301 549 (only Level A and Level AA requirements). impaired and RFC4103 defines the RTP payload for text conversation. Currently W3C is working on improvements to WCAG for the following areas: mobile accessibility, cognitive and learning RFCs 4103 and 5194 are being referenced in various accessibility disabilities, low vision, conformance testing. Some of these

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING regulations adopted in the US (Section 255/508) and EU (e.g. EN improvements are expected for WCAG 2.1, which is currently being 301 549). 56 pursued by W3C. W3C is also exploring the development of the Raising the Floor Consortium third-generation version of WCAG. Mission is to make the web and mobile technologies accessible The Authoring Tool Accessibility Guidelines (ATAG) 2.0 is a W3C to everyone with disability, literacy and ageing-related barriers, standard (“Recommendation”) that addresses the accessibility regardless of their economic status of code editors, content management systems (CMS), and other http://raisingthefloor.org software used to create web content, include some types of social media websites; and support for production of accessible content by SMART 2014 /0061 these tools. Monitoring methodologies for web accessibility in the European https://www.w3.org/WAI/intro/atag https://www.w3.org/TR/ATAG20 Union. The objective of the study is to collect information on the The User Agent Accessibility Guidelines (UAAG) addresses monitoring methodologies for verification of compliance with web accessibility aspects of web browsers, media players, and some accessibility requirements in the different Member States. types of assistive technologies. It also addresses some types of www.monitor-wa.eu mobile applications. UAAG 2.0 is currently at a normative Working The Netherlands, ‘Simply Accessible’ group Note. https://www.w3.org/WAI/intro/uaag https://www.w3.org/TR/UAAG20 Other countries are invited to participate in this initiative which is the first European initiative involving all relevant stakeholders The Website Accessibility Conformance Evaluation Methodology (government, market parties that build websites and market (WCAG-EM) 1.0 is currently at a working group note status. It parties that test websites) to working together on continuously addresses aspects of website evaluation. improving the accessibility of government websites by supporting https://www.w3.org/WAI/eval/conformance both governments and market parties with proper instruments, e.g. https://www.w3.org/TR/WCAG-EM an accessibility plug-in to support content managers and monitor: accessibility of public websites on organisational and product levels, software conformity with the WCAG standard, any mismatch found OTHER ACTIVITIES RELATED TO with the WCAG standard, and suggestions to improve compliance STANDARDISATION https://www.gewoontoegankelijk.nl/en

Aaliance2

Next Generation European Ambient Assisted Living Innovation; FP7 ADDITIONAL INFORMATION repository of existing standards http://www.aaliance2.eu/ Accessibility needs to be reflected in ICT and many oth-

WAI ACT er areas (like emergency communication, digital cinema, health, public transport, tourism, and learning) both for A cooperation framework for guidance on advanced technologies, evaluation methodologies, and research agenda setting to support users with disabilities in the general public and for staff/ eAccessibility. entrepreneurs with disabilities in industry or public admin- http://www.w3.org/WAI/ACT/ istration.

WAI DEV The following list has been compiled from views expressed Developing strategies to support mainstream production of by some Member States and experts in the field. The list is inclusive components and services and showcasing good practice in intended to trigger further discussion with all stakeholders KEY ENABLERS AND SECURITY AND ENABLERS KEY

inclusive design. http://www.w3.org/WAI/DEV/ on possible future actions:

eAccess+ • Investigating how mobile devices are useful to people 2019 • Hub providing resources notably on standards and guidelines for with dexterity problems and reduced mobility and web accessibility (CIP ICT PSP) other type of disability when interacting with other ICT http://hub.eaccessplus.eu/wiki/Category:Standards products and services; widening the scope (i.e. beyond EIII mobile devices) of guidelines related to diminished motor control e.g. people with advanced Parkinson or European Inclusion Internet Initiative: partners among others similar disorders who can hardly or no longer write is Dutch, Danish, Italian and Island governments. The initiative is now completed also needed http://eiii.eu/ • Applying standardisation of broadcasters accessible interfaces to IP (and other) systems. Prosperity4All • Convergence and interoperability of video relay Develops the infrastructure and ecosystem that will allow for services. a ubiquitous auto-personalisation of interfaces and materials, • Accessible hybrid TV services. based on user needs and preferences, to grow; it builds on the

• Specification of requests for translation among lan- STANDARDISATION ICT FOR PLAN ROLLING infrastructure provided by Cloud4All in order to create more parts of the GPII guages, image and text representations, particularly http://www.prosperity4all.eu; http://www.cloud4all.info/; http://gpii.net/ 57 those overcoming accessibility issues, e.g voice to text like automation of relay services for telephony and ARTIFICIAL capturing/ subtitling TV transmissions for hearing-impaired people. INTELLIGENCE • Interoperability of the most common text transmission techniques like IM — SMS- and email for hearing POLICY AND LEGISLATION impaired people. POLICY OBJECTIVES • Text to voice, like automatically generated audio description for blind citizens. Although there is not a unique concept of Artificial intelligence • Text to sign language, like automatically generated (AI), the most accepted definitions refer to systems that dis- sign language for deaf and hearing-impaired people. play intelligent behaviour by analysing their environment and • Identification of accessibility issues, requirements and taking actions – with some degree of autonomy – to achieve associated standardisation needs related to: specific goals. -- non-literate and dyslexic users; these requirements may turn out to be equally applicable for AI-based systems can be purely software-based, acting in foreign users unable to understand available the virtual world (e.g. voice assistants, image analysis soft- user interface languages. ware, search engines, speech and face recognition systems) -- security and privacy features of ICT services and or AI can be embedded in hardware devices (e.g. advanced devices (see below and sections security and robots, autonomous cars, drones or Internet of Things appli- ePrivacy) . cations) or a combination of both.

Users have to use increasingly complex security proce- We are using AI on a daily basis, e.g. to translate languages, dures to access the services that they rely on. Attempts generate subtitles in videos or to block email spam. Beyond to increase security frequently include mechanisms that making our lives easier, AI is helping us to solve some of the many users, particularly those with physical and cogni- world’s biggest challenges: from treating chronic diseases or tive disabilities, are unable to successfully handle without reducing fatality rates in traffic accidents1 to fighting climate adopting highly insecure strategies such as writing down change or anticipating cybersecurity threats. Like the steam complex usernames and passwords. There is a need to engine or electricity in the past, AI is transforming our world, provide standards and guidance on accessible security our society and our industry. mechanisms that are compatible with human abilities, and appropriate to the type of service being used. In this The term AI was coined in 1956. Since then, the research context the benefit of using of new technologies like bi- on AI included a large variety of computing techniques and ometrics or RFID could be evaluated. spread over many different application areas. Historically the development of AI has alternated some periods of fast de- This accessibility component of privacy and security is- velopment, called AI springs, with other periods of reduced sues could be addressed in general development follow- funding and interest, called AI winters. Currently, AI is expe- KEY ENABLERS AND SECURITY AND ENABLERS KEY ing M/473 or, preferably, be mainstreamed in general pri- riencing another spring, which is motivated by three main vacy and security work. driving factors: the huge amount of available data generated 2019

• by the world-wide-web and sensor networks, the affordability Standards could be evaluated to produce a guide to us- of high-performance processing power, even in low-cost per- er-centred terminology for all potential users in several EU sonal devices, and the progress in algorithms and computing languages, focusing on the benefits for those with learning techniques. Another characteristic of the present AI wave is and cognitive disabilities. The preponderance of different that it goes far beyond the research community and targets names for the same ICT features and functions is con- product innovations and business-oriented services with high fusing for all people, but this can be a significantly more commercial potential, which assures its sustainability. important problem for older users or users with learning and cognitive disabilities. This has a negative impact on The way of approaching AI will shape the digital future. In individual citizens and on the size of the ICT market. This order to enable European companies and citizens to reap the would provide benefits for all potential users, particularly benefits of AI, we need a solid European framework. older users and users with learning and cognitive impair- ments who are currently partly excluded from benefiting The new EU strategy on AI was published on 25th April 2018,

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING from the use of modern ICT. in the Commission Communication on Artificial Intelligence

58 for Europe. One of the main elements of the strategy is an REFERENCES ambitious proposal to achieve a major boost in investment in AI-related research and innovation and in facilitating and • COM(2018) 237: Artificial Intelligence for accelerating the adoption of AI across the economy. Europe https://eur-lex.europa.eu/legal-content/EN/ TXT/?uri=COM%3A2018%3A237%3AFIN The target is to reach a total of €20 billion in AI-related investment, including both the public and the private sector, for the three years up to 2020. For the decade after, the REQUESTED ACTIONS goal is to reach the same amount as an annual average. This is of crucial importance if we want to ensure that ACTION 1 Foster coordination of standardisation efforts on European industry does not miss the boat. artificial intelligence in Europe, promoting interaction of all stakeholders taking into account their vision and real needs. The other two main focus areas of the EU strategy on AI refer to preparing for socio-economic changes and en- ACTION 2 Ensure coordination between standardisation ef- suring an appropriate ethical and legal framework. It is forts on artificial intelligence in Europe and other international essential to increase the number of people with advanced standardisation efforts, especially ISO/IEC JTC 1/SC 42 on AI. skills in new digital technologies. More broadly, it is important to give all citizens and workers every opportunity to ACTION 3 SDOs to examine the conclusions of the High-Lev- acquire suitable skills for the digital economy. el Expert Group on Artificial Intelligence once available and integrate the outcomes within their roadmaps. EC PERSPECTIVE AND PROGRESS REPORT ACTIVITIES AND

AI is a field that has had little standardisation activities in ADDITIONAL INFORMATION the past. However, the big increase in interest and activities around AI in the latest years brings together a need RELATED STANDARDISATION for the development of a coherent set of AI standards. In ACTIVITIES response to this, ISO and IEC has created a standardisation committee on AI, namely ISO/IEC JTC 1/SC 42, which ETSI is most active in the field of AI and big data. The profes- The introduction of new technologies means that communications sional association IEEE is also very active in investigating networks are becoming more flexible and powerful. These and proposing new standards for AI, particularly in the technologies transfer much of the complexity in a network from hardware to software, from the network itself to its management field of ethics of autonomous and intelligent systems. The and operation. The use of Artificial Intelligence (AI) techniques in European Commission has launched its Communications the network supervisory and management system can help solve of 25th April 2018 and a number of initiatives about AI, some of the problems of future network deployment and operation. KEY ENABLERS AND SECURITY AND ENABLERS KEY which are commented below. ETSI’s ISG on Experiential Networked Intelligence (ISG ENI) develops standards that use AI mechanisms to assist in the management

Most of these activities are recent and will lead to re- and orchestration of the network. This work will make the 2019 deployment of future 5G networks more intelligent and efficient. • quests for developing new standards. For the time being, there are no significant past activities to report about their ISO/IEC JTC 1 progress. SC 42 (Artificial Intelligence) is looking at the standardization of the entire AI ecosystem. The program of work has been growing rapidly The most likely areas where new AI standards will be re- and is expected to continue to do so in 2019. Key items within the quired are the following: program of work include: • Foundational standards including overview and vocabulary as well • AI vocabulary and definitions as a framework for AI using machine learning • Benchmarking • Trustworthiness of AI including projects related to an overview, • Ethics robustness and bias • Use cases and applications for AI • Safety • Governance implications of AI • Knowledge representation • Ethics and societal concerns of AI

• Data interchange formats • Big data ecosystem STANDARDISATION ICT FOR PLAN ROLLING • Computer system integration and APIs • Study of computational approaches and characteristics of AI systems 59 • Study of AI lifecycle • Providing guidance to committees looking at the application of AI OTHER ACTIVITIES RELATED TO and AI systems STANDARDISATION

SC 42 currently has 5 working groups, a study group and an The European AI Alliance outreach ad hoc group in its structure with 10 active projects underway and more anticipated. SC 42 has established over 20 https://ec.europa.eu/digital-single-market/en/european-ai-alliance Liaisons with many more anticipated. These Liaisons also include The High-Level Group on Artificial Intelligence organizations looking at the application of AI in their systems as well as diverse stakeholders interested in AI.” https://ec.europa.eu/digital-single-market/high-level-group-artificial- https://www.iso.org/committee/6794475.html intelligence

IEEE AI on Demand Platform

IEEE has a significant amount of activity in both the fields of http://ec.europa.eu/research/participants/portal/desktop/en/ Autonomous and Intelligent Systems (A/IS) as well as in related opportunities/h2020/topics/ict-26-2018-2020.html verticals. The Chair of the IEEE Global Initiative on Ethics of Autonomous and Intelligent Systems (“The IEEE Global Initiative”) H2020 is a member of the High-Level Expert Group on Artificial Intelligence. R&D&I projects funded within topics ICT-26 from the H2020- Stemming from the IEEE Global Initiative, the IEEE P7000tm ICT-Work Programme 2018-20 can produce relevant input for standards projects address ethical considerations in a broad range standardisation. of issues regarding autonomous and intelligent systems, including http://ec.europa.eu/research/participants/portal/desktop/en/ transparency, privacy, algorithmic bias, children’s data, employee opportunities/h2020/topics/ict-26-2018-2020.html data, creating an algorithmic agent for individuals, creating an ethical robotic ontological framework, dealing with robotic nudging, creating a uniform fail-safe standard for A/IS, defining well-being ADDITIONAL INFORMATION metrics relating to A/IS, assessing news sources to keep them European AI Alliance accountable and objective in reporting, creating machine-readable privacy terms for all individuals, and updating facial recognition European AI Alliance is a forum set up by the European Commission systems and databases to avoid bias. engaged in a broad and open discussion of all aspects of Artificial https://ieeesa.io/rp-ais Intelligence development and its impacts. Given the scale of the challenge associated with AI, the full mobilisation of a diverse set IETF of participants, including businesses, consumer organisations, trade

The IETF Autonomic Networking Integrated Model and Approach unions, and other representatives of civil society bodies is essential. Working Group will develop a system of autonomic functions that carry The European AI Alliance will form a broad multi-stakeholder out the intentions of the network operator without the need for detailed platform, which will complement and support the work of the AI low- level management of individual devices. This will be done by High-Level Group in particular in preparing draft AI ethics guidelines, providing a secure closed-loop interaction mechanism whereby network and ensuring the competitiveness of the European Region in the elements cooperate directly to satisfy management intent. The working burgeoning field of Artificial Intelligence. The Alliance is open to all group will develop a control paradigm where network processes stakeholders. It is managed by a secretariat, and it is already open coordinate their decisions and automatically translate them into local for registration. actions, based on various sources of information including operator- High-Level Expert Group on Artificial Intelligence (AI HLG) supplied configuration information or from the existing protocols, such KEY ENABLERS AND SECURITY AND ENABLERS KEY as routing protocol, etc. On 14th June 2018, the Commission appointed 52 world-class experts to a new High-Level Expert Group on Artificial Intelligence, Autonomic networking refers to the self-managing characteristics comprising representatives from academia, civil society, as well as 2019 (configuration, protection, healing, and optimisation) of distributed • industry. Moreover, the AI HLG will serve as the steering group for network elements, adapting to unpredictable changes while the European AI Alliance’s work, interact with other initiatives, help hiding intrinsic complexity from operators and users. Autonomic stimulate a multi-stakeholder dialogue, gather participants’ views Networking, which often involves closed-loop control, is applicable and reflect them in its analysis and reports. to the complete network (functions) lifecycle (e.g. installation, commissioning, operating, etc). An autonomic function that works in In particular, the group will be tasked to: a distributed way across various network elements is a candidate 1. Advise the Commission on next steps addressing AI-related for protocol design. Such functions should allow central guidance mid to long-term challenges and opportunities through and reporting, and co-existence with non-autonomic methods of recommendations which will feed into the policy development management. The general objective of this working group is to process, the legislative evaluation process and the development enable the progressive introduction of autonomic functions into of a next-generation digital strategy. operational networks, as well as reusable autonomic network 2. Propose to the Commission draft AI ethics guidelines, covering infrastructure, in order to reduce operating expenses. issues such as fairness, safety, transparency, the future of work, https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder-Platform#AI democracy and more broadly the impact on the application of the Charter of Fundamental Rights, including privacy and

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING personal data protection, dignity, consumer protection and non- discrimination. 60 3. Support the Commission on further engagement and outreach mechanisms to interact with a broader set of stakeholders in the context of the AI Alliance, share information and gather their EUROPEAN GLOBAL input on the group’s and the Commission’s work.

AI on Demand Platform NAVIGATION The European Commission has launched a call for proposals to fund SATELLITE SYSTEM a large €20 million project on Artificial Intelligence (AI) under the framework programme on R&D Horizon 2020. It aims to mobilise (EGNSS) the AI community in Europe in order to combine efforts, to develop synergies among all the existing initiatives and to optimise Europe’s potential. The call was closed on 17th April 2018, and the received POLICY AND LEGISLATION proposals have been evaluated. The awarded project will start on POLICY OBJECTIVES 1st January 2019.

Under the next multiannual budget, the Commission plans The European Global Navigation Satellite System (EGNSS) to increase its investment in AI further, mainly through two encompasses the Global Satellite Navigation System es- programmes: the research and innovation framework programme tablished under the Galileo programme and the European (Horizon Europe), and a new programme called Digital Europe. Geostationary Overlay Service (EGNOS). AI studies planned for 2018-2019

In addition to the previous initiatives, the Commission is planning to Galileo entered Initial Operational Capability (IOC) phase conduct some technical studies about AI during the period 2018-19. in 2016. Since then, anyone with a Galileo-enabled device Among them, there will be one specifically targeted to identify is able to use its signals for positioning, navigation and safety standardisation needs. timing. Currently there are more than 70 Galileo-ready Standard sharing with other domains models of smartphones available in the market contributing to an installed base greater than 400 million. Gal- AI is a vast scientific and technological domain that overlaps with other domains also discussed in this Rolling Plan, e.g. big data, ileo is also adopted in additional users’ domains such as e-health, robotics and autonomous systems and so forth. Many of transportation and the professional one (e.g. surveying or the standardisation activities of these domains will be beneficial agriculture applications). for AI and the other way around. For more details, please refer to section “C.1-Related standardisation Activities”. The Galileo system is currently providing three types of services:

• Open Service (OS): Galileo open and free of charge service set up for positioning and timing services. • Public Regulated Service (PRS): Service restricted to government-authorised users, for sensitive applications that require a high level of service continuity. • Search and Rescue Service (SAR): Europe’s con- KEY ENABLERS AND SECURITY AND ENABLERS KEY tribution to COSPAS-SARSAT, an international satellite-based search and rescue distress alert detection

system. 2019 • Once the system reaches its Full Operational Capability it will also offer aHigh Accuracy Service (HAS), a service complementing the OS by providing an additional navigation signal and added-value services in a different frequency band. The HAS signal will provide a precision down to 20 cm, globally on Earth.

EGNOS is Europe’s regional satellite-based augmentation system (SBAS) that is used to improve the performance of global navigation satellite systems, such as GPS and Gal- ileo. It has been deployed to provide safety of life navigation services to aviation, maritime and land-based users

over most of Europe. EGNOS improves the accuracy and STANDARDISATION ICT FOR PLAN ROLLING

61 reliability of satellite navigation positioning information, On 3 October 2018, a workshop with Member States and while also providing a crucial integrity message regarding standardisation organisations took place, in which the the continuity and availability of a signal. Commission services presented its proposed priorities for the EGNSS downstream long-term standards develop- Both Galileo and EGNOS services create extensive so- ment plan. A discussion paper is currently being consulted cio-economic benefits, and the range of its applications with the stakeholders and the results of these discussions is wide, spanning across numerous market segments and will feed into a planned Staff Working Document. generating value for both, public and private sectors. The links between Galileo services and ICT are particularly EGNSS downstream standardisation has also been high- strong, as satellite navigation services are considered one lighted in the Annual Union Work Programme for 2018 of the key enabling technologies for ICT, and are becoming and the EGNSS Work Programme for 2018, as well as in increasingly important for the digital agenda. the drafts of these programmes for 2019.

The objective of the EU is to ensure that Galileo and EG- NOS are widely used, and standardisation plays an impor- REFERENCES tant role in this process, especially when it comes to downstream market of EGNSS services, which is still emerging. • Space Strategy for Europe, COM(2016) 705 final Standards are a powerful tool to support safety-related • GNSS Market Report, Issue 5, 2017, https://www.gsa. applications as well as to ensure the interoperability of europa.eu/system/files/reports/gnss_mr_2017.pdf Galileo services. Introducing or updating standards related • Overview of EGNSS downstream standardisation and to EGNSS downstream applications is therefore a priority. assessment of gaps and future needs to facilitate the integration of Galileo and EGNOS user applications, Valdani Vicari & Associati (VVA), GMV and Lexjus Sin- EC PERSPECTIVE AND PROGRESS acta (LS), November 2017, http://ec.europa.eu/news- REPORT room/growth/item-detail.cfm?item_id=613695 • The annual Union work programme for European The importance of standardisation in relation to space has standardisation for 2018, COM(2017) 453 final been evoked during the public consultation on the Space • Use Galileo” website with the latest information on the Strategy for Europe, which ranked standardisation as Galileo-ready devices in all market segments, most important for the market uptake of Galileo and EG- https://www.usegalileo.eu/ NOS. In reaction to this, the European Commission’s Space Strategy for Europe, adopted on 26 October 2016, states that “in longer term, the Commission will encourage the REQUESTED ACTIONS uptake of space solutions through standardisation measures and roadmaps”. ACTION 1 Location-Based Services- Update 3GPP Technical Specifications (for example TS 45.005 and KEY ENABLERS AND SECURITY AND ENABLERS KEY In 2017, a study on the overview of EGNSS downstream TS 36.171) to ensure a GNSS-neutral satellite selection standardisation and assessment of gaps and future needs method to calculate the position. 2019

• has been finalised. The study, after consultations with industry stakeholders, standard setting organisations, gov- ACTION 2 Location-Based Services- SDOs to draft har- ernments and civil society representatives, identified the monised standards for radio equipment to implement most important areas for EGNSS downstream standard- Delegated Regulation (EU) 2019/320 supplementing of isation and outlined some 50 proposals for action. Based Directive 2014/53/EU with regard to the application of es- on that, DG GROW has identified three priority areas: sential requirements in order to ensure caller location in emergency communications from mobile devices. • Intelligent transport (aviation, drones, road, maritime, rail), ACTION 3 5G- SDOs to include the support for signal • Intelligent interconnectivity (location-based authentication and position integrity (EGNSS differenti- services, IoT, 5G), and ators) in 5G reference architecture, for example through • Intelligent infrastructures (timing and syn- updating of 3GPP Technical Specifications TS 23.501 or chronisation of critical infrastructures, such as TS 22.071

ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING energy grids)

62 OneM2M and AIOTI ACTION 4 -IoT-SDOs to update standards related to the IoT reference architecture in order to include signal au- OneM2M is one of the most relevant IoT architecture definition thentication and position integrity in information exchange standards organisation and the EC can address it through its members, such as ETSI or AIOTI, to include the options to support and sensor description standards, for example OneM2M EGNSS differentiators in the reference architectures. The Alliance TS-001-V2.10.0 for the Internet of Things Innovation (AIOTI) associates key IoT industrial players, as well as well-known European research ACTION 5 Road- SDOs to ensure that the reference centres, universities, associations and public bodies, and promotes architecture and relevant information exchange standards convergence and interoperability of IoT standards. Through its in the field of Cooperative Intelligent Transport Systems working groups, such as WG03, AIOTI can support the EC to promote the use of authentication and integrity of EGNSS within are able to support EGNSS signal authentication and IoT reference architectures. On the other hand, the EC could address position integrity; the concerned standards are for example ETSI, who is the founding partner of Technical Specification TS- ISO/DIS 17427, ETSI EN 102 637-1, ISO/TS 19321:2015, 0001-V2.10.0, containing information on how to manage location. ETSI TS 103 324, etc.

ACTIVITIES AND ADDITIONAL INFORMATION

RELATED STANDARDISATION ACTIVITIES

EC M/453

Standardisation related to Cooperative ITS is active in Europe and the EC has created standardisation mandate addressed to CEN/ CENELEC and ETSI to support wide implementation and deployment of Cooperative ITS systems. In general, the existing ITS standards do not address in depth the question of position information,

therefore addressing standardisation organisations, such as ETSI or ISO, to ensure that the C-ITS reference architecture supports EGNSS is crucial. http://ec.europa.eu/growth/tools-databases/mandates/index. cfm?fuseaction=search.detail&id=434

EC M/496

CEN/Cenelec and ETSI have a mandate from the EC establishing a programme for space related standards, now in phase 3 of the process. CEN/Cenelec manages standardisation activities related KEY ENABLERS AND SECURITY AND ENABLERS KEY

to the space industry via joint CEN-Cenelec Technical Committee ‘Space’ (CEN/CLC/TC 5).

http://ec.europa.eu/growth/tools-databases/mandates/index. 2019 • cfm?fuseaction=search.detail&id=499

ITU

The International Telecommunication Union (ITU) is responsible for 5G standardisation, however it is mostly 3rd Generation Partnership Project (3GPP) who coordinates the work. Specifically, Working Group 4 under the Radio Access Network (RAN) Technical Specifications Group (TSG) - Radio performance and protocol aspects (system) - RF parameters and BS conformance, deals with standards concerning EGNSS. ETSI is one of the seven umbrella standardisation organisations of 3GPP and through them, the EC can advocate the updating of the technical specifications of the pertinent standards. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

63 64 64 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES SOCIETAL CHALLENGES and standards for digital health and care, (ii) strengthening E-HEALTH, of the digital infrastructure for cross border exchange of health data through the Connecting Europe Facility (CEF), HEALTHY LIVING and (iii) new investments in large scale implementation of digital health and social care programmes from national AND AGEING and regional authorities grouped under the European In- novation Partnership on Active and Healthy Ageing. POLICY AND LEGISLATION POLICY OBJECTIVES More specifically, on 28 July 2015 the Commission has adopted the Decision on the identification of ‘Integrating One of the major challenges that Europe faces today is the Healthcare Enterprise’ profiles for referencing in public to ensure the sustainability and quality of healthcare pro- procurement. In 2016 a total of 74 European regions from vision. This is caused mainly by demographic changes28, 18 Member States were awarded the title of ‘Reference the associated rising prevalence of chronic diseases and Sites of the European Innovation Partnership on Active and the re-emergence of infectious diseases. The White Paper Healthy Ageing’ (EIP on AHA). Moreover, under the Frame- on the Future of Europe identifies some of the drivers of work setup by the eHealth Network, Member States have Europe’s future, noting that by 2030 Europe will be the worked together with the Commission to build the eHealth oldest region in the world. Through Digital technologies, Digital Service Infrastructure (eHDSI)29 for cross-bor- citizens’ health and quality of life can be improved while der exchange of Patient Summaries and ePrescription.30 the challenges of how to provide modern healthcare and Co-funded by CEF, the first Member States should go live healthcare systems are addressed. Moreover, technology in 2018, and then the number of participants to the ex- can offer effective tools to advance research, support the change will grow. Also, in 2017, the Commission launched transition from a hospital-based health care model to a 24 European Reference Networks, which will provide an citizen-centric model and contribute to the sustainability unprecedented capacity for cross-border collaboration to and resilience of healthcare provision. New approaches diagnose and treat rare diseases, using online consulta- could be enabled in order to support personalised med- tion tool built with Connecting Europe Facility co-funding. icine, independent living or integrated health and social They will pool knowledge and expertise, and offer an op- care, accelerate scientific progress for early diagnosis, portunity for clinical and scientific innovation.

prevention of diseases and proactive re-design of working and living environments as well as more effective treat- Moreover, the digital transformation of health and care ments. is one of the priority areas in the modernisation of public services identified in the midterm Review of the DSM Thus, there is a clear need to move forward by ensuring strategy. Towards this direction, the Commission adopted Citizens’ access to their own electronic health records an- a Communication in April 2018 (COM(2018) 233) on en- ywhere in the EU, developing a secure EU-wide digital in- abling the digital transformation of health and care in the frastructure that allows the pooling of electronic health Digital Single Market. This Communication addresses the records and other health data in compliance with data need and scope for further measures in the area of digital SOCIETAL CHALLENGES protection legislation and support the aggregation of in- health and care, in line with legislation on the protection of vestment plans across Member States and regions to de- personal data, patient rights and electronic identification 2019 • ploy large scale digital health and care programmes (such and in particular as regards the following three priorities: as mobile health, telemedicine and connected care). 1. Citizens´ secure access to electronic health records In 2015, the Digital Single Market (DSM) Strategy high- and the possibility to share it across borders. lighted the need to make progress on standardisation and 2. Supporting data infrastructure, to advance research, interoperability of eHealth solutions in support to health disease prevention and personalised health and care system reforms. Moving towards this direction, several in key areas including rare, infectious and complex steps have already been taken and the relevant actions in- diseases. clude: (i) the adoption of new guidance on interoperability

28 People aged 50+ account for 37% of the population, i.e. 190 million European citizens. Eurostat population projections foresee that the number of people aged over 60 will increase by about two million a year in the 29 https://ec.europa.eu/cefdigital/wiki/display/EHOPERATIONS/ coming decades, while the working-age population, as a result of lower eHealth+DSI+Operations+Home

fertility rates among post-baby-boom generations, will start to shrink. The 30 the keyword CBEHIS (Cross Border eHealth Information Services) which is STANDARDISATION ICT FOR PLAN ROLLING number of very old persons, 80 years and older, who are most likely to be the abbreviation used by experts to describe their activity. CBeHIS is the in need of care, will increase. At the same time fewer young people will be infrastructure with the operations used to exchange real patient related available to provide informal and formal support and care. data, in particular health data, between its members 65 66 66 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES data exchangesurroundingit. and including activeandhealthyageing with ICT and the services unlocking the EU digitalsinglemarket inthat field the Europeancitizenandimproved deliveryofhealthcare change isthepreconditionfor achievingbetterhealthof Interoperability ofICT-enabled solutions andofdataex- in thespecificarea. oped Patient Summary oftheeHDSIandallrelevantwork exchange format takes intoaccountthealreadydevel- the cross-borderhealthcareservicesfor patients.ThisEHR change format for ElectronicHealthRecordstofacilitate is alreadyworkingtowards thedevelopmentofanex- collaboration withtheMemberStates,Commission factors for thesecond priority oftheCommunication.In while technicalandsemanticinteroperabilityarealsokey secure exchangeofElectronicHealthRecordsaccrossEU is about abillity andexchangeofhealthcaredata.It’s firstpriority in theDigitalSingleMarket isfocused ontheinteroper- enabling thedigitaltransformation ofhealthandcare The Commission Communication(COM(2018)233)on harmonisation. including a strong contribution from standardisation and domains, whichshallbeaddressedonallconcernedlevels in botheHealthandactivehealthylivingageing need for interoperabilitybetweenthesolutionsprovided in Europe.Amongthemainissuestobetackledare from activeandhealthylivingageingenvironments need tobeaddressedinorderunlockallthebenefits environment inEurope.Also,barrierscontinuetoexistand the benefitsofafullymatureandinteroperableeHealth challenges thatneedtobeaddressedinorderreapall Notwithstanding thissubstantialprogress,therearestill REPORT EC PERSPECTIVE 3. healthcare systems. systems. healthcare and onabetterunderstandingoftheoutcomes patient-centred care,focussing onchronicdiseases and citizenempowerment aswellqualityand tients andhealthcareproviders, tosupportprevention Facilitating feedback andinteractionbetweenpa- identifying the standards and approaches for a AND PROGRESS AND PROGRESS throughout Europe. sis ofproblemsandthedescriptioneHealthsolutions language, andacommonstartingpointfor theanaly- of termsandmethodologiesfor reachingacommon in the eHealth domain in Europe, offering a framework managing interoperability and standardisation challenges ber 2015.Itrepresentsacommonrefinedframework for (ReEIF) wasadoptedby theeHealthNetworkinNovem- A refinedeHealthEuropeaninteroperabilityframework raising awarenessofthebenefitsinteroperability. between organisations,engagementofstakeholders, and mechanisms to govern interoperability, collaboration areas, addressingissues related to the identification of Interoperability ActionPlaniscomprisedoffivefocus the implementationofEIFfrom2016to2020.The Action Plan,whichoutlinesprioritiesthatshouldsupport Europe. The EIF is accompanied by Commission prioritytocreateaDigitalSingleMarket in efforts. ThenewEIFis undertaken inthecontextof and newlegislationdonotcompromiseinteroperability end-to-end digitalservices,andensurethatbothexisting isational relationships,streamlineprocessessupporting of theirinteroperability activities, establish cross-organ- crete recommendationsonhow toimprove governance ital publicservices.Itoffers public administrations47con- gives specificguidanceonhow tosetupinteroperabledig- Commission, adoptedon23March2017.Theframework the Communication(COM(2017)134)from European trations (ISA²)programme(2016-2020)andaspartof Interoperability Solutionsfor EuropeanPublicAdminis- presented inthecontextofimplementation A newEuropeanInteroperabilityFramework (EIF)was Regulation 1025/2012. 2015/1302 of28July2015 fied for useinprocurement by CommissionDecision(EU) work. OneexampleistheIHEsetofspecificationsidenti- semantic levels of the eHealth Interoperability Frame- dardisation regulation,contributingtothetechnicaland lic procurement,intheframeworkofnewEUstan- more detailedspecifications,whichcouldbeused for pub- not beenspecificenough.TheeHealthnetworkidentified general. IneHealthhowever, suchstandardshaveoften to furtherenhancetheinteroperabilityofICTsolutionsin The useofEuropeanandinternationalstandardsisaway 31 JOL_2015_199_R_0011 JOL_2015_199_R_0011 http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=OJ:- 31 under Article 14 of the EU under Article14oftheEU the Interoperability the Interoperability In addition to European and international standards and Several projects are successfully testing and implement- specifications, interoperability testing, labelling and certi- ing standards, open and secure architecture and subsets fication processes are also essential. Several projects are of terminologies and making policy recommendations, to successfully testing and implementing standards, open prepare the deployment of ICT services for an active and and secure architecture, clinical workflows and subsets healthy ageing on a large scale. It is proposed to boost of terminologies and making policy recommendations, interoperability by further developing and validating spec- to prepare the deployment of eHealth services on a large ifications and components, partly through the launch of scale. standardisation mandates, projects or direct grants, the definition of interoperability profiles and certification, if With the purpose of implementing Patient Summary and deemed necessary. Coordination with the JIC and other ePrescriptions data exchange among Member States, the SDOs will be pursued. The availability of new infrastruc- eHN adopted three guidelines on cross-border exchange ture for the Internet of Things (IoT), such as Lora and Zig- of health data: the guidelines on a minimum/non exhaus- bee provides promising new opportunities for the devel- tive patient summary dataset for electronic exchange opment of ICT applications for monitoring care of people (2013, revised in 2016), on an ePrescription dataset for living at home. electronic exchange (2014, revised in 2016); and on an Organisational Framework for eHealth National Contact On 5 April 2017, two new Regulations on medical devices Points (2015). In addition, a recommendation to promote were adopted. These replace the existing Directives. the use of patients’ registries has been adopted in 2015, and a guideline on the electronic exchange of health data • Regulation (EU) 2017/745 of the European Parliament under Cross-border directive 2011/24/EU was adopted in and of the Council of 5 April 2017 on medical devices, 2016. amending Directive 2001/83/EC, Regulation (EC) No 178/2002 and Regulation (EC) No 1223/2009 and The Commission is working on the setting up of Europe- repealing Council Directives 90/385/EEC and 93/42/ an reference networks (ERN) on rare diseases pursuant EEC, to Article 12 of Directive 2011/24 on patients’ rights in • Regulation (EU) 2017/746 of the European Parliament cross-border healthcare. The main aim is to provide health and of the Council of 5 April 2017 on in vitro care in a networking environment. Such cooperative work diagnostic medical devices and repealing Directive

requires an IT setup that allows healthcare providers to 98/79/EC and Commission Decision 2010/227/EU. discuss and share knowledge and clinical information on concrete and real-time patient cases (a virtual consulta- The new rules will apply after a transitional period. Name- tion system) including the use of the use of HER PACS ly, 3 years after entry into force for the Regulation on systems. medical devices (spring 2020) and 5 years after entry into force (spring 2022) for the Regulation on in vitro diagnos- The eHealth Interoperability Framework Study 32identifies tic medical devices. a representative set of the most relevant use-cases within the eHealth environment and initiating the specification Moreover, several H2020 projects on eHealth standardi- SOCIETAL CHALLENGES of requests to foster ICT products and services. Further sation, harmonisation and interoperability were finalised citizen-centred work is needed to cover different forms of providing concepts and proposed approaches for stand- 2019 • actor/user involvement. The use of European and inter- ards and standardisation roadmap development: national standards is a way to ensure the interoperability of ICT solutions in general. In the area of ICT for an active • OpenMedicine, supporting a common EU, stan- and healthy ageing, however, such standards are often dards-based, database of medicinal products; not specific enough. In addition, standards in response • eStandards to support the optimisation of to identified needs could apply across different environ- standardisation processes and development of ments, e.g. smart homes, smart workplaces, smart cities roadmaps; and synergies should be further enhanced., • AssessCT to assess SNOMED CT33 terminology. • VALUeHEALTH addresses how interoperability of health information can consistently create, capture and deliver value for all stakeholders. • EURO-CAS, a European eHealth Interoperability

32 http://ec.europa.eu/digital-agenda/en/news/ehealth-interoperability-frame- 33 http://www.snomed.org/snomed-ct STANDARDISATION ICT FOR PLAN ROLLING work-study 67 68 68 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES harmonisation areongoing: More EU funded projects on eHealth standardisation and REFERENCES • • • • • • • • • • • EN/1-2008-689-EN-F1-1.Pdf https://ec.europa.eu/transparency/regdoc/rep/1/2008/ systems andsociety, on telemedicinefor thebenefitofpatients,healthcare COM(2008) 689:Communication oftheCommission TXT/?uri=CELEX:01989L0391-20081211 http://eur-lex.europa.eu/legal-content/EN/ and healthofworkers atwork of measurestoencourageimprovements inthesafety 89/391/EEC Framework Directiveonthe introduction pational healthandsafety Treaty ontheFunctioningofEU:Article153occu- HTML/?uri=CELEX:52010DC0245R(01)&from=EN http://eur-lex.europa.eu/legal-content/EN/TXT/ 76, 77and78 COM(2010) 245:“ADigitalAgendafor Europe”,actions TXT/?qid=1447773803386&uri=CELEX:52015DC0192 http://eur-lex.europa.eu/legal-content/EN/ Europe COM(2015) 192:“ADigitalsinglemarket strategyfor TXT/?qid=1496330315823&uri=CELEX:52017DC0228 http://eur-lex.europa.eu/legal-content/EN/ mentation oftheDigitalSingleMarket Strategy COM(2017) 228:theMid-Term Reviewontheimple- TXT/?uri=COM%3A2018%3A233%3AFIN https://eur-lex.europa.eu/legal-content/EN/ building ahealthiersociety in theDigitalSingleMarket; empowering citizensand enabling thedigitaltransformation ofhealthandcare COM(2018) 233final:CommissionCommunicationon exchange for personalisedhealth. Smart4Health, enablingthecitizen-centredEU-EHR citizen technologies for healthdataexchangecentredonthe the currentinteroperabilityinfrastructureswithnew InteropEHRate, complementingandintegrating standards surrounding theInternationalPatient Summary(IPS) Health Record(EHR)interoperabilitywithactivities Trillium-II, advancingfurthertheglobalElectronic related toactiveandhealthyageing. framework for standardsandstandardisationonICT PROGRESSIVE will provide adynamicandsustainable the interoperabilityofICTsolutions. and developingtheadoptiontake-up oftesting Conformity AssessmentSchemeaimingatmaintaining

• • • • • • • • • • • • • jsp?langId=en&catId=89&newsId=1743&furth- between Generations http://ec.europa.eu/social/main. Guiding Principlesfor ActiveAgeingandSolidarity cms_data/docs/pressdata/en/lsa/134097.pdf Lifecourse http://www.consilium.europa.eu/uedocs/ Council ConclusionsonHealthy Ageing acrossthe EN T+REPORT+A7-2014-0076+0+DOC+XML+V0// europa.eu/sides/getDoc.do?pubRef=-//EP//TEX- several MemberStateshttp://www.europarl. velopment Programmejointlyundertakingby Active andAssistedLivingResearchDe- Decision ontheparticipationofEUin european_economy/2012/2012-ageing-report_en.htm eu/economy_finance/publications/ The ageingreporthttp://ec.europa. index_en.cfm?section=active-healthy-ageing ec.europa.eu/research/innovation-union/ ship onactiveandhealthyageinghttp:// The EuropeanInnovation Partner- memorandum-understanding-eu-us-ehealth http://ec.europa.eu/digital-agenda/en/news/ EU-US memorandumofunderstanding ev_20151123_co03_en.pdf 23.11.2015 ty Framework (ReEIF)adoptedby theeHNon Refined eHealthEuropeanInteroperabili- green-paper-mobile-health-mhealth http://ec.europa.eu/digital-agenda/en/news/ sued tostakeholders for commentsApril2014’ Green Paper onmobilehealth(“mHealth”)is- COM(2014) 219-EuropeanCommission do?uri=SWD:2012:0413:FIN:EN:PDF ry 2020 —Innovative healthcarefor the21stcentu- SWD(2012) 413final—eHealthActionPlan2012- TXT/PDF/?uri=CELEX:52016DC0179&from=EN government” 2016-2020: Acceleratingthedigitaltransformation of COM(2016) 179:“EUeGovernment ActionPlan do?uri=OJ:L:2011:088:0045:0065:en:PDF http://eur-lex.europa.eu/LexUriServ/LexUriServ. in cross-borderhealthcare Directive 2011/24ontheapplicationofpatients’rights Union policiesandactivities. be ensuredinthedefinitionandimplementationofall 168 onahighlevelofhumanhealthprotectionshall Treaty ontheFunctioningofEuropeanUnion article made totheHealthInsuranceCard. coordination” ofsocialsecuritysystems.Reference this legislativepackageisreferred toas“modernised Together withtheImplementingRegulation987/2009, 1 May2010andcurrentlyapplieswithintheEU. Regulation (EC)No883/2004enteredintoforce on http://eur-lex.europa.eu/LexUriServ/LexUriServ. http://ec.europa.eu/health/ehealth/docs/ http://eur-lex.europa.eu/legal content/EN/

erNews=yes of electronic health records since their medication part • Decision 940/2011/EU of the European Parliament faces similar terminological challenges. and of the Council of 14 September 2011 on the Eu- 2. Agreements on a terminological profile for 1. minimum ropean Year for Active Ageing and Solidarity between sets of fields included in the patient summary, and 2. Generations (2012) on technical profiles for the cross-border exchange http://eur-lex.europa.eu/legal-content/EN/ALL/;ELX_SES- of electronic health record information with identified SIONID=qpQzJ3rKbByvsdtqBxK2p41dV8f25pH- socioeconomic importance, and a European dimension vG8TknfSjGkNd3QxnC5pr!1323026245?uri=CELEX- in the context of the IPS (International Patient Summa- :32011D0940 ry) project. The consent of patient and the citizen must • Directory for eHealth policies, World Health Organisa- carefully be accounted in the standard to develop. tion, http://www.who.int/goe/policies/en 3. The needs for standards supporting the ICT services • WHO guidelines on age friendly cities http://www. provided through the European reference networks who.int/ageing/publications/Global_age_friendly_cit- (ERNs) for rare diseases regarding communication ies_Guide_English.pdf and data sharing addressing areas such as fast and easy sharing of digital medical images through picture archive and communication systems (PACS) in the REQUESTED ACTIONS context of the eStandards project and its focus area description for ERN, as well as the ValueHealth project Addressing key aspects of identification (citizens, work- with its use case for Chronic Diseases; force actors, hospitals, clinics, doctors, diseases, medicinal 4. Agreements on a terminological profiles for Telemed- products, etc.) and required interoperability should be con- icine application, allowing healthcare providers to sidered at European level as a priority for work on eHealth, share real-time knowledge and decisions; sharing of since many other areas depending on these. In particular, best practices and clinical decision-making tools (i.e. agreement should be reached on the categories of workforce guidelines); solutions to support collaborative research actors in order to enable access management of citizens’ between healthcare providers, through the develop- health information. This includes the needs related to secure ment of clinical trials and/or epidemiological studies; authentication of these professionals and their authorisa- and establishment of shared databases and registries. tions. The eIDAS Regulation (EU) No 910/2014 may solve 5. The move towards personalised medicine requires

parts of the issues on identification and authentication pro- standardisation of data related to the field of biology cesses. Work is ongoing in the Member states to finalise the and biomarkers. In particular, clinical laboratories transposition of the eIDAS Regulation. are subject to a process of accreditation according to ISO 15 189 that should be supplemented by standard- ACTION 1 For the further development of the citizens’ elec- isation processes in ICT. tronic health records, evaluate and address standardisation 6. Establishment of Quality criteria for the development needs of high relevance for the citizen in technical reports of health and wellness apps. Taking into account the and beyond regarding terminological and technological pro- fast growing market of health and wellness appli- files for the cross-border digital single European market. cations and the concerns about their quality and SOCIETAL CHALLENGES reliability, there is a need for technical specifications at

ACTION 2 Evaluate the needs, produce a report on nec- the European level that would provide guidance to app 2019 • essary key types of identifiers and identification processes developers by setting out quality criteria and principles needed as components in a European eHealth digital single to be followed throughout the app development life market. In this context, a special emphasis on the items listed cycle. The publicly available specification PAS:277 pro- below, which go beyond the key types of identifiers and iden- vides a basis and has been brought into CEN. The draft tification processes, should be provided. CEN TS will probably be available by end of 2019.

1. Standardised medicinal products identifiers to support ACTION 3 Evaluate and report on the opportunities and national and international interoperability of health needs for standardisation supporting active living and services (online or other), while complying with the ageing with special emphasis on: legislation protecting patients, and including specific rules of enforcement of delivery on medical prescrip- 1. Open service platforms APIs taking into account tions.34 Agreements on standards in this field should progress made under H2020 on the topics of smart

take into account the needs of cross-border exchange homes and smart cities STANDARDISATION ICT FOR PLAN ROLLING 2. Service robotics for assisted working, and independent 34 http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=OJ:- JOL_2015_199_R_0011 living including regulatory acceptance: 69 70 70 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES of eHealthproductsandservices. concerning dataprotectionby designfor thedevelopment for one or more European standardisation deliverable(s) quest might be needed pursuant to Regulation 1025/2012 It isrecommendedtocheckwhetherastandardisationre- in eHealthproductsandservices ACTION 4 Whereas: • • • • 4. 3. and ofsecurity. ageing shouldensureahigh-levelofprivacyprotection all thestandardisationworkonactiveandhealthy community’ inISO/TC 215; and activitiesundertaken by theTask Force‘Ageingin SIVE projectandreferenced intheeStandardsproject ing andeHealthasproposedby theH2020PROGRES- similar standardsintheareasofambientassistedliv- standardization andactivehealthyageingwith it isimportanttoconsiderthesynergiesbetween nised solutionsattheEuropeanlevel; ICT solutionsinordertopromotesecureandharmo- personal servicesdedicatedtotheautonomyincluding ardisation workmustalsotake intoaccountaspectsof given thechallengeofagingpopulation,stand- cal-driven innovation. ticipation fromthebeginningtoavoidpurelytechni- field ofactiveandhealthyageing;ensureuserpar- stakeholders inthedevelopmentofstandards it isnecessarytofacilitatetheinvolvementofsocietal actual servicesfor anactiveandhealthyageing. services for personalmanagement anddeliveryofthe and-play connectivity ofthedifferent devicesand Ensuring interoperabilityofdevicestoenableplug- deficiency, mentalhealthissues. issues, e.g.occupationalhealthandsafety, memory Identify standardisationneedstosupportspecific

‘ Data protection by design’ (GDPR, Article 25) Data protectionby design’(GDPR,Article25)

ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND requirements ofeHealth. 13 (Cybersecurityanddataprotection)toaddresstheparticular CEN-CLC/TC 8(Privacyinproductsandservices)CEN-CLC/TC personal dataprotectionmanagement,CEN/TC 251willliaisewith In theframeofstandardizationrequestM/530onprivacyand workflow anddatamanagement). - Digitalimagingandcommunicationinmedicine(DICOM)including “DICOM” standards(andnotablyENISO12052:Healthinformatics open-medicine.eu/downloads.html CEN/TC 251maintainsthe 19844), whichalsorefer totheopenMedicineresults:http://www. implementation guides,asCENISO/TS20440,20443,20451, 11239, 11240,11615and11616(andtheiraccompanying informatics -Identificationofmedicinalproducts):EN-ISO11238, publication andmaintenanceoftheISO-ENIDMPseries(Health The technicalcommitteeisalsoresponsiblefor thedevelopment, with aPatient Summarystandardandanimplementationguide. to internationalstandardizationsolutions,whileproviding Europe 215. CEN/TC 251istakingforward theeHNguidelines,contributing in theHealthInformatics domain,inclosecollaborationwithISO/TC CEN/TC 251provides afocal pointfor thedevelopmentofstandards CEN the life cycle—Codeofpractice PAS 277:2015Healthandwellnessapps—Qualitycriteriaacross BSI general/general_content_000645.jsp&mid=WC0b01ac058078fbe2 http://www.ema.europa.eu/ema/index.jsp?curl=pages/regulation/ started originally. developed jointlyby ISO/TC 215andCEN/TC 251,wherethis work This setofstandardsandimplementation guidesarebeing standards for theidentificationofmedicinalproducts(IDMP). the implementationguidestosupport the adoptionofISO The EuropeanMedicinesAgencyispartofaprojecttofinalise ISO and services. impact onthelife ofolderpeople,easing theuseofICTproducts mobile applicationofpublicsectorbodies.Thisworkwillhavean included intheDirectiveonaccessibilityofwebsitesand purpose ofthisrevisionistomeettheessentialrequirements (CEN-CENELEC-ETSI JointWorking Group oneAccessibility).The 509, whichdealswiththeaccessibilityofICTproductsandservices CEN-CENELEC-ETSI arestarting towork ontherevisionofEN301 CEN, CENELEC,ETSI (Health software– Part 1:Generalrequirements for productsafety). device software--Softwarelife cycleprocesses)andIEC82304-1 CENELEC hasadoptedasEuropeanStandardsIEC62304(Medical CENELEC

ISO/IEC JTC 1 ITU

A framework for personalization and adaptation of user interfaces The ITU published the Continua Design Guidelines in the ITU-T at runtime, based on the context of use (consisting of a user’s H.810 series (2016), Interoperability design guidelines for personal needs and preferences, their envisioned tasks, their equipment, and health systems (which is complemented by 46 conformity environmental parameters of interaction). The framework is based testing specifications); ITU-T H.860 (4/2014), Multimedia e-health on the well-known REST protocol, and JSON and XML formats. A data exchange services; Y.4110/Y.2065, Service and capability registry-based approach is employed for the definition of terms requirements for e-health monitoring services; Y.4408/Y.2075, describing a user’s personal preferences and needs. Capability framework for e-health monitoring services; technical papers HSTP-H810 (7/2014) and HSTP-H810-XCHF (2017) with Currently, the following standards are being developed as part of an introduction to the H.810 series and data exchange within this framework: it. Updated editions of the ITU-T H.810 series architecture are • ISO/IEC CD 24571-1 Information Technology – Individualised produced regularly (annually or so). adaptability and accessibility in e-learning, education and training https://itu.int/en/ITU-T/e-Health – Part 1: Framework and reference model ITU-T Study Group 16 on multimedia aspects and Study Group • ISO/IEC DIS 24752-8 Information technology -- User interfaces 20 on smart cities and communities applications and services are -- Universal remote console -- Part 8: User interface resource developing further standards addressing e-health services and framework systems. https://itu.int/itu-t/workprog/wp_search.aspx?Q=28/16 ISO/IEC https://itu.int/itu-t/workprog/wp_search.aspx?Q=7/20 The standard 62304 Health software - Software life cycle processes The ITU Product Conformity Database contains information is being updated, by ISO and IEC. One of the issues to be addressed on health devices that passed conformance tests against the is about the improvement of the security aspects that relate to corresponding ITU-T Recommendations. https://itu.int/go/tcdb health software. This may also lead to a new project focusing on security in health software. JIC

ETSI Joint Initiative on SDO global health informatics standardisation in which CEN/TC 251, ISO/TC 215, HL7, GS1, IHTSDO, CDISC, IHE and ETSI is developing digital enhanced cordless telecommunications DICOM participate as members. (DECT) ultra-low energy (ULE), a low-power wireless technology providing optimal radio coverage in indoor scenarios for reliable http://www.jointinitiativecouncil.org/ audio and data services suitable for many eHealth applications, e.g. health monitoring, emergency alarms for vulnerable people and remote medical monitoring. OTHER ACTIVITIES RELATED TO

It is also working on smart body area networks. Standards for a STANDARDISATION dedicated radio technology for these networks are being developed. ACT PROJECT (PHILIPS / London Hospital) EP eHealth provides a focus point in ETSI on issues such as mHealth and telemedicine. Currently, there is the development of standards Advancing Care Coordination and Telehealth Deployment to facilitate telemedicine and the “Internet Clinic”. http://www2.med.auth.gr/act/news.php http://www.etsi.org/technologies-clusters/technologies/medical ASSESS CT

IEC Investigating the fitness of the clinical terminology SNOMED CT as SOCIETAL SOCIETAL CHALLENGES IEC SC 62B is developing standard IEC 61910-1, which describes a potential standard for EU-wide eHealth deployments, scrutinising a high-level data exchange language between systems making clinical, technical, financial, and organisational aspects. http://assess-ct.eu/ medical imagery. 2019 •

IEEE JAseHN

The boundaries between healthy living, healthy aging, preventive Joint Action to Support the eHealth Network (Member States) medicine, and healthcare are increasingly blurred. IEEE has diverse http://jasehn.eu/ standards programs covering many areas from in-body, on-body and near body area networking, to 3D modelling of medical data, to EESSI medical device metrology and medical device interoperability. Electronic exchange of social security information (EESSI). EESSI is The IEEE 11073 family of standards enables service-oriented an IT system that will help social security bodies across the EU to (medical) device connectivity including semantic interoperability. exchange information more rapidly and securely, as required by EU regulations on social security coordination. A new Working Group MDMF – ‘Medical Devices with Measuring http://ec.europa.eu/social/main.jsp?catId=869&langId=en Functions’ has been created in 2018. Currently, two standards are under development: IEEE P2727 on ‘General Vocabulary ENGAGED for Conformity Assessment of Medical Devices with Measuring Function’ and IEEE P2727.1 on ‘Standard for Conformity European innovation partnership on active and healthy ageing; ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING Assessment Testing of Cardiac Defibrillators for Legal Metrology thematic network on innovative and sustainable active and healthy ageing services that make best use of new technologies. Purposes’. 71 https://ieeesa.io/rp-ehealth http://www.engaged-innovation.eu/ 72 72 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES http://www.linked2safety-project.eu/node/23 clinical trials systemsadvancingpatientssafety inclinicalresearch for semantically-interconnectingelectronichealthrecordsand A next-generation,securelinked datamedicalinformation space Linked2Safety http://haivisio.eu/ living Europeanprojects. of theresultsgeneratedby eHealth,activeageingandindependent European projectwhichaimstoidentifyandenhanceawareness HAIVISIO created apilot(www.epsos.eu) NB: TheEXPAND projectisalsoacontinuationofesSOSwhich http://www.expandproject.eu/ various initiatives aims toexploitanumberofselectedeHealthassetsdevelopedin EXPAND http://eurecaproject.eu/about/ Enabling information re-Useby linkingclinicalREsearchandCare Eureca http://www.estandards-project.eu/ development ofroadmaps Support theoptimisationofstandardisationprocessesand eStandards http://www.esens.eu/home/ development throughinnovative ICTsolutions. scale projectthatembodiestheideaofEuropeandigitalmarket Electronic SimpleEuropeanNetworked Servicesisanewlarge- e-Sens http://www.ehr4cr.eu/ Clinical Research IMI projectwithafocus ontheuseofelectronicHealthRecordsfor eHR4CR project index.cfm?project_ref=270941 http://ec.europa.eu/information_society/apps/projects/factsheet/ Supporting the EuropeaneHealthGovernance InitiativeandAction eHealth Governance Initiative— SEHGOVIA pagemode=non active-healthy-ageing/d4_action_plan.pdf#view=fit& http://ec.europa.eu/research/innovation-union/pdf/ environments) Action planD4(innovation for age-friendlybuildings,cities& active-healthy-ageing/c2_action_plan.pdf http://ec.europa.eu/research/innovation-union/pdf/ Action planC2(independentliving) active-healthy-ageing/b3_action_plan.pdf http://ec.europa.eu/research/innovation-union/pdf/ Action planB3(integratedcare) European Innovation Partnership onActiveandHealthyAgeing

http://www.renewinghealth.eu common rigorousassessmentmethodology. telemedicine servicesusingapatient-centredapproachand test bedsfor thevalidationandsubsequentevaluationofinnovative a Europeanprojectwhichaimsatimplementinglarge-scalereal-life REgioNs ofEuropeWorkINg toGetherfor health(Renewinghealth): RENEWING HEALTH http://www.ponte-project.eu/ Drugs tootherIndications Efficient PatientRecruitment forInnovative Clinical Trials ofExisting PONTE project http://www.phsforesight.eu/ eHealth systems for key areasoftransformation requiredby theimplementationof This ongoingprojecthasbeenresearchingindicatorsandmilestones (Personal HealthSystemsForesightProject) PHS Foresight http://www.open-medicine.eu/home.html products Supporting acommonEU,standards-based,databaseofmedicinal OpenMedicine http://telemedicine-momentum.eu/ in routinecare. their knowledge andexperienceindeploying telemedicineservices Momentum isaplatform wherekey playersintelemedicineshare Momentum http://www.trilliumbridge.eu/ between theEUandUSsystems. Care intheUnitedStates,toestablishaninteroperabilitybridge summaries usedinepSOSandMeaningfulUseII,Transitions of The Trillium BridgesupportactionextendstheEuropeanpatient Trillium Bridge http://www.transformproject.eu/ Translational research andpatientsafety inEurope Transform project www.semantichealthnet.eu Network of excellenceinsemanticinteroperability SemanticHealthNet http://www.salusproject.eu/ pro-active postmarket safety studies Scalable, standard-basedinteroperabilityframeworkfor sustainable Salus project

United4Health European project which aims to adapt and tailor telehealth E-SKILLS AND services from regions and institutions in Europe to large scale deployment within other regions and institutions and maximise E-LEARNING the transferability of services and knowledge among European healthcare providers at large scales and in collaboration. http://ec.europa.eu/information_society/apps/projects/factsheet/ POLICY AND LEGISLATION index.cfm?project_ref=325215 POLICY OBJECTIVES

VALUeHEALTH The development and promotion of ICT professionalism, To address how interoperability of health information can e-skills and e-learning require a strong consensus and co- consistently create, capture and deliver value for all stakeholders. operation among Member States and stakeholders. http://www.valuehealth.eu/

ADDITIONAL INFORMATION EC PERSPECTIVE AND PROGRESS REPORT Guidelines, code of conduct REGARDING E-SKILLS: The following links provide Additional information of on- Pan-European e-competence frameworks and tools and going work. efficient and interoperable e-learning solutions are in- dispensable to reduce e-skills shortages, gaps and mis- Guidelines on: matches. Similar activities are under development in the On the electronic exchange of health data under Cross Border US, Russia, Japan, Australia, Canada, South Africa and Directive 2011/24/EU revised in 2016 Latin America, and other parts of the world. In the early on an Organisational Framework for eHealth National Contact 2000s the development of national frameworks had al- Points (2015) ready begun in the UK, Germany, France, and other coun- http://ec.europa.eu/health/ehealth/key_documents/index_en.htm tries. In the Council Conclusions of 23 November 2007, Report of the Working Group on mHealth assessment guidelines Member States supported the Commission’s intention to https://ec.europa.eu/digital-single-market/en/news/report-working- continue to provide a platform for the exchange of best group-mhealth-assessment-guidelines practices, and to promote a regular dialogue on e-skills Code of Conduct on privacy for mobile health apps, and develop a European e-Competence Framework. https://ec.europa.eu/digital-single-market/en/news/code-conduct- privacy-mhealth-apps-has-been-finalised Progress has been made over the last year with e-Com- Consultation on safety of apps petence Framework 3.0 being available and with the es- https://ec.europa.eu/digital-single-market/en/news/public- tablishment of a CEN technical committee. CEN TC 428 consultation-safety-apps-and-other-non-embedded-software published standard EN 16234. See details in D.2 below.

REGARDING E-LEARNING: SOCIETAL CHALLENGES Efficient and interoperable e-learning solutions are nec-

essary to promote the development of a large e-learning 2019 • and technology-enhanced learning market in Europe

REFERENCES

• COM (2018) 22. On 17 January 2018 the Com- mission published the “Digital Education Action Plan” to support technology-use and digital competence development in education • COM(2016) 381. On 10 June 2016 the Europe- an Commission published “A new skills agenda for Europe Working together to strengthen human capital,

employability and competitiveness”. It presents a STANDARDISATION ICT FOR PLAN ROLLING number of actions and initiatives aiming to tackle the 73 74 74 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES framework for citizens work for ICTprofessionals and thedigitalcompetency fession, buildingontheEuropeane-competenceframe - and digitalcompetence;further maturingtheICTpro- es, gapsandmismatches;fostering ICTprofessionalism Action Plan”(2018).Theaimisatreducingskillsshortag - for SectoralCooperation onSkills;and“ include aDigitalSkillsandJobsCoalitionBlueprint Industry” “ clude relevant European Commission’s Communications: er initiativesandpublicpoliciesinthisarea.These- and bedevelopedinfullcoherencewithmulti-stakehold - must bebasedonclearandwell-definedmarket needs General recommendation:Standardisationproposals REGARDING E-SKILLS: REQUESTED ACTIONS Digitising European e-Skills for the 21stcentury”(2007);“DigitisingEuropean • • • • • • • ing competitiveness, growth andjobs COM(2007) 496 and training(EQAVET). reference frameworkfor vocationaleducation tablishment ofaEuropean qualityassurance Recommendation 2009/C155/01onthees- of ICTs SWD(2012) 96:Exploitingtheemployment potential COM(2012) 173: start andstakeholder feedback” SWD(2012) 446: IP/13/182 technologies andopeneducationalresources”. innovative teachingandlearningfor allthroughnew COM(2013)654 CommunicationOpenupeducation: digital transformation withthenecessaryskills. In particular, itcallsfor humancapitalreadyfor the Part ofthecommunicationisdevotedtodigitalskills. nologies andpublicservicemodernisationpackage. policy measuresaspartofadigitalsinglemarket tech- European industry,whichintroducedasetofcoherent Commission publishedtheCommunicationDigitising COM(2016) 180.On18April2016theEuropean States. organisations, academia,socialpartnersandMember beyond ICT-sector, includingICT-using sectors,training and willbringtogetherabroadersetofstakeholders Coalition for DigitalJobsand lition buildsontheworkalreadydoneunderGrand are equippedwithadequatedigitalskills.Thisnewcoa- ensure thatindividualsandthelabourforce inEurope Jobs Coalitiontodevelopalargedigitaltalentpooland the launchinDecember2016ofDigitalSkillsand digital skillsdeficitinEurope.Oneoftheseactionsis (2016);“ Grand coalitionfor digitaljobs (2016) which Skills agendafor Europe”(2016)which e-skills for the21stcentury:foster - Toward ajob-richrecovery and Digital agenda for Europe — a good Digital agendafor Europe—agood the EUe-skillsstrategy, Digital Education Digital Education following topics: The public and private sectors need to collaborate on the ment ande-portfolios. all kindsofusers,learningoutcomes,creditpoints,assess- and guidelinesfor e-learningopportunitiesdesignedfor a voluntarybasis. large scale adoption of best practices and solutions on tional dialogueandcooperationonthissubject professionalism in Europe and foster balanced interna- regular maintenanceofthisframeworktostrengthenICT for thefurtherdevelopment,efficientimplementationand should be complemented by relevant methods and tools edge, qualificationsandcertifications,ethics.This (e-CF) andrelatedjobprofiles, foundational bodyofknowl- four buildingblocks:Europeane-competenceframework prehensive frameworkfor ICTprofessionals ACTION 2 ACTION 1 REGARDING E-SKILLS: REGARDING E-LEARNING: • • • update inaconsistentandintegrated manner. evolving, theframeworkwillneed regularreviewand Taking intoaccountthatdigitaltechnologiesarerapidly to illustratepracticalimplementation. sive framework.Itisnecessarytoprovide casestudies how toapply standardsandimplementacomprehen- workers, andeducationtrainingorganisations on ments, ICTanddigitalrelatedleaders,managers SMEs), ChiefInformation Officers(CIOs),HRdepart- businesses ofallsizesinsectors(multinationalsand digital relateduser, supplyandserviceorganisations, to provide an efficientsolutiontostakeholders, ICTand recognition, andaccreditationaspectsetc.Theaimis assessment andguidancetools,compliance,validation, is alsonecessarytoreflectandaddressissuessuchas building blocksinacoherentandintegratedmanner. It and supportingtechnicalreportsrelatedtothefour it isimportanttoprovide andmaintainstandards To boostsuccessfuland consistentimplementation, building blocks. projects willbestartin2019toaddresstheother proposals receivedin2018,itisexpectedthatnew a newversionshouldbereleasedin2019.Basedon CEN/TC 428project(SA2017-03)-isunderwayand ICT professional workforce inallsectors.Itsreview- about theknowledge, skillsandcompetencesofthe 2016. Itprovides acommonEuropeandescription The standard(EN16234-1:2016)wasadoptedin SDOtomake furtherprogresstowards acom-

European e-learning standards to facilitate European e-learningstandardstofacilitate Thefocus shouldbeonspecifications integrating integrating ACTION 3 Digital organisational capability and maturity: take stock of initiatives (such as the proposal for a Digi- ACTIVITIES AND tal organisational reference framework) and their benefits regarding the digital capability of organisations in liaison ADDITIONAL INFORMATION the individual competences of their staff. Make progress towards the development of synergy with the frame- RELATED STANDARDISATION work for ICT professionals (action 2) with a view to match ACTIVITIES personnel digital competence with digital organisational processes and procedures to ensure best return on invest- REGARDING E-SKILLS: ment in digital technologies. CEN/TC 428

CEN/TC 428 is responsible for the standardisation of a common ACTION 4 International cooperation: European SDOs language of professional digital and ICT competences, skills and need to coordinate and establish a regular dialogue and knowledge applied in all domains. A non-exhaustive list of areas cooperation with international level with relevant associ- where CEN/TC 428 can develop its activity follows: ations (IEEE, ACM etc.) and standardisation bodies (ISO, • EN 16234:2016 (e-CF) maintenance and evolution NIST etc.) in the field of ICT professionalism and digital • interaction with different Frameworks competence. • curricula guidance • professional profiles ACTION 5 Organisational capability: take stock of on- • provide guidance for the assessment against EN 16234 (e-CF) going assessments, initiatives and their impacts regard- http://www.cen.eu/cen/Sectors/Sectors/ISSS/CWAdownload/Pages/ ing the capability of organisations in the context of the ICT-Skills.aspx e-skills/e-competence of the personnel. Match personnel http://www.ecompetences.eu/e-cf-3-0-download/ competence with organisational processes and proce- See also the previous CEN workshop agreements and the e-CF at dures to ensure best return on investment in ICT. http://www.cen.eu/cen/Sectors/Sectors/ISSS/CWAdownload/Pages/ ICT-Skills.aspx http://www.ecompetences.eu/e-cf-3-0-download/ REGARDING E-LEARNING: ACTION 6 Standardisation potential around e-learning: The CEN workshop on ICT Skills will continue with relevant projects SDO to investigate e-learning courses, content reposito- including the updating of the European Job Profiles CWA.

ries and exchange mechanisms with a focus on metada- Additionally the CEN workshop on ICT skills provides a suitable ta, learning design and structure, technical and semantic forum for initial work on standards to support ICT professionalism. interoperability supported by agreed protocols, exchange In particular it provides expertise in the area of curriculum guidelines, professional ethics, ICT certification and related activities formats and vocabularies. Interoperability should include and competences. context-aware, adaptable and mobile/ambient e-learning systems and also cross-domain aspects. This may include ISO/IEC JTC1 the learning trajectory or learning route including, e.g. the SC 27 Competence requirements for information security didactic approach, aimed learning & learner’s profiles and management systems professionals the availability of additional tools that support e-learning. SOCIETAL CHALLENGES SC 7/WG 20 Software and Systems Bodies of Knowledge and Professionalisation and related activities

ACTION 7 Standardisation potential around interoper- 2019 SC 36 on Information Technology for Learning, Education and • ability and transfer of learners’ data: SDO to investigate Training (ITLET) runs activities in the following areas Business the possible standardisation of the exchange of learning planning and communications; vocabulary collaborative and & learners data which may be generated in the different intelligent technology; learner information; management and learning spaces. By the use of a Caliper or xAPI-like frame- delivery; quality assurance and descriptive frameworks; platform, work, the exchange and therefore effective usage might services and specification integration; culture, language and be facilitated. individual needs; learning analytics interoperability http://isotc.iso.org/livelink/ livelink?func=ll&objId=8917700&objAction=browse&viewType=1

REGARDING E-LEARNING CEN/TC 353

Information and Communication Technologies for learning, education and training. It has been dormant for a while. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

75 76 76 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES • • • • • • • • • • • Standards projectsbeingaddressed: types ofdigitalcontent) technology systemsandservicesusedinITLETsituations(example: The identificationofgenericLETrequirements for information technology systemsusedinITLET; Standards toensureinteroperabilitybetweeninformation http://www.iec.ch/dyn/www/f?p=103:22:0::::FSP_ORG_ID:3410 underway: Education andTraining (ITLET) hasthefollowing work programme Subcommittee (SC)36onInformation Technology for Learning, ISO/IEC JTC 1SC36 https://ieeesa.io/rp-elearning Community Networks(WiFi networksfor ruralcommunities). including theIEEEBlendedLearningProgramandBuildingWireless related IEEEStandardsEducationProgramande-skillsprograms, education andtraining, competencydatastandards,aswell object metadata, resourceaggregationmodelsfor learning, expression languages, computermanagedinstruction,learning Activities inseveraleLearningareas,including digitalrights IEEE WS-ICT-skills.aspx https://www.cen.eu/work/areas/ICT/eEducation/Pages/ See alsothepreviousCENworkshopagreementsande-CFat ID:1218399&cs=1600F0DD849DA04F3E3B900863CB58F72 https://standards.cen.eu/dyn/www/f?p=204:7:0::::FSP_ORG_ All conceptualdevelopmentsshallbeconsistentandinterrelated. develop its activityareasfollows: The mainareasofstandardizationwhereCEN:TC 428will of Ethicsand BodyKnowledge (BoK). knowledge appliedinalldomains);EducationandCertification, Code language ofdigitalandICTProfessional - competences,skillsand Professionalism: Competences (standardizationofacommon at aminimum,activityrelatedtofour majorbuildingblocksof ICT the ICTProfession inallsectors,publicandprivate. Thisincludes, responsible for allaspectsofstandardization relatedtomaturing CEN/TC 428‘ICTProfessionalism andDigitalcompetences’ is CEN/TC 428 models for describing competency (individualized accessibility) the personalizationofIT-enabled educationalenvironment ITLET vocabularies The descriptionofmetadatafor learningresources world. Developing asustainablecodeofethicsintheeverchangingICT and certification modelrelatedtoe-CF, Body ofKnowledge (BoK)for ICToDevelopmentofaneducation Guidance for assessingthepublishedstandards ICT Professional RoleProfiles Curricula guidance Interaction withdifferent frameworks fintech, cloud,blockchain) become relevanttotheICTprofession asawhole(e.g.security, adoption andnewemergingtechnologies trendsasthey competences inallsectors,alwayslookingatcurrentbusiness Definition, maintenanceandevolutionofdigitalProfessional

coordinating across Europe. The existing structure of the coordinating across Europe.Theexistingstructure ofthe changing bestpractices, implementing a master plan and There isaneedtomaintain European platform for ex- around theworldhavelaunched standardisationefforts. the CareerSpaceinitiative).More recently, manycountries nerships withtheICTindustryplaying aleadingrole(e.g.in topic hasprimarilybeenaddressedby Public-privatepart- quiring timelyandregularupdates.Sincethe1990s,this tablishing standardisedskillsetsisagreatchallengere- areas ofapplicationtechnologiesemergerapidly, es- such asaccessibleMOOCs.Asnewtechnologiesand people could include accessible e/learning environments, people withdisabilities.Efforts tofacilitatethiscohortof find morebarriersinaccessingICT, suchasoldpeopleand levels, to the whole population, including those who usually numbers. E-Skillsmustalsobeprovided, atappropriate and thatarecurrentlynotbeingdeliveredinsufficient economy hasthesupplyofprofessional skillsthatitneeds lenging taskandisessentialtoensurethattheEuropean mented needs.FosteringICTprofessionalism isachal- This topicissuitablefor standardisationfor well-docu- REGARDING E-SKILLS: ADDITIONAL INFORMATION • • • • • • Future workplanned http://itu.int/en/ITU-T/techwatch/Pages/learning-standards.aspx based learning The ITUalsopublishedatechnologywatchreportontechnology- http://itu.int/en/ITU-T/studygroups/2017-2020/13 smart farming. development onapplicationofau-learningenvironmenttothe 13 inJuly2017.AdraftRecommendation(Y.sfes) isunder learning (u-learning)frameworkwasconsentedby StudyGroup The RecommendationITU-TY.2241 onaubiquitousself-directed http://itu.int/en/ITU-T/studygroups/2017-2020/16 services. F.742 onservice descriptionandrequirementsfor distancelearning that enableremotecollaboration,e.g.RecommendationITU-T Study Group16onmultimediahasproducedaseriesofstandards ITU-T htm?commid=45392 list_of_iso_technical_committees/iso_technical_committee. http://www.iso.org/iso/home/standards_development/ ISO TR20514:EHRDefinitionscopeandcontext better theLETenvironment how existingstandardsandspecificationsmayworktogetherto massive openonlinecourse(MOOC)standardisation learning analytics learning services,virtualexperiments he advancementofe-Assessments,e-textbooksandrelated the creationofanITLETqualityframework

CEN TC 428 constitute a good place for such a piece of work — following the already successful development of EMERGENCY the e-CF. COMMUNICATIONS The e-skills manifesto also contains contributions from various stakeholders, see http://ec.europa.eu/enterprise/ POLICY AND LEGISLATION sectors/ict/documents/e-skills/index_en.htm POLICY OBJECTIVES

EN 16234-1 is the only existing standard in the field of Emergency communications are defined primarily as e-skills, focussing on e-Competences at the European and communication by individual citizens to public safety an- national level. Though several European organisations swering points (PSAPs), using individual electronic com- have started promoting and using the e-CF, those local im- munication devices, with a view to requesting and re- plementations do not always fully comply with EN 16234- ceiving emergency relief from emergency organisations. 1, and local adaptations and application platforms make Reverse services (i.e. communication between PSAPs and the standard more attractive to clients not accustomed to individuals) may also be considered. standardised approaches to e-skills. Many new initiatives to produce standards, pre-standards and supportive docu- This service should be independent of the network and mentation in the area of digital competences are ongoing access technologies used and the individual’s physical and e.g. development of a professional Body of Knowledge, IT mental abilities. Certifications and Qualifications, Curriculum Development Guidelines, development of a Code of Professional Ethics, and specification of Common Metrics for e-Competenc- EC PERSPECTIVE AND PROGRESS es. Alongside this work, there is work currently underway REPORT to update the EN-16234-1 to Version 4, incorporating a strategy to ultimately converge it with SFIA (Skills Frame- The lack of commonly agreed standards in support of work for the Information Age). All of this takes place in the electronic communications networks for the emergency context of the ICT professionalism framework project. At call service in Europe is a barrier to implementing fu- the same time, new initiatives on ICT competences are ture proof solutions which meet the requirements of the

ongoing internationally as well, e.g. in ISO/IEC JTC 1/SC 7 amended Universal Service Directive (Directive 2002/22/ and ISO/IEC JTC 1/SC 27. New standards may be avail- EC). able, which might conflict with European standards. The fragmentation of the global market could undermine in- Standards for total conversation access to 112 are re- teroperability which so far has led the European action. quired to meet special needs for users’ rights under Direc- There is the need to support initiatives which assure Euro- tive 2009/136/EC. pean governance and influence in the ISO. The lack of harmonised values for location accuracy and reliability hampers Member State’s efforts to develop ad- SOCIETAL CHALLENGES equate solutions. 2019 • REFERENCES

• Directive 2009/136/EC of the European Parliament and of the Council of 25 November 2009 amending Directive 2002/22/EC on universal service and users’ rights relating to electronic communications networks and services, Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector and Regu- lation (EC) No 2006/2004 on cooperation between national authorities responsible for the enforcement of

consumer protection laws. STANDARDISATION ICT FOR PLAN ROLLING • Directive 2009/140/EC of the European Parliament and of the Council of 25 November 2009 amend- 77 78 78 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES tion activitiesconcerninglocationaccuracy. requirements (privacyby design)inongoingstandardisa- widest rangeofusers. caller locationandmultimediafeatures accessiblefor the ment of 112 smartphone applications enhanced with ACTION 4 ACTION 3 ACTION 2 ACTION 1 liability. next-generation networksand locationaccuracyandre- bodies areinvitedtocontribute takingintoaccount work basedlocationinallIPcontext.Globalstandards location-enhanced emergencycallservice,includingnet- handset tothePSAPs by mobile networkoperators. for the transmission of the GNSS location data from the REQUESTED ACTIONS • • • • • • port ofthelocation-enhancedemergencycallservice Mandate M/493—Standardisationrequestinsup- emergency number(2010/2274(INI)) of 5thJuly2011onUniversalServiceandthe112 P7_TA (2011)0306,EuropeanParliament Resolution tion-enhanced emergencycallservices communication networksfor thepurposeofloca- processing ofcallerlocationinformation inelectronic of theEuropeanCommunities25July2003on Recommendation 2003/558/ECoftheCommission Directive) munications networksandservices(UniversalService service anduser’s rightsrelatingtoelectroniccom- and oftheCouncil7March2002onuniversal Directive 2002/22/ECoftheEuropeanParliament privacy andelectroniccommunications) in theelectroniccommunicationssector(Directiveon cessing ofpersonaldataandtheprotectionprivacy and oftheCouncil12July2002concerningpro- Directive 2002/58/ECoftheEuropeanParliament networks andservices(Framework Directive) regulatory frameworkfor electroniccommunications and oftheCouncil7March2002onacommon Directive 2002/21/ECoftheEuropeanParliament services isation ofelectroniccommunicationsnetworksand associated facilities,and2002/20/EContheauthor- nection of, electroniccommunicationsnetworksand and services,2002/19/EConaccessto,intercon- framework for electroniccommunicationsnetworks ing Directives2002/21/EConacommonregulatory Identifystandardisationneedsfor thedeploy - SDOs to address data protection and privacy SDOstoaddressdataprotectionandprivacy SDOs to complete standards to support the SDOstocompletestandardssupportthe SDOs to identify the standardisation needs SDOstoidentifythestandardisation needs European mobileemergencyapplication. tecture, protocolandproceduresspecification for a Pan ACTION 9 ACTION 8 ACTION 7 ACTION 6 ACTION 5 on theinputof variouscivilprotectionagencies. messages for emergencycommunicationservicebased services. interfaces for networkindependentaccesstoemergency chitecture), thecoreelementsandcorrespondingtechnical named NextGenerationEmergencyCommunicationar- situations. cations involvingIoTdevicesinalltypesofemergency ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND test casesandscenarios for relatedinteroperabilitytesting. technical interfaces. Thisworkiscomplementedby aTRdescribing describes thearchitecture,coreelements andcorresponding on aTSandassociatedTR.Duefor publicationin2018,theTS independent access toemergencyservices.ETSIcontinues work core elements andcorrespondingtechnical interfaces for network Next GenerationEmergencyCommunication architecture),the ETSI performs worktodescribethearchitecture (currentlynamed and 3GPP, this reportisscheduledfor publicationduring2019. account workalreadyconductedinotherprojectssuchasoneM2M organizations totheindividuals,amongstindividuals).Taking into organizations, betweenauthorities/organizations,fromauthorities/ situations (e.g.communicationsofindividualswithauthorities/ communications involvingIoTdevicesinalltypesofemergency SC EMTELcontinuesitsworkonaTRtopreparerequirementsfor communications, implementationguidelines. in thepublicationofTR 103201,totalconversationfor emergency Work ontotalconversationaccesstoemergencyservicesresulted fixed telephone. using aVoice-over-IP serviceinstead ofaconventionalmobileor emergency caller–suchaswhenausermakes anemergencycall operators mustco-operatetodeterminethelocationofan to cover situationswheredifferent serviceproviders andnetwork transporting emergencycallerlocation.Thisserviceisintended the developmentofprotocolspecifications for retrievingand the locationenhancedemergencycallhasbeencompleted,with Work inresponsetoEuropeanCommissionMandateM/493on ETSI SDOstoaddrichmediatheEU-Alert. SDOs to describe the architecture (currently SDOstodescribethearchitecture(currently SDOstodefinerequirements for communi- SDOstosetrequirements,functionalarchi- SDOs to definedictionariesfor warning ETSI has completed work on the requirements, the functional 62, 63 and 68) to support emergency telecommunications. architecture, the protocol and the procedures for implementing the SG11 is currently developing a new Recommendation which Pan-European Mobile Emergency Application. There are presently describes signalling requirements for interconnection between hundreds of emergency calling applications in use across Europe, VoLTE-based network and other networks supporting emergency but their use is constrained to the boundaries of the Public Safety telecommunications service (ETS). Also, SG11 is working on a Answering Point (PSAP) with which they are integrated. The resulting new Recommendation dealing with signalling requirements for TS, to be published in early 2018, will make it possible for data to interconnection between NGN and GSM/UMTS networks supporting arrive at the most appropriate PSAP, wherever the call is made. priority calls. The concept of ‘Next Generation 112’ (NG112) has been identified The ITU’s radio communication sector (ITU-R) is also carrying out as a potential solution to the increasing requirements and demands studies on emergency communications. of content-rich emergency calling. Following two successful events held in co-operation with the European Emergency Number CEPT/ECC/WG NaN/PT ES Association (EENA) and the European Commission, ETSI is hosting the third NG112 Emergency Communications Plugtests™ event in Are investigating criteria for location accuracy and reliability. January 2019. This will feature a testing campaign based on the The ECC considers and develops policies on electronic use cases developed by ETSI and EENA. It will also offer vendors communications activities in European context, taking account of emergency communication equipment the opportunity to test of European and international legislations and regulations. Its their product against different implementations and scenarios. membership is formed of European National Administrations and Supporting this event, ETSI is developing conformance test National Regulators in the field of electronic communications. specifications for NG112. Access to emergency services is a right of all citizens and ECC ITU-T is working to improve access through developing appropriate policies on access, numbering harmonisation and on the provision The Focus Group on “Disaster relief systems, network resilience of accurate and reliable caller location information for calls to the and recovery” produced several technical specifications that were emergency services. published (http://www.itu.int/pub/T-FG/e) and are being refined for further standardization in ITU-T SG2 and SG15. The ECC’s Working Group on Numbering and Networks (WG NaN) established Project Team Emergency Services (PT ES) in 2013 with • Recommendation ITU-T L392 “Disaster management for the sole objective of developing ECC Report 225 on “Establishing improving network resilience and recovery with movable and Criteria for the Accuracy and Reliability of the Caller Location deployable ICT resource units’ was approved by ITU-T SG15 in Information” in support of Emergency Services. ECC Report 225 also April 2016. identified other aspects of emergency services communications that • Supplement ITU-T Suppl.35 “Framework of disaster management required further study. As a consequence, the ECC broadened the for network resilience and recovery” was approved by ITU-T SG15 scope of its activities in the field of emergency services. The revised

in June 2017. ECC Strategic Plan for 2015-2020 sets an action for WG NaN to • Recommendation ITU-T E.108 “Requirements for a Disaster “study relevant aspects of emergency services communications Relief Mobile Message Service” was approved by ITU-T SG2 in and provide support and advice to European emergency services January 2016. stakeholders where appropriate”. • Recommendation ITU-T E.119 (ex. E.rdr-scbm) «Requirements for Safety Confirmation and Broadcast Message Service for Disaster As part of this broader remit, the ECC published ECC Report 255 in Relief” wasapprovedby ITU-T SG2 in April 2017. November 2016 which analyses the implementation of Assisted- • Draft new Recommendations ITU-T E.TD-DR «Terms and Global Navigation Satellite System (A-GNSS) on a harmonised definitions for DR&NRR» and ITU-T E.RDR «Requirements for basis across Europe as a first step in a multi-step plan towards

Disaster Relief Systems» are being developed in ITU-T SG2. improving caller location. The ECC’s work in this area requires SOCIETAL CHALLENGES close cooperation and consultation with the emergency services ITU-T SG2 also produced an amendment to its E.123 standard for stakeholders throughout Europe including the national emergency quickly identifying next-of kin (or other emergency contact) in a 2019

services authorities, public safety answering points (PSAPs), police, • mobile handsets’ directory, for use in case of emergency, and has ambulance and fire services, network operators and network and established a framework for international emergency call priority handset equipment vendors. (ITU-T E.106 and E.107). Recommendation ITU-T E.161.1 was also produced by SG2 which is on “Guidelines to select Emergency In order to improve cooperation between different European Number for public telecommunications networks”. countries, WG NaN is implementing an ECC project aimed at hosting a directory of contact numbers between national PSAPs, for which OASIS Common Alerting Protocol versions 1.1 and 1.2 were PT ES conducted a feasibility report ECC Report 264 in May 2017. transposed into ITU-T X.1303 and X.1303bis by ITU-T SG17. Currently, PT ES is developing policies dealing with the provision of ITU-T SG13 developed a numbers of Recommendations ITU-T caller location information from private networks and the definition Y.2074, Y.2222, Y.2705, Y.1271, Y.2205 and Supplement 19 to the of PSAP-side statistics necessary to quantify the effectiveness of ITU-T Y.2200-series —covering different aspects of emergency emergency caller location information received. communication operation.

SG11 approved ITU-T Q.3615 which describes the Open GeoSMS W3C Standard, which was developed by the Open Geospatial Consortium WebRTC, the web’s real-time communication service is currently

(OGC); geo-localisation is a key part of rapid and effective STANDARDISATION ICT FOR PLAN ROLLING being developed and specified jointly between the IETF and W3C. emergency responses. SG11 also drafted a number of Supplements The IETF is working on the protocol level. The group heading this to the Q-series Recommendations (e.g. Supplements 47, 53, 57, 61, effort is called RTCweb. 79 80 80 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES • • • • • • • Projects include: transport systems(ITS)field. emergency servicesandcommercialintheintelligent traffic management,publictransport,commercial intermodal andmultimodalaspectsthereof, travellerinformation, in thefieldofurbanandruralsurfacetransportation,including standardisation ofinformation, communicationandcontrolsystems ISO/TC 204:intelligenttransportsystems(ITS).Thiscovers ISO Platform#Emergency https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder- example, RFC7375 “Securetelephoneidentitythreatmodel”. origin, inthiscontextthetelephonenumberoforigin.See,for VoIP technologiesusedby parties thatwanttomisrepresenttheir incoming call.Themainfocus isontheSIPasoneofmain party›s authorisationtouseaparticulartelephonenumberfor an Internet-based mechanismsthatallow verificationofthecalling The Secure Telephone IdentityRevisited(STIR)WG is developing developed extensionstosupportemergencycallingasrequired. the Session InitiationProtocolCore(SIPCORE)Working Group)have The application-specificworkinggroupsintheIETF(for example, emergency calling. end devicesabouttheirgeolocation,acriticalpre-requisitefor Group developed protocolsthatallow IPnetworkstoinform The Geographic Location/Privacy(GEOPRIV)Working services. enabling IPapplicationstodiscover andconnecttoemergency (ECRIT) Working Group hasdevelopedageneralarchitecturefor The Emergency ContextResolutionwithInternetTechnologies IETF report onWebRTC. technology developedcanbefound intheSTREWSproject’s security group workingonthispartiscalledWebRTC. Agoodoverview ofthe — applicationframeworkcreatedby, amongothers,by HTML5.The W3C specifiesthenecessaryAPItoconnectserviceweb committee%3Fcommid%3D54706 http://www.iso.org/iso.iso_technical_ networks for disasterreliefandemergencycommunications ISO/DTR 18317:ITS— Pre-emptionofITScommunication using anyavailablewirelessmedia— Data registryprocedures ISO 24978:2009(Ed.1):ITSSafety andemergencymessages public transportvehicles(PRESTO) preemption andprioritisationsignalsystemsfor emergencyand ISO 22951:2009(Ed.1):Datadictionaryandmessagesetsfor station E-Call devicefor emergencyonconnected vehiclesusingITS ISO/PWI 21344:ITS–Publictransport—Emergencyservices definition via personalITSstation—Generalrequirementsandtechnical ISO/NP 20530:ITS—Information for emergencyservicesupport Framework evacuation anddisasterresponserecovery Part 1: ISO/PRF TR19083-1:ITS—PublictransportEmergency flow evacuation anddisasterresponserecovery —Part 2:Data ISO/AWI 19083-2:ITS—Publictransport — Emergency

tion ofEUpolicyobjectives: standards are important for supporting the implementa- ogy areasthatneedtobeaddressedfurtherandwhere specifications. Thereareaccordinglysomemaintechnol- private sectorcanachieve,notingexistingstandardsand sure compatibilitybetweenthepublicsectorandwhat In alloftheseworkstreams,careshouldbetaken toen- isations andpublicservices. tions, suchaspersons,businesses,locations,publicorgan- public administrationinformation systemsandapplica- data modelsofimportantmastertypesusedacross and CoreVocabularies asgeneric,simplifiedandreference standards, technicalprotocolsandopensourcesoftware; solutions, suchas legal templates, data specifications and and datasets;ADMSasmetadatadescriptionofreusable AP asadatastandardtodescribeopencatalogues tions, furtherdescribedintherelevantsubsections:DCAT- promotion andmanagementofcommondataspecifica- several streamsofwork,focusing onthedevelopment, The ISA2 programmeiscontributinginthisareathrough ity inEurope. a numberofinitiativestoachievesemanticinteroperabil- Administrations, BusinessesandCitizens),isundertaking gramme (Interoperabilitysolutionsfor EuropeanPublic The EuropeanCommission,inthecontextofISA2pro- etc.). organisations, geospatialreferences, licensecollections, data (e.g. code-lists, identifiers, taxonomies, references to of thesamedataandabsencecommonreference and widelyuseddatamodels,divergentinterpretations erability iscompromisedby thelackofcommonlyagreed In additiontothemultilingualchallenge,semanticinterop- for modernisingpublicadministrations. ness. Cross-borderinteroperabilityisalsoconsideredkey pears asanimportantenablerfor boostingcompetitive- In thedigitalsinglemarket strategy, interoperabilityap- POLICY OBJECTIVES POLICY AND LEGISLATION E-GOVERNMENT • • metadata description ofinteroperabilitysolutions; The AssetDescription MetadataSchema(ADMS) isa assets amongnationalandinternational repositories: Exchange ofmetadataonre-usable interoperability Data includinganumberofproposed actions; Public SectorInformation (PSI),OpenDataandBig DCAT —Thisisaddressedindetailthesectionon

• Core Vocabularies to facilitate the development of types used by numerous information systems and appli- interoperable IT solutions by ensuring a minimum level cations. These specifications are called “Core Vocabular- of interoperability for public administration master ies” in the ISA Programme. data usually stored in base registries. • The CPSVP-AP aims at describing public services in a Working together with relevant stakeholders from public the same way across different Service Catalogues, to administration, industry and academia, thee Commission enable federation and search across such catalogues. has made available a series of core vocabularies with high reusability potential: , the core business, the core location, the core public service, the core public organisation, the EC PERSPECTIVE AND PROGRESS core criterion and core evidence, and the core public REPORT service vocabularies.

DCAT-AP In 2015, the core public service vocabulary application DCAT-AP is a specification based on W3C’s Data Cata- profile (CPSV-AP) became also available. Activities on fi- logue vocabulary (DCAT) for describing public sector da- nancial reporting are under consideration. tasets in Europe. For more information, see chapter 3.1.2 Public sector information REFERENCES

EXCHANGE OF METADATA ON RE-USABLE • Decision (EU) 2015/2240 on interoperability solutions INTEROPERABILITY ASSETS (EGOVERNMENT) and common frameworks for European public adminis- Public administrations, businesses, standardisation bodies trations, businesses and citizens (ISA2 programme) as a and academia are already producing interoperability solu- means for modernising the public sector (ISA2) tions that, if (re)used, can facilitate interoperability among • Communication 2017/134 on the European Interop- public administrations’ services. However, these are not al- erability Framework - Implementation Strategy ways easy to find. ADMS is a common way to describe in- • Directive 2003/98/EC of the European Parliament teroperability solutions making it possible for everyone to and of the Council of 17 November 2003 on the search and discover them once shared through the forth- re-use of public sector information (public service coming federation of repositories containing solutions for information directive)

promoting interoperability. • National eGovernment strategies are in place in many EU Member States and the EFTA countries. Please also With the intention to facilitate the visibility and re-usabili- see Annex I. ty of interoperability solutions across-borders and sectors, the Commission has made available a large set of interoperability solutions described using ADMS, through a fed- REQUESTED ACTIONS eration of asset repositories of Member States, standardisation bodies and other relevant stakeholders. Through this federation, accessible through the Joinup35 platform, ACTIVITIES AND SOCIETAL CHALLENGES semantic interoperability solutions may be searched and are made available through a single point of access. ADDITIONAL INFORMATION 2019 •

Core Vocabularies to facilitate the development of RELATED STANDARDISATION interoperable IT solutions ACTIVITIES The Commission’s ISA programme is reducing semantic Exchange of metadata on re-usable interoperability interoperability conflicts in Europe. assets (eGovernment):

Agreement on definitions for the fundamental concepts W3C should come firstly. These concepts are simplified data ADMS specification has been published as a W3C note by the WC3 models which capture the minimal, global characteris- Linked Government Data Working group. Moreover, the ADMS tics/attributes of an entity in a generic, country- and do- specification has been extended by the ISA Programme to describe technical, legal and organisational interoperability solutions and main-neutral manner. Using a different terminology, these thus to facilitate their re-usability. This extended specification has specifications are data models for important master data already been implemented in the Joinup platform. STANDARDISATION ICT FOR PLAN ROLLING 35 https://joinup.ec.europa.eu/asset/dcat_application_profile/asset_release/ https://dvcs.w3.org/hg/gld/raw-file/default/adms/index.html dcat-application-profile-data-portals-europe-draft-1 81 82 82 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES ernment. has alsostandardisationworkavailablerelevanttoe-Gov- The Open Geospatial Consortium (www.opengeospatial.org) erability solutionsfromnationalcatalogues(e.g.Germany). Several MemberStatesalreadyuseADMStoexportinterop- (eGovernment): Exchange ofmetadataonre-usableinteroperabilityassets operable ITsolutions: Core Vocabularies tofacilitatethedevelopmentofinter- ADDITIONAL INFORMATION http://www.w3.org/TR/vocab-regorg/ W3C Linked Government DataWorking group. Business CoreVocabulary hasbeenpublishedasaW3CNoteby the The RegisteredOrganizationVocabulary whichisbasedon the W3C

112-eCall, and in othersfor third-party service-support- terest tofillthis market niche,insomecasesdirectly for from withinEuropeandabroad) havealreadyshown in- throughout Europe,andseveral equipmentvendors(both bring thebenefitsofeCallto currentstockofvehicles ational, thereisaconsiderable aftermarket opportunityto (PLMN) andPSAPsupportnetworks areinplaceandoper- models. However, now thatthepubliclandmobilenetwork manufacturers tovoluntarilyintroduceeCallinexisting cars, EUregulationhasalreadyencouragedautomotive models willmeantakingconsiderabletimetoequipall Recognising thatintroducingtheservicevianewvehicle ing. inspection (PTI)andtest,atendoflife decommission- provisions may berequiredinrespectofperiodictechnical eCall isregulatedfor the life ofthevehicle,andfurther service andtotake fulladvantageofallitspossibilities. recommendations toensurethebestoperationof The European eCall Implementation Platform is making normal fulleCallprovisions arenotpractical. situations (suchaslow cost,low power P2WVs) where need tobedevelopedandinnovative solutionsfound for Further conformance, performance and periodictests emergency callcanalsobetriggeredmanually. MSD) including thetime,locationanddrivingdirection.The sent, providing information (theminimumsetofdata,or the PSAP. Atthesametime,anemergencymessageis with theEuropeanemergencynumber112androutedto tomatically triggeraneCall.An audioconnectionismade In the event of a severe accident, in-vehicle sensors will au- territory. ture necessarytoreceiveandhandletheeCallsontheir are requiredtohavedeployed theeCallPSAPsinfrastruc- eCall service.Since1stOctober2017,EUMembersStates and N1modeltypesofvehiclesshallbeequippedwith Since 1stApril2018,regulationisinforce andallnewM1 quences ofaccidents,i.e. fatalitiesandseverityinjuries. N1 modeltypesofvehiclesinordertoreducetheconse- interoperable servicetobeavailableinallnewM1and The pan-Europeanin-vehicleemergencycall,‘eCall’,isan POLICY OBJECTIVES REPORT EC PERSPECTIVE AND PROGRESS POLICY AND LEGISLATION ECALL ed eCall. Other entrants are expected. However, as it will the interoperable EU-wide eCall service prove more difficult to control the performance and quali- http://eur-lex.europa.eu/legal-content/EN/ ty of such aftermarket devices, there is an urgent need to TXT/?uri=OJ:JOL_2014_164_R_0002 develop standards for the physical parameters, installa- • Ecall vehicle regulation No 144 of the United Na- tion and operational performance of such aftermarket de- tions: https://www.unece.org/trans/main/wp29/ vices, to enable adequate certification and PTI provisions. wp29regs141-160.html This will be essential to avoid PSAPs to be potentially in- undated with false messages from such devices, and to Note: As an eCall is an emergency call, all relevant regulations increase the reliable and safe operation of such devices. applicable to emergency communication apply as well. See emergency communications section. Subsequently (voluntary) specifications have been developed to extend the benefits of eCall to all categories of vehicles, and to migrate from 2G/3G communications to REQUESTED ACTIONS any wireless IMS communications media, and in special circumstances, to be supported over satellite communi- ACTION 1 SDOs to develop technical specification and cations. As soon as the new specifications are validated standards for the implementation of eCall in vehicles of cate- it may be desirable to upgrade them to EN’s, so that they gories other than M1 and N1 and for other user types, taking may be referenced in extensions to the current regula- into account requirements included within type-approval reg- tions. ulation and ongoing activities in this area (pilots, the Connect- ing Europe Facility (CEF), etc).

REFERENCES ACTION 2 SDOs to lay down physical and operating requirements for aftermarket in-vehicle devices • Regulation (EU) 2015/758 of the European Parlia- ment and of the Council of 29 April 2015 concerning ACTION 3 SDOs to draft guidelines on certification of eCall type-approval requirements for the deployment of the Systems including aftermarket in-vehicle devices eCall in-vehicle system based on the 112 service and amending Directive 2007/46/EC ACTION 4 SDOs to provide conformance and performance

http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=uris- tests to the recently developed standards for packet-switched erv:OJ.L_.2015.123.01.0077.01.ENG networks (HLAP E-UTRAN — LTE/4G and migration to further • Commission delegated regulation (EU) of 26 generations by use of an IMS sublayer). November 2012 305/2013 supplementing Directive 2010/40/EU of the European Parliament and of the ACTION 5 SDOs to develop conformance and performance Council with regard to the harmonised provision for an tests for recently developed technical specifications / stand- interoperable EU-wide eCall ards for the provision of the eCall service eCall via shared • COM 2011/750/EU: Commission Recommendation vehicle platforms (C-ITS). of 8 September 2011 on support for an EU-wide eCall SOCIETAL CHALLENGES service in electronic communication networks for the ACTION 6 SDOs to produce detailed conformity test specifi-

transmission of in-vehicle emergency calls based on cations in support of certification schemes and periodic test- 2019 • 112 (eCalls) ing on IVS equipment. • Directive 2010/40/EU of the European Parliament and of the Council of 7 July 2010 on the framework ACTION 7 SDOs to carry out plugtest interoperability for the deployment of Intelligent Transport Systems in events36. the field of road transport and for interfaces with other modes of transport ACTION 8 SDOs to collect feedback about the early versions • COM(2009) 434 final: eCall: Time for Deployment of the standards and their implementation with technical • Directive 2002/22/EC of the European Parliament representatives from vendors and implementers. and of the Council of 7 March 2002 on universal service and users’ rights relating to electronic communications networks and services (Universal Service 36 such as the eCall Testfest interoperability event which was held Directive). in Ostrava, Czech Republic, in November 2015

• Decision 585/2014 of the European Parliament and http://www.etsi.org/news-events/events/ STANDARDISATION ICT FOR PLAN ROLLING 1002-4th-ecall-tesfest-2015 of the Council of 15 May 2014 on the deployment of 83 84 84 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SOCIETAL CHALLENGES be relevantina5Gparadigm ACTION 10 ACTION 9 when neededimprove thestandards. stakeholders ontherealoperationofeCallservice and ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND ITS-station CEN/TS 17182Intelligenttransportsystems -eSafety -eCallviaan eCall AgreementbetweenTPSPandERO CEN/TS 17148IntelligentTransport Systems-eSafety -ProForma requirements for thirdpartysupport EN 16102:2011Intelligenttransportsystems-eCallOperating data conceptspecification for heavygoods vehicles TS 16405:2017Intelligenttransportsystems-EcallAdditional to endconformance testing EN 16454:2015Intelligenttransportsystems-ESafety -ECallend European eCalloperatingrequirements EN 16072:2015Intelligenttransportsystems-ESafety -Pan- switched networks high levelapplicationrequirements(HLAP)usingGSM/UMTScircuit EN 16062:2015Intelligenttransportsystems-ESafety -eCall minimum setofdata EN 15722:2015Intelligenttransportsystems-ESafety -ECall to assistPSAPsmanagetheresponseincident. Regulation andGDPRinordertoprovide betterusefulinformation additional datawhileretainingtheprivacyrequirementsofeCall (TS), ENstandards,andotherdeliverablestoprovide optional CEN/TC 278WG15 hasdevelopedseveraltechnicalspecifications networks. networks, eCallviaC-ITS equipped vehicles,andeCallviasatellite (TS), ENstandards,andotherdeliverablestoenableeCallviaIMS CEN/TC 278WG15 hasdevelopedseveraltechnicalspecifications eCall for allothercategoriesofvehicle. (TS), ENstandards,andotherdeliverablestoenablesupport CEN/TC 278WG 15hasdevelopedseveraltechnicalspecifications N1 vehicles. vehicles tothePSAP, andtheE2Etestsuitesfor CategoryM1and structure andtheapplicationprotocolstotransfer itfromthe (TS), ENstandards,andotherdeliverablestodefinetheMSD CEN/TC 278WG 15hasdevelopedseveraltechnicalspecifications CEN SDOs to consider any changes to eCall that may SDOstoconsideranychangeseCallthatmay SDOs to collect feedback from the relevant SDOstocollectfeedback fromtherelevant http://www.itsstandards.eu/ choice in112eCallaftermarket andthirdpartyeCallservices Intelligent transportsystems-ESafety -Interoperabilityanduser Linked mobilephonenumberdataconcept Intelligent transportsystems-eCalloptionaladditionaldata Optional AdditionalDatasets Intelligent transportsystems-eSafety -eCallOADfor multiple Currently inapproval procedures: Quadricycles (vehiclebased) 6: eCallfor UNECECategoryL2,L4,L5,L6andL7Tricycles and CEN/TS 17249-6Intelligenttransportsystems -eSafety - Part (vehicle based) eCall for UNECECategoryL1andL3powered twowheelvehicles CEN/TS 17249-5Intelligenttransportsystems -eSafety - Part 5: eCall for UNECECategoryT, R,Sagricultural/forestry vehicles CEN/TS 17249-4Intelligenttransportsystems -eSafety - Part 4: 3:eCall for Coachesandbusses CEN/TS 17249-3Intelligenttransportsystems -eSafety - Part eCall for HGVs andothercommercialvehicles CEN/TS 17249-2Intelligenttransportsystems -eSafety:Part 2: eCall toothercategoriesofvehicle CEN/TR 17249-1Intelligenttransportsystems -eSafety -extending to enablePSAPsdemonstrateconformance andperformance CEN/TS 17234Intelligenttransportsystems-eSafety -eCall:Tests satellite telecommunications CEN/TS 17312Intelligenttransportsystems -eSafety - eCallvia end conformance testingfor IMSpacket switchedbasedsystems CEN/TS 17240Intelligenttransportsystems-eSafety -eCallendto networks High levelapplicationProtocols(HLAP)usingIMSpacket switched CEN/TS 17184Intelligenttransportsystems-eSafety -eCall http://iheero.eu/ relevant contributionsfor eCallstandardisation. The iHeEROpilotunderthe2014CEFcall for proposalsproduced standards inrealconditions. CIP PilotsHeEROs(HarmonisedeCall EuropeanPilot)testedthe Pilots ETSI hassupporttheorganisationofseveraleCall Test Fests. developing guidelinesfor eCallIVSconformity assessment. testing specifications for theeCallHLAP andin-bandmodem,is ETSI TC MSGhasproducedinteroperabilityand conformance from thevehicletoPSAPviaLTE usingIMS. ETSI TC MSG(via3GPP)hasdefinedthemechanismto sendMSD Networks andhasadoptedpublishedETSITR103140. Its STF456haslooked attheissueofmigration network inseveralETSITSalongwiththeserviceprinciples. MSD fromthevehiclesystemtoPSAP, viatheGSM/UMTS ETSI TC MSG (via3GPP)hasdefinedthetransportprotocoltosend ETSI

ITU ADDITIONAL INFORMATION Study Group 12 approved Recommendation ITU-T P.1140 (ex. P.emergency): «Speech communication requirements for emergency In respect of commercial vehicles and public transport calls originating from vehicles». vehicles, new recently developed Technical Specifications The revised Recommendation ITU-T E.212 «The international provide the possibility to link relevant related information identification plan for public networks and subscriptions» was issued (such as passenger numbers, commercial cargo type and by ITU-T Study Group 2. Under the revised E.212, mobile network detail, etc.), but further work may be required to enable code may be assigned to other applicants (e.g. for GSM-R networks) and these assignments are to be made according to procedures and provide and exchange such information in a consist- and criteria set by the national numbering plan administrator. It ent manner to and between PSAPS, and provide Additional also encourages applications to the ITU’s shared mobile country information from sensors etc. In respect of public trans- and network codes if networks and services are provided in more port, innovative technologies may provide better assess- than one country. Use of global numbering resources for In Car ment of the number of passengers involved, and addition- Emergency Communication is under discussion in ITU-T Study al specifications/standards may be needed to collect and Group 2. present this detail to PSAPs in consistent and usable form. ISO

ISO/TC 204: ITS. These cover standardisation of information, Considerations need to be made for the provision of eCall communication and control systems in the field of urban and in CCAM vehicles, especially to segregate eCalls from un- rural surface transportation, including intermodal and multimodal manned vehicles travelling between assignments from aspects, traveller information, traffic management, public transport, those where passengers are being transported in the ve- commercial transport, emergency services and commercial services hicle. in the intelligent transport systems (ITS) field.

The project includes: As part of HeERO, EUCARIS (the European car and driving • ISO/DIS 15638-10: ITS– Framework for cooperative Telematics licence information system) has developed a module with Applications for Regulated commercial freight Vehicles (TARV) — which vehicle information can be exchanged internation- Part 10: Emergency messaging system/eCall (EMS) ally. • ISO/PWI 21344: ITS– Public transport — Emergency services eCall device for emergency on connected vehicles using ITS On the basis of the vehicle identification number (VIN) this station http://www.iso.org/iso/iso_technical_ module enables a link between the national vehicle reg-

committee%3Fcommid%3D54706 istration authorities of the participating countries. When a foreign vehicle is involved in an accident, this module IETF enables an instant Europe-wide search via EUCARIS to Work in progress — IETF is working on an IP based next-generation support the respective national 112 emergency centre(s). eCall internet draft: https://tools.ietf.org/html/draft-ietf-ecrit-ecall

The Emergency Context Resolution with Internet Technologies (ECRIT) Working Group has developed a general architecture for SOCIETAL SOCIETAL CHALLENGES enabling IP applications to discover and connect to emergency services. 2019

The Geographic Location/Privacy (GEOPRIV) Working Group has • developed protocols that allow IP networks to inform end devices about their geolocation, a critical pre-requisite for emergency calling.

The application-specific working groups in the IETF (for example, the Session Initiation Protocol Core (SIPCORE) Working Group) have developed extensions to support emergency calling as required https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder-Platform#eCall ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

85 86 86 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET DIGITAL SINGLE MARKET INNOVATION FOR THE

However, the practical development and use of standards E-PROCUREMENT for e-Procurement is not without its difficulties. First, products of CEN (a main driver of e-procurement standard- PRE- AND POST isation activities within the CEN-BII workshop and CEN/ TC 440) have faced several practical challenges in their AWARD implementation into software, relating to their availability and copyright licensing requirements. For example, it POLICY AND LEGISLATION should be clarified whether some licensed standards must POLICY OBJECTIVES be purchased only by those who develop IT solutions, or whether a license also is required by those who use the Public procurement must ensure best value for money, software (or build their own). Similarly, it should also be while being transparent and simple as well as meeting clarified whether a nationally purchased standard can be environmental, innovative and social objectives. E-pro- accessed (e.g. online) from any EU country or even glob- curement is a key tool to achieve these goals. ally. These problems are exacerbated by copyright policies being set at country level by National Standardisation Bodies. Therefore, the European Commission and stake- EC PERSPECTIVE AND PROGRESS holders are working together to find solutions for the im- REPORT plementation of the standards’ contents into IT products, throughout Europe. In this context, also, CEN and CEN/TC The 2014 Public Procurement Directives make e-Procure- 440 are working on the possibility to integrate Free and ment the main method for carrying out public procure- Open Source solutions into eProcurement standards. ment. Since April 2016, electronic notification and electronic access to tender documents has been mandatory; Second, a number of questions have come up regarding e-submission of tenders will become mandatory for all e-procurement standardisation in a fast-paced digitally buyers in October 2018. transforming world. These questions include:

The procurement directives also require the Commission • what technical form should standards have (e.g. se- to adopt implementing regulations on procurement stand- mantic only, syntactic, reusable code); ard forms and on the European Single Procurement Docu- • how should market needs (and their fulfillment) be ment. In their areas, these function as de-facto standards. reliably assessed; Furthermore, the Commission is empowered to mandate • how should standards be developed to meet rapidly the use of technical standard in other areas of e-procure- changing needs; ment as long as these are “thoroughly tested and proved • which phases of eprocurement should be standardised; their usefulness in practice”37. • who should develop the standards; • what is an appropriate cost (if any) to pay for the de- E-procurement in the EU is driving by a thriving ecosys- velopment of this public good and for accessing it. INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION tem of private and public e-procurement solution providers. Being able to choose between multiple systems can bring better services and lower prices. However, it can also 2019

REFERENCES • bring challenges such as lock-in with particular eTendering providers and having to learn to work with multiple e-Ten- • COM(2012) 179 final — Communication from the dering systems to access documents, submit bids, etc. Commission to the European Parliament, the Coun- cil, the European Economic and Social Committee Standards can be one of the solutions to these problems, and the Committee of the Regions on a strategy for as they can improve data portability, reduce the costs of e-Procurement understanding new systems and enable communication • COM(2013) 453 final on end-to-end e-Procurement across systems. This has been recognized on various oc- to modernise public administration casions, for example in 2013 by the Commission’s Expert • Directives 2014/23/EU (concessions), 2014/24/ Group on e-Tendering (eTEG) and in 2016 by the Commis- EU (general) and 2014/25/EU (sectoral) on public sion’s Multi-stakeholder Expert Group on eProcurement procurement (EXEP). • Directive 2014/55/EU of the European Parliament

and of the Council on electronic invoicing in public STANDARDISATION ICT FOR PLAN ROLLING 37 See 2014/24/EU Art. 22 last paragraph procurement (especially the part on contract manage- 87 88 88 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET Office). ontology is the Publications Office of the EU (Publications of theISA Action 3:Benefitfromthee-Procurementontology(part by coordinationand/orgrants). sion maysupportoperationalstandardisationwork(e.g. Action 2:Dependingontheresults1,Commis- Standardisation. with theCommission’s Multi-Stakeholder Platform onICT working oninteroperability. Thetopicshouldalsoberaised ity subgroupandtheCommission’s contractorsalready Expert GrouponeProcurement’s (EXEP’s) interoperabil - ses doneinthepast,Commission’s Multi-stakeholder end of section A2. Valuable input is expected fromanaly- es willtrytofindanswersthequestionsraisedat Action 1:Together withstakeholders, Commissionservic- ACTIVITIES RELATED STANDARDISATION REQUESTED ACTIONS ADDITIONAL INFORMATION ADDITIONAL ACTIVITIES AND • • Core Vocabularies making theESPDdatamodeldomain independent like theother SEMIC actiononCCEV(CoreCriteria/Evidence Vocabulary) tohelp March 2016. succeeded theCENworkshopWS/BII3,whichwasclosedon9 e-procurement, includingbothpre-andpost-awardprocesses.It physical andfinancialsupplychain.Thisfacilitatesend-to-end procurement processandtherelatedinformation flows inthe to standardisee-procurementinsupportoftheelectronicpublic CEN/TC 440—«Electronicpublicprocurement»established ISA CEN/TC440 publication ofnoticesinthefieldpublicprocurement 2015/1986 establishing standardforms for the Commission ImplementingRegulation European SingleProcurementDocument 2016/7 establishing thestandardform for the Commission Implementing Regulation there isaseparatechapterone-Invoicing). ment whichislinked toe-Procurement;pleasenote 2 ACTIONS 2 work programme).Theactionowner for the

http://www.esens.eu/home/ based onspecificationsfromCENWS/BII3. Denmark andtheUniversityofPriaeusGreece.Part oftheworkis PEPPOL infrastructure,consistingofaccesspointsfromIBM Germany (XVergabe) Gatewaytoe-Vergabe fromBeschA)with between theNetherlands(Tendernet), Denmark(ETHICS)and interchange apublicationandanapplicationfor participation 5.1 wasprocessedsuccessfully, allowing for thefirsttime,to milestone wasreachedinJanuary2015.PhaseIworkpackage the interoperabilityissuebetweenplatforms. Animportant e-Procurement. Thereisane-Tendering pilotwhichaddresses eGovernment LSPs.Thee-SENSWork Package 5.1focuses on is anEULSPprojectintegratingresultsfromPEPPOLandother The ‘ElectronicSimpleEuropeanNetworked Services’(e-SENS), http://www.peppol.eu/about_peppol/about-openpeppol-1 e-procurement: public andprivateentities,includingthepost-awardprocessesof service providers throughoutEurope,servicingthousandsof transport infrastructureisnow implementedby hundredsof took over governance ofthesolutionsdeveloped.ThePEPPOL Following theclosingofPEPPOL-project, OpenPEPPOLAISBL http://www.peppol.eu. PEPPOL network. to exchangestandards-basede-Procurementdocumentsover a in existinge-Procurementsolutions,andenablestradingpartners provided asetoftechnicalspecificationsthatcanbeimplemented PEPPOL wasaEUlarge-scalepilotproject(LSP)from2008-2012.It 2016-detailed-action-descriptions_en.pdf http://ec.europa.eu/isa/library/documents/isa2-work-programme- See theworkprogramme dissemination andreuseoftheresultingdata. various actorsconcernedandfacilitatethecreation,exchange, interoperability withinthepublicprocurementworkflow for the E-Procurement ontologytoenabletherationalisationand standardisation processintheareaof e-Procurement. and supportfor initiativeslike CEFande-SENS,governs the end-to-end e-Procurement.Inaddition, EXEPprovides governance recommendations arisingfromtheEMSFEIandbroaderpolicieson The groupisresponsiblefor ensuringthecoherence betweenthe e-Procurement acrosstheEU,includinginpost-awardphase. with nationalforums, tofurtherpromote theuptake ofend-to-end European multi-stakeholder forum one-invoicing(EMSFEI)and addressing interoperabilityissues.TheEXEPliaisescloselywiththe best practices,following newdevelopments inthefield,and monitoring theuptake ofe-ProcurementacrosstheEU,sharing Directives relatingtoelectronicprocurement.Itcontributes on implementingtheprovisions ofthenewpublicprocurement assists andadvisestheMemberStatesCommission The multi-stakeholder expertgroupone-Procurement(EXEP) E-SENS OPENPEPPOL PEPPOL EXEP

TOOP The Once-Only Principle Project (TOOP) was launched by the E-INVOICING European Commission in January 2017 as an initiative of more than 50 organisations. The main objective of TOOP is to explore and demonstrate POLICY AND LEGISLATION the once-only principle across borders, focusing on data from businesses. Doing this, TOOP wants to enable better exchange POLICY OBJECTIVES of business related data or documents with and between public administrations and reduce administrative burden for both Electronic invoicing (e-Invoicing), i.e. an invoice that has businesses and public administrations. been issued, sent and received in a structured electronic

The TOOP will also have implications for the Single Digital Gateway format which allows for its automatic and electronic pro- project. cessing, brings numerous benefits to all users (senders http://www.toop.eu/ and recipients). By automating the relevant business processes, e-Invoicing leads to cost savings, increased effi- ETSI ciency, faster payments, and a reduced environmental im- ETSI TC Human Factors is responsible for all Human Factors matters pact especially if other business documents like order and related to the usability and accessibility of ICT products, applications dispatch advice are also available in electronic format. Its and services. Special care is paid to all aspects related to interfaces deployment is a strong tool in support of enterprise and and interaction with the user. Human Factors is the scientific financial policies as it makes enterprises more efficient application of knowledge about human capacities and limitations in order to make products, systems, services and environments and generates potentially significant savings for Member effective, efficient and easy for everyone to use. States’ governments. Therefore, e-Invoicing is highlighted in the EU’s digital agenda as one of the key actions of its first pillar (“A vibrant digital single market”). Additionally,

ADDITIONAL INFORMATION it contributes significantly to the EU’s digital agenda by promoting the development of eGovernment, and ready OpenPEPPOL has provided a set of existing specifications accessibility to users with disabilities (see the separate and methods sufficient for production implementation of section on accessibility of ICT products and services and e-Procurement and e-Invoicing business functions. These web accessibility). were added to the e-SENS project. An appropriate long- term community feedback, updating and maintenance structure for these assets is preferred, as any network of EC PERSPECTIVE AND PROGRESS transacting parties will evolve and discover new needs REPORT over time. In the last decade or so, many e-invoicing standards/formats have been developed, based mostly on different versions of XML. Many of these are proprietary formats, and are only used by one multinational company and its INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION suppliers, or embed proprietary unique identifiers that may require licensing from a single source. As Member

States developed their own national standards, some of 2019 • these also differed from anything already on the market, resulting in further divergence and a lack of interoperability. As a consequence, market players, such as companies or financial and IT service providers need to support multiple formats, requiring substantial mapping and conversion exercises to cope with data expressed in different syntaxes. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

89 90 90 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET focal pointfor Directive2014/55/2014. taken upby theEuropeanCommissionandisacentral port Interoperabilityfor ElectronicInvoicing that hasbeen mendation ontheuseofaSemanticDataModeltosup- EMSFEI unanimouslyadoptedandendorsedthe Recom- tober 2017for a3year mandate.On1October2013, Decision C(2010)8467.TheEMSFeIwasrenewedinOc- FEI) hasbeensetupby theCommissionwith A voicing alsoonthepoliticalandlegallevel: The Commissionhasaddressedtheissuesarounde-In- respecting different sectorneedsandpractices. the standardsinordertopromoteinteroperabilitywhile ifications (CIUS) and extensions. It is important to promote the necessary flexibility throughCore Invoice Usage Spec- the coreelementsofanelectronicinvoicewhilepreserving EU andgloballyby specifyingthesemanticdatamodelof formats, andusagerequirementsthatexistsacrossthe effect of the vast number of e-invoicing standards, data ed totacklethesemanticfragmentationthatisaside The publishedEuropeanstandardEN16931-1isintend- REFERENCES • • • • • European Multi-stakeholder Forum on e-Invoicing (EMS - invoicing in public procurement´ invoicing inpublicprocurement´ European Parliament andoftheCouncilonelectronic nying thedocument`Proposalfor aDirective ofthe SWD(2013) 222—ImpactAssessmentaccompa - tax asregardstherulesoninvoicing. 2006/112/EC onthecommonsystem ofvalueadded Council Directive2010/45/EUamending list ofsyntaxesspecifiedinCEN/TS16931-2. 16931-1) andwithoneofthesyntaxesonalimited with theEuropeanstandardonelectronicinvoicing(EN 18 April2020.Theseelectronicinvoicesmustcomply postpone theobligationfor localauthoritiesuntilthe from 18April2019onwards;andMemberStatesmay to acceptelectronicinvoicesinpublicprocurement bodies oftheMemberStatesEuropeanUnion procurement. ThisDirectiveobligescentralgovernment and oftheCouncilonelectronicinvoicinginpublic Directive 2014/55/EUoftheEuropeanParliament in publicprocurement. ies oftheMemberStatestoacceptelectronicinvoices Directive 2014/55/EUobligescentralgovernment bod- procurement”. make e-invoicingstandardbillingmodeinpublic actions, oneofwhichisto“adoptlegislation Communication COM(2012)573 identified12 key tomated processes. to wider adoptionandimplementation.of e-Invoices/au- TC/434 shoulddiscussfurtherfollow upactivities leading mentary technicalspecificationsandreportsareavailable. M/528 havebeenpublished.EN16931-1anditscomple- The deliverablesdefinedinthestandardisationrequest REQUESTED ACTIONS • • • • • • • • • • sector transactions(B2B). 2019 theobligationwillbeextendedtoallprivate tration since31March2015.Startingfrom1January all thetransactionstowards theItalianpublicadminis- a XMLformat. The usageofFatturaPA ismandatoryin cepts eInvoicesfromadefinednumberofchannels in Italian FatturaPA isbasedona centralizedhubthatac- of thestandardisationrequestM/528. ties carriedoutby CEN/TC 434accordingtotheAnnex need toalignwiththeongoingstandardisationactivi- invoices fromsuppliersandalltheseinitiativeswill whereby publicauthoritiescouldonlyacceptelectronic Several Europeancountriesalreadyintroducedrules tive 2014/55/EU invoicing andthelistofitssyntaxespursuanttoDirec- the reference oftheEuropean standardonelectronic 2017/1870 of16October2017onthepublication Commission ImplementingDecision(EU) being conductedelectronically. notification (e-notification)topayment(e-payment) e-procurement” withallphasesoftheprocedurefrom states thattheultimategoalis“straightthrough COM(2012)179 “Astrategyfor e-procurement” lution adoptedinApril2012. compulsory inpublicprocurementby 2016inareso- The EuropeanParliament calledfor makinge-invoicing sions ofJune2012. February 2012andintheEuropeanCouncilConclu- e-invoicing attheInformal competitivenessCouncilof Member Statescalledfor measurestopromote facilitate thedeployment ofe-invoicinginEurope. different areas,includingstandardisation,neededto invoicing for Europe”describesanumberofactionsin COM(2010)712 “Reapingthebenefitsofelectronic system ofvalueaddedtax. Council Directive2006/112/EConthecommon Directive 2010/45/EU)[1]. Explanatory NotesonVAT-invoicing rules(Council to modernisepublicadministration COM(2013) 453finalonend-to-ende-Procurement

ACTION 1 Continue the work in CEN TC/434 which in- General remark: Overall, the actions should be part of cludes the following aspects and standardisation deliver- an agreed standardisation strategy shared by the Com- ables, currently under development: mission, the ESOs, MSP, consortia and standards bodies supplying specifications in use, and Member States which • investigation of future activities (the TC has already actively implement them. The Commission may launch agreed on the topics to be addressed on a short and further broad, neutral fact-finding inquiries (perhaps via medium term the MSP and EMSFEI) to identify appropriate shared needs • maintenance activities and goals. • development of standardization documents that support and encourage the uptake of the European Standard and its ancillary deliverables ACTIVITIES AND • communication activities (Capacity building) also addressing third countries at global level ADDITIONAL INFORMATION • deliverables that describe the governance and rules framework for Core Invoice Usage Specifications (CIUS) RELATED STANDARDISATION and extensions to the core invoice management a ACTIVITIES specification to the creation and management of a registry in support to use of CIUS, extensions, code lists CEN

and any other similar need CEN/TC 434 was established provide standardisation for e-Invoicing and undertakes the standardisation activities required by the ACTION 2 For industry specific purposes sector specific Directive 2014/55/EU extensions in addition to the generic EN 16931-1 mod- CEN/TC 440 — «Electronic public procurement» — established el might be devised and standardised at a European and in order to provide standardisation in the field of e-procurement global level: for example for energy, e-health, insurance including Post-award processes. and human resources management purposes in line with OASIS CEN/TC 434 deliverables. There needs to be a registry for such standardised extensions whose development should OASIS’ Universal Business Language Version 2.1 (UBL v2.1), used be in line with centrally defined rules (see Action 1). in several member state implementations and the PEPPOL project, was adopted as ISO/IEC 19845:2015. UBL 2.2, published in July 2018, backward compatible with ISO/IEC 19845:2015. ACTION 3 For e-Invoices related to ICT services addressing end users, attention should be paid to the relevant UN/CEFACT Human Factors requirements (e.g. language understand- Cross-Industry Invoice (CII) v.2 adopted as a UN/CEFACT standard, ability and consistency and accessibility). Aspects such as consistent with the methodologies of ISO 15000-5:2014 ebXML clarity and perceivability of information structures and Core Components Specification (“CCS”). content, use of unambiguous, harmonized terminologies and standardized formats and information attributes and ETSI INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION details should be considered for current and upcoming ICT ETSI TC Human Factors is responsable for all Human Factors services. ETSI has already addressed certain aspects relat- matters related to the usability and accessibility of ICT products, applications and services. Special care is paid to all aspects related ed to the usability and accessibility of the basic elements 2019 to interfaces and interaction with the user. Human Factors is • (e.g. in Smart City environments) and on the general lev- the scientific application of knowledge about human capacities el; the ESOs, MSP, consortia and standards bodies should and limitations in order to make products, systems, services and coordinate and initiate work to develop recommendations environments effective, efficient and easy for everyone to use. addressing the requirements and user experience of e-invoicing in digitized environments (covering applicable us- OTHER ACTIVITIES RELATED TO STANDARDISATION ability and accessibility aspects related to those attributes OPENPEPPOL and context of use). E-Invoice developer community to implement the PEPPOL (and e-SENS) programmes. The PEPPOL transport infrastructure is today implemented by hundreds of service providers throughout Europe, servicing thousands of public and private entities, specifically in the post-award processes of e-procurement, where e-Invoicing is predominantly used. http://www.peppol.eu/about_peppol/about-openpeppol-1 ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

91 92 92 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET mandatory asfromJan1 extended alsotoB2Binvoicesanditsusewillbecome of digitalinvoicingtothefullextent.Thecentralhubwas has enabledtheItaliangovernment toreapthebenefits 2.5 million suppliers to send invoices electronically and hub. Thisbroad-scaleprojecthasledtobetween2and CEN/BII WScoreinvoicethroughacentralizedgovernment format sinceMarch31, 2015semanticallyalignedwith ities havebeenobligedtoissuee-invoicesinFatturaPA In Italy100%ofthesuppliersfor centralandlocalauthor- ernments frastructure componentsfor federal, stateandlocalgov- Model. Asecondgoalistooffer recommendationsonin- and business rules compared to the CEN Semantic Data usage specificationthatprovides additionalexplanations voices. Thisnationalstandardincludesacoreinvoice man publicsectorandprivateentitiesonelectronicin- “XRechnung”, whichfulfilstherequirementsofGer- (KoSIT). Theprojecthasdevelopedanationalstandard try oftheInteriorandITStandardsCoordinationOffice of theITPlanningCouncilisdirectedby theFederalMinis- The GermanGovernment project“eRechnung”onbehalf bodies mustbereadytousee-Invoicingby 2017. and from2020tosmallmediumbusinesses.Public gressively from1January2017itwillapplytobigfirms bodies andsuppliers. E-invoicing willbe introduced pro- es. Thegoalistodematerialiseinvoicingbetweenpublic action ispartofasimplificationprogramme for business- The French government devisedrulesfor e-Invoicing.This rules. public sectororganizationsand follows ‘complyorexplain’ ( ment organizationsandtheDutch businesscommunity NLCIUS was created by a joint initiative of Dutch govern- gal obligationofEN16931by the18thofApril2019, ( implemented by theSimplerinvoicingmarket initiative legislation andinlinewiththePEPPOLCIUS,willbe in theire-invoicingsolutions.ItiscompliantwithDutch ganizations tohelptheimplementationofEN16931 been created for Dutch businesses and public sector or- In theNetherlands,NLCIUS isaspecificationthathas Implementing Decision(EU)2017/1870. transposition of Directive 2014/55/EU andCommission identified inEN16931-2fromApril2019,aspartofthe pliant withEN16931-1expressedinoneoftheformats adapted toreceiveandprocesselectronicinvoicescom- exceptions, willnotexistanymore.Thecentralhubbe ADDITIONAL INFORMATION www.STPE.nl). TheuseofNLCIUS ismandatoryfor all www.simplerinvoicing.org). Inlightoftheupcomingle- st, 2019: paperinvoices,withfew

the objectivesofdigitalsinglemarket. embedded inproprietaryapps,wouldbedetrimentalto services toreceiveinvoicesinvariousformats orbecome ways withvariousvendorsand/ordataminingthird-party the consumerwouldhavetoregisterinmanydifferent trading. However, e-invoicinginmultipleformats, where be used to increase trust in relation to second-hand C2C purposes; easilyaccessibleandportablee-invoicesmay a singlelocation,easilyaccessiblefor warrantyandODR users withdisabilities;consumerscancollectinvoicesin over-the-counter purchases;morereadilyaccessibleto payments and reduced environmental impact for mobile have anumberofbenefitsincludingfasterandsimpler delivery. Standardisede-billingfor B2Ccommerce could cy issuestobeconsideredwithrespectcontentand issued toconsumers.Mostimportantlytherearepriva- formats arenotdirectlyapplicabletoinvoicesandreceipts ment (B2G)andbusiness-to-business (B2B) e-invoicing ness-to-consumer (B2C)e-billing. Business-to-govern- also standardizeformats anddeliverymethodsfor busi- counter purchasesmakes itincreasinglyimportantto based payment services for both online and over-the- The emergenceofanabundance internet and mobile It requires a coordinated and pragmatic approach by the CARD, INTERNET public authorities and the various players in order to favour the deployment of the service. The cooperation among the AND MOBILE players is key, and should be supported by a real willing- PAYMENTS ness and commitment to achieve concrete results. The European Commission does not plan yet to proceed POLICY AND LEGISLATION with specific legislation since it requires a more mature POLICY OBJECTIVES market. However, it will continue the cooperation and discussion with the institutional players and the ESOs. It will While there is no globally accepted definition of mobile launch/support appropriate standardisation initiatives as payments (m-payment), payments made using a mobile soon as gaps and needs are identified. The CEN has con- phone seem to be gaining importance. Mobile payments firmed its interest in supporting the European Commission can be based on card payments, credit transfers, direct initiatives regarding payment standards. It will use its mul- debits, or through pre-funded cards and accounts. tiple experts from both demand and supply sides already involved in the many organisations addressing standards In general, the Commission strives to promote an inter- covering the entire chain of payments in the card, internet operable European market for card, internet and mobile and mobile environment. DG GROW will pursue its work on payments for the benefit of consumers and merchants. the mapping of the market for mobile payments.

The Euro retail payments board (ERPB) working group should work in cooperation with relevant players that EC PERSPECTIVE AND PROGRESS REPORT are not represented in the ERPB (e.g. telecom operators). It is expected to enhance the consumers’ confidence in There will be 947 million mobile-connected devices by m-payments. 2020. Whether it is for shopping, moving, buying concert tickets, paying bills or accessing banking services, the Future standardisation work in the m-payments field mobile is device is becoming the preferred access path should pay particular attention to security for apps, access to online services. The market for mobile payments at Eu- and accessibility, management and portability of custom- ropean level is fragmented. The current landscape is char- er data, and transparency. Certification of equipment and acterised by applications for niche users and by numerous solutions should also be addressed as well by the compe- pilot projects, mostly at domestic or local level. The advent tent bodies. of an integrated system of mobile payments in the EU is hampered by the lack of cross-border standardised and In order to foster and accelerate innovation and to create interoperable technical solutions. a level playing field, a certain degree of standardisation is vital to secure compatibility in the mobile payments value INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION The absence of shared standards, standardisation gaps chain. Changing handset (version), OS, card, wallet, provid- and the lack of interoperability between the various mar- er, or any other service or product in the chain, must be a ket players is delaying the mass market adoption of this seamless and secure experience for the consumer. 2019 • innovative payment method. While certain solutions, such as near field communication (NFC), seem to emerge as Standardisation could include making a distinction be- possible lead technologies for proximity mobile payments, tween mobile platforms (e.g. secure element, mobile common standards for mobile payments at the point of handset) and their functions/security which are generic in sale (POS) do not exist or are in a very early stage of de- nature and provide support to all mobile services / applica- velopment. tions and mobile payment applications (running on these platforms). Provided that the market factors are duly taken into account, resolving the issue of missing standards will make it easier for payment services providers and merchants alike to reach critical mass by making use of the digital single market and committing to make the necessary in-

vestments. STANDARDISATION ICT FOR PLAN ROLLING

93 94 94 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET to fixtheexistingproblems. programme thatwillhelpdevelop missingstandardsand to identifyinteroperabilitygaps, andtodevelopawork sumers, thereisaneedtoassess theexistingstandards, starting pointthe requirements of businesses and con- firmed itsinterest for thismappingexercise. Taking asa existing standardisationgaps.TheCENhasalreadycon- to mapoutbusinessanduserrequirementsassess ies suchasthesingleeuropaymentsarea(SEPA) council Commission willinvitetheESOsandotherrelevantbod- m-payments andinternetpayments.Asafirststepthe and spurtheemergenceofpan-Europeanstandardsfor standardisation activities in the areaof card payments tral Bank,intendstofacilitatethemergingofongoing The Commission,incooperationwiththeEuropeanCen- Action 3: Assess landscape of existing standards. for describing/featuring Europeansolutions for users,Europeanprofiles ofstandardsandspecification Action 2:CEN/TC224 will work on accessibility, guideline scope ofwhatm-paymentsare. and privacy. sibility, interoperability, security, personaldataprotection mation ofpayment),reflectingrequirements for acces- process (from checking the price to receiving the confir- different waysofpayment covering thewholepurchase use-cases andacleardefinitionofmobilepayment,on Action 1:SDOsaretodevelopstandards,including REFERENCES REQUESTED ACTIONS • • • document/18/17780.pdf#page=7 http://proxy-pubminefi.diffusion.finances.gouv.fr/pub/ French strategy: change fees for card-basedpaymenttransactions ment andoftheCouncil29April2015oninter- Regulation (EU)2015/751oftheEuropeanParlia- regulations. incorporate thedirectiveintotheirnationallawsand services safer. Memberstateswillhavetwoyearsto payments, andmake cross-borderEuropeanpayment development anduseofinnovative onlineandmobile protect consumerswhentheypayonline,promotethe Service Directive2).Thenewrulesaimtobetter and moreinnovative Europeanpayments(Payments the EuropeanCommissionproposaltocreatesafer the EuropeanParliament andtheCouncilagreedon Revised DirectiveonPayment Services.In2015, These areneededfor a clearer definitionand

competent bodies. bodies. competent ment andsolutionsshouldbeaddressedaswellby the customer data,andtransparency. Certificationofequip- access andaccessibility, managementandportabilityof ment domain)shouldbeaddressed:securityfor apps, In particularthefollowing issues(especiallyinthem-pay- ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND • • • • • Moreover, CEN/TC 224willcontinuetosupporttheeIDASregulation. multilingual vocabulary(prEN17054),andonbreederdocuments. Provider Cryptographicmodules(prEN419221-5),Biometrics Server Signing(prEN419241-1),ProtectionProfile for Trust Service European StandardsnotablyonTrustworthy SystemsSupporting manufacturers. In2018,CEN/TC 224willcontinuetodevelop security technology, conformity assessmentbodyandsoftware providers fromthesupplysidesuchascardmanufacturers, Citizen, Transport, Banking,e-Health,aswellConsumersand multi-sectoral environmentinvolvessectorssuchasGovernment/ personal devices,systems,operationsandprivacy. CEN/TC 224 interoperability andsecurityofpersonalidentificationitsrelated CEN/TC 224developsstandardsfor strengtheningthe financial services. ID managementandthecontactlessinterface, thatareusedin They havethusfound theirwayintootherapplications,suchas can beusedfor anyapplicationdesignedtoresidewithintheSE. we developaregenericandapplication-agnostic. Assuchthey and operationofservicesmakingusetheSE.Thespecifications specifications betweensuchentities for thesecureprovisioning management. Italsospansinterfaces,proceduresandprotocol specifications betweentheSEandotherentitiesusedinits (IoT). Ourworkconsiderstheinterface,proceduresandprotocol in telecommunicationsystemsincludingtheInternetofThings Element (SE)anditsinterfacewiththeoutsideworldfor use development andmaintenanceofspecifications for theSecure ETSI’s SmartCardPlatform committee(TC SCP)considersthe published. Thisincludesfiveparts: SC 17-Cardsandpersonalidentification.ISO12812havebeen Mobile paymentsWG —ISOTC68/SC7/WG10 andISO/IECJTC1 CEN ETSI ISO ISO 12812-5:MobilePayments toBusinesses ISO 12812-4:MobilePayments toPersons ISO 12812-3:Financial ApplicationManagement Services ISO 12812-2:Securityanddataprotectionfor MobileFinancial ISO 12812-1:GeneralFramework

Trust and privacy in IoT and mobile applications are crucial financial inclusion. The FocusGroup will investigate the network market drivers. Our new-generation Smart Secure Platform (SSP) security andprotocol requirements for DFC, security measures for will contribute significantly to achieving these goals. Technical prevention of counterfeiting as well as interoperability of digital realization of the SSP consists of two deliverables, constituting fiat currencywith other digital currencies and payment systems. the first parts in a multi-part specification. Our first deliverable http://itu.int/en/ITU-T/focusgroups/dfc ITU-T SG13 approved two addresses generic portions of the SSP, regardless of its form factor Recommendations on secure mobile payments and mobile and the physical interfaces it supports. The second will address a banking solutions.–Recommendation ITU-T Y.2740 elaborates specific class of the SSP – the SSP integrated on a System on Chip on approaches to develop system security for mobile commerce (SoC). and mobile banking . It describes the security requirements for the mobile commerce and the mobile banking systems, based ITU-T on four specified security levels.–Recommendation ITU-T Y.2741 specifies the general architecture of a security solution for mobile ITU-T SG3 is responsible, inter alia, for studying international commerce and mobile banking in modern telecommunication telecommunication/ICT policy and economic issues and tariff and networks. accounting matters (including costing principles and methodologies), with a view to informing the development of enabling regulatory W3C models and frameworks. SG3 has launched work in the area of tariffs, economic and policy issues pertaining to Mobile Financial The open web platform offers tremendous potential as the driver Services (MFS) over the past couple of years, including charging for behind the transformation of the web Payments industry. The MFS, Mobile Financial Services Transaction Cost Model, Consumer platform forms the foundation of how online and in-store payments Protection in MFS and Interoperability for Competition in Mobile can be made easy on the web in the future. See https://www. Financial Services. w3.org/Payments/

Focus Group Digital Financial Services (FG DFS) has completed The web payments working group , chartered to make payments its work on the barriers to mobile payments and mobile financial easier and more secure on the web, through the development services in developing countries. The deliverables address the DFS of new web standard protocols and APIs related to the initiation, ecosystem challenges and provide best practices for consumer confirmation, and completion of a payment. This serves to increase protection regulators, key performance indicators for quality of interoperability between payer and payee systems. The group service for DFS and merchant acceptance for DFS. There are also is chartered to standardise programming interfaces, not user deliverables related to: interfaces and not a new digital payment scheme. See https://www. w3.org/Payments/WG/ • the interoperability of DFS payment systems, • architecture for DFS payments, The web payments interest group, chartered to provide a forum • the definitions used in DFS (see glossary on DFS) for web payments technical discussions to identify use-cases • security for DFS, and requirements for existing and/or new specifications to ease • best practices for regulators for competition issues with regard payments on the web for users (payers) and merchants (payees). to fair access to telecommunication infrastructure for DFS It is also chartered to establish a common ground for payment providers, service providers on the web platform. See https://www.w3.org/ • data privacy issues in DFS, Payments/IG/ • role of postal networks in DFS Other chartered groups (doing standards) are of course coordinated • competition issues in Digital Financial Services closely with web payments, such as security, crypto, privacy or • enhancing digital credit to avoid cashing out. authentication (also accessibility and internationalisation) and a In addition FG DFS produced some 85 recommendations for number of other community-driven groups at W3C are doing work

policymakers and DFS stakeholders to address the challenges in related to payments, or that will improve the web overall including MARKET SINGLE DIGITAL THE FOR INNOVATION order to scale up DFS services and create a level playing field for payments. These include: the growth of DFS ecosystem.https://itu.int/en/ITU-T/focusgroups/ • the Interledger payments community group, which seeks to dfs/Pages/deliverables.aspx 2019

connect the many payment networks (ledgers) around the world • The Financial Inclusion Global Initiative (FIGI) was set up jointly by via the web, ITU, World Bank, Bank for International Settlements (BIS) and the • the financial industry business ontology (FIBO) community group, Bill & Melinda Gates Foundation. The main objective of FIGI is to which is developing extensions to schema.org related to financial implement the recommendations of the FG DFS, the high level industries, principles of the Payment Aspects of Financial Inclusion (PAFI) report • the Blockchain Community Group, which is studying and of the World Bank and the BIS at a country level over the next three evaluating technologies related to blockchain, and use-cases years.Three working groups have been set up under FIGI to support such as interbank communications. the country implementations and develop technical guidelines and requirements for standards for digital financial services: NEXO AND EPCNEXO

• Security, Infrastructure and Trust NEXO and EPCNEXO and the European Payment Council (EPC) • Digital Identity currently focus on the protocols for card payment protocols in • Electronic Merchants Payment Acceptance the Eurozone and aim to replace the current mess of proprietary protocols. The EPC is also involved in SEPA and sees iteself as the A new ITU-T Focus Group on Digital Currency including Digital decision-making and coordination body for the European banking

Fiat Currency (FG DFC) has been set up to consider the use of STANDARDISATION ICT FOR PLAN ROLLING industry in relation to payments distributed ledger technology to support digital fiat currency for 95 96 96 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET existing standards. important asthe payment market isglobalasaremost the market. Aglobalview on standardsin these areasis series ofstandardswouldbebeneficialtoallplayersin structures andcommonsecuritystandards.A a diversitywhichmaypreventtheuseofcommoninfra- ardised by alargenumberoforganisations.Thiscreates Card, internetandmobilepaymentsarealreadystand- and transparency. cessibility, management and portability of customer data, should inparticularbeaddressed:security, accessandac- some stakeholders believethatthefollowing issues In generalregardingcard,internetandmobilepayments, ADDITIONAL INFORMATION national standards. ber States,asGermanyandFrance, areplanningtoadopt type ofdocumentsinpublicadministrations.SomeMem- could alsobeofinterestfor digitalpreservationofother The resultingstandardsfor digitalpreservationoffilms flows anddata formats for preservationofdigitalfilms. standards thatdescribethemostefficientdigital work- The filmheritagesectorwouldbenefitfromEuropean standards. itised cinema.Thosethathavedoneituseddiverging implementing digitalworkflows topreservedigitalordig- 3 October 2014, shows that very few Member States are application reportonthisrecommendation,published ensure preservationofcinematographicworks.Thefourth dation onfilmheritagerecommendedMemberStatesto The 2005EuropeanParliament andCouncilRecommen- POLICY OBJECTIVES REPORT EC PERSPECTIVE AND PROGRESS REFERENCES POLICY AND LEGISLATION DIGITAL CINEMA PRESERVATION OF • • • cy-in-the-digital-era?lang=en lights/council-addresses-european-audiovisual-poli- http://www.consilium.europa.eu/homepage/high- 2014 Policy intheDigitalEra”adoptedon25November Council conclusionson“EuropeanAudio-visual pressdata/en/educ/117799.pdf http://www.consilium.europa.eu/uedocs/cms_data/docs/ adopted inNovember 2010 including thechallengesofdigitalera”, Council Conclusionson“Europeanfilmheritage, do?uri=CELEX:32005H0865:EN:NOT http://eurlex.europa.eu/LexUriServ/LexUriServ. OJ L323of9.12.2005,p.57. and thecompetitivenessofrelatedindustrialactivities, of theCouncil16November 2005onfilmheritage Recommendation oftheEuropeanParliament and

• 4th Application report of the Film Heri- tage Recommendation, from 2.10.2014 ACTIVITIES AND https://ec.europa.eu/digital-agenda/en/news/ european-commissions-report-film-heritage ADDITIONAL INFORMATION • Archival Policy of the Swedish Film Institute http://www.sfi.se/Global/Filmarkivet/Policy%20of%20 RELATED STANDARDISATION the%20Archival%20Film%20Collections%20of%20 ACTIVITIES the%20Swedish%20Film%20Institute%20(2012).pdf • British Film Institute Strategy “2012-2017” Film CEN

forever CEN/TC 457 ‘Digital preservation of cinematographic works’ has http://www.bfi.org.uk/about-bfi/policy-strategy/ been created late 2017, with a first meeting early 2018. The scope film-forever of the TC includes the definition and standardization of digital • Results of the EU-funded research project EDCine long-term archive formats for cinematographic works. In addition, ftp://ftp.cordis.europa.eu/pub/ist/docs/ka4/au_concerta- methods for ensuring data integrity and quality shall be specified. A European standard specifying a data structure and a set of tion_1006_edcine_en.pdf http://ec.europa.eu/avpolicy/ file formats for long term archiving of digital movies should be docs/reg/cinema/june09/edcine.pdf developed. The project will be based on existing standards as the • Recommendations from the International Federation data structure will be organized as archive information package of Film Archives (FIAF): (AIP) according to the Open Archival Information System (OAIS) • FIAF Technical Commission Recommendation standard defined in ISO 14721:2012. The standard is applicable for on the deposit and acquisition of D-Cinema digitized analogue films as well as digital born content. Reference software to guarantee interoperability amongst vendors and elements for long-term preservation and heritage institutions shall be developed. access

http://www.fiafnet.org/commissions/TC%20 OAIS

docs/D-Cinema%20deposit%20specifica- OAIS(Open Archive Information System) — ISO 14721:2012 tions%20v1%200%202010-09-02%20 http://www.iso.org/iso/iso_catalogue/catalogue_ics/catalogue_detail_ final%201.pdf ics.htm?csnumber=57284 • FIAF Technical Commission Recommendation on the Principles of Digital Archiving GERMANY http://www.fiafnet.org/commissions/TC%20 Germany has started standardization activities at national level to docs/Digital%20Preservation%20Princi- produce one technical report on digitalization of analogue films (DIN ples%20v1%201.pdf SPEC 15587 “Guidelines for digitization of cinematographic film”). It gives guidelines for the digitalization to make a digital preservation possible. The Draft has been out for Enquiry and will be published shortly. It will be revised according to the results of CEN/TC 457’s REQUESTED ACTIONS work.

Action 1: SDOs to develop and adopt a European stand- CST/FRAUNHOFER INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION ard and the related guidelines on preservation of digital CST/Fraunhofer started a new «Society of Motion Picture and films, based on existing standardisation activities at na- Television Engineers» (SMPTE) activity for a mezzanine file format tional and international level. of digitised movies based on the interoperable master format (IMF) 2019 which can be extended to a preservation format of digital films •

Action 2: SDOS to promote awareness and implementation of the European standard among relevant stakeholders (e.g. European film heritage institutions). Relevant stakeholders are invited to participate in the development of standards within CEN/TC 457 ‘Digital preservation of cinematographic works’. CEN/TC 457 will ensure a proper information exchange between stakeholders and will actively seek cooperation. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

97 98 98 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET pened inbusinessoperations. summarizing invariouswaystherecordingofwhathap- erage transparencyfor investors.Ingeneral,“reporting”is are guidedintotransparencyreportingobligationstolev- the entirefinancialsector, whilestocklistedcompanies resulting insupervisoryreportingobligationsimposedon the impactofdigitalisationonsystemicriskmanagement, In parallel, regulatoryefforts aretryingto keep pacewith such arapidlytransforming industry. It’s achallengetofind therightstandardisationaxisin way. enables compliance withfinanciallawsin acost-effective ers, underpinstrustofconsumers,boostsinnovation and exchange amongfinancialserviceproviders, lowers barri- technical specificationsenablesseamlessinformation tive Europeanfinancialsector. Theuseofstandardsand to supportandfoster a morecompetitiveandinnova- Business operationsbenefitfromstandardisedsolutions nication flows onfinancialdata. These changesagainimpactbusinessoperationcommu- traditionally associatedwiththefinancialservicessector. software, technologyandbusinesspracticesbeyondthose market, butalsopioneeraninnovative culture,introducing money. They not only bring new financial servicesto the the waywesave,borrow, invest,spendandprotectour “Fintech” innovators and entrepreneurs areredefining past few years. tries haveseenprofound technology-ledchangesover the ness models.Thefinancialservicesandinsuranceindus- and emergingtrendssuchasdigitalisation new busi- crucial andsystemiccentralrole,beingaffected by new a automated andcomplex.Thefinancialsectorisplaying and companiesworldwideisbecomingmore The wayfinancialdataisexchangedacrossinstitutions POLICY OBJECTIVES POLICY AND LEGISLATION STANDARDIZATION REGTECH FINTECH AND tail Financial Services. into consideration, andsoisthe2017ActionPlan for Re- package adopted in 2016 takes technological innovations per-based. ThenewCapitalRequirement RegulationCRR2 documents thesamelegalstatus asthosethatarepa- es Regulationcangivee-transactions andothere-signed July 2016,theElectronicIdentification and Trust Servic- directive and the useof electronic identification. Since ed suchasamendmentstotheAnti-MoneyLaundering Some regulatoryadjustmentshavealreadybeenadopt- address thistransformation andenableinnovation. imentation frameworks(orsandboxes)exploredto help reviewed atEUlevelandtheconceptofregulatoryexper- kets andregulation.Theexistinglegal frameworkisbeing lenging existing financial services business models, mar- Fintech start-upsappearwithinnovative solutionschal- $22.3bn, fivetimeshigherthanin2013. made massiveinvestments,growing by 75%in2015to trends havegrabbedtheattentionofinvestorswho branches, comparedto52%ofUSbankcustomers.These Northern Europeans)prefer tousedigitalover physical ital channels:over 58%ofWestern Europeans(85%for Europe, therehasbeenconsiderableuptake ofnewdig- respond to new consumer needs and behaviours. Across new ecosystem,competewithbusinessmodelsand es toadjustanewenvironment,findplaceinthis effort andmoneytoadapt theirtechnologyandprocess- lose orgainfromtheFintech revolutionandinvesthuge Traditional financialinstitutionsrealizetheyhavealotto ligations. linking between regulation and supervisory reporting ob- tionary definitionsonaEuropeanlevelandenabledigital obligations. It’s imperativetostandardiseregulatorydic- and understandingthedetailsofsupervisoryreporting pervisor whilemaintainingcontrolofbusinessoperations ing amongothersdigitalwaystoshrinkthetime-to-su- Regtech” initiativesarerampingupinthisdomain,seek- needs tobereported. insufficient standardisationandlackofclarityonwhat ping reportingrequirements,butinreality, moredueto burdensome duetopotentiallyduplicativeandoverlap- Current reportingobligationsareperceivedascostlyand financial stability, investorprotectionandfaircompetition. risk, andmarket oversight andensureorderly markets, pervision offinancialinstitutions,monitoringsystemic Access tostandardiseddataisessentialperform su- POLICY OBJECTIVES

Following several public consultations regarding financial gle electronic reporting format (ESEF) for the preparation services and the EU Parliament report on blockchain and of annual financial reports in a single electronic report- virtual currencies, the Commission has set-up a horizontal ing format that will take effect from 1 January 2020. Financial Technology Task Force to explore the impact of This task is specifically mentioned in Directive 2013/50/ new financial technologies on consumers and business- EU: “ESMA should develop draft technical regulatory es and the possible risks for financial stability. One of the standards, for adoption by the Commission, to specify the work streams of the Task Force focuses on Interoperability electronic reporting format, with due reference to current and Standardisation. and future technological options, such as eXtensible Business Reporting Language (XBRL)”..The extensible In parallel, and in relation to the need for more harmo- Business Reporting Language 2.1 was identified by the nised supervisory reporting, in its Communication on the Commission[1] for referencing in public procurement CfE: “EU regulatory framework for financial services” the according to the provisions of Regulation (EU) 1025/2012 Commission committed to investigate and address the on European standardisation. concerns around the costs and complexity of reporting by undertaking a review of reporting requirements in the fi- The Commission launched the Financial Data Standardi- nancial sector. This work is performed within the ongoing sation Project in 2016, to quantitatively study the findings financial data standardisation (FDS) project which will proof the aforementioned Call for Evidence. The deliverables duce a comprehensive mapping of reporting requirements of the project expose the need to define once and move and aims to develop a common language on financial towards one ‘ Regtech Data Dictionary’. data. This initiative forms a key contribution to the Com- mission’s Better Regulation agenda and the Regulatory The Commission adopted the FinTech Action Plan on 7 Fitness and Performance (REFIT) programme, which en- March 2018 with a section “Increasing competition and sures that EU Legislation delivers results for citizens and cooperation between market players through common businesses effectively, efficiently and at minimum cost. standards and interoperable solutions” detailing different actions. EC PERSPECTIVEAND PROGRESS REPORT REFERENCES

The interoperability and standards work stream of the • Directive 2013/50/EU (revision of the Trans- FinTech task force has kicked off in January 2017. A con- parency Directive 2004/109/EC) aims to ensure sultation on FinTech took place from 23 March to 15 June transparency of information for investors through 2017. The results have been published during the sum- a regular flow of disclosure of periodic and ongoing mer 2017. regulated information and the dissemination of such information to the public. Regulated information Since 2012, the European securities and market authority consists of financial reports, information on major INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION (ESMA) defines, on a yearly basis, European common en- holdings of voting rights and information disclosed forcement priorities (ECEP) in order to promote the consis- pursuant to the Market Abuse Directive (2003/6/EC). tent application of European securities and markets leg- • Commission Communication on the CfE: EU reg- 2019 • islation and the IFRS, and especially the provisions of the ulatory framework for financial services of 23 Transparency Directive. Those priorities are a key focus of November 2016 the examination of issuers’ financial statements. They are • Commission Staff Working Document on the made public so that listed companies and their auditors Call for Evidence on EU financial services of 23 take due account of these areas when preparing and au- November 2016 to assess the cumulative effect diting IFRS financial statements. of the new financial sector rules put in place since the crisis In terms of regulatory technical standards (RTS), ESMA • The Commission sets up an internal task force prepared draft RTS with respect to the operation of a on FinTech European electronic access point at EU level. The access • Ministerial Declaration on eGovernment – the point will be a web-portal for the provision of easy and Tallinn Declaration https://ec.europa.eu/digital-sin- fast access to regulated information stored by all offi- gle-market/en/blog/european-commission-sets-inter-

cially appointed mechanisms. ESMA is also pursuing the nal-task-force-financial-technology STANDARDISATION ICT FOR PLAN ROLLING development of a draft RTS to specify the European sin- • The Parliament has written a report on the influ- 99 100 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET laries methodologywillbeusedasaguideline. fine once”principle.TheEUISA²ProgrammeCore Vocabu- Regulation and Supervisory Reporting following the “de- uniquely definedandprovides alinkingmethodbetween ‘Regtech DataDictionary’. pdf Fintech_CEN_Mapping_Report_CEN_report_publication. ftp://ftp.cencenelec.eu/CEN/WhatWeDo/Fields/Services/ blockchain). erence architecturesbasedonnewtechnologies(suchas missing standards,APIs,interoperabilityservices,andref- isation landscape,identify standardisation gaps,develop chain. coordination withOpenSourceProjectsworkingonBlock- Setting Organisations(suchasISO).Alsoensureproper thorities, ForaConsortia,Industry, andwithStandards ardisation, withCEN/CENELEC,EuropeanSupervisoryAu- ACTION 7 ACTION 6 ACTION 5 ACTION 4 ACTION 3 ACTION 2 ACTION 1 dating theRegtechDataDictionary’. work onSupervisoryReporting, contributingtoandvali- without compromisingitsobjectives. streamline andsimplifythesupervisoryreportingprocess tions (a‘RegtechDataDictionary’)couldbeusedtofurther works tothe‘RegtechDataDictionary’ REQUESTED ACTIONS • • •

publications/180308-action-plan-fintech_en Tech ActionPlanhttps://ec.europa.eu/info/ The CommissionpublishedaFin- nal-task-force-financial-technology gle-market/en/blog/european-commission-sets-inter- Financial Technology https://ec.europa.eu/digital-sin- The CommissionsetupaninternalTask Forceon finance-consultations-2017-fintech_en sultation onFinTech https://ec.europa.eu/info/ The Commissionhaslaunchedapubliccon- dure.do?lang=&reference=2016/2243(INI) http://www.europarl.europa.eu/oeil/popups/ficheproce- ence oftechnologyonthefuturefinancialsector

Develop one ‘Regtech Data Dictionary’ which is Develop one‘RegtechDataDictionary’whichis Ensure EUlevelcoordinationonFinTech stand- Create anexternalsubjectmatter expertsnet-

Set up a governance structure to maintain the Set upagovernance structuretomaintainthe Finalize themappingofpresentstandard- Assessment ofhow harmoniseddatadefini-

Map existingsupervisoryreportingframe-

and otheraccounts. a Europeanopenbankingeco-systemcovering payment and theGeneralDataProtectionRegulationasabasisfor that arecompliantwiththePayment ServicesDirective 2019, standardised application programming interfaces port jointefforts by market playerstodevelop, by mid- in regardtoAction8andtheTallinn Declaration. and accessibledigitallytoreduceadministrativeburdens, Format tomake companydatacomparable,transparent implementation oftheESMAEuropeanSingleElectronic sibilities ofStandardBusinessReportinginviewthe ACTION 10 ACTION 9 ACTION 8 sation atEUlevel. parts should be developed in order to achieve standardi- be marked up. The taxonomy for these newly marked up other regulatedinformation oflistedcompaniesshould yet uncovered) partsoftheannualfinancialreportand the Transparency Directive.Inthiscontext,additional (i.e. reporting (actuallyinlineXBRL)of listed companies under ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND • • • • • privacy aspects. methods, techniquesandguidelinesto addressbothsecurityand standardization solutionsrelevanttoFinTech, includinggeneric Furthermore, ISO/IECJTC 1/SC27«ITSecuritytechniques»develops to thegrowing needfor dataandtechnologystandards. further engagewiththeFinTech communityandprovide response new AdvisorGroup:theFinTech Technical AdvisoryGroup (TAG), to industry messagescheme».Moreover, ISO/TC 68 hascreateda maintenance ofISO20022«Financial services-Universalfinancial ISO/TC 68isnotablyresponsiblefor thedevelopmentand with thefollowing sub-committees: banking, securitiesandotherfinancialservices,relevantto FinTech, ISO/TC 68“Financial Services”developstandards inthefieldof ISO AND IEC Information exchangefor financialservices Reference datafor financialservices Core banking Securities andrelatedfinancialinstruments Financial services,security

ESMA shallcontinueextendingtheXBRL-based TheCommissionshallfurtherexplorepos- TheCommissionencouragesandwillsup- EUROFILING XBRL INTERNATIONAL

Eurofiling is a collaborative environment created in 2005, bringing Base specifications and related resources: together the public and private sector: Regulators, Supervisors, http://www.xbrl.org/ financial institutions, providers, academic and private individuals. XBRL International is currently developing a syntax-independent The common theme is European and National regulatory reporting version of XBRL: the open information model. This will facilitate the versus the financial ecosystem. Eurofiling’s objective is to improve exchange of information between different systems, without loss of collaboration and awareness to leverage interoperability. The the agreed semantics. Eurofiling community gathers in “Workshops” dedicated to interoperability in dictionaries, data point modelling, reporting XBRL EUROPE standards, taxonomies, related know-how, academic research, interchange of experiences, future changes, best practices and XBRL Europe is a non-profit organization and has been set up to materials for supervisory reporting frameworks. foster European XBRL efforts and to implement and share common XBRL projects between its members and to liaise with European Eurofiling is governed by the Board of Eurofiling Foundation p.f. authorities and organizations. XBRL Europe has existing working Standardisation resources on Supervisory Reporting: groups on: http://www.eurofiling.info • supervisory reporting (Corep/Finrep) • SBR (tax, annual reports, statistics) CEN/WS XBRL http://xbrleurope.org CEN/WS XBRL: CEN workshop on improving transparency in financial IFRS and business reporting, including CWA 16744-3:2014 (European DPM-based XBRL taxonomy architecture), CWA 16746- International Financial Reporting Standards taxonomies and related 1:2014 (standard regulatory roll-out package for better adoption: resources: XBRL supervisory roll-out guide) and CWA 16746-2:2014 (standard http://www.ifrs.org/XBRL/Resources/Pages/Resources.aspx regulatory roll-out package for better adoption: handbook for declarers). IASB

International Financial Reporting Standards taxonomies and CEN related resources: CEN established the CEN/BT WG 220 ‘Fintech’ in May 2017 to http://www.ifrs.org/XBRL/Resources/Pages/Resources.aspx notably map the present standardization landscape. The mapping will provide an opportunity to identify European, international and national standards and other initiatives related to Fintech, with the potential to release growth and innovation in the financial sector, ADDITIONAL INFORMATION evaluate their market impact and facilitate new paths to increase the competitiveness of the Fintech sector. CEN will further engage XBRL allows governments, regulators, institutions, private with financial services and insurance industries, Fintech start-ups sector, etc. to build vocabularies and rules (called taxon- and technology developers to define a comprehensive analysis of omies) to report on different subjects, like the financial Fintech-related topics. position, performance and economic viability of business- In the follow-up to this study, CEN will look into new standards es, sustainability, gov-to-gov repoting, mortgage report- and supporting protocols for the broad adoption and use of new ing and so on. XBRL permits the publication of structured technologies which contribute to the establishment of industry, consumer and market confidence. digital financial reports, specifically matching predefined INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION taxonomies. These may then be processed and retrieved ITU-T by market participants, including analysts, supervisors, en-

terprise regulators, tax offices, clients, suppliers, creditors 2019 ITU-T Focus Group on Digital Financial Services (FG DFS) for • Financial Inclusion (FG-DFS) closed in December 2016 with 85 and investors. policy recommendations and 28 supporting thematic reports.

In May 2017, ITU-T created a new Focus Group on Digital The Netherlands standard business reporting (SBR) pro- Currency including Digital Fiat Currency (FG DFC): https://itu.int/ gram, using XBRL taxonomies for business-to-government en/ITU-T/focusgroups/dfc and a new Focus Group on Application (tax-filings, annual accounts, statistics), business-to-busi- of Distributed Ledger Technology (FG DLT): https://itu.int/en/ITU-T/ ness (especially Banks) and government-to-business in- focusgroups/dlt teractions: see http://www.sbr-nl.nl/english/. In September 2017, ITU-T SG17 started new work on Security framework of open platform for FinTech services: https://itu.int/en/ITU-T/studygroups/2017-2020/17 ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

101 102 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET fraud andcompliancecosts facilitatingauditing. as thecompaniesthey’reregulating, thereby reducing it canprovide regulatorswiththesameviewintodata thermore, from a regulatory and supervisory point of view, Organisation -DAO), andhenceimpact labourrights.Fur- and ofcompanies(conceptDecentralisedAutonomous also transform thegovernance of privateorganisations maintenance historyoftheitem) andmuchmore.Itmay conditions ofwork,onmaterialcompositionorthe industrial supplychains(e.g.onsocial&environmental contracting, supplychainmanagement, traceabilityalong It hasalsogreatpotentialfor theprivatesector, intrading, the GDPR. eID. Provisions mustbetaken atallstagestocomplywith chain of devices, manage intellectual property rights and or thesecuritycertificationoflinksinanInternetThings eHealth andeGovernment, healthrecords,landregistries possible applicationstodeliversocialgoodsinthefieldof manage transactionsinacontrolledmanner, withmany Blockchain isapromisingtechnologytosharedataand access totheirdata). securely sharee-healthrecordsanddecidewhotogrant information andshare data (e.g.empowering patientsto by redefiningthewayweoperatetransactions,access technology, it could lead to a major political innovation to theriseofInternetinearly90s.Morethana considered afoundational technologythatsomecompare efit andpotentiallytransform many otherindustries.Itis cause ofitsearly usecasebitcoin,blockchain may ben- While theFinTech industryhasbeenanearlyadopterbe- 38 VC. 2018 hasseen$6.3bninvestedinICOsand$885mnfor vices beyondthefinancialsector.of ThefirstSemester ture for trusted, decentralised and disintermediated ser- Blockchain hasgreatpotentialinproviding aninfrastruc - POLICY OBJECTIVES POLICY AND LEGISLATION TECHNOLOGIES DIGITAL LEDGER DISTRIBUTED BLOCKCHAIN AND 38 Out Today, 6March2017 Miles, 6Trends From CoinDesk’s New2017State ofBlockchain CoinDesk’s StateofBlockchain 2017Reportascitedby Bradley

the higheststandardsofsecurity. es, throughinteroperabilityandopeninterfaceswith that willsupportthedeliveryofcross-borderpublicservic- lishment of a European blockchain services infrastructure ing, throughajointdeclarationtocooperateintheestab- nership waslaunched,with22Europeancountriesagree- On the10thofApril2018,EuropeanBlockchain Part- blockchain basedservicesinEurope. reports whichwillhelp european stakeholders to deploy chain andGDPR,orblockchain innovation, andproduce thematic workshopsonimportantsubjectssuchasBlock- tant tasks,itisgatheringthebestEuropeanexpertsin applications of blockchain technology. Among its impor- regulatory discussions about the future development and vate stakeholders andpublicauthoritiesintechnical Observatory andForuminFebruary2018involvingpri- The EuropeanCommissionlaunchedtheEUBlockchain Application for Distributed LedgerTechnologies. engage andfollow the worksofITU-TFocusGroup on ised on 12and13ofSeptember2017.TheECwillalso workshop onblockchain standardisation hasbeenorgan- ute tothedevelopmentoffuturestandards.Apolicy Ledger Technologies in order to engage in and contrib- Technical Committee307 onBlockchain andDistributed The CommissionhasestablishedaliaisonAwithISO and maturegovernance models. trust, accountability, interoperability, regulatory certainty lenge for theEU.Existingdecentralisedenvironmentslack pliant and authenticated transaction system is a real chal- for theadventofanopen,trustworthy, transparent, com- actions anddataisexploding,settingtherightconditions In thecontextofaDSMwhereamountonlinetrans- parency, accessibility, monitoringandgovernance environment, ensuringappropriateinteroperability, trans- in asafe andfuture-prooftechnologicalregulatory public policy-makers would be to support innovation with- border andcrosssectortransactions.Theresponsibilityfor tion and interoperability that constitute obstaclestocross However, thisprocessishinderedby alackofharmonisa- REPORT EC PERSPECTIVE AND PROGRESS AND PROGRESS The European Commission has already invested more than € 80 million in projects supporting the use of block- ACTIVITIES AND chain in technical and societal areas. Up to € 300 million should be further invested until the end of the EU funding ADDITIONAL INFORMATION programme Horizon 2020. RELATED STANDARDISATION ACTIVITIES REFERENCES ISO

• Mid-Term Review on the implementation of the Digital ISO/TC 307: Blockchain and distributed ledger technologies: Single Market Strategy, COM(2017) 228 final https://www.iso.org/committee/6266604/x/catalogue/ https://ec.europa.eu/digital-single-market/en/news/ See the March 2-17 Roadmap for Blockchain Standards contributed digital-single-market-commission-calls-swift-adoption- to the TC by its secretariat, Standards Australia: key-proposals-and-maps-out-challenges www.standards.org.au/OurOrganisation/News/Documents/ • EU Blockchain Observatory and Forum Roadmap_for_Blockchain_Standards_report.pdf https://ec.europa.eu/digital-single-market/en/news/ TC 307 has under development a draft document ISO/AWI 22739: european-commission-launches-eu-blockchain-obser- «Blockchain and Distributed Ledger Technologies -- Terminology vatory-and-forum and Concepts.» • European Blockchain Partnership IEEE https://ec.europa.eu/digital-single-market/en/news/ european-countries-join-blockchain-partnership IEEE has standards and pre-standards activities relevant to blockchain, including a new horizontal standards working group on developing a blockchain framework for different applications, including blockchain data models, IoT, agriculture, and autonomous REQUESTED ACTIONS vehicles, as well as vertical standards activities focusing on blockchain for healthcare, energy and connected vehicles. IEEE also ACTION 1 Taking into account the results from the EU focuses on a pre-standardization project on digital inclusion and Blockchain Observatory, the standardisation community agency, which leverages blockchain technology. should analyse possible standardisation needs and reflect https://ieeesa.io/rp-blockchain on best way to achieve them. ITU-T

ACTION 2 Regularly update the white paper on the EU ITU’s standardization activities in the field of distributed ledger perspective on blockchain/DLT standardisation. technologies are manifold. In early 2017, the membership adopted a report of the ITU-T Focus Group on Digital Financial Services (FG DFS) on distributed ledger technologies and financial inclusion. ACTION 3 Identify use cases which are relevant for the http://itu.int/en/ITU-T/focusgroups/dfs/Documents/201703/ITU_ EU (including EU regulatory requirements like from GDPR, FGDFS_Report-on-DLT-and-Financial-Inclusion.pdf ePrivacy, eIDAS, etc.) and submit them to global standard- INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION isation processes (ISO TC307 and ITU-T FG DLT). ITU established a new Focus Group on application of distributed ledger technology (FG DLT) with the aim to identify and analyse

ACTION 4 Identify actual blockchain/DLT implementa- DLT-based applications and services; draw up best practices and 2019 guidance, which support the implementation of those applications • tions in the EU and assess the need for standardisation, and services on a global scale; and propose a way forward for harmonisation and workforce training or adapation. related standardization work in ITU-T Study Groups. FG DLT will develop a standardization roadmap for interoperable DLT-based ACTION 5 Standardisation of the operation and reference services, taking into consideration the activities underway in ITU, implementation of permissioned distributed ledgers and other standards developing organizations, forums and groups. distributed applications, with the purpose of creating an Participation in FG DLT is open to any interested party, and the first meeting will take place in Geneva, 17-19 October 2017. open ecosystem of industrial interoperable solutions. http://itu.int/en/ITU-T/focusgroups/dlt ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

103 104 ROLLING PLAN FOR ICT STANDARDISATION • 2019 INNOVATION FOR THE DIGITAL SINGLE MARKET such asinterbankcommunications. and evaluatingtechnologiesrelatedto blockchain, anduse-cases W3C hasformed aBlockchain CommunityGroup,whichisstudying relationship. well asITU-TStudyGroupsworkingonDLT, intend to leveragethis ITU hascategory-AliaisonstatuswithISOTC307, andFG DLT, as http://itu.int/en/ITU-T/focusgroups/dfc/Pages/default.aspx and paymentsystems. interoperability ofdigitalfiatcurrencywithothercurrencies DFC, securitymeasuresfor preventionofcounterfeiting aswell will investigatethenetworksecurityandprotocolrequirementsfor support digitalfiatcurrency for financial inclusion.TheFocusGroup is expectedtoconsidertheuseofdistributedledgertechnology Group onDigitalCurrencyincludingFiat Currency(FG DFC) Finally, intheareaoffinancial applications,anewITU-TFocus threats toonlinevotingusingDLT. Identity Management,Securityassurancefor DLT andSecurity on DLT, Privacyandsecurityconsiderationsfor usingDLT datain Security capabilitiesandthreatsofDLT, SecurityServicesbased and requirementsfor digitalpaymentservicesbasedonDLT, It hasstartedworkon Securityarchitecturefor DLT, securitythreats https://itu.int/en/ITU-T/studygroups/2017-2020/17/Pages/q14.aspx reference at aspects ofdistributedledgertechnologies(DLT), seeitstermsof September 2017anewQuestion14/17workingonsecurity blockchain”, ITU-T StudyGroup17(Security)establishedin Following asuccessfulworkshopon“securityaspectsof http://itu.int/ITU-T/workprog/wp_item.aspx?isn=14282 in nextgenerationnetworkevolution”(Y.NGNe-BC-reqts). work itemon“Scenariosandcapabilityrequirementsofblockchain cloud computingandtrustednetworkinfrastructures)establisheda ITU-T StudyGroup13(Futurenetworks,withfocus onIMT-2020, http://itu.int/ITU-T/workprog/wp_item.aspx?isn=14071 “Requirements for distributedledgerservices”(F.DLS). ITU-T StudyGroup16(Multimedia)establishedaworkitemon http://itu.int/en/ITU-T/focusgroups/dpm Based DataManagement” based DataExchangeandSharingTechnology”, and“Blockchain reports providing an“OverviewofIoTandBlockchain”, “Blockchain- Interoperability andBlockchain. Itsdeliverableswillincludetechnical (FG DPM)hasestablishedaWorking GrouponDatasharing, and ManagementtosupportIoTSmartCities&Communities Operating underSG20,ITU-TFocusGrouponDataProcessing http://itu.int/ITU-T/workprog/wp_item.aspx?isn=14099 high-level requirements,framework,capabilitiesandusecases. and data),studyprovide relevantconcept,characteristics, IoT/SC&C applicationsandservices(includingIoTdevices,processes contribute tohow theblockchain-related technologiestoimprove will includeacomparativeanalysisofblockchain advantages, (provisional name:Y.IoT-BoT-fw)[1]. TheproposedRecommendation of blockchain ofthingsasdecentralizedserviceplatform” cities andcommunities(SC&C))hasinitiatedworkona“Framework Meanwhile, ITU-TStudyGroup20(Internetofthings(IoT)andsmart W3C

level, e.g. see DIN in this table. level, e.g.seeDINinthistable. CEN-CENELEC activitiesalsoaremirroredatthememberstate CEN/CENELEC website. Blockchain/DLT standardization. TheWhitePaper isavailableatthe to anyrelevantEuropeaninnovation, researchproject,impacting use cases,andwillfurtheridentifygivedueconsideration continue itsactivitieswiththeidentificationofrelevantEuropean presented it for considerationtoISO/TC 307.TheFocusGroupwill As oneoutcome,theFocusGrouphasdevelopedaWhitePaper and https://www.cencenelec.eu/news/articles/Pages/AR-2018-04.aspx Blockchain/DLT inEurope,whicharenotyetcovered by ISO/TC 307. International standardizationfor thesuccessfulimplementationof further specific Europeanstandardizationneedstobeaddressedby participation inISO/TC 307.TheFocusGrouphasalsoidentified work itemsinISO/TC 307andtoencouragefurtherEuropean and eIDAS),tomapthesestandardizationneedswiththecurrent needs (for exampleinthecontextofEUregulationssuchasGDPR Focus GrouphasbeentoidentifyspecificEuropeanstandardization and DistributedLedgerTechnologies. Thefirstobjectiveofthe CEN andCENELEChaveestablishedaFocusGrouponBlockchain https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder-Platform#Ledger More detailsoftheDINRGare available. to specifictechnologiesorimplementationaspects. RG hasaninterestindistributedledgertechnologies,itisnotlimited operate inatechnology-andsolution-neutralmanner, i.e.,whilethe development andoperationofexperimentalplatforms. DINRGwill the investigationofeconomicdriversandincentives connectivity-constrained networks.Othertopicsofinterestare decentralization orthataredifficulttorealizeinlocal,potentially focus ofDINRGisoninfrastructureservicesthatcanbenefitfrom resource/asset ownership management,andresourcediscovery. The as trustmanagement,identitynameresolution, open researchissuesindecentralizinginfrastructureservicessuch Internet InfrastructureResearchGroup (DINRG)willinvestigate Decentralized InternetInfrastructure(DIN).The A ResearchGroupisinformation intheIRTFontopicof presentation-slides-ken-holman See as alternativerepresentationsoftheir content (suchase-invoices). being appliedtodefinedblockchain-based serializationmethods, Existing OASISstandardsprojectswithe-commerceapplicationsare blockchains-ETSI ISGPDL. ETSI hassetupanIndustryStandardsGrouponpermissioned Value ofDistributedLedgerTechnology ETSI hasorganisedaworkshoponSecurityandTrust inICT: the and DLT. DIN hasestablishedworkingcommitteeNA043-02-04,Blockchain CEN CENELEC IETF OASIS ETSI DIN https://www.linkedin.com/pulse/bbiller-supply-chain-blockchain- IRTF

ADDITIONAL INFORMATION

One direction of blockchains technology innovation in recent years was towards secure persistent public data, eliminating the need for initial trust among involved stakeholders. The potential impact of such a fully decentralized and trust-less distributed ledger is considered enormous.

The clarification and mutual definition of several aspects of blockchain technology (such as blockchain interoperability, governance, trust, security of blockchain and of the underlying cryptographic mechanisms, blockchain compliance to legislation, impact of blockchain on different sectors, etc) are crucial prerequisites to introducing the technology to society .

INNOVATION FOR THE DIGITAL SINGLE MARKET MARKET SINGLE DIGITAL THE FOR INNOVATION

2019 • ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

105 106 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH SUSTAINABLE GROWTH The second factor is the digital transformation of the en- SMART GRIDS AND ergy sector. Big Data and the Internet of Things, 5G and artificial intelligence, smart grids and smart meters, smart SMART METERING homes, smart storage and smart charging data sharing platforms, block chain will be key drivers for a successful digitalisation of energy. To succeed, we will need to build POLICY AND LEGISLATION on achievement in the three pillars of the Digital Single POLICY OBJECTIVES Market – better access to digital goods and services, an environment where digital networks and services can The energy domain is entering an era of considerable prosper, and digital as a driver for growth. Energy and dig- changes, mainly driven by two major factors: the energy ital will come together most closely if we enable Europe- system becomes consumer-centric and the digital trans- an companies to deliver energy intelligent products and formation of the energy sector is ongoing. services across Europe without undue restrictions and if the energy sector actively contributes to horizontal Digital The first factor stems from energy itself and could be Single Market policies. The single energy market and the summarised as stakeholders becoming smarter. And this digital single market must go hand-in-hand, as in reality is not just about energy traders, producers and network they feed each other. operators trying to do their business more clean and efficient. Important policy milestones for this transformation Smart grids are a clear example of digital meeting ener- are the EU’s energy and climate targets for 2030 which gy, as they are about information exchange and making also underpin Europe’s leading role in the fight against cli- necessary data available to interested parties. Smart grids mate change: at least 40% domestic reduction in green- will enable improved energy efficiency and the integra- house gas emissions compared to 1990, at least 33% for tion of vast amounts of Renewable Energy Sources (RES), the share of renewable energy consumed in the EU, at decentralised generation and new loads such as electric least 27% improvement of energy efficiency and an elec- vehicles; provide an opportunity to boost the retail market tricity interconnection target of 10%. In this context, the competitiveness and worldwide technological leadership electricity networks have a central role to play. In 2012, of EU technology providers, and a platform for tradition- electricity represented 22% of the EU’s energy consump- al energy companies or new market entrants such as ICT

tion with renewables making up a share of 24% of gross companies, including SMEs, to develop new, innovative en- production i.e. almost a 3% increase on 2011, and will ergy services. That dynamic should enhance competition grow up to 55% in 2030(8), in line with the 2030 energy in the retail market, incentivise reductions in greenhouse and climate goals and with the Paris Agreement. gas emissions and provide an opportunity for economic growth. Also, the consumer position in the energy value chain is very different now compared to what it used to be. The consumer is not the passive end ring in this chain anymore, EC PERSPECTIVE AND PROGRESS paying numbly the bills of incumbent’s utilities. Instead, REPORT SUSTAINABLE GROWTH all of a sudden, he/she has the opportunity to choose between many energy suppliers and service providers to ob- Standards are needed to cover the communication needs 2019 • tain the best deal. Also he/she can opt for dynamic pricing of the grid management, balancing and interfacing with and decide when to consume, i.e. when the prices are low. the millions of new renewable sources, as well as stand- Furthermore, he/she can be really active player by provid- ards for the complex interactions of the new distributed ing services by himself/herself, e.g. flexibility to network energy market, and in special a transparent Demand Re- operators when they ask either to increase or decrease sponse scheme which is accessible for all consumers. consumption, if it is needed for system balancing or grid congestion management (demand response). And he/she Communication standards will also be crucial for the de- can be also a (micro) generator itself- the prosumer. ployment of electric cars and the building-up of smart cities. Harmonised communication protocols would provide standard components and interfaces giving ‘plug- and-play’ capability for any new entrant to the network, such as renewables or electric cars, or the use of open

architectures based on global communication standards. STANDARDISATION ICT FOR PLAN ROLLING To further promote interoperability, in addition to standardisation, testing and profiling should also be considered. 107 108 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH 40 39 interfaces andoftheECrecommended the statusofimplementationrequiredstandardised out ofsmartmeteringinMemberStatesandparticular standards andfunctionalitiesappliedinthelargescaleroll Task Force assessed during 2016 the interoperability, work onstandards.Consequently, EG1oftheSmartGrids take over andimplementtheresultsofExpertGroup1 ing whichindustryrepresentativesconfirmedtheirwillto services organised on 26 February 2015 in Brussels, dur- conclusions ofthevalidationconference theCommission The completionofthisworkwas equallyconfirmed by the teroperability anditstool;SmartGridInformation Security. el UserManualandFlexibilityManagement;SmartGridIn- Market ModelDevelopment;SmartGridArchitectureMod- Smart Gridsdeployment; OverviewMethodology;General of theM/490mandate:ExtendedSetStandardssupport reports andthussuccessfullycompletedtherequirements Grid Coordination Group pleted. InOctober2014theCEN/CENELEC/ETSI’s Smart Commission inMarch2011canbeconsideredascom- The mandateM/490giventoCEN-CENELEC-ETSI by the consumer associationsandotherrelevantstakeholders. ulatory agenciesandindustrialmarket actors,aswell nications, andmorethan350expertsfromnationalreg- stakeholders, frombothsectors–energyandtelecommu- more thanthirtyassociationsrepresentingallrelevant GROW, COMP, JUSTICE, JRC,RTDandSANTE,alongwith DGs areparticipating:ENERandCNECT(co-chair),CLIMA, under the provision of the Third Energy Package. the firststepstowards theimplementationofSmartGrids regulatory directionsatEuropeanlevelandtocoordinate mission toadvicetheEuropeanCommissiononpolicyand level istheSmartGridsTask Force,whichwas giventhe main coordinationreference for smartgridsat European solutions andstandardisationfor severalyearsnow. The The EChasbeenworkingtowards interoperabilityofthe tially conflicting. established whereinterestsarenotidenticalandpoten- ing theendconsumer)aseamlessenvironmentshouldbe utility network operators) and smart consumption (involv- grid management(ofrelevancetoutilityproducers,the ardisation worktakingintoaccountthatbetweensmart which needtobebroughttogetherconductthestand- A majorchallenge isengagingtherightstakeholders October 2015 report summarising the main findings was published in related totheprovision ofinformation toconsumers.A smart-grids-and-meters/smart-grids-task-force https://ec.europa.eu/energy/en/topics/markets-and-consumers/ Commission Recommendation 2012/148/EU 40 . (SG-CG) produced the following

39 functionalities functionalities

Nine Nine in energysystems. security propertiesofICT-based product orservices,used others .Specificschemescanbedevelopedtoverifythe assurance level,andastandardfor evaluation,among Each schemewillindicateaspecificproductorservice,an the creationofindividualEU-widecertificationschemes. framework isavoluntarymechanismthatwouldenable security Act’’).TheproposedEUcybersecuritycertification munication Technology cybersecuritycertification(‘’Cyber- “EU CybersecurityAgency”,andonInformation andCom- mission issuedaproposalfor aregulation onENISA,the In additionto the above, on 13September 2017 the Com- Force (ECSGTF). and continuetocooperatewiththeECSmartGridsTask ergy GridCoordinationGroup(CG-SEG)isthefocal point SEG: since end 2016, the CEN-CENELEC-ETSI Smart En- including thosefor privacy andsecurity.SG-CG isnow CG- ing UseCasesandanoverview oftechnicalrequirements terms, anoverview ofavailablestandards,SmartMeter- duced reference architecture(TR 50572), a glossary of successfully completeditsoriginalmandateandhaspro- lated totheSmartMeteringInfrastructure.Ithasalready multi-stakeholder groupoverlooks thestandardisationre- European CommissionissuedtheM441mandate.This ordination Group(CG-SM),whichwascreatedwhenthe Smart MetersisinthehandsofCo- The coordination of standardisation efforts related to agendas. between theEnergyUnionandDigitalSingleMarket directive atenergysectorlevelandalsofoster synergies egy on how to reinforce theimplementation of the NIS are developing a comprehensivesector-specificstrat- security. Forthelater, theSmartGridsTask Forceexperts for networkcodesfor demand-response,aswell ascyber- Clean EnergyPackage andspecifictothisissue,also of legislationcomplementarytothe(undernegotiation) ability andhelppreparethegroundfor thedevelopment formats andprocedureswiththeaimtoensureinteroper- ment ofelectricity(andgas)dataaccessandexchange Currently theTask Forceworkisdedicatedtothealign- Moreover, benefiting from valuable contributions from our • C (2013) 7243 Delivering the internal electricity stakeholders, the EC fostered the creation of a common market and making the most of public intervention; interoperability language called SAREF (Smart Appliances and accompanying SWD (2013) 442 Incorporating REFerence ontology), which became a standard of ETSI demand side flexibility, in particular demand response, and OneM2M (the Global initiative for Internet of Things in electricity markets standardisation) in 2015. This was a first step and we are • Recommendation COM 2012/148/EU on prepara- now moving forward in order to fully enable, on a technical tions for the roll-out of smart metering systems interoperability level, the smart grid and its demand-re- • COM(2012) 663 Making the internal energy market sponse mechanism. This work was supported via an EC work funded study, which delivered a live demo in the autumn • COM(2011) 202 Smart Grids: from innovation to of 2017 and final results and recommendations in July deployment 2018. The results of the study will be incorporated in the • COM(2010) 245 “A Digital Agenda for Europe”: standards along the full demand-side flexibility chain. In actions 71 & 73 address respectively minimum func- parallel work is ongoing to extend SAREF to other verti- tionalities to promote smart grid interoperability and cals (e.g. automotive, water, health, etc.) allowing thus the a common set of functionalities for smart meters and creation of a smart city interoperable ecosystem. Cooper- are directly related to the standardisation activities at ation with CEN and CENELEC is foreseen to further align CEN/CENELEC/ETSI. SAREF with the data models developed at ISO and IEC. • Directives 2009/72/EC and 2009/73/EC: Internal market in electricity and natural gas; Within the general framework of the Internet of Things • Directive 2009/29/EC amending Directive 2003/87/ and 5G, the EC is looking at all other communication as- EC so as to improve and extend the greenhouse gas pects and needs of smart energy and including the nec- emission allowance trading scheme of the Community; essary conditions in the development of said communica- • Directive 2009/28/EC of the European Parliament tion domains as well as aligning with the other domains and of the Council on the Use of Energy from renew- such as automotive, health, smart cities, etc. able sources. • Consolidated version of Directive 2003/87/EC of the See also the work of the International Agency on Energy, European Parliament and of the Council establishing particularly its recommendations in terms of interopera- a scheme for greenhouse gas emission allowance 41 bility . trading within the Community and amending Council Directive 96/61/EC42 • Mandates M/49043,M/44144 and M/46845 from EU/ REFERENCES EFTA to the ESOs • COM(2015) 192: A Digital Single Market Strategy for • COM(2017) 228 final: Mid-Term Review on the im- Europe plementation of the Digital Single Market Strategy - A • COM(2015) 339: Delivering a new deal for energy Connected Digital Single Market for All consumers • COM(2016) 861 Proposal for a revised electricity • Regulation (EU) 2016/679 on the protection of nat- SUSTAINABLE GROWTH regulation ural persons with regard to the processing of personal

• COM(2016) 864. Proposal for a revised electricity data and on the free movement of such data, and 2019 • Directive repealing Directive 95/46/EC (General Data Protection • COM(2016) 862 Proposal for a new regulation on Regulation) risk preparedness in the electricity sector • Regulation (EU) 2013/347 on guidelines for • Directive 2014/94/EU on the deployment of alterna- trans-European energy infrastructure tive fuels infrastructure • Directive 2012/27/EU on energy efficiency, amend- • Recommendation 2014/724/EU on the data ing Directives 2009/125/EC and 2010/30/EU and protection impact assessment template for smart grid repealing Directives 2004/8/EC and 2006/32/EC and smart metering systems

• COM(2014) 356 Benchmarking smart metering de- 42 http://eur-lex.europa.eu/legal-content/EN/TXT/?uri= ployment in the EU-27 with a focus on electricity; and CELEX:02003L0087-20140430 43 https://ec.europa.eu/energy/sites/ener/files/documents/2011_03_01_man- accompanying SWD(2014) 188 and SWD(2014) 189 date_m490_en.pdf 44 Standardisation mandate in the field of measuring instruments for the development of an open architecture for utility meters involving communi-

cation protocols enabling interoperability STANDARDISATION ICT FOR PLAN ROLLING 41 https://www.iea.org/publications/freepublications/publication/ 45 https://ec.europa.eu/energy/sites/ener/files/documents/ smartgrids_roadmap.pdf 2010_06_04_mandate_m468_en.pdf 109 110 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH of the NIS Directive. of theNISDirective. on energyhasbeencreatedundertheCooperationGroup Single Market agendas. In addition to this a Work Stream foster synergiesbetween theEnergyUnionandDigital tion oftheNISdirectiveatenergysectorlevelandalso gy-sector strategyonhow toreinforce theimplementa- ACTION 3 ACTION 2 ACTION 1 2019. in December2017andwillissuethefinalresultsQ1 ported onthestructure,scopeandprogressofgroups sharing consumer’s dataformat. TheCommission hasre- teroperability and common procedures for accessing and demand response, energy-specific cybersecurity andin- Task Forcetopreparethegroundfor network codeson groups (i.a.CEN/CENELECexperts)undertheSmartGrids the Commissionhaslaunchedthreestakeholder working smart gridsstandardsattheendof2014,inMay2017 the creationofasmartcityinteroperable ecosystem. verticals (e.g.automotive,water, health,etc.)allowing thus chain.In parallelworkisongoingtoextendSAREFother ed inthestandardsalongfulldemand-sideflexibility in July 2018.Theresults of thestudywillbeincorporat- autumn of2017andfinalresultsrecommendations an ECfundedstudy, which deliveredalivedemointhe mand-response mechanism.Thiswork wassupportedvia technical interoperabilitylevel,thesmartgridanditsde- we are now moving forward in order to fully enable, on a Things standardisation)in2015.Thiswasafirststepand of ETSIandOneM2M(theGlobalinitiativefor Internetof pliances REFerenceontology),whichbecameastandard mon interoperability language called SAREF (Smart Ap- our stakeholders, theECfostered thecreationofacom- REQUESTED ACTIONS • • • 2016/0379 (COD) market for- electricity(recast);COM/2016/0861final Proposal for aRegulationontheinternal final -2016/0380(COD) internal market inelectricity(recast);COM/2016/0864 Proposal for aDirectiveoncommonrulesfor the Digital SingleMarket COM(2016)176: ICTStandardisationPrioritiesfor the TheECisdevelopingacomprehensiveener- Benefiting from valuable contributions from Benefiting from valuable contributions from Based on the successful development of Basedonthesuccessfuldevelopmentof List ofincludedstandardsgroups: ture modelasdevelopedunderM/490. distributed energyresourcesandthesmartgridsarchitec- ards (theinterfaceusedfor smartgridcommunication), notably be undertaken in the context of H2-type stand- spective standardisationdeliverables.Thisactionshould zation efforts, toavoidseriousconflictsbetweentheirre- cooperation toensurecomplementaryparallelstandardi- ACTION 4 • • - - - Smart Meters - - - - Smart Grids ------Specifications and Logistics–ManualOfStandard Building European CommissionOffice forInfrastructure Smart Meters(CG-SM) CEN-CENELEC-ETSI CoordinationGroupon October 2015 Expert Group1–StandardsandInteroperability, metering -EuropeanSmartGridsTask Force applied inthelargescalerolloutofsmart Interoperability, Standards andFunctionalities Building automationandcontrolsystems(ISO) Building energymanagementsystem Smart EnergyGrids(CG-SEG) CEN-CENELEC-ETSI CoordinationGroupon lenges andrecommendations,December2014 Smart gridsecuritycertificationinEurope-Chal • • • • • • Workprogramme2017.pdf default.aspx SustainableEnergy/SmartGrids/Pages/ https://www.cencenelec.eu/standards/Sectors/ ment/SmartMeters/ ization/Fields/EnergySustainability/Manage- ftp://ftp.cencenelec.eu/EN/EuropeanStandard- CG-SM 2017Work Programme Pages/default.aspx SustainableEnergy/SmartMeters/ https://www.cencenelec.eu/standards/Sectors/ reports CG-SM “PrivacyandSecurityapproach” Final reportsofthe CG-SMunderM/411 finding thestandardsused; CG-SEG, whichisanextremelyusefultoolfor The InteroperabilityTool (IOP-Tool) ofthe CG-SEG reports “Set ofStandards”and“PrivacySecurity” and itsiteration; Final reportsofthe CG-SEGunderM/490 CEN, CENELEC, IEEE and OASIS to foster their

decentralized energy resource (DER) and substation automation. It shows the applicability and interrelationship between these two ACTIVITIES AND groups of standards. Furthermore, the Smart Grid Information Security approach has been followed to show the applicability of ADDITIONAL INFORMATION different standards on the selected, specific use cases for Smart Energy Grid deployments.

RELATED STANDARDISATION Regarding electromobility, a work programme and a list of relevant standards for the charging of electric vehicles was last updated in ACTIVITIES November 2014. Regarding charging points for electric vehicles of interest to the eMobility coordination group, and in support of the On the level of technical standardisation and coordi- implementation of the alternative fuels infrastructure Directive nation of work, CEN and CENELEC (notably through the 2014/94/EU, a new standardisation request was issued to the ESOs CEN-CENELEC-ETSI Coordination Group on Smart Energy in March 2015. ETSI and the oneM2M Partnership project are active Grids), IEEE and OASIS will foster their collaboration in- in the area of machine-to-machine (M2M) with some relation to cluding identifying whether there are serious conflicts be- smart grids. ETSI is also developing radio technologies for wireless tween their respective standardisation deliverables which interconnection in home automation networks with applications such as smart metering and energy control in the scope of the may have a negative impact on interoperability and the technology. market adoption of smart grid solutions. This especially concerns the relation between H2-type standards (nota- CENELEC bly EN 50491-12-1), the EN IEC 61850 series (Distributed CLC/TC 57 ‘Power systems management and associated Energy Resources), EN IEC 62746, EN IEC 61689-5, EN IEC information exchange’ develops European standards, in 62325 with IEEE Std 2030.5-2013 and OASIS OpenADR. collaboration with the IEC, for power systems control equipment and systems including EMS (Energy Management Systems), SCADA CEN, CENELEC, ETSI (Supervisory Control And Data Acquisition). CLC/TC 57 is providing At present mandate M/490 given to CEN-CENELEC-ETSI by the amendments to the ENs on ‘Communication networks and systems Commission in March 2011 can be considered as completed. for power utility automation’ (EN 61850 series). CLC/TC 57 will also The main outcomes are available at: http://www.cencenelec.eu/ publish European Standards related to the Application integration at standards/Sectors/SustainableEnergy/SmartGrids/Pages/default. electric utilities (prEN 61968 series), energy management system aspx application program interface (EMS-API) (prEN 61970 series) and on Power systems management and associated information The three ESOs have agreed to continue their collaboration in exchange (EN 62351 series). relation to smart grids following the completion of the work under

the standardisation request, under the CEN-CLC-ETSI Coordination CLC/TC 205 ‘Home and Building Electronic Systems (HBES)’ is Group on Smart Energy Grids (CG-SEG). This group will focus on responsible for the development of the EN 50491 series “General security and interoperability, follow up new developments in the requirements for Home and Building Electronic Systems (HBES) field of smart grids, and actively promote the results of its work at and Building Automation and Control Systems (BACS)”, and notably European and international levels. EN 50491-11 “Smart Metering. Application Specifications. Simple External Consumer Display”. CLC/TC 205 has also launched a new In this context, two reports have been prepared by the CG-SEG to work item on IoT Semantic Ontology Model Description’ (prEN maintain transverse consistency and promote continuous innovation 50090-6-2). in the field of Smart Grids: In 2018, CLC/TC 8X (System aspects of electrical energy supply) SUSTAINABLE SUSTAINABLE GROWTH Set of Standards report ftp://ftp.cencenelec.eu/EN/ will continue the development of the EN 50549 series (on EuropeanStandardization/Fields/EnergySustainability/SmartGrid/ Requirements for generating plants to be connected in parallel with SmartGridSetOfStandards.pdf: The Smart Grid Set of Standards distribution networks). The standards developed under that series 2019 report is the new release of the original “First set of standards” and are important as they could be used as a technical reference for • proposes an updated framework of standards which can support connection agreements between Distributed Networks Operators Smart Grids deployment in Europe. It provides a selection guide and electricity producers. In addition, these standards are supporting setting out, for the most common Smart Grid systems the relevant the Commission Regulation 2016/631/EU (Requirements for set of existing and upcoming standards to be considered, from Generators). CEN, CENELEC, ETSI and further from IEC, ISO, ITU or even coming from other bodies when needed. It also explains how these are able CLC/SR 118 ‘Smart Grid user interface’ will publish European to be used, where, and for which purpose. Standardization gaps Standards on “Systems interface between customer energy have been identified and the related standardization work program management system and the power management system“ has been defined. The results of these activities will be included in (notably prEN 62746-10-1 and -10-3 on ‘Open automated demand future releases of this report. response’).

Cyber Security and Privacy report ftp://ftp.cencenelec.eu/ CLC/TC 82 ‘Solar photovoltaic energy systems’, CLC/ 88 ‘Wind EN/EuropeanStandardization/Fields/EnergySustainability/ turbines’ and CLC/SR 117 ‘Solar thermal electric plants’ will continue SmartGrid/CyberSecurity-Privacy-Report.pdf: In this report, to develop European Standards on Electric Generation, in close security standardization specific to Smart Energy Grid and collaboration with the IEC. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING security standardization targeting generic standards are further CLC/TC 38 will continue to maintain the EN 61689 series on monitored and analysed with the focus on two specific use cases: Instrument transformers. 111 112 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH • • • • • • • • • • • • • • and smartmetering: IEC hasanumberoftechnicalcommitteesdealingwithsmartgrids IEC services. communication, ApplicationprotocolsandTransport andsecurity the EN13757serieswithstandardsonWired andWireless M-Bus distributed by theenergynetwork.CEN/TC 294willcomplement and remotereadingofmetersfor allkindoffluidsandenergies the standardizationofcommunicationinterfacesfor systems CEN/TC 294‘Communicationsystemsfor meters’dealswith CEN/TC 237–thestandardonultrasonicdomesticgasmeters CEN/TC 176–theseriesonheatmeters hot water; CEN/TC 92–theseriesonwatermetersfor coldpotablewaterand the revisionsofstandardsonfollowing topics: standardization. In2018,thesetechnicalcommitteeswillfinalize Measuring Instruments(2014/32/EU),relevanttoSmartGrid Standardization Request(M/541)intheframeofDirectiveon TC 237(Gasmeters)developstandardsinresponsetothe CEN/TC 92(Water meters),CEN/TC 176(Heatmeters)andCEN/ CEN equipment. overheating andmalfunctionofpower supplyandthe connected with theaimtopreservequalityandsafety aswelltoavoid after repairofelectricalequipment.Thesestandardswillapply Safety inLow Voltage distributionsystemsandonElectricalTest CLC/TC 85XwillfurtherdevelopEuropeanStandardsonElectrical and electromagneticquantities,aswelltheircalibrators.In2018, monitoring, generating,andanalysingsimplecomplexelectrical Standards for equipmentandsystemsfor measuring,testing, CLC/TC 85Xdevelops,incollaborationwiththeIEC,European appliances interworking’ appliances’ isresponsiblefor EN50523:2009’Household CLC/TC 59X‘Performance ofhouseholdandsimilarelectrical electricity meteringdataexchange. revision ofthestandardsonelectricitymeteringequipmentand CLC/TC 13‘Electricalmeasurementandcontrol’willfinalizethe series onHigh-voltageswitchgearandcontrolgear. CLC/TC 17AC isresponsiblefor themaintenanceofEN 62271 TC69: Electricroadvehiclesandelectricindustrial trucks TC65: Industrial-processmeasurement,control andautomation TC64: Electricalinstallations andprotectionagainstelectricshock Exchange TC 57:Power SystemsManagementandAssociatedInformation TC38: Instrumenttransformers TC 23/WG12: HomeandBuildingElectronicSystems(HBES) TC23: ElectricalAccessories TC17: High-voltageswitchgearandcontrolgear PC 118:SmartGridUserInterface Exchange TC 57:Power SystemsManagementand AssociatedInformation Smart Metering) TC 13:ElectricalEnergyMeasurementandControl(including SC 8B:Decentralizedelectricalenergysystems Generation SC 8A:GridIntegrationofLarge-capacityRenewableEnergy(RE) TC 8:SystemsAspectsfor ElectricalEnergySupply • • • • • • • • • • • • http://smartgridstandardsmap.com/ interactive overview ofallsmartgridrelatedstandards: The IECsmartgridmappingtoolprovides agraphicaland LANG_ID:11825 http://www.iec.ch/dyn/www/f?p=103:186:0::::FSP_ORG_ID,FSP_ heat andgas. smart gridsandenergy, includinginteractionsinthefieldsof systems levelstandardisationandcoordinationintheareasof Systems committeeonsmartenergy(SyCSmartEnergy)provides roadmap asIEC63097/TR/Ed1. SyC SmartEnergywillpublishanewversionoftheGrid http://www.iec.ch/smartgrid/downloads/sg3_roadmap.pdf the draftedsmartgridssystemroadmapisstillavailablefrom: The IECStrategicGroup3onSmartGridhasbeendisbandedbut systems asusedintheenergyutilityindustry. for information securitymanagementappliedtoprocesscontrol 27019:2013 provides guidingprinciplesbasedonISO/IEC27002 control systemsspecifictotheenergyutilityindustry’.ISO/IECTR management guidelinesbasedonISO/IEC27002for process ‘Information technology-Securitytechniques--Information security ISO andIEChavestartedthereviewofISO/IECTR27019:2013 ISO/IEC JTC 1 and systemsengineering.ICTstandardsworkinSmartGridincludes: demand response,renewableenergysources,security, reliability, aspects ofelectricalpower generationanddistribution,including The standardizationworkofIEEEnotonlycovers ICTbutalso IEEE JTC1: Information technology voltage TC121: Switchgearandcontrolgeartheirassembliesfor low TC120: ElectricalEnergyStorage(EES)Systems TC95: Measuringrelaysandprotectionequipment TC88: Wind energygenerationsystems quantities TC85: Measuringequipmentfor electricalandelectromagnetic TC82: Solarphotovoltaic energysystems IEEE C37.118series,etc. such asIEEE1815(DNP3),IEC/IEEE61850-9-3, IEEEC37.238, synchronization work,andelectricpower systemcommunication, Substation Automation:Standardsinclude timeprotocol, for smartmeteringfunctionality. protocols, 2030.5for smartenergyprofiles, andIEEE1901series including IEEE170Xseriesand1377for communication Smart MeteringandDemandResponse:Multiplestandards Substation Automation(IEEEC37.240,IEEE1711series). cybersecurity for IntelligentElectronic Devices (IEEE1686), Cyber Securityfor SmartGrid:Multiple standardsaddressing networking. the 802familyofstandardsaddressesmanyotheraspects standards addressesbroadband/narrowband over powerline; Networking andCommunications:TheIEEE1901seriesof vehicles. the necessarycommunicationinfrastructure,incl.for electric reliable, secure,bi-directionalflow ofelectricpower andidentifies an interoperabilityreference modelthatdefinesdataflows for Smart GridInteroperability:TheIEEE2030seriesisbasedon

. The IEC . TheIEC • Electric Vehicle Charging: Standards include IEEE 2030.1.1, which electric-vehicle-to-grid-to-payment transactions, in open source EV specifies the design interface of electric vehicles as well as direct charging station networks: https://www.oasis-open.org/committees/ current and bi-directional chargers that utilize battery electric OCPP vehicles as power storage devices IETF For a list of these and other IEEE standardization activities on Smart Grid, please see: https://ieeesa.io/rp-smartgrid “RFC6272 identifies the key infrastructure protocols of the Internet Protocol Suite for use in the Smart Grid. The target audience is ITU-T those people seeking guidance on how to construct an appropriate Internet Protocol Suite profile for the Smart Grid. In practice, such The ITU smart grid focus group completed its work in December a profile would consist of selecting what is needed for Smart Grid 2011 and adopted deliverables at http://itu.int/en/ITU-T/focusgroups/ deployment from the picture presented here. smart. The work was taken over by ITU-T SG15, which leads and coordinates this issue within ITU and with other organizations. ITU-T The Energy Management (EMAN) WG has produced several SG15 developed standards on power line communication (PLC, specifications for an energy management framework, for power/ Recommendation ITU-T G.990x-series), which is one of the most energy monitoring and configuration. See http://datatracker.ietf. important technologies for smart grid. org/wg/eman/documents/ for the details. The framework focuses on energy management for IP-based network equipment (routers, ITU-T SG5 is working on topics related to achieving energy efficiency switches, PCs, IP cameras, phones and the like). and smart energy and is also working on the development of Recommendations on the characterizations and specifications of Many of the IETF Working Groups listed under section 3.1.4 Internet the energy storage evaluation and power system configurations, of Things above are developing standards for embedded devices architectures and cable distributions of the DC or hybrid AC and that may also be applicable to Smart grids. DC power feeding system that may include renewable energy and https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder-Platform interconnection to smart grids or smart energy solution. #SmartGrid

ITU-T SG13 developed Recommendation ITU-T Y.2070 “Requirements and architecture of the home energy management system and home network services”, and Recommendation ITU-T Y.2071 “Framework of micro energy grid”. In addition, SG13 is OTHER ACTIVITIES RELATED TO working on the distributed and virtualized energy storage systems STANDARDISATION and energy sharing and trading platform. http://www.itu.int/itu-t/workprog/wp_item.aspx?isn=13977 NIST

Detailed information is described in the document “smart grid The US government sponsored a Smart Grid Interoperability standardisation overview and work plan” developed by ITU-T SG15 Panel from 2009-2012 to spur cooperative industry and public agency development of open data standards for smart grid

and available at http://www.itu.int/en/ITU-T/studygroups/Pages/sg15-sg.aspx functionality: http://www.nist.gov/smartgrid/priority-actions.cfm. In 2013, the management of this project was turned over to industry ITU-T SG17 started approval of Security guidelines for home area stakeholders as a continuing standards cooperation project: network (HAN) devices in smart grid systems and has ongoing work http://sgip.org/ on Security guidelines for smart metering services in smart grid.

ITU-T SG20 is working on topics related to e/Smart services, JISC applications and supporting platforms and is currently working on Japanese Industrial Standards Committee (JISC) roadmap for the development of a Recommendation on “Application model for international standardisation for smart grid. energy services on multiple microgrids” This draft Recommendation SUSTAINABLE GROWTH will provide application model including overview architecture of SGCC multiple microgrids energy system, classification of the energy

The State Grid Corporation of China (SGCC) Framework. A lot of 2019

services, requirements and operating procedures for the energy • further national activities and roadmaps could be mentioned as services. well, such as those of Austria, Spain, the United Kingdom, the OASIS Netherlands, France, Korea and others.

OASIS developed a series of transactive energy standards for smart KNX grid information, energy supply transactions and monitoring which KNX Association is a non-profit-oriented organization. Members are have been adopted by some regulators as model specifications for manufacturers developing devices for several applications for home open energy markets. and building control based on KNX like lighting control, shutter See OASIS Energy Interoperation: https://www.oasis-open.org/ control, heating, ventilation, air conditioning, energy management, committees/energyinterop OASIS Energy Market Information metering, monitoring, alarm/intrusion systems, household Exchange (eMIX): https://www.oasis-open.org/committees/emix appliances, audio/video and lots more. Next to manufacturers, also OASIS Web Services Calendar (WS-Calendar): https://www.oasis- service providers (utilities, telecom, etc.) can become a member of open.org/committees/ws-calendar OASIS Open Building Information the KNX Association. Exchange (oBIX): https://www.oasis-open.org/committees/obix. KNX is approved as an International Standard (ISO/IEC 14543-3) The Open Charge Alliance launched a project at OASIS for as well as a European Standard (CENELEC EN 50090 and CEN STANDARDISATION ICT FOR PLAN ROLLING standardising their OCPP protocol for certain data transfers used in EN 13321-1) and Chinese Standard (GB/T 20965) for Home and Building Control. 113 114 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH suitable radioprotocolsfor indoorcoverage. tion onsmartappliancesandhomeenergycontrol,suchas ergy management;provision ofelementsfor aglobalsolu- control, power monitoring,smartmeteringandbuildingsen- Applications suchaslightingandenergycontrol,appliances by CG-SEG andcovered by CLC TC205 andCLC/TC 57. availability anduseofenergyresourcesareaddressed optimised usage,includingplanningandschedulingof Mechanisms thatallow usersandproviders tonegotiate would belimitedtospecificverticalmarkets only. commercial usersandconsumers,theroleofsmartgrids velopment of smart grids. Without wide acceptance by cess toandownership ofdataareessentialfor thede- Security, privacyandmanagementofcontroltheac- ADDITIONAL INFORMATION • Metering-With-KNX/Smart-Metering-With-KNX_en.pdf https://www.knx.org/media/docs/downloads/Marketing/Flyers/Smart- Smart MeteringwithKNX: Management-White-Paper.pdf KNX-Demand-Side-Management-White-Paper/KNX-Demand-Side- https://www.knx.org/media/docs/downloads/Marketing/Flyers/ Demand SideManagementwhitepaper: 205 withintheEN50491series. home) alreadyexistsandisprovided by CENELECTC semantic-level for building (andpossiblyapplicablefor connection wiredorwirelesstechnologies;Anextensive problem, fromapplicationsemanticstoindoorinter- standardised approachcovering allaspectsofthe for homeautomationnetworks; amultidisciplinary efficiency. Severalelements areneeded:localprotocols an elementthathasasignificantimpactonenergy The partofthegridinsidehomedomainisalso

elsewhere attheappropriatepoints. for theseapplicationareasarespecifiedintheRollingPlan from interoperability. Thestandardsrequirementsassuch vantage fromitsoverall approach andabove allbenefit areas, toenablethecityderivebesthorizontalad- tween theapproachestaken by thedifferent application —as farastheseareappropriateandcost-effective— be- ards topicsrelatetotheneedensurecommonalities with theirlocalauthority, etc.Butmainly, smartcitystand- aged, for commonterminologies, for citizens’interface ments, concerningstandardsfor thewaycitiesareman- In standardsterms,therearesomeover-arching require- smart communitiesattractivetothepopulation. ment ofbusinessesandcreatingconditionsfor making tions inruralcommunities,contributingtothedevelop- increase the deployment of smart technologies and solu- for economicandsocial improvements. Thiswouldalso individuals andtheirpersonaldata, and useitasadriver services etc.)and with proper regardfor security, bothof services for citizens(healthcare, education,emergency use), environmentalprotection,mobilityandtransport, of energyandotherutilities(production,distribution grate the requirements of its urban community, in terms A smartcityisanentitythatusesICTeffectively, tointe- both inEuropeandworldwide. tion thatisgrowing astheurbanisationtrendcontinues, 75% oftheEUpopulationlivesinurbanareas,apropor- bution tothesustainabledevelopmentofEuropeancities. Smart urbantechnologiescanmake asignificantcontri- POLICY OBJECTIVES POLICY AND LEGISLATION USE EFFICIENT ENERGY FOR SMART AND AND SERVICES TECHNOLOGIES SMARTCITIES /

The core components in such a complex system are the REFERENCES frameworks that assist companies, cities and other actors to provide appropriate solutions that prioritise economic, • Strategic Implementation Plan, social and environmental outcomes. Solutions should ad- http://ec.europa.eu/eip/smartcities/files/sip_final_en.pdf dress the whole lifecycle, optimising environmental, social • COM(2012) 4701: Smart Cities and Communities — and economic outcomes through the seamless transfer European Innovation Partnership of information. • COM(2017) 228 final: Mid-Term Review on the implementation of the Digital Single Market Strategy - A Connected Digital Single Market for All EC PERSPECTIVE AND PROGRESS • COM(2016) 176: ICT Standardisation Priorities for the REPORT Digital Single Market • COM(2015) 192: A Digital Single Market Strategy for The Commission has created the SCC EIP which has es- Europe tablished a smart cities stakeholder platform, with ESO • COM(2016) 176 ICT Standardisation Priorities for the participation, and a high-level group advising the Com- Digital Single Market mission. The high-level group released in early 2014 a strategic implementation plan (SIP) setting out a joint vision, a common target and proposals for implementation, IITU and UNECE “United for smart sustainable cities” which contain standardisation aspects. (U4SSC) initiative to advocate for public policy to empha- size the importance of ICT in enabling the transition to Within the EIP SCC action cluster on Integrated Infra- smart sustainable cities. structures and Processes an initiative of 110 cities and 93 industry partners created, among other deliverables, Spanish national plan on smart cities, with a governance a reference architecture and design principles for an open model including an innovative advisory board on smart cities urban platform, which became a standard of DIN and is http://www.agendadigital.gob.es/planes-actuaciones/Pagi- moving towards a standard in the international SDOs. nas/plan-nacional-ciudades-inteligentes.aspx

Benefiting from valuable contributions from our stake-

holders, the Commission fostered the creation of a com- REQUESTED ACTIONS mon interoperability language called SAREF (Smart Ap- pliances REFerence ontology), which became a standard ACTION 1 Interoperability language with premises. of ETSI and OneM2M (the Global initiative for Internet of CEN-CENELEC-ETSI smart cities and communities coordi- Things standardisation) in 2015. Since then a new ver- nation group (SSCC-CG), working on five main objectives: sion of the SAREF standard has been released that made SAREF modular and extensible via extensions. The initial • promoting an enabling framework for smart cities; SAREF became the first extension for Energy together • growing partnerships with key stakeholders; with two more extensions (Buildings and Environment) • developing a reference point for the coordination of SUSTAINABLE GROWTH and now a host of new extensions are in the pipeline and consistent smart city standardisation by ESOs; under development (smart cities, agriculture, manufac- • communicating and promoting standards on smart 2019 • turing, automotive, health, water and wearables) turning cities; SAREF into the IoT smart city ontology. • assessing smart citizen-related standards

The initial phase of the SSCC-CG work had been completed towards end 2016, and an overview white paper from January 2015 is available46.

46 ftp://ftp.cencenelec.eu/EN/EuropeanStandardisation/Fields/SmartLiving/City/ SSCC-CG_Short_Version_Report_Jan_2015.pdf ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

115 116 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH recommend andcontributetocybersecuritystandards. velop specificprivacy by designcompliantstandards and nature ofprivacyanddataprotection,theESOsshouldde- of suchdata.To ensurecommitment tothepublic-interest gard to personal data processing and the free movement ards for accounttothe protectionofindividualswithre- query and subscribe to reliable real-time urban context query andsubscribe toreliablereal-timeurban context viding alightweightandsimple meanstogather, publish, on smartcityinteroperability. ItincludesopenAPIs proof ETSIandotherregionalSDOs) standardisationprocess OneM2M (globalpartnershipproject, withtheparticipation ile smartcities(OASC)): A concrete proposal is the mand-side grouponurbanplatforms, open&ag- understanding (MoU)onurbanplatforms, EIPde- ies andCommunities(EIP-SCC)memorandumof (European Innovation Partnership on SmartCit- ACTION 5 ACTION 4 ACTION 3 ACTION 2 premises withinthesmartcitiesarchitecture. ing premiseswhichwillbenefittothemanagementof second stepfor interactionwiththeresidentialandbuild- step for energymanagementinhomeandbuildings;a data modellinginthestandardseriesEN60491;afirst (Home andBuildingElectronicSystems)isworkingon and Communities(SF-SSCC). Moreover CLC/TC 205HBES LEC-ETSI SectorForumonSmartandSustainableCities SSCC-CG activitiesaretaken over by theCEN-CENE- and theeGov Initiative eration withtheCitizenFocusActionClusterofEIPSCC December 2014,page7.)Thisworkisdoneinclosecoop- ly concerningenergydatasecurityandprivacy(SETplan, consider itessentialfor innovation tobuildtrust,especial- strategic smartcitygoals.TheCommissionandSETIS ational implementationplan,page6)insupportofthe mends tofullyrespectconsumerprivacy(EIPSCCoper- er recommendationsatpolicylevel.TheEIPSSCrecom- activities underway. TheTRwouldalsosupporttheoth- when etc.),andtotake fullaccountofotherstandards citizen issuesrelatedtosmartcities(e.g.onwhat,where, to clarifywhetherfurtherstandardisationisneededon nentially over thelastcoupleofyears. packages arrivingatpeoples’homeshasincreasedexpo- overwhelmed withparceldeliverytrucks.Thenumberof dramatically increasinge-commerceEuropeancitiesare ery ofparcelsandpackagesonthelastmile.Dueto timisation ofavailableICTstandardsregardingthedeliv- and packages.SDOstoinvestigateonthepossibleop- Privacyissues:SDOstocheckexistingstand- is being prepared AnETSItechnicalreportisbeingprepared

Smart city standardisation initiative Smartcitystandardisationinitiative Standards for the delivery of parcels delivery ofparcels couraged. and furthertangibleoutcomedeliverablesareen- on this action hasalready been done in the ETSI ISG CIM other initiativeslistedabove. Some commendablework international standardsdevelopingorganisationsandthe to alignthework,outputandgoals of theEuropeanand scale mechanisms.Efforts areunderwayonseverallevels two city-ledgroupsascontrol,advisory, promotionand and theglobalOASCinitiative;itwillusetheselatter as theEIPSCCdemand-sidegrouponurbanplatforms get high-levelrequirementsfromcity-ledinitiativessuch it will use the results of the tiatives suchastheEIPonSCCMoUurbanplatforms; on lower levels.Theworkwillcooperatewithsimilarini- complementing protocolsandcommunicationstandards forms andapplications,integratingotherstandards needed for aglobalmarket ofopenurbanserviceplat- action willensurethenecessarystandardsspecifications of urbandata,andcommondatamodels/ontologies.This the publication, management,discovery andconsumption information, aninteroperabilityframework/platform for RELATED STANDARDISATION ACTIVITIES INFORMATION ACTIVITIES AND ADDITIONAL pdf SmartLiving/City/SF-SSCC_Overview_of_Standards_for_SmartCities. ftp://ftp.cencenelec.eu/EN/EuropeanStandardization/Fields/ which anyinterestedstakeholder cancontribute in thiscontext.Thismappingisdesignedasalivingdocument,to Smart Cities.Itlistsalsothedifferent policy andresearchinitiatives activities andpublishedstandards,relevantfor thedevelopmentof created amapping,whichaimsatlistingrelevantstandardization The CEN-CLC-ETSI SectorForumonSmartCitiesandCommunities Forum (July 2016Singapore),furtherdevelopedin2017. Coordination efforts by theSDOs,shown atthe World SmartCity Sustainable CitiesandCommunities. the EuropeanstandardizationactivitiesrelatedtoSmartand of theESOsthatactsasanadvisoryandcoordinatingbodyfor The SF-SSCC,createdinJanuary2017,isalong-termjointgroup Smart andSustainableCitiesCommunities(SF-SSCC). will betaken over by thenew CEN-CENELEC-ETSI SectorForumon cluster onstandards.It wasproposedthattheSSCC-CG activities specific activities.ItproposestoleadinrelationtheEIPaction is now following uptherecommendations,throughaseriesoffive standards/Sectors/SmartLiving/smartcities/Pages/SSCC-CG.aspx and Communities haspublishedareportathttp://www.cencenelec.eu/ The CoordinationGrouponSmartandSustainableCities CEN, CENELEC,ETSI

EU funded project Espresso, EU funded project Espresso,

ETSI smart cities (under development)

ETSI’s City Digital Profile Industry Specification Group (ISG CDP) ISO/FDIS 37104 Sustainable cities and communities -Guidance for is developing standards to support the deployment and roll-out practical implementation in cities (under development) of smart city infrastructures, building on existing standards and ISO/DIS 37105 Sustainable cities and communities - Descriptive specifications, including the work of oneM2M and TC SmartM2M. framework for cities and communities (under development) Following the recent publication of a white paper that presents a horizontal approach to integrated smart city standards, the ISO-IEC/JTC 1 WG11 “Smart cities” focus areas in 2018 include a high-level architecture, together IEC Systems Committee (SyC) on Electrotechnical Aspects of Smart with a survey of smart city reports and deliverables by other Cities has been created to foster the development of standards ICT standardization bodies and research organizations. ETSI is in the field of electrotechnology to help with the integration, also capturing city needs and service scenarios for their citizens interoperability and effectiveness of city systems (http://www.iec.ch/ and infrastructure, including concrete examples that reflect the dyn/www/f?p=103:186:0::::FSP_ORG_ID:13073 ). importance of environmental factors and sustainability objectives. IEEE ETSI’s Human Factors committee (TC HF) is developing a technical report (TR 103 455) to assess the needs of consumers and citizens There are a number of available standards and active standards that must be addressed by smart city standardization, including projects related to Smart Cities through its Smart Grids, IoT, eHealth, accessibility, usability, personalization, interoperability and personal and other related topics. These standards and projects cover a data protection. broad spectrum of fields, including but not limited to autonomous ETSI’s Access, Terminals, Transmission and Multiplexing committee and intelligent systems, big data, sensors, healthcare, IoT, (TC ATTM) is developing standards for sustainable digital multi- transportation, energy, networking and connectivity technologies, service cities to support the deployment and roll-out of smart city including technology and process framework for planning a infrastructures. This work includes a TS detailing measures to ease Smart City, which are critical components to the development and the deployment of smart new services and their multiservice street implementation of Smart Cities. IEEE also has key activities in the furniture within the IP network of a single city or cluster of cities. non-functional core areas of developing standards to address security and privacy of data, which is core in the context of Smart From digitizing industrial processes to creating smart services Cities. for citizens, it is essential to accurately record data together with https://ieeesa.io/rp-smartcities its context information, the so-called metadata, and to transfer these without misinterpretation to other systems. Single-purpose ITU-T solutions work well within a known context, but are not suitable ITU-T FG-SSC developed 21 Technical Specifications and reports for multi-system interoperability. ETSI’s ISG on cross-cutting including a Technical Report on “Intelligent sustainable buildings for Context Information Management (ISG CIM) is developing Group smart sustainable cities” and Technical Specifications on Setting the Specifications (GSs) for applications to publish, discover, update and framework for an ICT architecture of a smart sustainable city”. New access context information, initially for a broad range of smart city ITU-T Study Group 20, which superseded FG-SSC, aims to guide applications and later for other areas. cities in upgrading their traditional infrastructures and reimagining In 2018 ETSI expects to complete a number of specifications processes and models by integrating new digital technologies. and related studies. These include the collection and analysis ITU-T SG20 has approved three Recommendations- ITU-T L.Y.4900: of use cases, an assessment of security and privacy issues, a Overview of key performance indicators in smart sustainable cities, cross-domain information model, as well as an analysis of data ITU-T Y.4901: Key performance indicators related to the use of publication systems. ETSI is maintaining the API specification to information and communication technology in smart sustainable enable almost real-time access to information coming from many

cities and ITU-T Y.4902: Key performance indicators related to SUSTAINABLE GROWTH different sources (in addition to the IoT). In addition, it continues to the sustainability impacts of information and communication maintain a repository of relevant external sources of CIM-related technology in smart sustainable cities. http://itu.int/go/tsg20 information. 2019

ITU-T SG20 has determined new Recommendation ITU-T Y.4454 • ETSI is also currently developing an extension to the SAREF ontology “Platform interoperability for smart cities” for Smart Cities, which is expected to be finalised as a standard in March 2019. ITU-T Study Group 5 approved (2015/10)ITU-T L.1440, a methodology to assess the environmental impact of ICT in ETSI’s ISG on Operational energy Efficiency for Users has published cities, together with many stakeholders including the European a specification which defines global KPI modelling for green smart Commission cities.

ISO, IEC

ISO TC 268 “Sustainable development in communities” is directly working on smart city-relevant issues, including terminology, management systems and indicators https://www.iso.org/committee/656906.html

ISO/DIS 37122 Sustainable cities and communities - Indicators for ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

117 118 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH the BSI’s SmartCityCatapultFramework network ofcities,companiesandSMEstodevelopthenextstage Cities StandardsInstitute(CSI)isajointactivitytodevelopstrong BSI, FutureCities silos (publishedunderBSIlogo) Management Framework: helpingintegrateacrossthefunctional published underBSIlogo) Leadership Guide:a‘trainread’documentfor cityleaders(thisnow Partnership onSmartCitiesandCommunities: side grouponUrbanPlatforms initiativeoftheEuropeanInnovation BSI hasadoptedandpublishedthedeliverablesofDemand- Standards-and-Publication/PAS-181-smart-cities-framework/ http://www.bsigroup.com/en-GB/smart-cities/Smart-Cities- deliver smartcitystrategies.UsesOASISTGF (below). good practicesframeworkfor cityleaderstodevelop,agreeand BSI’s PAS 181:2014Description:BritishSmartCityFramework. A BSI standardisation-on-Smart-Cities-CTN-178.pdf http://www.aenor.es/descargasweb/normas/aenor-Spanish- recommendations onthesetopics communities andsmarttouristdestinations,basisfor ITU-TSG20 interoperability, opendatainsmartcities,ports,rural Over 20SpanishstandardsatAENOR’s CTN178one.g.platforms AENOR specification-uses-oasis-transformational-government-framework https://www.oasis-open.org/news/pr/new-british-smart-cities- https://www.oasis-open.org/committees/tgf and practicesfor usingITtoimprove deliveryofpublicservices. Transformational Government Framework (TGF) Description:Models OASIS Platform#SmartEnergy https://trac.ietf.org/trac/iab/wiki/Multi-Stake-Holder- that mayalsobeapplicabletothissection. of Things above aredevelopingstandardsfor embeddeddevices Many oftheIETFWorking Groupslistedunder section3.1.4Internet other relevantenergymonitoringstandardsandarchitectures. Further, itdescribestherelationshipof theEMANframeworkto are usefulfor identifyingrequirementsfor theframeworkandMIBs. variety ofscenarioswithcasesandtargetdevices.Theseuse presents theapplicabilityofEMANinformation modelina A recentlypublishedstandardstrackspecification(RFC7603) switches, PCs,IPcameras,phonesandthelike). on energymanagementfor IP-basednetworkequipment(routers, org/wg/eman/documents/ for thedetails.Theframeworkfocuses energy monitoringandconfiguration.See http://datatracker.ietf. specifications for anenergymanagementframework, for power/ The EnergyManagement(EMAN)WG has producedseveral IETF

STANDARDISATION OTHER ACTIVITIES RELATED TO Adapt4EE/Ready4SmartCities Building onthestandardspromotedby buildingsmartalliance. Stakeholder grouponenergyefficientbuildingsdatamodels. eeSemantics and decisionmakers need framework (SEIF)tomodeltheenergy-relatedknowledge planners For thefirsttimedevelopingasemanticenergyinformation SEMANCO 2017. and theESPRESSOprojectisanticipatedtobecompleteinsummer European Innovation Partnership onSmartCitiesandCommunities Architecture deliverableoftheUrbanplatform initiativeofthe The DINPAS Reference ArchitectureadoptedfromtheReference standardization-roadmap-smart-city-version-1-0-data.pdf d2afdaf62551586a54b3270ef78d2632/the-german- https://www.dke.de/resource/blob/778248/ The GermanStandardisationRoadmapSmartCity DIN/DKE/VDE individual Smart cities. And finally they are working to accelerate individual Smartcities. Andfinallytheyareworkingtoaccelerate and todevelopajoint dataandserviceontologytobeused by scalability andopeninterfacestointegrate different solutions joint reference architectureframeworktoenableinteroperability, The groupisledby SAP anddevelopedasetofprinciples Memorandum ofUnderstandingoninteroperable urbanplatforms. 93 organisationsfromindustryandresearch havesigneda Industry MemorandumofUnderstandingonUrbanPlatforms standards suchastheDINsmart«humble»lamppoststandard. and ISOfor internationalconsideration. .Italsocontributedtoother it worldwide.ItishelpingtobringDINSPEC91357CEN/CELELEC bringing ittotheattentionofEuropeancitiesaswellpromoting use ofDINSPEC91357,freelyavailablefor theDINwebsite,by together withtheEIPSCCurbanplatform initiativeispromotingthe comparability ofperformance/outcome measurements.Theproject and datacollectionstandardstoensuremeaningfulness development— whileusingcommon,transparentmeasurement possible —includingtothirdpartiesfor thepurposeofapplications should make relevantdataandinformation aswidelyavailable to proprietaryones,togetherwithopenandconsistentdata.It structures andinteroperabilityusing/openstandardsasopposed barriers orvendorlock-inthroughpromotingcommonmetadata requirements andtechnologicalchangetheavoidanceofentry of solutions,i.e.theadaptabilitysolutionstonewuser cities andcommunitiesstandardstoensuretheinteroperability The processfor developing,maintainingandpromotingsmart solutions. Development ofsystemstandardsfor smartcitiesandcommunities Espresso Horizon 2020callSCC-03-2015 vocabulary campsaddressingspecificsub-areas. Activity relatedtoeeSemantics:groupwasrunningaseriesof

the adoption of the developed framework by standardisation bodies cities, including an open call for new cities and companies to join. and other stakeholders.The deliverables of the group (and most SynchroniCity actively builds upon and contributes to initiatives such notably the reference architecture) have been standardised by DIN as EIP-SCC, FIWARE and oneM2M, and both the validation results in DIN91357. The group is promoting the use of DIN SPEC 91357, and new specifications are contributed to the relevant European freely available for the DIN website, by bringing it to the attention and global SDOs, such as ETSI and ITU-T. Specifically, SynchroniCity of European cities as well as promoting it worldwide. It is helping partners are leading and contributing to the ETSI ISG CIM and to the to bring DIN SPEC 91357 to CEN/CELELEC and ISO for international ITU-T SG20 Open API work item and FG-DPM-IOTSCC. consideration. www.synchronicity-iot.eu https://ec.europa.eu/digital-single-market/en/news/memorandum- understanding-towards-open-urban-platforms-smart-cities-and- Future Internet Public Private Partnership communities Specifications and technologies developed under the Future Internet Public Private Partnership programme (FP7) that can be used within Demand-side group (city-led) on Urban Platforms (within the context of smart cities: the European Innovation Partnership on Smart Cities and FIWARE NGSI is an API that provides a lightweight and simple Communities) means to gather, publish, query and subscribe to context A total of 110 cities — individual cities and two city networks — information. This is an API for context information management. have already agreed to cooperate more strongly in the area of This information can be indeed open data and consumed through urban platform by signing a Letter of Intent. The group is working the queries and subscriptions APIs (NGSI10). This way, it is possible within the urban platforms cluster of the EIP on SCC. This group to publish real-time or dynamic data, typically well structured, and is led by London and has already produced a requirements offer it as open data for the reuse by developers. For instance, it document for smart city interoperability (urban platform), which is is possible to offer in real-time data from sensors or systems to currently being tested. The requirements document is being used leverage the creation of new applications. by the industry group of the MoU on urban platforms with EIP FIWARE CKAN: Open data publication generic enabler. FIWARE SCC to create a reference architecture framework and standards CKAN is an open source solution for the publication, management landscape. The members of the group are committed to implement and consumption of open data, usually, but not only, through commonly agreed open standard urban platforms and foster the static datasets. FIWARE CKAN allows to catalogue, upload and deployment of smart city solutions.Two other deliverables of the manage open datasets and data sources, while supports searching, demand-side group are: browsing, visualising or accessing open data. FIWARE CKAN is an • Leadership Guide: a ‘train read’ document for city leaders Open Data publication platform that is used by many cities, public • Management Framework: helping integrate across the functional authorities and organisations. silos www.fiware.org/ BSI has adopted and published the latter two deliverables under the EUROCITIES and GREEN DIGITAL CHARTER (GDC) BSI logo. https://eu-smartcities.eu/content/urban-platforms A strategic, city-led initiative aiming to improve cities and citizens’ quality of life through the use of open and inclusive digital solutions. Open & Agile Smart Cities (OASC) GDC is a EUROCITIES initiative launched in 2009 and currently City-led initiative to create a smart city market which addresses signed by 52 major European cities. It works at the highest level the complex needs of cities in the digital transition, especially with CEN/CENELEC SF-SSCC, ETSI SDMC, the MoU on urban interoperability, replaceability and comparability, in order to avoid platforms and OASC. vendor lock-in and to support local digital entrepreneurship. OASC Apart from GDC, EUROCITIES works with its member-cities maintains a set of technical Minimal Interoperability Mechanisms for “Data” and “Standards & Interoperability” through the two SUSTAINABLE GROWTH (MIMs) which are open and free. Launched in March 2015, a respective working groups of its Knowledge Society Forum, a current total of 117 cities in 24 countries, mainly in Europe, networking and collaboration mechanism for more than 70 2019 have already committed to adopting the OASC principles. OASC European cities. • promotes standards-based innovation and procurement across http://www.greendigitalcharter.eu application domains, and the MIMs are directly linked to the existing standardisation processes on national, European and international H2020 CITYkeys level, including the SF-SSCC and ITU-T. Following the SCC-02-2014 call of H2020, nine partners, among www.oascities.org which five cities, developed the first public European framework SynchroniCity for the performance measurement of smart cities and smart city projects. A set of around 100 key performance indicators (KPIs) European IoT Large-Scale Pilot on Smart Cities (part of the 104m€ and a framework of open-architecture, interfaces and standards H2020 IoT-LSP Programme) with 8 core European cities (some help cities design, select, monitor, evaluate and promote smart city are also EIP-SCC-01 Lighthouse Cities), 38 partners in total, a solutions. The smart city KPIs of CITYkeys were used by ETSI SDMC budget of 20m€ (15m€ EC contribution) and a running period of for the creation of TS 103 463, “Key Performance Indicators for 36 months (2017-19). SynchroniCity aims to establish an open Sustainable Digital Multiservice Cities”. market for IoT-enabled urban services based on the Open & Agile http://www.citykeys-project.eu/ Smart Cities (OASC) Minimal Interoperability Mechanisms (MIMs). The project validates the MIMs as well as other existing and STANDARDISATION ICT FOR PLAN ROLLING emerging standards through around 20 pilots involving at least two 119 120 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH CEN-CENELEC andETSI. pean standardisation work which could be developedby interoperability. Thisis an opportunityfor specificEuro- establish certainrequirementsfor cityplatforms toallow The SpanishSecretaryofStatehasidentifiedtheneedto sults allows. Cities withinasshorttimeframesproducingviablere- move towards common standardsintheareaofSmart the efforts oftheInternational andEuropeanSDOsto sub-domains. The Commissionsupportsandencourages sistent progressinthis area which covers alargefieldof States, andtheCommission,isimportantfor makingcon- Broad coordination,includingstakeholders, Member around theglobe. industry initiativeswhichhavestartedinorganisations ards developmentatthispointintimebutreliesonthe Commission doesnotseeaneedtotriggerfurtherstand- around theglobe.Industry, therefore, welcomesthatthe cities invariousstandardsdevelopmentorganisations There are already many activities going on around smart ADDITIONAL INFORMATION platforms. the EIPSCCtoimplementopen-standardsbasedinteroperable sister projectESPRESSOandtheurbanplatform groupwithin things ICTurbanplatforms andareworkingtogetherwiththeir for theleadingcities.Theprojectsareimplementingamongother follower andobservercitiesthatreplicatethesolutionsdeveloped areas ofenergyandtransportwiththehelpICTanumber are threeleadingcitiesimplementingsmartcitysolutionsinthe are 12lighthouseprojectsatthemoment.Within eachprojectthere funding oftheindividualcallsisaround25millionperproject.There fluctuating, butitisintheballparkfigureof100M€/yearand projects hasbeeninplacesince2014.Theyearlybudgetis a yearlyHorizon2020SmartCitiescallfor lighthouseinnovation European Innovation Partnership onSmartCitiesandCommunities, Following thedecisionsinStrategicImplementationplanof H2020Smart Cities Lighthouseprojects ICT fromvariousfronts: The Commissionislookingattheenvironmentalimpactof competition. ucts andservices,settinganeffective basistodrive relating totheenvironmentalperformance ofICTprod- A key challengeisachievingtransparencyaroundclaims other environmental sectors, like water andrawmaterials. the impactofICTonenvironmentwillbeextendedto bodies andpublicauthorities.Thecriteriafor measuring formed incollaboration withindustry, standardisation the achievementofgoodconsensus.Thisworkisper- consumption andgreenhousegas(GHG)emissions,with rently focused onenergy managementincludingenergy methodologies toassessthisenvironmentalimpact,cur- bodies suchasETSI,ITU-T, IEC,ISOandothers,around in variousEuropeanandInternationalstandardisation this assessment. Asolutiontothisis the work developed do notprovide aconsistentmethodologicalframeworkfor to assesstheenvironmentalimpactofICTitself, butthey At thelevelofICT, multiplemethodologiesare available gas-emitting andenergymanagementsectors. ICT iscurrentlyoneofthefastestgrowing greenhouse POLICY OBJECTIVES POLICY AND LEGISLATION IMPACT ENVIRONMENTAL ICT • mental-impact-of-ict-cost-benefit-analysis-pb- work-methodology-for-measuring-the-environ- study-on-the-practical-application-of-the-new-frame- Executive summary:http://bookshop.europa.eu/en/ tal-impact-of-ict-cost-benefit-analysis-pbKK0114640/ work-methodology-for-measuring-the-environmen- study-on-the-practical-application-of-the-new-frame- Full report:http://bookshop.europa.eu/en/ context ofenvironmentally-sounddatacentres. on policymeasures,metrics,andmethodologiesinthe and hasorganised,amongotherthings,aworkshop of ICT(includingacost/benefitanalysis for companies) methodology for measuringtheenvironmentalimpact on thepracticalapplicationofnewframework the Commission,DGCNECT, commissionedastudy tor andtoconsiderpossibleoptionsfor futureaction, To analysefurtherthe current situationoftheICT-sec-

KK0114642/ and https://ec.europa.eu/digital-agenda/ efficiency through Information and Communication news-redirect/17261 Technologies • With CNECT playing the chief editor role under ITU-T • COM(2015) 614: Closing the loop – An EU Action Plan the “ICT in Cities methodology to assess the environ- for the Circular Economy mental impact of ICT at the city level is now finished • Directive 2003/96/EC of the Council on Energy (http://www.itu.int/rec/T-REC-L.1440-201510-P ) Taxation • With a life cycle approach (or cradle to grave), it • M/462 Standardisation mandate addressed to CEN, provides: CENELEC and ETSI in the field of ICT to enable efficient 1. a basis to help cities take the right decisions as energy use in fixed and mobile information and com- regards their ICT infrastructure and the relevant munication networks energy costs/environmental effects; • Directive 2009/125/EC (Ecodesign) plus its Imple- 2. a level playing field for industry to compete menting Regulations and Standardisation Requests and innovate in providing the most sustainable • Regulation (EU) 2017/1369 (Energy Consumption) solutions to cities. • M/543 Standardisation Request with regard to ecode- • DG ENV launched an ongoing pilot on product environ- sign requirements on material efficiency aspects for mental footprint on category rules. It is looking at vari- energy-related products ous ICT products such as IT equipment, uninterruptible power sources (UPS) and batteries. • DG GROW is looking at an ecodesign measure for REQUESTED ACTIONS enterprise servers that are found among others in data centers at potential ecodesign measures for enterprise ACTION 1 Definition of Global KPIs for Energy Manage- servers and data storage devices, products that can be ment of Fixed and Mobile access, and Core networks, as normally found in data centres or in server rooms. The per Mandate M/462. definition of global key performance indicators (KPIs) is essential to this objective. ACTION 2 Guidelines for the use of Global KPIs for Data REFERENCES Centres as per Mandate M/462. • COM(2010) 245: A Digital Agenda for Europe, Key Action 12: ACTION 3 Definition of Global KPIs for Data Services as

-- Assess whether the ICT sector has developed per Mandate M/462. common measurement methodologies -- Propose legal measures if appropriate ACTION 4 Guidelines for the definition of Green Data • Directive 2005/32/EC on ecodesign of products Services. • Recommendation 2013/105/EC: Mobilising Infor- mation and Communications Technologies to facili- A CTION 5 Definition and guidelines of KPIs for ICT net- tate the transition to an energy-efficient, low-carbon works as per Mandate M/462. economy • Directive 2012/27/EU on energy efficiency, amend- SUSTAINABLE GROWTH ing Directives 2009/125/EC and 2010/30/EU and ACTIVITIES AND

repealing Directives 2004/8/EC and 2006/32/EC 2019 • • Directive 2010/31/EU of the European Parliament ADDITIONAL INFORMATION and of the Council on Energy Performance of Buildings RELATED STANDARDISATION • Directives 1992/75/EC and 2010/30/EU on Label- ling and Information ACTIVITIES • Regulation (EU) No. 347/2013 on guidelines for ESOs trans-European energy infrastructure Standardisation request M/462 on efficient energy use within • COM(2009) 7604: Recommendation (9.10.2009) on broadband deployment was accepted by the ESOs to provide mobilising Information and Communication Technol- standards for measurement and monitoring, including the definition ogies to facilitate the transition to an energy-efficient, of energy-efficient KPIs. This standardisation request is not only low-carbon economy limited to networks but extends as well to data centres and other • COM(2009) 519 final: Investing in the Development ICT nodes associated with broadband deployment. It is entering of Low Carbon Technologies (SET Plan) phase 2.

• COM(2008) 30 final: 20 20 by 2020, Europe’s Energy and more general resource management in data centres are STANDARDISATION ICT FOR PLAN ROLLING climate change opportunity addressed by a cross-ESO coordination group (Coordination Group • COM(2008) 241: Addressing the challenge of energy Green Data Centres – CG-GDC). This group monitors European and 121 122 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH These will make it possible to assess in a transparent, qualitative, These willmake itpossibletoassessinatransparent, qualitative, approved methodologies for environmentalimpact assessment. Starting atthelevelof`good,networks andservices´, theyhave ITU andETSI standards onfieldimplementationof ICT wastemanagement. management) wasalsofinalized.ThisENwillsupportfuture management for theendoflife ofICTequipment(efficientwaste EN 305174-8onbroadbanddeployment andlifecycle resource deployment ofsmartnewservicesindigitalmultiservicecities. outlining processestoimprove energyefficiencyandtoease the future 5Gnetworks,andworkonmultiservicestreetfurniture, Network equipment,afocusof onevaluating energyefficiency Performance Indicators(KPIs)for serversandfor RadioAccess networks. RecentworkincludesnewENsfor energyefficiencyKey for measurementmethodsfor energyefficiencyoffixedandmobile these networksandsites.Alsoavailablearearangeofstandards of networks andsitesinordertosupporttheefficientdeployment ICT EN 305174Seriesdefinesthemostefficientengineeringof climate changeandthereductionofgreenhousegasemissions. of networksandsitesinfullcompliancewiththeKyoto Protocolon will provide ICTuserswithtoolstomonitortheenergymanagement and TSsfor energyefficiencyinbroadbanddeployment. TheKPIs in aseriesofENs(EN305200Series)basedonETSI’s existingKPIs and networksfor allindustrialandcommercialusers,areoutlined broadband. ThesenewKPIs,whichwillbeusedtodefinegreensites and sitestomonitortheenergymanagementofdeployed global KPIsaretosupportthedeployment ofeco-efficientnetworks fixed broadbandaccessnetworksandcablenetworks.These centres, transmissionnodes),mobilebroadbandaccessnetworks, global KPIsfor energymanagementcovering ICTsites(e.g.data communication networksandsites.Resultingstandardscover (efficient useofenergy)infixedandmobile and information of ECMandateM/462,onenablingefficientenergymanagement Engineering (TC EE),collaboratetodevelopstandardsinsupport and Multiplexing(TC ATTM), Cable(TC CABLE)andEnvironmental ETSI’s technicalcommitteesfor Access,Terminals, Transmission ETSI Aspects for Ecodesign CEN/CLC/JTC 10Energy-relatedproducts -MaterialEfficiency CLC/TC 111X‘Environment’ responsible for energyefficientproductsdeployed indatacentres. system pointofview. SeveralCENELECtechnicalcommitteesare a operation andefficiencyofdatacentres(includingKPIs)from TC 215isresponsiblefor aholisticseriesofENsfor thedesign, CENELEC by ISO/IECintoEuropeanformat. 215 istranscribingresourcemanagementKPIstandardsproduced formulation ofL.1300mentionedbelow. In addition,CENELECTC format. Thisrepresentsamoregeneral, andfrequentlyupdated, conversion ofDGJRCbestpracticesintoastandards-based objectives andhasrecently asked CENELECtoundertake the CG-GDC encouragesstandardisationactivitytosupportCommission GreenDataCentres/GDC_report_summary.pdf ftp://ftp.cencenelec.eu/EN/EuropeanStandardisation/HotTopics/ICT/ activity. (including energy)andmaintainsaliveexecutivesummaryofthat international standardisationfor datacentreresourcemanagement

L.1503: ICTfor climatechangeadaptation incities L.1502: AdaptingICTinfrastructuretotheeffects ofclimatechange; adapt totheeffects ofclimatechange: ITU-T L.1501:Bestpracticesonhow countriescanutilizeICTs to change; L.1500: Framework for ICTandadaptationtotheeffects ofclimate energy projects; of information andcommunicationtechnologygreenhousegas L.1430: Methodologyfor assessmentoftheenvironmentalimpact services; information andcommunicationtechnologygoods,networks L.1410: Methodologyfor environmentallife cycleassessmentsof L.1350: Energyefficiencymetricsofbasestationsite(consented); telecommunication equipment; L.1340: Informativeof valuesontheenergyefficiency centres; power andcoolingequipmentfor telecommunicationsanddata ITU-T L.1320:Energyefficiencymetricsandmeasurement for telecommunication equipment; L.1310: Energyefficiencymetricsandmeasurementmethods for ITU-T L.1300:Bestpracticesfor greendatacentres; greenhouse gasemissionsandenergyconsumption,including: ITU-T SG5hasdevelopedaseriesofstandardsaimedatreducing throughCNECTH5 actedaschiefeditor. projects andservicesarebeingconsidered.TheCommission which thefootprint ofICTincitiesandthecitydimension “L.Cities methodology”(Recommendation ITU-TL.1440):in ITU interpretation oftheresults. such evaluations,inparallelestablishingacommonbasisfor the application willbuilduniformity inthemethodologiesemployed by providing acommonreference toevaluatetheirperformance. Its energy-efficiency metricsandmeasurementmethods forliveRANs, The standard(RecommendationITU-TL.1330)isthefirsttodefine network. wireless networksthatconnectend-userequipmenttothecore energy efficiencyofmobileradioaccessnetworks(RANs),the ITU andETSIhavealsoagreedanewstandardtomeasurethe Organisation». able toassessandreporttheirICTfootprint basedonITU’s «ICTin addition, companies,publicbodiesandotherorganisationswillbe such asemail,telephoneservices,laptops,broadbandaccess.In various productsandservicesthatarepartofeverydaydigitallife, accurate andconsistentwaythefootprint andotheraspectsof efficiency within thescopeofTC23. IEC TC23 WG9. ThisWG isresponsiblefor aholisticviewofenergy electronic productsandsystems’ IEC TC 111‘Environmentalstandardizationfor electricaland IEC ISO/IEC JTC 1 ITU-T

ISO/IEC JTC 1 SC 39 ‘Sustainability for and by Information Report “Intelligent sustainable buildings for smart sustainable Technology’: cities”, which provides technical guidance on environmentally- conscious design, maintenance, repair and operating principles is currently developing an International Standard for Server Energy and best practices from construction through to lifetime use and Effectiveness Metric (SEEM); decommissioning http://www.itu.int/en/ITU-T/focusgroups/ssc/ has recently started standardization of KPI, which quantifies the Documents/website/web-fg-ssc-0136-r6-smart-buildings.docx and energy effectiveness of an “application platform” for an IT service in other reports from the FG-SSC: data centers. http://www.itu.int/en/ITU-T/focusgroups/ssc/Pages/default.aspx http://www.iso.org/iso/standards_development/technical_ committees/list_of_iso_technical_committees/iso_technical_ committee.htm?commid=654019 DATA CENTERS CEN/CENELEC/ETSI IEEE Coordination Group Green Data Centres IEEE has standardisation activities that contribute to assessing and reducing the environmental impact of ICT such as the electronic CENELEC product environmental assessment series, energy efficient CLC/TC 215 ‘Electrotechnical aspects of telecommunication Ethernet and a new “Green ICT” series of projects. equipment’ is revising the EN 50600 series of standards https://ieeesa.io/rp-envr ‘Information technology - Data centre facilities and infrastructures’. IETF The first package of three ENs will be re-published in 2019 with further projects at early revision stages. Furthermore, CLC/TC 215 is The Energy Management (EMAN) Working Group has produced currently working on additional KPIs standards for cooling efficiency, several specifications for an energy management framework, for water usage and carbon usage effectiveness. power/energy monitoring and configuration. See http://datatracker. ietf.org/wg/eman/documents/ for the details. The framework focuses ETSI on energy management for IP-based network equipment (routers, TC ATTM has developed Global KPIs for Energy Management of switches, PCs, IP cameras, phones and the like). Data Centres. A recently published standards track specification (RFC7603) ETSI’s industrial specification group (ISG) operational energy presents the applicability of the EMAN information model in a efficiency for users (OEU) gathers ICT users from the whole variety of scenarios with cases and target devices. These use cases industry (all sectors, e.g. aircraft factories, banks, insurances, energy are useful for identifying requirements for the framework and MIBs. providers) and communities (e.g. European metropolises) and issues Further, it describes the relationship of the EMAN framework to position papers and referential specifications on global KPIs and other relevant energy monitoring standards and architectures. implementation sustainable standardisation. These position papers https://trac.ietf.org/trac/iab/wiki/ are issued to support the development of needed standards by Multi-Stake-Holder-Platform#ICTenvironment standardisation technical committees.

ENERGY SAVING MEASURES ISO/IEC JTC 1

CENELEC ISO/IEC JTC 1/SC 39 (Sustainability for and by Information Technology) Working Group 1 deals with resource-efficient data Other ongoing work includes EN50523:2009 Household appliances centres, including the following tasks: interworking. SUSTAINABLE SUSTAINABLE GROWTH • Development of a data centre resource efficiency taxonomy, ISO vocabulary and maturity model

• Development of a holistic suite of metrics and key performance 2019

Energy model terminology is specified in • indicators (KPI) for data centres • ISO/IEC CD 13273 (Energy efficiency and renewable energy • Development of guidance for resource efficient data centres sources) • Development of an energy management system standard • ISO/DTR 16344 (Common terms, definitions and symbols for the specifically tailored for data centres overall energy performance rating and certification of buildings) • ISO/IEC JTC 1/SC 39 Working Group 3 deals with the design and • ISO/CD 16346 (Assessment of overall energy performance of operation of data centre facilities and infrastructures. buildings) http://www.iso.org/iso/standards_development/technical_ • ISO/DIS 12655 (Presentation of real energy use of buildings) committees/other_bodies/iso_technical_committee. • ISO/CD 16343 (Methods for expressing energy performance and htm?commid=654019 for energy certification of buildings) • ISO 50001:2011 (Energy management systems — Requirements The ongoing standardisation activities by CEN/CENELEC/ETSI on with guidance for use). data centres and other ICT nodes may be referenced in possible • ISO/TC 257 General technical rules for determination of energy future legislation. savings in renovation projects, industrial enterprises and regions` is currently working on a standard on «energy efficiency and savings calculation for countries, regions and cities” (ISO/CD STANDARDISATION ICT FOR PLAN ROLLING 17742) 123 124 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH STANDARDISATION OTHER ACTIVITIES RELATED TO context ofIoT. in smarthomes.Thelong-termperspectiveisM2Msolutionsthe on communicationwithsmartappliancesattheinformation level roadmap towards agreedsolutionsfor interoperability. Thefocus is manufacturers andstakeholders withtheobjectiveofcreatinga together energyconsumingandproducingproducts(EupP) lighting, etc.)aworkinggrouphasbeenestablishedbringing In theareaofsmartappliances(whitegoods,HVAC systems, Working grouponenergyconsumption Building onthestandardspromotedby BuildingSmartAlliance. Stakeholder grouponEnergyEfficientBuildingsDataModels. eeSemantics and decisionmakers need. Framework (SEIF)tomodeltheenergy-relatedknowledge planners For thefirsttimedevelopingaSemanticEnergyInformation SEMANCO http://www.citykeys-project.eu/ standard. Results ofthesepilotscanprovide feedback toimprove the (Recommendation ITU-TL.1440)inTampere andRotterdam. the standard.TheprojectpilotedL.Citiesmethodology L.1440). Resultsofthesepilotsmayprovide feedback toimprove cities pilotingtheL.Citiesmethodology(RecommendationITU-T H2020 supportactionwhichcoordinatesprojectsinseveral H2020 CITYKEYS information sharingandtopusharelevantshortlistofKPIs. Commission, thestandardisationbodiesandcluster, tofacilitate Create aproperbidirectionalcommunicationchannelbetweenthe & economicbehaviourofdatacentres.Disseminatetheresults. measuring them,tocharacterizetheenergy&environmental Define commonKPIsandratios(metrics)methodology for Internet Data Centresinanenergy-efficientandenvironmentallyfriendly Objective ICT-2013.6.2. FP7-SMARTCITIES-2013 Cluster Collaboration methodologies for «goods,networksandservices». example, for ITU&ETSI intheircommonworktofurtheralign regarding thesetwoelements.Theresultscanserve asan of different standardshavebeenassessedwithapositiveoutcome organisations. Elementssuchascompatibilityandtheworkability of variousmethodologiesfor goods,networks,services& With thesupportofICTcompanies,concludingpiloting European Commission

• • https://ec.europa.eu/growth/sectors/digital-economy/ebsn_en http://susproc.jrc.ec.europa.eu/activities/emas/telecom.html published, withreferences tovariousstandards. (BEMPs) for theTelecommunications andICTservicessectorwillbe This year, adocumentonBestEnvironmentalManagementPractice JRC -BestEnvironmentalManagementPractice JRC https://ictfootprint.eu/ energy &environmentalefficiency(EN,ETSI,IEC,ITU,GHG,etc.). Among otheractivities,ithasmappedallstandardsrelatedtoICT adoption ofcarbonfootprint methodologiesintheICTsector. This supportactionistheEuropeanplatform promotingthe H2020 ICTfootprint.eu value chains”(2012) sector throughthesmartuseofICT: connectingSMEsindigital The guidebook“Stimulatingindustrialinnovation intheconstruction European Commission(GROW) these methodologies. the numberofcompaniesreportingtheirfootprint calculatedusing point isclarifiedtheprogresscouldbemeasuredin, for instance, methodologies andassociatedregulationifdefined.Oncethis The impactwillstronglydependontheuptake ofthese https://www.dceureca.eu/ “resource efficientprocurement”ofdatacenters. The “DataCenterEURECAproject”provides valuableinformation on EURECA project EURECA construction sector. develops aframeworkfor digitalvaluenetworksinthe solutions andsystems; of thecurrentandforesight integrationofICTandeBusiness provides amarket analysisoftheconstructionindustryinterms

EUROPEAN REFERENCES • Directive 2004/52/EC of the European Parliament and ELECTRONIC TOLL of the Council on the interoperability of electronic road toll systems in the Community; SERVICE (EETS) • Commission Decision 2009/750/EC on the definition of the EETS and its technical elements; • Recast Directive (EU) 2019/520 on the interopera- POLICY AND LEGISLATION bility of electronic road toll systems and facilitating POLICY OBJECTIVES cross-border exchange of information on the failure to pay road fees in the Union The European electronic toll service (EETS), as required by • COM(2012)474: Implementation of the EETS. the recast Directive (EU) 2019/520 on the interoperability • M/338 47 Standardisation request to CEN, CENELEC of electronic road toll systems and facilitating cross-bor- and ETSI in support of interoperability of electronic der exchange of information on the failure to pay road road toll systems in the EU fees in the Union, adopted on 19 March 2019, is aims at achieving interoperability of the electronic road toll systems in the EU. EETS involves two main stakeholders: REQUESTED ACTIONS

• Toll chargers, which operate either on behalf of the • ACTION 1 Technical standards support for EETS-re- Member State or in the framework of a concession lated activities, e.g. references to standards in Art contract with the Member State, manage the infra- 14.3 of Directive (EU) 2019/520 (Implementing Act structure or levy the tolls for the circulation of vehicles putting down common interfaces and communication on the network they manage. protocols), support the preparation of the Recommen- • EETS providers, supplying drivers or road hauliers with dations for Use (incl. listing of applicable standards) by the necessary equipment and services to access all EU the Notified Bodies EETS Coordination Group (Delegat- tolled infrastructures and ensuring the payment to the ed Act laying down requirements for interoperability toll chargers of the fees due for use of their network. constituents), updating of the EETS Application Guide,

assist the Electronic Toll Committee and the ITS-CG The Directive will enter into force on 18 April 2019 and will • ACTION 2 Continuous review and update, when start to apply in the Member States on 19 October 2021. necessary, of technical standards that support the The Commission will still adopt in the course of 2019 a EETS. That includes improvement of technical stand- Delegated and an Implementing Act which will start to ap- ards based on feedback from actual implementation in ply on the same date as the Directive. tolling systems and maintaining consistency between these standards. Directive 2004/52/EC and Decision 2009/750/EC will be • ACTION 3 Support the European Commission with repealed on 20 October 2021. advice and expertise in technical standards-related SUSTAINABLE GROWTH activities in the field of EETS and electronic tolling in

general. Define more precisely appropriate transition 2019 • EC PERSPECTIVE AND PROGRESS arrangements between different version of technical REPORT standards supporting electronic tolling and EETS, in line with the requirements of Directive (EU) 2019/520. It is necessary to further develop standards, and to revise Support the Notified Bodies Coordination Group in and update existing standards, to define communication their activities defined in Article 19 of Directive (EU) between Toll Chargers and EETS providers, to define pro- 2019/520 , (incl. the preparation of Recommendations filed requirements for interoperable electronic fee col- for Use, incl. listing of applicable standards). Provide lection (EFC), and allow for the effective assessment of assistance to the Electronic Toll Committee and the conformity to specifications, certification and suitability Intelligent Transport Systems Coordination Group in for use of EETS-related standards (underpinned by test matters related to technical standards for electronic standards). tolling and EETS.

47 http://ec.europa.eu/growth/tools-databases/mandates/index.cfm?fuseac-

tion=search.detail&id=216 STANDARDISATION ICT FOR PLAN ROLLING

125 126 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND https://www.iso.org/committee/54706.html close co-operationwithCEN/TC278/WG1. globally. ISO/TC204/WG5 standardisesElectronicFeeCollectionin ISO TC 204standardisationofIntelligentTransport Systems ISO intelligent-transport http://www.etsi.org/technologies-clusters/technologies/ communication protocolsinEurope ETSI TC ITSstandardisationofIntelligentTransport System ETSI systems 12813:2015 –Compliancecheckcommunicationfor autonomous between serviceprovision andtollcharging.RevisionofISO Systematic ReviewofISO12855:2015–Information exchange Provision andToll Charging application profiles for information exchangebetweenService Systematic ReviewofCENTS16986:2016–Interoperable efc#EFCstandards and testsuitesmaybeconsultedathttp://www.itsstandards.eu/ EFC standardsandlinkstothestandardiseddatastructures in Europe.CEN/TC278/WG1 standardisesEFC. Anoverview of CEN/TC278 —standardisationofIntelligentTransport Systems CEN • • ACTION 5 ACTION 5 Directive 2019/520. Directive 2019/520. regard tothetechnologieslistedinArt3.1and3.2of ards applicabletoelectronicroadtollsystemswith Parliament andoftheCounciltoswiftlyadoptstand- down by Directive(EU)2015/1535oftheEuropean isation bodies,inaccordancewiththeprocedurelaid the Commissionshallrequestrelevantstandard- technologies. nology andimprove itsrobustnessagainstotherradio to ensurelong-termavailabilityofDSRCtollingtech- update, whennecessary, relevanttechnicalstandards

According to Art 3.2 of Directive 2019/520 According toArt3.2ofDirective2019/520 Monitor andsupportrelevantactivities

equipment directive. continuous suitabilityanditsconsistencywiththeRadio tial needfor updatingtheCENDSRCinordertoensureits opment ofEETS.CEN/TC 278hasalsoidentifiedapoten- within the scope of M/338 and support the further devel- CEN/TC 278hasidentifiedanumberofactivities,thatfall activities. targeted technicalstandardsassupportfor EETS-related support for EFC standardisationactivitiesinform of(iv) provision ofteststandards).Itisalsonecessarytoprovide EETS suitabilityfor useandproductcertification(through conformity assessmentofimplementationstostandards, and monitoringofkey performance indicatorsfor EETS(iii) maintenance ofexistingEFC standards,(ii)assessment It isrequiredtofurtherdevelopstandardssupport(i) ADDITIONAL INFORMATION • Update of the Working Programme in relation to INTELLIGENT the actions under Article 6(3) of Directive 2010/40/ EU (11 November 2018) TRANSPORT • Commission Delegated Regulation (EU) No 305/2013 supplementing Directive 2010/40/EU of SYSTEMS - the European Parliament and of the Council with regard to the harmonised provision for an interoperable CONNECTED AND EU-wide eCall • Commission Delegated Regulation (EU) N° AUTOMATED 885/2013 supplementing ITS Directive 2010/40/EU MOBILITY (ITS- of the European Parliament and of the Council with regard to the provision of information services for safe CAM) AND and secure parking places for trucks and commercial vehicles ELECTROMOBILITY • Commission Delegated Regulation (EU) No 886/2013 supplementing Directive 2010/40/EU of the European Parliament and of the Council with POLICY AND LEGISLATION regard to data and procedures for the provision, where POLICY OBJECTIVES possible, of road safety-related minimum universal traffic information free of charge to users Intelligent transport systems apply ICT to the mobility sec- • Commission Delegated Regulation (EU) No tor. ITS services and applications can create clear benefits 962/2015 supplementing Directive 2010/40/EU in terms of transport efficiency, sustainability, accessibility, of the European Parliament and of the Council with safety and security, whilst contributing to the EU’s single regard to the provision of EU-wide real-time traffic market and competitiveness objectives. information services • Commission Delegated Regulation (EU) No 2017/1926 supplementing Directive 2010/40/EU EC PERSPECTIVE AND PROGRESS of the European Parliament and of the Council with

REPORT regard to the provision of EU-wide multimodal travel information services To take full advantage of the benefits that ICT-based sys- • Commission Decision 2008/8455/EC final on the tems and applications can bring to the mobility sector it conclusion of an Implementing Arrangement between is necessary to ensure interoperability and continuity of the European Commission and the Department of the services among the different systems and services Transportation of the United States of America in the throughout Europe. The existence of common European field of research on Intelligent Transport Systems and standards and technical specifications is paramount to Information and Communication Technologies applica- ensure the interoperability of ITS services and applications tions to road transport SUSTAINABLE GROWTH and to accelerate their introduction and impact. Interna- • COM(2008)886 final: Commission Communication tional cooperation aiming at global harmonisation should Action Plan for the deployment of intelligent transport 2019 • be pursued. systems in Europe • Commission Decision 2008/671/EC on the harmonised use of radio spectrum in the 5875-5905 REFERENCES MHz frequency band for safety-related applications of Intelligent Transport Systems (ITS) • Directive 2010/40/EU of the European Parliament • Recommendation C/2006/7125: Safe and efficient and of the Council on the framework for the deploy- in-vehicle information and communication systems: ment of Intelligent Transport Systems in the field of update of the European statement of principles on road transport and for interfaces with other modes of human machine interface (EsoP). transport • COM(2016)787 final: Reporting on the monitoring • Decision (EU) 2017/2380 of the European Par- and assessment of advanced vehicle safety features, liament and of the Council of 12 December 2017 their cost effectiveness and feasibility for the review

amending Directive 2010/40/EU as regards the period of the regulations on general vehicle safety and on STANDARDISATION ICT FOR PLAN ROLLING for adopting delegated acts the protection of pedestrians and other vulnerable road users 127 128 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH munications) . Release 2 for C-ITS (including V2V, V2I/I2V andI2Icom- the resultsofmandate,inparticularby achievingthe pleting theactivitiesforeseen intheM/453andbuilding required todeploy C-ITS systemsandapplications,com- 48 ACTION 3 Mandate M/453 telligent transportintheEuropeanCommunity (C-ITS): to support interoperability ofco-operative systemsfor in- the fieldofinformation andcommunicationtechnologies Co-operative systemsfor IntelligentTransport in ACTION 2 ACTION 1 of standards. assessing theconformity oftheidentifiedminimumset operability testing,includingguidelineswithmethodsfor ments andrelevantcommunication standards.. eu). Inparticular, SDOsshouldagree oncommonrequire- road users(VRU,e.g.projects like VRUITSwww.vruits. related standardsfor applicationstosupportvulnerable CO-OPERATIVE SYSTEMS: REQUESTED ACTIONS • • • • • infrastructure and Councilonthedeployment ofalternativefuels Directive 2014/94/EUoftheEuropeanParliament cooperative, connectedandautomatedmobility tive IntelligentTransport Systems,amilestonetowards COM (2016)766-AEuropeanstrategyonCoopera of transport transport andfor interfaceswithothermodes Intelligent Transport Systemsinthefield ofroad 2010 ontheframeworkfor thedeployment of pean Parliament andoftheCouncil7July support ofDirective2010/40/EUtheEuro- ligent Transport Systems(ITS)inurbanareas in standardisation organisationsasregardsIntel- a standardisationrequesttotheEuropean sion ImplementingDecisionof12.2.2016on Standardisation RequestM/546:Commis- mobility ofthefuture” “On theroadtoautomatedmobility:AnEUstrategyfor COM(2018)283 final:CommissionCommunication; port Systems(ITS)safety-related bandat5.9GHz to CEPTstudytheextensionofIntelligentTrans - RSCOM17-26 rev.3 (Final): StandardisationRequest MARY&optDisplay=10&titleType=all List=%27M%2F453%27&qSORT=HIGHVERSION&qREPORT_TYPE=SUM- asp?SearchPage=TRUE&butExpertSearch=++Search++&qMandate_ https://portal.etsi.org/webapp/WorkProgram/Frame_WorkItemList.

Taking intoaccounttheC-ITS architecture,ICT

To complete the minimum set of standards Plugtest activitiesfor conformity andinter- 48

Infrastructure Directive2014/94/EU. system asbeingdevelopedunder theAlternativeFuels Electric vehicles(EVs)- cept ofExtendedVehicle (ISO20077-1:2016). ISO standardfor accesstoin-vehicledataunderthecon- which enableITSservices,tkaingintoaccounttheexisting the minimumdatasetsandstandardisedprotocols security (i.e. integrity, authentication and availability) and lution ofOBD2),includingthenecessaryminimumlevel an advancedphysical/electrical/logical interface (e.g.evo- ACTION 4 ACTION 5 been identified: data. Thefollowing relatedstandardisationneedshave interface, data server platform) for accessing in-vehicle nical solutions(on-boardapplicationplatform, in-vehicle es”) oftheC-ITS Platform hasidentified3possibletech- Working group6(“Accesstoin-vehicledataandresourc- sions andobligationsfor heavygoodvehicles(HGV). plan (action4.1)focused onsynergiesamonglegalprovi- taken into account. A study launched under the ITS Action sis seemstobelacking.C-ITS standardsshouldalsobe ITS study)butanoverall logicalandcost-effective synthe- recommendations oftheEeIPTask ForceOPEN,andthe GST, OVERSEE, theeSafety working group on SOA and the providing buildingblocks(e.g.theresearchprojectsCVIS, The issueso far has been addressedin a fragmentedway, and (generic)infrastructuresystemsfacilities. legacy in-vehicle communication networks(e.g. CAN-bus) proach and ensuring interoperability/interconnection with ture enablinga‘singleplatform —multipleservices’ap- benefit fromanagreedopenin-vehicleplatform architec- cle-based intelligenttransportsystemsandserviceswill The development, operation anduseracceptance of vehi- ETSI TS102941,v1.2.1inMay2018. the recently updated definitions of these protocols in the thorisation ticket requestsarealsoaprioritystartingfrom cols and profiles for enrolment credential requests or au- the certificaterevocationlist(CRL).2)Standards for proto- to the misbehaviour detection decision nodes, format of ments definition, standardisation of the data transmitted revocation oftrustfor C-ITS stationsincludingrequire- dress the following areas: 1) misbehaviour detection and port multi-stakeholder businesscases,SDOshouldad- pan-European usable trustpolicyandprocessesto sup- OPEN IN-VEHICLE PLATFORM ARCHITECTURE: To supporttheimplementationofauniform SDOstodevelopthemissingstandardsfor as partoftheelectromobilityeco -

ACTION 6 The European Commission further intends a Digital local dynamic maps (specifically for the safety re- discussion with the ESOs and the stakeholders on possible lated applications such as C-ACC and VRU): actions related to electromobility, e.g. address the following aspects: ACTION 9 SDOs to extend the local dynamic map standards to integrate mechanisms supporting the use of high • to define a comprehensive approach towards seam- precision positioning and related objects. This may require less, user-friendly services, SDOs are requested to additional specific object definition standardisation. work on smart charging and vehicle-to-grid (V2G) communication protocols, message datasets, interfac- TRAFFIC CENTRE AND I2I COMMUNICATION: es, and back-office platforms ACTION 10 Further development of the DATEX II standard • Regarding in-vehicle systems, integration of EVs taking into account input from road operators. The communication with car architectures; sub-system Commission published on 4 June 2015 a call for proposals partitioning and their interfaces; X-by-wire controls; for a Programme Support Action (PSA) for Intelligent testing and management of energy storage systems Transport Services for Road (ITS) in the framework of the with on-board battery management system, metering connecting Europe facility (CEF). In particular the focus of and certification. this call for proposals is on the maintenance and further • These activities need to be embedded into the devel- development of DATEX II for the provision of interoperable opment of interoperable infrastructure and services for intelligent transport systems and services for road electromobility as a whole- where all elements must transport. be linked: Car- Charge Point-Charge Point Opera- tor-IT backend- e Mobility service providers and Grid URBAN ITS: AND EU-WIDE MULTIMODAL TRAVEL operators. The development of standards should allow INFORMATION SERVICES: EV users for ad-hoc payments (without any service Standardisation request on urban ITS M/546 (Com- agreements with e-Mobility service providers) which mission Implementing Decision of 12/2/2016) is required under the Directive 2014/94 . Accessibility of data on the charging/ fuelling infrastructure for The pre-study on Urban ITS was carried out by CEN/TC alternative fuels is being coordinated through the Pro- 278. The report can be downloaded from: http://tc278.eu/ gramme Support Action (from the Connecting Europe index.php/urban-its. It identified several actions.

Facility) ACTION 11 As possible further activities in relation to LOCATION PRECISION: standardisation work on Urban ITS the Commission will It is essential to most safety applications to realize a high also discuss the following aspects with the ESOs and precision location reference beyond current global navi- stakeholders: gation satellite systems enabling more effective and advanced safety applications. To achieve this, all functional The requested European standards and European stand- and technical methods need to be used (e.g. crowd sourc- ard deliverables should reuse, harmonise or interface as ing, high precision objects and radio communications). far as possible with existing standards, specifications (incl. SUSTAINABLE GROWTH priority actions A and B within the ITS Directive) and pro-

ACTION 7 SDOs to standardise data and communication jects (CIVITAS, POSSE and smart cities projects etc.). In the 2019 • aspects to ensure interoperable implementation and data domain of public transport, and particularly with respect sharing system for increased location. to multimodal information and smart ticketing, the need for consistency will affect a broad set of standards and DIGITAL MAPS: technical specifications, namely: ACTION 8 SDOs to develop standards / specifications to steer and manage the exchange of accurate (public) • Transmodel, the European Public Transport Refer- road data in navigation-oriented maps, and of the timely ence Data Model (EN 12896) composed of 8 parts, integration of such updates in ITS digital maps for naviga- modelling the semantics of the main public transport tion and more advanced in-vehicle applications, including domains: common concepts (Part 1), network topology cooperative ITS and automated driving, and for non-vehi- (Part 2), timing information & vehicle scheduling (Part cle ITS applications, and addressing a possible alignment 3), operations monitoring and control (Part 4), fare with the technical framework for infrastructure for spatial management (Part 5), passenger information (Part 6),

information in the European community (Inspire). Driver management (Part 7), management information STANDARDISATION ICT FOR PLAN ROLLING (Part 8) 129 130 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH • • • • • • • pooling): anextensionof Transmodel. Alternative modesdatamodel (car/cyclesharing,car The workiscompliantwithTransmodel. Service andtoenableQualityofevaluation. port thestudyandcontrolphaseofPublicTransport to beexchanged,gatheredandstoredinordersup- supports theidentificationofPublic Transport raw data OpRa (OperatingRawdataandstatisticsexchange), scenarios. functional systemarchitectureandtheapplication 24014-1 standard,currentlyunderrevision,defining standard describingthedataelementsandISOEN tecture andtheapplicationscenarios;EN1545 under revision,definingthefunctionalsystemarchi- erability (IOPTA) standardISOEN15320,currently management (IFM)systems:PublicTransport interop - Standards supportingtheemerginginteroperablefare of plannedpublictransportinformation; defines aphysicaldatamodelandstandardexchanges 16614 1-3),basedonTransmodel parts1,2,3and 5,it NeTEx (NetworkandTimetable Exchange,CENTS public transportinformation; Transmodel, definesstandardexchangesofreal- time 15531 1-4&CENTS15531-5),largelybasedon SIRI (SystemInterfacefor Real-timeInformation (EN 2017/1926 (priorityactionA):Public Transport requirements ofthe Delegated Regulation EU the actions,inparticularNecessary tofully satisfy - Link RoadTransport /Publictransport - - - - - trip/route representation). be linked toTransmodel/NeTEx (inparticularto taking advantageoftheGDFstandard andshall The workshallbebasedonINSPIRE, possibly pedestrian networkwithaccessibility features. quality, side-by-side cycling,etc)and theentire detailed cyclenetworkattributes(e.g.surface other vehiclesorareforbidden) togetherwith roads inwhichcyclesareallowed togetherwith cycle network(i.e.entirecyclingandof data model/dataexchangeformat for theentire Action 11c:tocompletetheinfrastructure modes. combination oflegacytransportwithalternative in ordertoachievefullmobilityandallow for existing standards,Transmodel/ NeTEx/DATEX services. Theworkshallbeincoherencewith related dataexchangeformats andpublication modes (car/cyclesharing/pooling)andtodevelop and dynamicdatarelatedtothealternative Action 11b:tocompletedatamodelsfor static pliance withTransmodel andNeTEx. and publicationservicesrelatedtoOpRaincom- Action 11a:todefinedataexchange formats

dressing thefollowing aspects: the ESOsandstakeholders onpossiblefurtheractionsad- ACTION 12 • • • • • • • collection anddistribution by providing StandardisedAPIsfor smartphone data vulnerable roadusers intotheoverall trafficplanning integrate appbasednewmobilityservicesand roadside controllers. provide interface specifications for roadsidesensorsto operators. eller-facing MoD/MaaSintermediaryandtransport of “fulfilmentrequests/responses”betweenatrav- TR andfurtherdeliverablesrelatedtothespecification (mobility ondemand),SDOstoprovide a“categorising” In respectofthesofarvaguelydefinedtermMoD services. can beusedtoassistadministrationsmanagesuch collection, socialservicevisits,etc. ITStechnologies gritters, roadmaintenanceoperations,buses,waste or partofurbantransport,e.g.managementroad provide standardstomanageservicesthatimpact ment incontrolledtrafficzones. provide standardstomanageoperationsandenforce - Regulations. to supportverificationofcontent for Electronic Traffic (METR). Itisalsonecessarytoprovide mechanisms robustly andsecurelybetweeninterestedparties standardized meanstoexchangeTraffic Regulations and applicabilityoftrafficregulations,toprovide provide standardizedmeanstodefinethecontent assist trainingprogrammesfor ITSexperts. training opportunities,andguidancetouniversities of variousoptions,andprovide theopportunityfor users ofthecompatibilitiesandincompatibilityissues same orcommunicatingsystems;informing potential and different manufacturerstobemixedwithinthe coordination andallows equipmentofdifferent types operating Urban-ITS/ITS.EU-ICIPwillassistinteragency tion andconsistencyfor agenciesimplementingand Specification. EU-ICIPwillprovide guidance,informa- and information protocols’(EU-ICIP)guideorTechnical develop andissuea‘EuropeanITScommunications - - sation initiatives II) takingaccountofindustry-leddataharmoni- isting standards(Transmodel/NeTEx andDATEX parking domain,bringingalignmentbetweenex- between key datamodellingconceptsfor the Action 11d:todevelopclearinteroperability The Commission wil have discussion with TheCommissionwilhavediscussionwith

In the areas of Public Transport and Link Road Transport ACTION 17 To continue international cooperation in the there may be further actions to satisfy the requirements field of ITS-CAM standardisation, in particular with the of the Delegated Regulation EU 2017/1926 (priority ac- USA and Japan, but also with other regions, including par- tion A). This will be further discussed. ticipation of the relevant SDOs.

ACTION 13 SDOs to develop standards supporting the AUTOMATED DRIVING: emerging IFM, taking into account the findings from the The developments in C-ITS and in various European / na- smart ticketing alliance. This should include the develop- tional / private pilots with autonomously driving cars are ment of: generally seen as two converging paths towards so-called “connected automated driving”: vehicles being connect- • technical specifications and test procedures for the ed to the mobility ecosystem in their immediate vicinity quality assurance of the interoperable fare medium; (other vehicles, infrastructure) and to the wider mobility • technical specifications and standards for profiles of ecosystem (central traffic management systems, other information exchange between the operational entities modes of transport, etc..) and to the internet. The aim is in IFM; and to make this convergence as smooth and efficient as pos- • a technical report for a security architecture framework sible.

DATA: ACTION 18 SDOs to assess the standardisation needs ACTION 14 ESOs should deliver work on reference data of connected automated mobility and develop a work models, common data dictionaries and metadata struc- programme, based on the expected convergence of de- ture across the three domains and specific European velopments in C-ITS and in automated vehicles in all au- standards: tomation levels

• Multimodal information services: new mobility services, ACTION 19 SDOs are invited to develop and perform a alternative fuels infrastructure; gap analysis with respect to the broad range of services • Traffic management: static/dynamic road data, traffic for Cooperative, Connected and Automated Mobility tak- and traffic control data, weather data and traffic priori- ing into account the existing C-ITS architecture,standards tisation and access regulations; and and technical specifications, in particular those developed

• Urban logistics: intelligent parking for light vehicles/ within the framework of M/453. The analysis should iden- commercial vehicles/trucks and loading bays infor- tify missing complementary standards and identify pos- mation and reservation services for special freight sibly conflicting standards with the overarching objective vehicles and logistic sectors of full C-ITS service interoperability. The analysis should • Land transport: be based on currently implemented technologies (recognised by Member States within the C-Roads platform ACTION 15 Another issue is related to on board weighing and subject to automotive deployment in line with COM systems for trucks, where different providers may equip (2016) 766) while also considering newly emerging tech- the tractor and the trailers that it will tow. ESOs should nologies (in line with the 5G Action Plan) and build upon SUSTAINABLE GROWTH develop an interface standard between the different the principles and results of the RSCOM Mandate to CEPT suppliers to ensure that the on board weighing computer (RSCOM17-26 rev.3) with the aim to enable interoperabil- 2019 • in the tractor will be able to receive the weights per axle ity between all C-ITS end user services. of any trailer, store them, secure them, and then calculate the total weight of the vehicle. This standard could be SECURITY IN THE CONTEXT OF ITS: based on cooperative intelligent transport systems (c-ITS). ACTION 20 SDOs to investigate security aspects of Connected and Automated Mobility (CAM) and intelligent ACTION 16 SDOs to consider standardisation activities in transportation systems. : SDOs are invited to analyse the support of EU-wide data privacy policies (e.g. GDPR) in the evolution of C-ITS ‘Day1’ standards from a security angle area of ITS-CAM to support automated vehicles design and deployment. In particular, SDOs are invited to expand standards based on International cooperation aiming at achieving the neces- the already defined C-ITS security mechanisms to achieve sary global harmonisation of standards is paramount in appropriate levels of authenticity and integrity of messag- the field of ITS-CAM. es being exchanged between fixed and mobile C-ITS sta-

tions for higher levels of automation use cases. Standards STANDARDISATION ICT FOR PLAN ROLLING shall provide suitable mechanism to support C-ITS services going beyond information services, building upon the 131 132 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH according to COM (2016) 766.. according toCOM(2016)766.. of theEUC-ITS securitycredentialmanagementsystem C-ITS certificate&securitypolicyandtheimplementation ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND need technicalharmonization for intermodaloperationin thecase applied toroadtraffic andtransport,includingthoseelements that CEN/TC 278develop standards inthefieldoftelematicstobe CEN 3GPP andLTE V2Xareprogressing. EFC applicationsbasedonin-vehicleITSstations See alsoCEN/TR16690onElectronicfee collection—Guidelinesfor CEN DSRCtechnologyat5.8GHz. ensure non-detrimentalinterference from ITS-G5tosystemsusing (such asASECAPandC2CCC) tofindanappropriatesolution CEN andETSIare working,inconsultationwithmainstakeholders CEN, ETSI organisations. needs betweenthestandardsdevelopedby thedifferent Harmonisation taskgroups(HTGs) arelookingintoharmonisation activity. Evaluation oftheapplicationexistingstandardsisanongoing ETSI, CEN,ISO,SAE,IEEE SAE looksatelectricalconnectionsrelatedactivities. activities. HLC &JWG betweenTC204 andTC22 discussinghow tocontinue In-vehicle Platform. ISO TC22 &ISOTC204 (CEN/TC278 WG16 &TC 301),SAE. RSCOM17-26 rev.3 can servefor C-ITS purposes,inlinewiththeRSCMandatetoCEPT compatibility betweenthedifferent radioaccesstechnologiesthat ETSI ERMTG 37islookingatissuesregardinginteroperabilityand technology mayalsoserveC-ITS purposes. impending completionofRelease14,giventhatthisaccess The progressof3GPPandLTE V2Xisalsorelevant,notingthe other SDOssuchasSAEandIEEE. listing Release1standardsalsoincludesrelevantfrom ISO TR17465-3withtheCEN/ISORelease1list.Ajointdocument 101 067withtheRelease1standardsanddevelopmentof Release 1hasbeenfinalised—seeETSI TC ITStechnicalreportTR Coordination Group(ITS-CG) [3]. CooperationisalsoensuredthroughtheITSStandardisation CEN/TC 278www.itsstandards.eu withISOTC 204andETSITC ITS CEN, ISO,ETSI

Symbols for usewithBiometricSystems multi-partstandard. implementation ofbiometrictechnologies—Pictograms,Iconsand ISO/IEC 24779-x—Cross-Jurisdictionalandsocietalaspectsof Biometric presentationattackdetectionmulti-partstandardand (both capableofholdingthesameinformation), ISO/IEC30107-x and atextualdataformat basedonanXMLschemadefinition binary dataformat basedonanextensiblespecificationinASN.1 data interchangeformats for therepresentationofdata:atagged data interchangeformats ISO/IEC39794-x(e.g.genericextensible format standardsspecifyingXMLencoding,extensiblebiometric projects: amendmentsofISO/IEC19794-x:2011/Amd.2:2015data and societalaspectsofbiometricimplementation.Representative implementation ofbiometricsystems,andcrossjurisdictional biometric profilesandotherstandardsinsupportoftechnical different biometricmodalities,technicalinterfaces,related include theseriesofbiometricdatainterchangestandardsfor Published standardsandongoingprojectsrelatedtothetopics Biometrics. be found inISOStandardsCatalogueofISO/IECJTC 1/SC37— complete listofstandardspublishedorunderdevelopmentcan technical_committees/jtc1_home/jtc1_sc37_home.htm .The http://www.iso.org/iso/home/standards_development/list_of_iso_ aspects ofbiometricimplementation.SC37Biometricshomepage: performance testingandreporting,crossjurisdictionalsocietal evaluation criteriatobiometrictechnologies,methodologiesfor in supportoftechnicalimplementationbiometricsystems, interchange formats, relatedbiometricprofilesandotherstandards biometric applicationprogramminginterfaces,data human biometricstandardsinclude:commonfileframeworks, and datainterchangeamongapplicationssystems.Generic technologies pertainingtohumanbeingssupportinteroperability SC 37isresponsiblefor thestandardisationofgenericbiometric ISO/IEC JTC1/SC37 provides acrosscuttingworkspacetoliaisewithotherSDOs. aspects. WG17 isnotonlyastandardsdevelopmentgroup,but the priorityareasidentifiedinM/546butnotlimitedonlytothese standardisation requirementsfor UrbanITS,initiallyfocussing on CEN/TC 278WG17 hasbeencreatedspecificallytoaddress public transportmanagement;userinformation. concerned; trafficandparkingmanagement;user feecollection; vehicles; vehiclemanmachineinterfacingasfartelematicsis between vehiclesandroadinfrastructure;communication swap bodyandgoodswagonidentification;communication of othermeanstransport.Itshallsupport:vehicle,container, Report “ITSusagein ITUMemberStates”(ITU-RM.[ITSUSAGE]). Radiocommunications” (M.2228).Work isprogressingtoward anew applications” (ITU-RM.1452),andReports including“AdvancedITS avoidance radarsandradiocommunication systemsfor ITS at 5.8GHz”(ITU-RM.1453);“Millimetre wavevehicularcollision (ITU-R M.1890);“ITS-Dedicatedshort rangecommunications applications”(ITU-R M.2057);“ITS-Guidelines andobjectives” radars operatinginthefrequencyband 76-81GHzfor ITS (ITU-R M.2228);“Systemscharacteristicsofautomotive standards ofV2VandV2Icommunicationsfor ITSapplications” Approved variousRecommendationsincluding“Radiointerface ITU-R: communications. ITU hasvariousstandardizationactivitiesintheareaofITS ITU

ITU-T: powerline communications to be used in charging electric vehicles (EVs), and IEEE 2030.1.1 on DC quick charging. SG16 approved Recommendation ITU-T F.749.2 “Service requirements for vehicle gateway platforms” and is working on IEEE P2020 standardises a suite of objective and subjective two draft new Recommendations on architecture (H.VGP-ARCH) test methods for measuring automotive camera image quality and interfaces (G.V2A) of the vehicle gateway platform that can be attributes, and tools and test methods to facilitate decision making used for inter-vehicle communications. Also, studies have started among OEM and Tier 1 system integrators and component vendors concerning taxonomy of automated driving (F.AUTO-TAX) and gap regarding automotive ADAS image quality. analysis of vehicle gateways (HSTP-VG-Gap). The IEEE P7000 standards family addresses ethical considerations SG13 approved Recommendation ITU-T Y.2281 “Framework of in a broad range of artificial intelligence/autonomous system uses, networked vehicle services and applications using NGN”. including vehicular contexts.

SG17 has created a dedicated group (Question 13/17 on ITS For a list of these and other IEEE standardization activities on security) which started work on “Security guidelines for V2X transportation, please see: communication systems” (X.itssec-2), “Security requirements for https://ieeesa.io/rp-its vehicle accessible external devices” (X.itssec-3), “Methodologies for intrusion detection system on in-vehicle systems” (X.itssec-4) and IETF “Security guidelines for vehicular edge computing” (X.itssec-5). SG17 The Emergency Context Resolution with Internet Technologies has finalized and approved Recommendation ITU-T X.1373 “Secure (ECRIT) Working Group (https://datatracker.ietf.org/wg/ecrit/about/) software update capability for ITS communication devices”: https:// has developed a general architecture for enabling IP applications to itu.int/itu-t/recommendations/rec.aspx?rec=13197 discover and connect to emergency services.

SG20 started working on “Framework of Cooperative Intelligent The Geographic Location/Privacy (GEOPRIV) Working Group (https:// Transport Systems based on the Internet of Things (Y.IoT-ITS- datatracker.ietf.org/wg/geopriv/about/) has developed protocols that framework). allow IP networks to inform end devices about their geolocation, a List of ITS work items in ITU: http://itu.int/en/ITU-T/extcoop/cits/ critical prerequisite for emergency calling. Documents/ITS-work-items.xlsx The application-specific working groups in the IETF, for example the The ITU established a platform named the Collaboration on ITS Session Initiation Protocol Core (SIPCORE) Working Group (https:// Communication Standards (CITS) to provide a globally recognized datatracker.ietf.org/wg/sipcore/about/), have developed extensions forum for the creation of an internationally accepted, globally to support emergency calling as required. harmonized set of ITS communication standards: http://itu.int/en/ The IP Wireless Access in Vehicular Environments (ipwave) WG ITU-T/extcoop/cits works on Vehicle-2-Vehicle (V2V) and Vehicle-2-Internet (V2I) Finally ITU organizes various events on ITS communications, notably use-cases where IP is well-suited as a networking technology and will develop an IPv6 based solution to establish direct and secure the Symposium on the Future Networked Car (FNC-series), which is a yearly event (March) organized since 2005 at the Geneva connectivity between a vehicle and other vehicles or stationary International Motor Show. See previous and current editions at: systems. These vehicular networks are characterized by dynamically https://itu.int/en/fnc changing network topologies and connectivity. V2V and V2I communications may involve various kinds of link IEEE layers: IEEE 802.11-OCB (Outside the Context of a Basic Service The transportation sector is undergoing a massive transformation Set), IEEE 802.15.4 with 6lowpan, IEEE 802.11ad, VLC (Visible Light through electrification and automation. Autonomous vehicles will Communications), IrDA, LTE-D, LP-WAN. One of the most used link open up new opportunities for Mobility as a Service (MaaS). IEEE layers for vehicular networks is IEEE 802.11-OCB, as a basis for SUSTAINABLE SUSTAINABLE GROWTH has standards activities in support of this transformation, including: Dedicated short-range communications (DSRC). Several of these link-layers already provide support for IPv6. However, IPv6 on Intra-vehicle communication: IEEE 802.3 (Ethernet) standards

IEEE 802.11-OCB is yet to be fully defined. Some aspects of the 2019

evolve to support high bitrates and Time Sensitive Networking (TSN) • IPv6 over IEEE 802.11-OCB work have been already defined at in a vehicle. IEEE 1609 and the specification produced by this working group is V2X-wireless communication: IEEE 802.11 (WLAN) standards expected be compatible with these aspects. have been optimized as the physical layer for mission critical This group’s primary deliverable (and the only Standards track communication and ad-hoc networking between vehicles and item) will be a document that will specify the mechanisms for vehicles and the infrastructure in the dedicated 5.9 GHz spectrum transmission of IPv6 datagrams over IEEE 802.11-OCB mode. (IEEE 802.11p). In March 2018, a SG NGV (Study Group Next https://trac.ietf.org/trac/iab/wiki/ Generation Vehicular) was created to prepare for standardisation of Multi-Stake-Holder-Platform#IntelligentTransport the next generation of IEEE 802.11p, which will support many more use cases. ETSI ITS G5 relies on IEEE 802.11p and will benefit from International cooperation for the development of harmonised global IEEE NGV. standards is particularly important in these areas. The Commission has concluded agreements with the US Department of Transport The so-called IEEE WAVE standard (Wireless Access in Vehicular and with the Japanese Ministry for Land Transport and Industry. Environments) adds a whole protocol stack on top of IEEE 802.11p. Cross-regional harmonisation task groups (HTGs) have been IEEE 1609.2 standardises a PKI based security architecture and established in this area. security functions for V2X. ETSI ITS-G5 and IEEE WAVE coordinate ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING to harmonize security features for V2X. ETSI has cooperation and liaison agreements with relevant standards organisations such as IEEE, SAE, ISO, IETF, and Charging communication: IEEE 1901 provides broadband over 133 134 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH STANDARDISATION OTHER ACTIVITIES RELATED TO http://www.unece.org/trans/main/welcwp29.html environmentally sound. technological innovations ofvehiclestomake themsafer andmore The worldforum hasincorporatedintoitsregulatoryframework world forum for harmonizationofvehicle regulations(WP.29). The UNECEtransportdivisionprovides secretariatservicestothe UN/ECE WP29 the individualAG membersasagreedwithintheAG. harmonisation isprovided totheEuropean communitydirectlyby A strongsupportfor standardisation activities,regulationand Cooperative-ITS functionalities andtechnologiesEuropeanwide. ASECAP, CEDR and POLISfor smoothalignmentofdeployment of This isanumbrellaorganisationbringingtogethertheC2C-CC, “Amsterdam Group”(AG) Stakeholder organisationsproviding inputtoETSIandCEN ERTICO —ITSEurope,GSM-A and transportationserviceshttp://www.5gaa.org.org manufacturers todevelopend-to-endsolutionsfor futuremobility Association toconnectthetelecomindustryandvehicle 5G AutomotiveAssociation(5GAA) and interoperabilityhttps://www.c-roads.eu/platform.html implementing C-ITS servicesin lightofcross-borderharmonisation States, 7associatedstatesandroadoperatorsfor testingand The C-Roads Platform isajointinitiativeof16EuropeanMember C-ROADS CEN workinggroups. actively participatesandchairsETSITC ITS.Italsocontributesto The industryorganisationrepresentscarmanufacturersand Car-2-Car Communication Consortium(C2C-CC) Member States. system, inviewtoensuretheinteroperabilityofsystemsacross issues suchasstandardisation,orsecurityandcertificationofthe administrative andgoverning aspects,butalsoonmoretechnical of allC-ITS stakeholders tocooperateonlegal,organisational, Established by theCommission,itbringstogetherrepresentatives C-ITS Platform See the globalmarketplace. interoperable ITScommunication-relatedproductsandservicesin expeditious mannerpossibletoenabletherapiddeployment offully of ITScommunicationstandardsthehighestqualityinmost the creationofaninternationallyaccepted,globallyharmonisedset Standards (CITS)aimsatproviding agloballyrecognizedforum for ITU haslaunchedtheCollaborationonITSCommunication (Korea) andtheAsianPacific Telecommunication organisation(APT). standards organisationssuchasARIB(Japan),CCSA(China)andTTA ETSI haveliaisonsandcontactswithregionalnational standardisation supportingindustrygroupslike TISA.Additionally http://itu.int/en/ITU-T/extcoop/cits

COMMUNICATIONS. ARCHITECTURES BEYOND SHORT RANGE RELATED INFORMATION EXCHANGE AND INFRASTRUCTURE TO INFRASTRUCTURE (I2I) ICT FOR TRAFFIC MANAGEMENT cheaper. and betweengovernment andcommercialpartieseasier communication throughoutEuropebetweengovernmental parties to andfromgovernment abouttransportandtrade.Itmakes an importantstandardfor providing alignmentfor announcements The WCO datamodel(worldcustomsorganisationdatamodel)is WCO Datamodel C-ROADS, SPITS SIM-TD, SCORE@F, eCoMove, EasyWay, C-ITS CorridorAT/DE/NL, PRESERVE, ITSSv6,ComeSafety2, COMPASS4D, iMobilitySupport, contributing tofine-tuningthestandards,suchasDriveC2X, FOTSIS, pilots andfieldoperationaltestsintheareaof C-ITS, inparticular The standardisationactivitiesaresupportedby RTDprojects, EU andnationalfundedRTDprojectspilots http://www.mirrorlink.com/ processor. computing power itselfandreliesinsteadonthephoneasits The MirrorLinkinitiativeturnsthecarintoaterminal,ithaslittle MirrorLink initiative http://www.genivi.org/ consumer infotainment cycles. The alliancedevelopsanopenstandardfor aligningautomotiveand (IVI) software. broad adoptionofspecified,opensource,in-vehicleinfotainment GENIVI® isanon-profitindustryalliancecommittedtodrivingthe GENIVI In 2020DATEX IIis expected tobetheinformation model for road control centres,traffic information centresandservice providers. e-language for trafficandtraveldataexchangebetween DATEX dataexchangestandards.DATEX IIisastandardised CEN/TC278/WG8 http://standards.ieee.org/develop/msp/its.pdf transportation, pleasesee: For alistoftheseandotherIEEEstandardizationactivitieson and IEEE2030.1.1onDCquickcharging. broadband over powerline communicationstobeusedincharging, IEEE hasstandardsonchargingcommunication:1901provides IEEE standardisation,. have alsopotentialtoprovide outcomesrelevanttoCAM/ITS Pilots frombothIoTLargeScaleand5GCorridorsinitiatives EV-VC willhaveoutcomespossiblyrelevant for standardisation. ENSEMBLE andgreen e-motionthesupportactionsmart pilots ICT4EVEU,MOBI.Europe,MOLECULES,SmartCEM,CODECS, SmartV2G, ODIN,COSIVU,SafeAdapt, Smart-LIC, VRUITSandthe Projects suchasMobinet,Mobincity, eCo-FEV; E-DASH,eDAS, EU fundedRTDprojectsandpilots

AND AND traffic and travel information in Europe. The aim is to get the real Smart Ticketing Alliance mature parts of DATEX II standardised as European standards. The Smart Ticketing Alliance (STA) represents a platform for ISO cooperation and a coordinated approach for establishing ticketing interoperability for the Public Transport sector. www.smart-ticketing. Standardisation activities are taken up in this area by ISO TC 204, org with strong cooperation with CEN/TC 278, but also by ISO TC 22. ISO/TS 15638-19:2013 ITS — Framework for collaborative ITxPT telematics applications for regulated commercial freight vehicles The ITxPT (Information Technology for Public Transport) Initiative (TARV Part 19). It is at an early stage of development but not aims to further cooperate on the implementation of standards for mature enough to serve as standard for reservation at that stage. plug-and-play IT-systems applied to public transport. An integrated testbench offers services to specify, test, qualify and showcase IT OTHER ACTIVITIES RELATED TO solutions. www.itxpt.org STANDARDISATION ITU ADDITIONAL INFORMATION Study groups 12 and 16 both have work items to transform the deliverables of ITU-T focus group on driver distraction (2011- Extract from ‘ICT Strategy of the German Federal Govern- 13) into proper ITU-T Recommendations. The mandate of ITU-T ment: Digital Germany 2015’49. Measure listed on page study group 17 includes the study of security aspects of ITS 35 ‘Implementation of Directive 2010/40/EU of the Eu- communications. ropean Parliament and of the Council of 7 July 2010 on W3C the framework for the deployment of Intelligent Transport Systems in the field of road transport and for interfaces W3C has several ongoing activities related to automotive/ITS. with other modes of transport’. The mission of the automotive working group (https://www.w3.org/ auto/wg/ ) is to develop open web platform specifications for Pursuant to Directive 2010/40/EU, Member States have HTML5/JavaScript application developers enabling web connectivity through in-vehicle infotainment systems and vehicle data access submitted to the Commission information on their nation- protocols. The API is agnostic with regard to the connection used. al activities and projects on national ITS actions. In addition, several Member States gave their agreement to the The mission of the automotive and web platform business group (http://www.w3.org/community/autowebplatform/ ) is to influence publication of their initial contributions: http://ec.europa.

the open web platform on the unique needs of the automotive eu/transport/themes/its/road/action_plan/its_national_re- industry, and to help stakeholders within the automotive industry ports_en.htm to build a good and practical understanding on the standardisation processes within the W3C. The initial scope of this business group Extract from ‘ITS Action Plan for the Roads - A framework will be to determine what vehicle data should be exposed through for the coordinated evolution of existing and the accel- a web API(s). erated introduction of new Intelligent Transport Systems Several community groups (pre-standardisation open fora) were in Germany over the period to 2020’50. Some measures also started to look at specific ITS issues, e.g. the traffic event listed in the ‘national strategy’ from page 22 onwards ‘It ontology community group (https://www.w3.org/community/traffic/ ), SUSTAINABLE SUSTAINABLE GROWTH and automotive ontology (https://www.w3.org/community/gao/ ). is to be ensured that road users can access traffic information and ITS services. The public sector will ensure that

TN-ITS (Transport Network ITS Spatial Data Deployment basic traffic information that has a direct impact on road 2019 • Platform) safety is provided at no additional cost to road users.’, ‘In-

Based on the outcome of ROSATTE project (FP7), the working telligent transport systems must not impose inappropriate group promotes the integration of accurate (public) road constraints on any person’s right to enjoy mobility.’ and data in navigation-oriented maps, and their timely updating, ‘The public sector and private sector service providers will including possible alignment with the technical framework for cooperate to unlock synergies of collective and individual the INSPIRE project, including the identification of standardisation services and, in particular, to ensure their consistency’. needs. http://www.imobilitysupport.eu/library/imobility-forum/workinggroups/concluded/digital-maps/

EU funded projects (Horizon 2020 WG 3.5 call) 49 http://www.bmwi.de/English/Redaktion/Pdf/ict-strategy-digital-germa- Projects supporting local dynamic maps standardisation (e.g. ny-2015,property=pdf,bereich=bmwi2012,sprache=en,rwb=true.pdf HIGHTS) 50 https://www.bmvi.de/SharedDocs/EN/Documents/LA/its-action-plan-roads. pdf?__blob=publicationFile ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

135 136 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH decentralisation ofcontrolsystems. digitally storedinformation couldlogicallybefollowed by nance, dismantlingandrecycling. Decentralisationofthe er theentirelifecycle workflow from operatingtomainte- products can controlnotonlytheirlogisticalpath,butrath- cation, i.e.theyhavecyber-physicalcharacteristics.These mation onthemselvesandsuitablemeansofcommuni- volved in the manufacturing lifecycle often possessinfor- Nowadays, work piecesandsemi-finishedproductsin- recycling. as testingand diagnosis,disassembly/repair/upgrade, smarter ways,itshouldtake intoaccountoperationssuch objectives. To lower wasteandpollution,useenergyin industrial productsincompliancewithcirculareconomy manufacturing lifecycle mustprolongthelife ofdurable tire manufacturing lifecycle. To enhance sustainability, the tion improving productivity, quality, and flexibility in the en- ICT inmanufacturingandincludesanyoptimisationsolu- integration. This progression is driven by the application of tion, includingintelligentproduction,processhandling,and manufacturing industrytowards anewlevelofdigitalisa- Advanced manufacturingaddressestheevolutionof per yeargrowth onaveragesince2009. pressive growth ratesinlabourproductivity, namely2.7% are generatedby industry. Recentyearshaveseenim- and 2jobsinothersectors.Morethan80%ofEUexports ture. Everynewjobinmanufacturingcreatesbetween0.5 sector R&Dexpenditureand49%ofinnovation expendi- added, manufacturingisresponsiblefor 64% ofprivate With ashareofapproximately16%thetotalvalue manufacturing generatesnearlyEUR32ofaddedvalue. in drivingproductivityandinnovation. Anhourofworkin ing sector is hugely important becauseof its major role out offivejobsinEurope.Inparticular, themanufactur- value chainsandprovides jobsto36millionpeople–one Europeans’ prosperity through business inglobalandlocal Industry is central to Europe’s economy. It contributes to POLICY OBJECTIVES POLICY AND LEGISLATION MANUFACTURING ADVANCED

ditions for theEuropeantechnologyproviders toflourish. Single Market andonaglobalscale, and creatingthecon- ness oftheEuropeanmanufacturingindustrybothin at apan-Europeanlevel,thusimproving thecompetitive- and to drive thedeployment of advanced manufacturing catalyse thecoordinationamongvariousinitiatives Europe (seeB.2).TheobjectiveattheEuropeanlevelisto facturing inEurope,the Member States and also outside There areanumberofinitiativesaroundadvancedmanu- of sensorsandactuators. telligent supply chain,building on the increased presence communication betweenthevariousmachinesofanin- Industrial InternetofThings)wouldprovide for smooth an internetofmanufacturingthings(betterknown asthe achieving costandcarbonemissionreductions.Eventually, stored incloudstointelligence,wouldprovide insightson the designprocess. Bigdataanalytics,turning id prototypingmethodslike 3Dprintingwouldenhance competitiveness in costsand quality. Simulations or rap- smarter use of energy and resources, while maintaining including circulareconomyoperationswouldenablea ising and digitising the complete manufacturing lifecycle smarter logistics and lower production costs. Industrial- in labourormaterialresourcesavailable)wouldenable Agile manufacturing(e.g.reactingtochangesindemand, tomated flexibilityanddataintelligenceinsupplychains. European manufacturerswouldbenefitfrommoreau- the manufacturingsector. However, severalDEIactionsarespecificallytargetedat gies, norisit limited to one or a few industrial sectors. DEI initiativedoesnotfocus oncertaindigitaltechnolo- what sizecanfullybenefitfromdigitalinnovations. The in whicheversector, whereversituated,andnomatterof technologies andtoensurethateveryindustryinEurope, objectives: toreinforce theEU’s competitiveness indigital This follows theoverall DigitisingEuropeanIndustry (DEI) and competencedeficits. manufacturing technologies,andreduceskillsshortages ufacturing technologies,boostthedemandfor advanced dissemination andcommercialisationofadvancedman- This ambitionunfolds inthreeobjectives:acceleratethe take ofinnovative technologiesby theEuropeanindustry. on fostering thedevelopmentandspeedingupof- The Europeanpolicyonadvancedmanufacturingfocuses Advanced manufacturing technologies are one of the There is a need to promote the development of interop- key enabling technologies (KETs) identified by the Com- erability standards and European reference architectures, mission as key to competitiveness51. In 2015 the global as well as open digital manufacturing platforms, including market for KETs was estimated to be more than EUR 1 experimentation, validation, interoperability testing facili- trillion. KETs have huge potential for growth and employ- ties and trusted labels and certification schemes. ment. According to the European Competitiveness Report 2013, depending on the KET, growth potentials of 10 — The take-up of advanced manufacturing solutions will 20% per year can be expected over the coming years. For dramatically accelerate if they are compatible with the particular submarkets, the growth potential is even larger. installed manufacturing base, and the related standards Countries and regions that fully exploit KETs will be at the and technical specifications are coherent with the exist- forefront of advanced and sustainable economies. KETs ing ones, e.g. on machinery, tools, digitalisation. In this deployment will contribute to achieving reindustrialisa- respect, standardisation is of central importance since tion, energy, and climate change targets simultaneously, the success of advanced manufacturing demands an making them compatible and reinforcing their impact on unprecedented degree of system integration across do- growth and job creation. main borders, hierarchy borders, and life-cycle phases. Consensus-based standards and technical specifications, An analysis is underway whether to revise the Machinery and the close cooperation among researchers, industry Directive. Depending on the outcome of this analysis – and SDOs are the pre-requisites to ensure fruitful results and subsequently on whether a revision of the Machinery especially in this domain. Directive needs to be undertaken – standardisation activities in the context of the Machinery Directive may arise. Several research-oriented activities were launched under H2020: EC PERSPECTIVE AND PROGRESS REPORT Standards can play a key role in accelerating the effective- • I4MS (Innovation for Manufacturing SMEs) is an EU ness of supply chains in manufacturing systems. In some initiative dedicated to the manufacturing sector and cases, standardisation can also play a stabilising role of in particular to its high-tech SMEs. I4MS is part of the research activities on which real market opportunities public-private partnership “Factories of the Future” may then be built on. The opportunity is to ensure Europe’s (PPP H2020 FoF).

technological leadership through the massive integration • Funded projects on flexibility and adaptability in the of ICT into advanced manufacturing technologies, sys- production chain (CloudFlow, INTEFIX, APPOLO), sim- tems and processes. ulation (Fortissimo, CloudSME), robotics (EUROC) and data intelligence (LASHARE). The amount of communication between machines, sen- • The EFFRA (European Factories of the Future Research sors and actuators is increasing and will continue so. Ma- Association) developed a roadmap for the develop- chines will become increasingly self-organised as well as ment of Factories of the Future by 2020 in the frame- their supply chains, from design to warehousing until de- work of H2020. livery of a product. IoT technologies will play a major role • SPIRE (Sustainable Process Industry through Resource SUSTAINABLE GROWTH to support this. Securing high-speed communications in- and Energy efficiency) is a public-private partnership frastructures (e.g. broadband infrastructures) is vital. The that represents more than 90 industrial and research 2019 • specific industrial needs and requirements concerning, for process industry stakeholders from over a dozen coun- example, availability, security and functional safety have tries across Europe. to be taken into account in order to make these technologies suitable for advanced manufacturing. Moreover, In addition lighthouse pilot projects in the framework of the supply chains increasingly need flexibility in design to the Joint Undertaking on Electronic Components and Sys- answer to individual customer requirements (mass custo- tems for European Leadership (ECSEL) will provide for val- misation). Easier and cost-effective product differentiation idation of standards for future markets, including large- is a key for growth. Additive manufacturing (3D printing) scale experimental test-beds. may push differentiation to a further stage of individual- isation, generating a market of crowd-based production and retailing.

51 See also https://ec.europa.eu/futurium/en/implementing-digitis- STANDARDISATION ICT FOR PLAN ROLLING ing-european-industry-actions/national-initiatives-digitising-industry 137 138 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH tives atanationallevel: The following listisanon-exhaustiveoverview ofinitia- REFERENCES • • • • • • • • • • • IT initiative«Pianonazionale Impresa4.0» ( telstaendischen-maschinenbau/) orSmartFactory KL its-owl.com/home/news/2-forum-produktion-im-mit- autonomik_fuer_industrie.html ), “it’s OWL” (http://www. EN/Foerderprogramme/Autonomik_fuer_Industrie/ ( PAiCE/paice.html), “AutonomikfürIndustrie4.0” nologien.de/DT/Navigation/DE/Foerderprogramme/ R&D initiativeslike “PAiCE” (https://www.digitale-tech- home.html https://www.plattform-i40.de/I40/Navigation/EN/Home/ associations, scienceandlabourunions. over 350experts frompolitics,businesses,industry The GermaninitiativePlattform Industrie4.0,including document/18/17721.pdf#page=47 http://proxy-pubminefi.diffusion.finances.gouv.fr/pub/ French strategyfor factoriesofthefuture ALL/?uri=CELEX:52009DC0512 http://eur-lex.europa.eu/legal-content/EN/ the EU a commonstrategyfor key enablingtechnologiesin COM(2009)512 cfm?doc_id=5133 http://ec.europa.eu/newsroom/dae/document. manufacturing for CleanProduction vancing Europe,ReportoftheTask ForceonAdvanced SWD(2014) 120 AdvancingManufacturing —Ad- ALL/?uri=CELEX:52012DC0582 for Growth andEconomicRecovery COM(2012) 582final AstrongerEuropeanIndustry ALL/?uri=CELEX:52012DC0341 https://eur-lex.europa.eu/legal-content/EN/ technologies —Abridgetogrowth andjobs COM(2012)341 ALL/?uri=CELEX:52016DC0176 digital singlemarket” COM(2016)176 “ICTStandardisationprioritiesfor the ALL/?uri=CELEX:52016DC0180 Reaping thefullbenefitsofaDigitalSingleMarket Committee oftheRegions:DigitisingEuropeanIndustry the EuropeanEconomicandSocialCommittee Commission totheEuropeanParliament, theCouncil, COM(2016) 180final. Final ReportoftheMSP/DEIWG https://eur-lex.europa.eu/legal-content/EN/ https://eur-lex.europa.eu/legal-content/EN/ https://eur-lex.europa.eu/legal-content/EN/ http://smartfactory.dfki.uni-kl.de/en) https://www.digitale-technologien.de/DT/Navigation/

A European strategy for key enabling A Europeanstrategyfor key enabling Preparing for our future:Developing

Communication from the Communication fromthe

al-time capabilityandclosetohardwareruntimecodes. be runonM2Mstandardsagainstrequirementslike re- with otherwirelessnetworks. Inparticular, acheckshould tion enablingwirelesscommunicationswithoutinterfering sis isrequiredastohow toprovide industrieswithasolu- could easetheabilitytoswitchbetweenplatforms. Analy- large volumesofdataover networked industries.This data formats inordertoallow for thequicktransfer of port communicationsonbroadbandinfrastructuresand dustrial needsmustbeincluded,like standardsthatsup- environment areabasicneedandpriority. Specificin- (M2M) andwithsensorsactuatorsinasupplychain reference architecturefor connections betweenmachines ACTION 2 ACTION 1 future manufacturers,M2M,rapid prototypingandothers. ly accountfor themanufacturingskillsofKETs, including ESOs couldcheckwhetherthee-skills standardssufficient- REQUESTED ACTIONS • • • • • • • • cordination-european-national-regional-initiatives. and try-actions/national-initiatives-digitising-industry en/implementing-digitising-european-indus- tives ispublishedathttps://ec.europa.eu/futurium/ A comprehensivelistofongoingnationalinitia- tion/made-in-sweden-2030-engelsk.pdf gen.se/globalassets/i-debatten/publikationer/produk- den “MadeinSweden2030”https://www.teknikforeta - The strategicresearchandinnovation agendaofSwe- documents/Digital_Fabrication_eBook.pdf http://www.diginova-eu.org/content/dam/diginova/en/ Diginova’s “RoadmaptoDigitalFabrication” http://english.gov.cn/2016special/madeinchina2025/ CN “MadeinChina2025”strategicplan (AMNPO) US AdvancedManufacturingNationalProgramOffice future-of-manufacturing https://www.gov.uk/government/publications/ era ofopportunityandchallengefor theUK” UK ForesightStudy“Futureofmanufacturing:anew https://hvm.catapult.org.uk/ UK initiative“HighValue ManufacturingCatapult” http://www.smartindustry.nl/ NL initiative“SmartIndustry” industria40 http://www.sviluppoeconomico.gov.it/index.php/it/ https://ec.europa.eu/digital-single-market/en/ Aspartofthenewskillsagendafor Europe, Common communications standards and a Commoncommunicationsstandardsanda http://manufacturing.gov/amnpo.html

ACTION 3 Conduct a study to identify and analyse op- ACTION 8 Start the discussion about the possible devel- portunities for revisions of existing standards (communi- opment of harmonised standards in the area of additive cations, M2M) or new standards with a particular view on manufacturing. Currently, there are no harmonised stand- new production technologies, manufacturing processes ards under the Machinery Directive for Additive Manufac- including lifecycle operations (circular economy), function- turing (AM) equipment. The availability of these standards al safety issues and skills-deficit reduction. could facilitate the manufacturer conformity assessment process. The European Commission should discuss to- ACTION 4 Improve interoperability and reduce overlap, gether with SDOs and AM equipment manufacturers the redundancy and fragmentation. Often there are several possible need for harmonised standards in this area. standardisation activities ongoing in the same area in parallel. Standardisation activities should be encouraged for ACTION 9 Standards for ensuring long-term traceability making standards to work together and integrating exist- of material to enable re-use and recycling. ing protocols. Moreover, standards bodies should aim for a coordinated approach regarding different reference architectures and measures should be taken to reduce overlap, ACTIVITIES AND redundancy and fragmentation. ADDITIONAL INFORMATION

ACTION 5 Interoperable and integrated security - SDOs should work on interoperability standards for security and RELATED STANDARDISATION for linking communication protocols in order to provide ACTIVITIES end-to-end security for complex manufacturing systems including the span of virtual actors (from devices and sen- DIN/DKE/SCI4.0 sors to enterprise systems). Standards should take into DIN and DKE founded the Standardization Council Industrie 4.0 (SCI account risk management approaches as well as Europe- 4.0) in conjunction with the industry associations BITKOM, VDMA an regulation and regulatory requirements. and ZVEI. SCI 4.0 is responsible for orchestrating standardization activities ACTION 6 Create a hierarchical catalogue of technical and, in this role, acts as a point of contact for all matters relating and social measures for assuring privacy protection and to standardization in the context of Industrie 4.0 nationally and on international scale. task all SDOs impacting the DEI domain in general and the advanced manufacturing domain in particular to comment In collaboration with the Plattform Industrie 4.0, SCI 4.0 brings on and prioritize the elements in the catalogue. Digitising together the interested parties in Germany and represents their industry implies processing of data which includes per- interests in international bodies and consortia. SCI 4.0 also supports the concept of practical testing in test centres by initiating and sonal data within the definition of the GDPR. That means, implementing new informal standardization projects tailored to in addition to technical measures to ensure the security meet specific needs. of the data, additional technical and social measures are http://www.sci40.com needed to protect the privacy of personal data. Such social

CEN SUSTAINABLE GROWTH or non-technical measures will include, e.g. Codes of Con- duct, Charters and Certifications, best practice guidelines, CEN/TC 438 ‘Additive Manufacturing’ has been working since collection of evidence of privacy protection assurance, etc. 2015 to standardize the process of AM, their process chains (hard 2019 and software), test procedures, environmental issues, quality • parameters, supply agreements, fundamentals and vocabularies. ACTION 7 Standards should be developed to define the CEN/TC 438 works closely with ISO/TC 461 in cooperation with main characteristics for all levels of the interaction from ASTM F42. CEN/TC 438 will develop new projects that relate to mechanical to electrical to protocol to semantic levels be- aeronautic, medical, 3D manufacturing and data protection. tween robot and tool to ensure the exchangeability and CEN/TC 310 “Advanced Automation Technologies and their to enable the design of generic tooling (plug-and-play). applications” has been working since 1990 to ensure the availability There are 2 main types of End Effector. “Off-the-Shelf” of the standards the European industry needs for integrating and and “bespoke”. It is desirable that off-the-shelf end effec- operating the various physical, electronic, software and human tors operate on a single software protocol. There is a need resources required for automated manufacturing. It works closely for Industry 4.0 to standardise this. It would then become with ISO/TC 184 and other committees to achieve international standards wherever possible in order to meet the needs and Plug-&-Play. For “Bespoke” end effectors (most commonly opportunities of the global market, as well as establishing common purchased) the system integrator specifies the software European strategies wherever possible. A key tactic is to use the

protocol for the Robot and End Effector. Vienna agreement process to initiate work in Europe to exploit the STANDARDISATION ICT FOR PLAN ROLLING results of R&D projects and promote them to the ISO level at the earliest opportunity. 139 140 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH • • • • automated manufacturing equipment, control systems and the automated manufacturing equipment,controlsystemsand the ISO/TC 184dealswithindustrialautomation technologies,including committee (SyC).Amongitstasks,SEG7willfocus on: been createdtoorganisethetransitionfromSG8asystems IEC systemsevaluationgroup(SEG)7onsmartmanufacturinghas “Wireless coexistence”. — Fieldbusses”, SC65C/WG 16“Wireless” andSC65C/WG 17 real-time communicationswork,SC65C/MT9“Industrialnetworks systems andproducts”;communicationgroups,including 16 “DigitalFactory” andWG 19 “Life-cycle managementfor — EngineeringDataExchangeFormat”,operationalgroupsWG SC 65E/JWG 5“Enterprisecontrol”,SC65E/WG 9“AutomationML AhG 3“Smartmanufacturingframeworkandsystemarchitecture”, groups SC65E/AhG1“Smartmanufacturinginformation models”, IEC/TC 65anditssubcommittees,like foundational/structuring standards, e.g.IEC62541(OPC),andothers safety standardsIEC61508,61511orinteroperability e.g. standardoninternetsecurityIEC62443series,functional measurement, controlandautomation”,withitssub-committees, Interoperability standardsfromIEC/TC 65“Industrialprocess ISO/IEC Automation scenarios. Ultra ReliableandLow Latencyusecasesrequiredby Industry interface operatingonlicenseexemptspectrumthatwillsupport ETSI DECThasstartedthedevelopmentofDECT-2020, a 5Gradio 5875 MHz. wireless industrialapplicationsinthefrequencyrange5725MHzto ETSI ERMTG 41iscurrentlyworkingonharmonisedstandardsfor in the2,4GHzISMband. account theneedsofwirelessindustrialapplicationsoperating to considertheinclusionofalternativemechanismstakinginto politeness ofexistingadaptiveandnon-adaptivemechanisms ETSI ERMTG 11iscurrentlyworkingonmethodstoimprove the ETSI industrial, scientificandmedicalradioband(ISM). automation applicationssomeofwhichareincludedinthe2,4GHz communication protocolsfor wiredandwirelessindustrial and automation»worksoutmethodsfor safe andsecure CENELEC/TC 65X«Industrial-processmeasurement,control CENELEC domain standards developersandindustrystakeholders tonavigatethe to documenteduse-caseswithinparticular valuechainstoassist delivering adashboardtocrossreference theprojectworkitems member TCs andpartners. and conformity assessmentprojectsto beconductedby theSyC standardisation, architectureandprospectivestandardisation establishing aninitialroadmapofsmartmanufacturing to smartmanufacturing. potential gapswhereIECstandardisationisneededwithrespect the stateofartinindustry, and the identificationof identifying associateduse-caseswhichwillassistindetermining a smartmanufacturingenterprise,asidentifiedinSG8,and expanding onthedefinitionofcommonvaluechainswithin other SDOs. standardisation projectsunderthemanagementofIEC,ISOand providing aninventoryofexistingstandardsandcurrent

• • • • • • • • • • • • • • following: Some key enablingstandards for smartmanufacturinginclude the Projects include: committee%3Fcommid%3D54110 http://www.iso.org/iso/iso_technical_ interfaces requiredtointegratethemintheworldofe-business supporting information systems,communicationsandphysical implementation techniques: functionality whereasthefollowing tworelatetoengineeringand The former threerepresentdifferent integrationlevelsof Intelligent Equipment Intelligent Factories Industrial Services projects for smartmanufacturinginto: IEEE groupsareevolvinglegacystandardsandnewstandardisation automation inaplant. the needsofmanufacturingsector, like productionprocess networking andsensors,aswellspecificstandardsaddressing applicable tomanyindustrydomains,suchasstandardsfor advanced manufacturing,includingbasichorizontalstandards IEEE hasstandardsactivitiesrelevanttothedigitisationofindustry/ IEEE I IEEE P60802). underway tostandardise aprofile for industrialautomation (IEC/ over Ethernetnetworks(IEEE802.3).Ajoint effort withIECis connectivity totimeandmissioncritical industrialapplications IEEE TSN(Time SensitiveNetworking)provides deterministic Industrial SoftwareandBigData Industrial Internet parameters, supplyagreementsandallkindoffundamentals. process chains(hard-andsoftware),testprocedures,quality manufacturing concerningtheirprocesses,termsanddefinitions, ISO/TC 261worksonstandardisationinthefieldofadditive (ISO /SAG) ISO Strategic AdvisoryGroupIndustry4.0/Smartmanufacturing e.g. SC31onRFID ISO/IEC JTC 1«Information Technology» withitssub-committees, identification» IEC/TC 3/SC3D»Productpropertiesandclassestheir interoperability and integration--Manufacturingsoftwarecapabilityprofiling for ISO 16100(seriesofstandards):Industrialautomationsystems and integration--Productdatarepresentationexchange ISO 30303(seriesofstandards):Industrialautomationsystems and integration--Parts library ISO 13584(seriesofstandards):Industrialautomationsystems and integration--Distributedinstallationinindustrialapplications ISO 23570(seriesofstandards):Industrialautomationsystems Interface Standard(DMIS) integration --PhysicaldevicecontrolDimensionalMeasuring ISO 22093:2011—Industrialautomationsystemsand computerized numericalcontrollers and integration--PhysicaldevicecontrolDatamodelfor ISO 14649(seriesofstandards):Industrialautomationsystems motion andcontouringcontrolsystems of addresswords--Part 1:Dataformat for positioning,line Numerical controlofmachines--Programformat anddefinitions SO 6983-1:2009 — Automation systems and integration -- SO 6983-1:2009—Automationsystemsandintegration--

• IEEE Std 2700-2017 (IEEE Standard for Sensor Performance Parameter Definitions) addresses sensor technologies with digital ADDITIONAL INFORMATION I/O interfaces and specifies a common framework for sensor performance parameters. There are three basic principles behind standardisation of • IEEE Std 1451-1-4 and P1451-99 specify smart transducer advanced manufacturing technologies: interfaces for sensors and actuators in particular for Industry 4.0. • IEEE 2755-2017 (IEEE Guide for Terms and Concepts in • accelerate the dissemination and commercialisation of Intelligent Process Automation) specifies concepts, capabilities, terms, and technology needed for new SW based intelligent advanced manufacturing technologies, automation capabilities. • boost the demand for advanced manufacturing technologies, and For a list of these and other standardization activities on the Digitisation of European Industry, please see: https://ieeesa.io/ • reduce skills shortages and competence deficits. rp-digitization In industrial automation, it is essential for the vast variety ITU of systems from various manufacturers to interact in a The new ITU-T Study Group 20 on “IoT and its applications, reliable and efficient manner. The users, operating glob- including smart cities and communities” was created in June ally, expect to be able to source their usual products and 2015. It provides a specialized IoT standardisation platform for the systems everywhere in the world. In order to ensure this development of a cohesive set of international standards on IoT global usability and consistency across different systems, and smart manufacturing. http://itu.int/go/tsg20 international standardisation in industrial automation has always been regarded as especially important and pur- ITU-T SG13 approved Recommendation Y.2238 on Overview of sued as a matter of a priority. Nowadays, standards are Smart Farming based on networks. SG13 has a work in progress on service model for the pre-production stage for smart farming available or are at least being drafted to cover important (Y.smpp). Also under development is an application of a u-learning issues in industrial automation. But again and again new environment to the smart farming (Y.sfes). technologies and new requirements create a new demand for standardisation. This requires the development of a OASIS host of new concepts and technologies. However, it will Production Planning & Scheduling (PPS): Description: XML only be possible to implement these new concepts and documents for production floor planning and scheduling in technologies in industrial practice if they are backed by manufacturing industries, and transactional exchange patterns for standards based on consensus. Only such standards are operations management contexts. https://www.oasis-open.org/committees/pps able to create the necessary security for investments and confidence among manufacturers and users. W3C

Web of Things Development of new technologies and intensifying the re- http://www.w3.org/WoT/ lationships between more and different actors in the value chain require not only new standards but also updating, IIC maintenance and even re-design and integration of exist- Developing test beds and contributing to reference architecture and ing standards. use-case development SUSTAINABLE GROWTH http://www.iiconsortium.org/test-beds.htm Additional communication capabilities and a (partial)

autonomy to react to external influences and internally 2019 • stored specifications are transforming mechatronic systems into cyber-physical systems. The objectives derived from that transformation are developments and adjust- ments in ICT for manufacturing applications: robustness, resilience, information security and real-time capability. In addition, increasing improvement is aimed for energy and resource efficiency, and in the adjustment of industry to accommodate the social demands arising from demographic change.

With regard to machine to machine communication, consideration should be given to the framework of

metadata. There may be a role for standards in de- STANDARDISATION ICT FOR PLAN ROLLING veloping an accepted architecture building on existing agreed terminology. 141 142 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH erability. set thescientificbasis for newtechnologiesandinterop - R&D projectsonroboticsfunded by theEUHorizon2020 has issuedanewupdateoftheMulti-AnnualRoadmap. all fronts.SPARC thepublic-privatepartnershiponrobotics In 2018roboticsstandardisationhascontinueditsworkin fifth ofthedomesticservicesmarket by2020. trial robotics,two-thirdsofprofessional servicesandone- in theroboticsmarket toaccountfor one-thirdofindus- The EU’s strategicvision istobuildEurope’s globalposition tors, logisticsandtransport. healthcare, agriculture, civil, commercial or consumer sec- for robots,withahighimpact oneverydaylife, willinclude to manufacturing,importantfutureapplicationdomains will playakey rolee.g.inopeningnewmarkets. Inaddition achieve double-digitgrowth inthenextdecadeandSMEs fessional andconsumer servicesectorsareexpectedto end-user markets andapplications.Theroboticspro- ics technologyalsohasanimpactonabroadrangeof and extendedtoallmainindustriesinEurope.Robot- in Europe.Thistrendmustbemaintained,strengthened such astheautomotiveindustry, keeping theseindustries several ofEurope’s high-value manufacturingindustries, Industrial roboticshasalreadybecomeacornerstonein internet, advancedmaterialsorenergymarkets. annual economic impact by 2025onaparwithe.g. mobile mous (ornear-autonomous)vehicleswillhaveapotential market sectorsworldwide.Advancedroboticsandautono- broad anddisruptivesocioeconomicimpactacrossdiverse dustrial andcommercialactivityinitsown rightandits (RAS) liesinitsstrongeconomiccontributionasan- The importanceofroboticsandautonomoussystems POLICY OBJECTIVES REPORT EC PERSPECTIVE POLICY AND LEGISLATION SYSTEMS AUTONOMOUS ROBOTICS AND AND PROGRESS AND PROGRESS

working groups. robotics: ISO/TC299. ThisCommitteeisstructuredinsix appointed a technical committee specifically devoted to ganisation onstandardisationroboticsisISO.Ithas At theworldwidelevel,mostactiveinternationalor- ment, geographicalinformation andsoforth. technologies, telecommunications,productionmanage- as electromechanicalengineering,electronics,information herits standardsfromrelatedtechnologicaldomainssuch address theroboticsfieldexclusively, butroboticsalsoin- gineering isverylarge.Someoftherequiredstandards Therefore, thenumberof standardsthataffect roboticen- education andsocialinteraction. health care,rehabilitation,assistiveliving,entertainment, surveillance, emergencyandrescue,commercialservices, precision farming,autonomousdriving,spaceexploration, including industrialmanufacturing,logistics,maintenance, Robots canalsobeusedfor alargevarietyofapplications able tomove ontheground,inairorunderwater. they canhavewheelsorlegs,andbevehicles be similartoacrane,anarm,snake orahumanbody, and havemanyphysicalaspects;for instance,theycan and muchmore.Robotscanbeverysmallorlarge techniques, artificial intelligence, semantic technologies software, multi-agenttechnologies,signalprocessing tors, sensors,datacommunicationsystems,computer mechatronics devices,power systemsanddrives,actua- complex systemswithcognitivecapabilities.Theseinclude scientific andtechnologicaldomain for implementing Robotics and autonomous systems is a multidisciplinary SPARC public-privatepartnership. standardisation workledby industry, notablythroughthe This RollingPlancallsfor increasedcoordinationinthe is on-goingandwillbepublishedinthefuture. stations”. Work on the other ten ISOstandardsonrobotics industrial robot systems -- Part 2: Manual load/unload and ISO/TR20218-2:2017“Robotics--Safety designfor sign for industrialrobotsystems--Part 1:End-effectors”, ics, namelyISO/TR20218-1:2018“Robotics--Safety de- During 2018ISOhasissuedtwonewstandardsonrobot- • • • • • • WG 6–Modularityfor ServiceRobots JWG 5-MedicalRobotSafety WG 4–ServiceRobots WG 3–Industrial Safety WG 2–Personal CareRobotSafety WG 1–Vocabulary andCharacteristics The following link gives a catalogue of the standards prescribe testing procedures for wearable robots, such developed by the technical committee ISO/TC299: as exoskeletons for rehabilitation and worker support. https://www.iso.org/committee/5915511/x/catalogue/ • Robotics system integration and interoperability. Cur- rent robots can be made up of very different functional At European level, the most active organisations are subsystems (dynamic control, perception, navigation, the European Committee for Standardization (CEN) and task planning, trajectory planning, human interaction, the European Committee for Electrotechnical Stand- etc.) that must be integrated through complex inter- ardization (CENELEC). CEN-CENELEC provides European faces. Also, robotic systems can cooperate with other standards on robotics by means of its Sector Forum on systems by means of other interfaces. Many of the Machinery Safety. The following link gives a list of har- standards that define these interfaces are inherited monised European standards on machinery including sev- from more general domains such as electromechan- eral standards specifically designed for robotic machines: ical engineering and ICT. But some standards are de- https://ec.europa.eu/growth/single-market/european-stand- signed to fit robotics-specific requirements, for instance ards/harmonised-standards/machinery_en ISO 9409 (mechanical interfaces) and ongoing work in ISO/TC 299/WG6, ISO TC184/SC2/WG10 (Modularity In addition, associations such as IEEE and OCEANIS are for service robots). At least three areas need further also active in conducting technical studies and proposing development: standards, particularly in the area of ethics in autonomous -- Robot programming languages and communi- and intelligent systems. cation protocols for robot controllers. This area is mostly dominated by proprietary standards More generally, standardisation activities in robotics can developed by robot manufacturers, such as be grouped in four main areas: the robot programming languages Rapid (ABB), PDL2 (Comau), KRL (Kuka), etc. The increasing • Foundations. This set of standards covers vocabulary level of integration of robots in complex systems and characteristics that provide suitable definitions creates a need to standardise programming as a reference for other standards. It includes, among languages and communication protocols. others, the following standards: ISO 89787 (Coordinate -- Robot operating systems. Robot operating sys- Systems), ISO 19649 (Vocabulary for Mobile Robots) tems are software platforms run in conventional

and ISO 8373 (General terms and Definitions). computers that connect various robotic subsys- • Robotic safety. The bulk of robotic standards are con- tems (perception, control, reasoning, planning, nected with personal and functional safety and regu- etc.) to perform complex tasks. Strictly speaking, lations for machinery such as EN/ISO 13849-1, IEC/EN they are not actual operating systems, but a 62061. However, the particularities of robotics and its middleware layer. They determine and manage applicability to industrial and non-industrial environ- the environment for the interoperability of all ments has made it necessary to develop more specific the software components of the robotic system, standards such as ISO/TS 15066 (Safety of collabora- irrespective of where they run (on standard tive robots) which builds further on EN/ISO 10218-1 computers, robot controllers or embedded SUSTAINABLE GROWTH and EN/ISO 10218-2 (Robots and robotic devices systems). In the last 10 years, a number of

-- Safety requirements for industrial robots) or EN/ISO robot operating systems have come out: ROS, 2019 • 13482 (Robots and robotic devices — Safety require- Player, YARP, OROCOS, CARMEN, ORCA, MOOS, ments for personal care robots), ISO/TS 15066 (Safety to name a few. Most have been developed and of collaborative robots), ISO TC184/SC2/WG7 (Personal maintained as open source software by univer- care robot safety), IEC TC62/SC62A and ISO TC184/ sities and non-profit research centres. The most SC2 JWG9 (Medical electrical equipment and systems successful ones have the potential to set the using robotic technology). The increased autonomy of interoperability standards of the future robotic robots due to the adoption of Artificial Intelligence, and systems. the application of robotics in non-industrial environ- -- Knowledge modelling. Robot autonomy is based ments such as healthcare, agriculture, autonomous on having appropriate representations of the ob- driving and private homes, must be accompanied by jects that robots manipulate, the physical envi- the revision of existing standards and the development ronment, the robot missions and the work plans. of new safety standards addressing specific issues. As These involve a great variety of techniques

an example, the robotics community has requested such as signal processing, sensor data fusion, STANDARDISATION ICT FOR PLAN ROLLING recently the development of new safety standards that localization and mapping, artificial intelligence, 143 144 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH REFERENCES • • • ALL/?uri=celex:32001L0095 https://eur-lex.europa.eu/legal-content/EN/ safety of theCouncil3December2001ongeneralproduct Directive 2001/95/ECoftheEuropeanParliament and index_en.htm an-standards/harmonised-standards/machinery/ http://ec.europa.eu/growth/single-market/europe- European MachineryDirective2006/42/EC technology expansion. address technical,societalandethicalimplicationsof have committedtoidentifyanddevelopstandards systems. IEEE andotherscollaboratinginOCEANIS accountability issuesrelatedtotheoperationofsuch ital identityanddata,orduetoethical,transparency of trustduetoaperceivedlossagencyover ourdig- from severalissues.Forexample,therecouldbealoss social livescanleadtoalossoftrustintechnology implications andconsequencesfor ourpersonaland affecting ourworkand socialenvironmenttoday. The ogies usedinautonomousandintelligentsystemsare sensors, bigdata,ubiquitousnetworkingandtechnol- Ethics inAutonomousIntelligentSystems.Algorithms, of allpotentialapplications. accepted standardsthatcover therequirements stability neededtobuildacomprehensivesetof robotics isstillaresearchtopicandlacksthe precision farming),butknowledge modellingfor manufacturing information andISO11783for from otherdomains(e.g.ISO10303for product (e.g. SQL,JSON,XML,OWL, andRDF)afew ling, mostoftheminheritedfromtheICTfield already manystandardsonknowledge model- availability ofappropriatestandards.Thereare ed, processedanddistributeddependsonthe The wayhow thisinformation canbegenerat- or speechrecognition)butalsofromtheweb. complex sensorsystems(e.g.imageprocessing Much ofthisinformation iscapturedthrough be contextualisedandprocessedsemantically. manage enormousamountsofdatathatmust techniques havesomethingincommon:they constraint solving,andoptimisation.Allthese

partnership). vision andrealneeds(i.e.throughSPARC public-private ing interactionofallstakeholders takingintoaccounttheir on robotics and autonomous systemsin Europe, promot- gence. erables for autonomousrobotsdrivenby artificialintelli- ACTION 3 ACTION 2 ACTION 1 into standardisation activities. tween EUR&IprojectsandSDOs, bringingprojectresults manufacturers. It is important to strengthen the ties be- recipients offundingthatare robot orrobot-component are involvedinstandardisation, ittendstobethrough tables ofstandardisationwork. WhenEuropeanprojects tend nottolastenoughmatchtheusuallylongtime- tion activitiesbuttoalesserextentbecausetheir EU-funded R&Dprojectsalsocontributetostandardisa- strengthen Europe’s positionintheroboticsindustry. participating instandardisationefforts andactivitieswill standardisation sofar. Engagingandsupportingthemin the nextgenerationofroboticshavenotbeeninvolvedin oping highlyinnovative solutions andproductssuitedto However, newplayerssuchasstart-upsandSMEsdevel- expertise. are involvedinstandardisationgroupstheirareasof standing Europeanmanufacturersofroboticcomponents ufacturers areveryactiveinthisfield.Also,manyout- in thevariousISOtechnicalcommittees.Europeanman- components. Theirengineeringteamsarewellintegrated driven by manufacturersofindustrialrobotsandrobotic So far, moststandardisationefforts havebeenprimarily sense todevelopstandardsatnationalorregionallevel. Robotic markets areglobalanditdoesnotmake much The most relevant standards on robotics are led by ISO. be developed;bothfor traditionalrobotsandcobots. cations withinterchangeabletoolsandapplicationsshould ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND REQUESTED ACTIONS Standardsfor riskassessmentfor robotappli- Study to provide safety standardisation deliv- Fostercoordinationofstandardisationefforts

STANDARDS DEVELOPMENT OTHER ACTIVITIES RELATED TO CEN STANDARDISATION CEN/TC 310 ‘Advanced automation technologies and their SPARC applications’ is responsible for standardization in the field of automation systems and technologies and their application and PPP for the collaboration between European robotic industry, integration, to ensure the availability of the standards required by academia and the European Commission to facilitate the growth industry for design, sourcing, manufacturing and delivery, support, and empowerment of the robotics industry and value chain. It maintenance and disposal of products and their associated services. includes a working group on standardisation. Areas of standardisation may include enterprise modelling and http://www.sparc.eu/ system architecture, information and its supporting systems, robotics for fixed and mobile robots in industrial and specific non- H2020 industrial environments, automation and control equipment and R&D&I projects funded within topics ICT 24, ICT 25, ICT 26 and ICT software, human and mechanical aspects, integration technologies 27 from Work Programme 2016-17 that may produce relevant and system operational aspects. These standards may utilise other input for standardisation. standards and technologies beyond the scope of CEN/TC 310, such as machines, equipment, information technologies, multi-media capabilities, and multi-modal communications networks. ADDITIONAL INFORMATION Together with ISO, CEN/TC 310 is revising prEN ISO 10218-1 ‘Robots and robotic devices - Safety requirements for industrial Robotics PPP — EU Robotics: Strategic Research Agenda robots - Part 1: Robots’; and prEN ISO 10218-2 ‘Robots and robotic devices - Safety requirements for industrial robots - Part 2: Robot http://roboproject.h2214467.stratoserver.net/cms/upload/ systems and integration’. PPP/SRA2020_SPARC.pdf

ISO Robotics PPP — EU Robotics: Multiannual Roadmap ISO TC on Robotics: ISO/TC 299 — Robotics. (rolling document) http://www.iso.org/iso/iso_technical_committee?commid=5915511 https://eu-robotics.net/sparc/about/roadmap/index.html

IEC International Federation of Robotics: Standardisation Identify ethical issues and societal concerns relevant to IEC http://www.ifr.org/standardisation/ technical activities

Formulate recommendations to IEC SMB as appropriate US Occupational Safety and Health Administration: Develop broadly applicable guidelines for IEC committees on ethical Robotics aspects related to autonomous and/or AI applications https://www.osha.gov/SLTC/robotics/index.html

Ensure work consistency across IEC committees and foster cooperation with JTC 1/SC 42

Consider any change needed in the IEC Use Case Template to address ethical issues and societal concerns

Set up relevant fora during IEC General Meetings and invite other SUSTAINABLE GROWTH relevant actors on this matter to participate on the discussion such as the academia 2019 IEEE •

IEEE has standardisation and pre-standardisation activities in the field of robotics and automation, including navigation, applications for medicine, transportation, intelligent manufacturing and ethical considerations for the design of autonomous systems. https://ieeesa.io/rp-robotics

OCEANIS

The Open Community for Ethics in Autonomous and Intelligent Systems (OCEANIS) is a global Forum for discussion, debate and collaboration for organizations interested in the development and use of standards to further the development of autonomous and intelligent systems. https://ethicsstandards.org ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

145 146 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH - BUILDING methods usingBIMwould: The introductionofcommonstandardsandoperating exchange anduse. common standardstoensurefuturecompatibilityindata of BIM isadvancing rapidly and requires the application of ment; design;assemblyandoperation.Thedevelopment tion duringthefour phases oftheassetlife cycle:procure- is seenasasolutiontothemanagementofthisinforma - The introductionofbuildinginformation modelling(BIM) handover ofthebuiltassets. clients andusersreceivebetteroperatinginformation at cle hastobeimproved inordertoensurethatconstruction Management oftheassetportfolio throughoutitslife cy- the deliveryofconstructionprojects. activities andincreasesinrisks,coststimescalesfor recent decades.Currentpracticesleadtoduplicationof its productivity, comparedtoothersectors,hasfallenin tively low level of digitalisation and studies indicate that process and service delivery. It suffers from a compara- industries butisalsoseenasrelativelyinefficientinboth The constructionindustryisoneofthelargestEuropean POLICY OBJECTIVES POLICY AND LEGISLATION MODELLING MODELLING INFORMATION CONSTRUCTION • • • • • • • construction assets improve theoperationsprocessesof collaboration support improvements inteamworkingand embodied carbonperformance products andmaterials,improving bothoperatingand improve theresource efficiencyofconstruction better qualityandfewer defects improve thereliability ofconstructionoutput,with between productiveconstructionprocesses reduce thetimewastedbecauseofinefficientbreaks tion assets reduce boththecapitalandoperatingcostofconstruc- European market areaandbeyond reduce barrierstooperationandtradeacrossthe

Most likely itwillbeapproved bothinCENandISO. and FDISvotewilltake placeinAugust/September2018. agement togetherwithISO/TC59/SC13/WG13. ThisfprEN developed ENISO19650part1and2–Information Man- 29481- 1:2016,andENISO29481-2:2012”ThroughVA ISO 12006-3,EN16739,29481-2, standards inthefieldofBIMasEuropeanstandards: EN The committeesofarhasadoptedthemostimportantISO The objectivesofCEN/TC 442are: ing betweenpartnersinthevaluechain. sustainable by enablingsmoothdataexchangeandshar- help theconstructionsectortobemore(cost)efficientand to Modelling wasofficiallykicked offin2015.Theaimis CEN Technical Committee442onBuildingInformation REPORT EC PERSPECTIVE AND PROGRESS REFERENCES • • • • • • • groups for thedifferent scopes and developthemwithintheTC structureofworking to receiveandconsiderproposalsfor newdeliverables parallel standards atEuropeanlevelordevelopingnewonesin Agreement, eitheradoptingexistinginternational to coordinatetheworkwithISOunderVienna European BIMharmonisation. TC 442willbethecentralplacetogofor coordinating to bethehomefor EuropeanBIMstandardisation.CEN/ geospatial andotherexternaldata. dle assetdata,semanticsandprocesseswithlinksto describe, exchange,monitor, recordandsecurelyhan- and reportswhichspecifymethodologiestodefine, to deliverastructuredsetofstandards,specifications Directive 89/106/EEC ing ofconstructionproductsand repealingCouncil laying down harmonisedconditionsfor themarket- Parliament andoftheCouncil9March2011 Regulation (EU)No305/2011 of theEuropean 236 final} the constructionsectoranditsenterprises{SWD(2012) the Strategyfor thesustainablecompetitivenessof sion totheEuropeanParliament andthe Councilon COM(2012) 433CommunicationfromtheCommis- Art. 22 ment andrepealingDirective2004/18/EC,especially of theCouncil26February2014onpublicprocure- Directive 2014/24/EUoftheEuropeanParliament and

• Handbook for the introduction of Building Information • development of a common European framework for Modelling by the European Public Sector (EU BIM Task the Level of Information Needs to express the re- Group, 2017; http://www.eubim.eu/handbook/) quested information to be delivered during the project execution and project hand over as Work Item within CEN/TC 442/WG 2. REQUESTED ACTIONS ACTION 4 SDOs to support data dictionaries - Develop ACTION 1 CEN/TC442/WG5 collaborate with ISO/TC59/ European standards for exchange of data on construction SC13 (ISO committee responsible for BIM standardisation) products, to ensure quality in data to support Regulation to align Business Plans and Work Programme as much as EU No 305/2011 CPR and trade of construction products possible. The Business Plan will be updated regularly and in the European market. In specific, provide digital tools based on an ongoing work with a Road Map for BIM. Stan- to support the collaborative development and European dards Developing Organizations (SDOs) to develop Euro- wide harmonization of terms and corresponding seman- pean standards when necessary (i.e. if functional gaps are tics for: found or international standards are not available). • written language in standards, ACTION 2 SDOs to work on information exchange — • Names, classifications and properties of entities in Enhance and harmonize open data formats, structures object oriented data models, and classification systems for model based working in the construction industry. This work is coordinated in CEN/ Tools providing a mapping between national/European TC 442/WG 2 in collaboration with ISO/TC 59/SC 13 and terms and their corresponding semantics are the basis for buildingSMART and focuses on activities such as: the development of a framework for harmonized Euro- pean vocabulary for digital construction and its European • The Industry Foundation Classes (IFC), EN ISO 16739 and national implementation. and its extension within the infrastructure sector. Im- portant developments on a European and International In the current dynamic development phase with many Scale are to be started for bridge, tunnel, road, rail groups working in parallel there is a great risk that with- and harbors. A common neutral IFC based standard out such tools divergent definitions will be established

for infrastructure related asset management and permanently. construction activities supports a common European market and shall enable equal access to European IT ACTION 5 SDOs to create NWI to develop a technical companies, report needed for standards to support BIM for infrastruc- • Work Items in CEN/TC 442/WG2 and WG4 on provid- ture in the European market. ing a framework for common catalogues, templates and exchange structures for harmonized product data ACTION 6 Develop a framework for how CEN/TC442 can including those who following the CPR directive. The support use of BIM in other relevant TC’s in CEN (e.g con- work Item for a common structure for Construction struction products, energy analyses, acoustics) SUSTAINABLE GROWTH Product Data will be developed in collaboration with

ISO/TC59/SC13 with CEN lead 2019 • • other national, domain specific, open data format for ACTIVITIES AND ADDITIONAL model based working with potential for European wide application. CEN/TC442/WG has a preliminary Work INFORMATIONRELATED Item to develop a transport data format for Product STANDARDISATION ACTIVITIES based in IFC. (IFCxml) CEN

ACTION 3 SDOs to develop common information require- CEN/TC 442 link ments for project and information management as part of https://standards.cen.eu/dyn/www/f?p=204:7:0::::FSP_ORG_ construction service procurement standards: ID:1991542&cs=16AAC0F2C377A541DCA571910561FC17F

• Work Item to development guidelines for implementation of EN ISO 19650 in the European marked ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

147 148 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH (CISE) FOR THE EU also benefittheEuropeanindustry. also proposedfor standardisation.Thisdevelopmentcould EUCISE 2020,theICTspecifications for thissolutionare tested inthemajorFP7pre-operationalvalidationproject based ontheCISEdataandservicemodel.Currentlybeing pect oftheCISE.Thetechnicalsolutionproposedismainly maritime surveillancesystemsisthemajorinnovative as- Cross-sector andcross-borderinteroperabilitybetween sustainable developmentofeconomicmaritimeactivities. mation exchangeoptimal,enablingimproved securityand compatible andthecontent,speedreliabilityofinfor - throughout theEU/EEA.Asaresult,systemsbecome isting systemsofaround400maritimepublicauthorities mendations to enhance the interoperability between ex- technical, organisational and legal solutions and recom- CISE seekstherefore to developappropriatesemantic, law enforcement, tradeandeconomydefence). rine environment,fisheriescontrol,bordergeneral (maritime safety andsecurity, maritimepollutionandma- administrations acrosssevendistinctmaritimedomains and cross-borderinformation exchangebetweenpublic into seamless,morestructuredandtrustedcross-sector In linewiththeEUdigitalsinglemarket, thistranslates cleaner andmoresecureseas. maritime domain.Thisinturnwillultimatelyensuresafer, operations andperformance inallsectorswithintheEU as animportantcontributiontoefficiencyinmaritime awareness andknowledge ofwhatishappeningatsea formation sharingenvironment(CISE)enablingenhanced The globalaction’s objectiveistoestablishacommonin- POLICY OBJECTIVES POLICY AND LEGISLATION MARITIME DOMAIN ENVIRONMENT SHARING INFORMATION COMMON

from 15Europeancountries. duction environment.Thisprojectinvolves39authorities data andservicemodelvalidatetheminapre-pro- dation) will develop the CISE components using the CISE The EUCISE2020FP7project(CISEpre-operationalvali- sectors. countries andcovering different seabasinsanddifferent eration project)involving28partnersfrom12European was developedin2014by apilotproject(theCISEcoop- The presentversionoftheCISEdataandservicemodel long-term sustainabilityoftheprogramme. information acrossEuropewithCISE,thusensuringthe more resourcesintheexchangeofmaritimesurveillance agreement shouldencourageMemberStatestoinvest maritime surveillanceinEurope.Thisinteroperability and servicemodelwithallthestakeholders involvedin The objectiveistoreachfirmagreementontheCISEdata REPORT EC PERSPECTIVEAND PROGRESS REFERENCES • • • • • • (COM/2010/0584 final) ment for thesurveillance oftheEUmaritime domain establishing theCommonInformation Sharing Environ- and theEuropeanParliament Draftroadmaptowards Communication fromtheCommission totheCouncil Affairs Councilmeeting,Brussels, 23 May2011 ronment for the EUmaritimedomain,3092ndGeneral time surveillance: Acommoninformation sharingenvi- Council conclusionsTowards theintegrationofmari - final) ment for the EU maritimedomain’(SWD/2014/0225 steps withintheCommonInformation SharingEnviron- operation acrossmaritimesurveillance authorities:next Council the CommissiontoEuropeanParliament andthe sessment accompanyingthecommunicationfrom Commission Staff Working Document:‘ImpactAs- domain Information SharingEnvironmentfor theEUmaritime surveillance authorities:nextstepswithintheCommon awareness by enhancedcooperationacrossmaritime pean Parliament andtheCouncilBettersituational Communication fromtheCommissiontoEuro- on 16December2014 -17002/14 time SecurityStrategy(EUMSS)–ActionPlanadopted Council oftheEuropeanUnion:UnionMari- Global MaritimeSecurity(19June2017-10238/17) Council oftheEuropeanUnion:conclusionson Better situationalawarenessby enhancedco- (COM/2014/0451 final)

Projects include: • Council conclusions on integration of maritime surveillance, 2974th External Relations Council meeting, • ISO 19847, Ships and marine technology -- Shipboard data servers to share field data on the sea Brussels, 17 November 2009 • ISO 19848, Ships and marine technology -- Standard data for • Communication from the Commission to the Council shipboard machinery and equipment the European Parliament, the European Economic and Social Committee and the Committee of the Re- IEC gions Towards the integration of maritime surveillance: IEC/TC 80 Maritime navigation and radiocommunication equipment A common information sharing environment for the EU and systems has produced standards:

maritime domain {SEC(2009) 1341} • IEC 62729 Long Range Identification and Tracking (COM/2009/0538 final) • IEC 61993-2 Automatic Identification Systems for SOLAS ships • IEC 62287 Automatic Identification Systems for non SOLAS ships • IEC 62320 Automatic Identification Systems shore infrastructure

REQUESTED ACTIONS Current activities include the following projects:

• Satellite terminals to support new satellite service providers ACTION 1 Based on the existing CISE data and service • VHF Data Exchange System to support future e-navigation model, complete semantic and technical interoperability • S-100 Common Maritime Data Structure to support future specifications to exchange surveillance information be- e-navigation tween competent authorities could be standardised. CENELEC

ACTION 2 The complementary actions could be devel- CLC/SR 80 Maritime navigation and radiocommunication equipment oped in addition to the standardisation action: and systems. Standards and projects in CLC/SR 80 are those conducted at IEC level. • Maintenance of the collaborative platform for publishing technical and operational documentation (“the CISE eHandbook”) from 2017. This platform will allow feedback to be collected from the future CISE participants (Member States and Authorities) • Development of a reference implementation of the

CISE software components to facilitate the adoption of CISE by interested authorities. • Development of a testing platform to assess whether the CISE interface developed by the national authorities complies with the standardised specifications. • Development of template service level agreement or memorandum of understanding for the future agreements on sharing information between Member States SUSTAINABLE SUSTAINABLE GROWTH 2019

ACTIVITIES AND • ADDITIONAL INFORMATION

RELATED STANDARDISATION ACTIVITIES

ISO

ISO/TC 8: Ships and marine technology http://www.iso.org/iso/iso_technical_committee?commid=45776

ISO/TC8 new focus items include:

• Cyber safety • Electronic certification for port entry; data harmonisation, ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING e-Navigation, IHO • Ships’ Energy Efficiency, EEOI, reductions in emissions from ships in freight transport 149 150 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH tivities thatexpectstogrowth by 55%in2050 is akey enablerfor urbanandruralindustrialac- 55 54 53 52 55 growth to30%by 2030 serious problemsin11%oftheEUterritoryandexpectsto competition inwateruses.Currently, theseaspectscaused er environmentalchanges,pollutiontrendsandincreased frequency offloodsanddroughtsduetoclimateoth- including alterationsinwaterqualityandavailability, the The globalwaterchallengesarecrucialfor oursociety consumption ofresources. energy, avoid unnecessary water lossesand minimizethe worked, intelligent systems will help make better use of system interoperabilityandstandardization.Thesenet- ing, reportingandconsumerawareness,cyber-security, cial intelligence, algorithms, simulations,imageprocess- and watermanagementtools,IoTplatforms, cloud,artifi- itoring, sensors, smart devices, decision support systems privacy management,real-time and near-real-time mon- versal commontopics:bigdata-analytics,datasharing, The advanceddigitaltechnologiesarecomposedoftrans- multi-sectoral governance modelsinEuropeandglobally. tailored watermanagementsystems, solutions and ment robust,smart,cost-effective,and efficient For thesereasons,itisessentialtodevelopandimple- water by allstakeholders. governance, andawarenessraisingofthetruevalue and droughts,leakagereductionprevention,water prevention, smartirrigation,resilienceinthefieldoffloods system monitoring and reporting, pollution reduction and ter management,waterreuse,circulareconomy, water vironment by addressingintegratedwaterandwastewa- protection andmanagementinman-madeornaturalen- POLICY OBJECTIVES POLICY AND LEGISLATION DIGITISATION MANAGEMENT WATER . It is preponderant to improve integrated water resource . Itispreponderanttoimprove integratedwaterresource “The EU Floods Directive “The EUFloods Directive http://ec.europa.eu/environment/water/flood_risk/implem.htm, EC(2017). and theFloodsDirective 5128184_en, EC(2017).“Fitness check oftheWater Framework Directive https://ec.europa.eu/info/law/better-regulation/initiatives/ares-2017- https://goo.gl/e2TZvT water andtoreducefloodrisks” and theFloodsDirective(FD):Actionstowards the‘goodstatus’ofEU https://goo.gl/5H76T1, «EC(2015).TheWater Framework Directive(WFD) , “OECD(2017).Aidfor Trade ataGlance2017” 52 . Moreover, theusageofwater

mate conference. ‘Climate action’,Paris AgreementandUnitedNation cli- ‘Responsible consumptionandproduction’SDG13 SDG 11‘SustainableCitiesandCommunities’,12 Goals, particularlySDG6‘Cleanwaterandsanitation’, Single Market inlinewiththeSustainableDevelopment to theEnergyUnion,climateactionandDigital environment while also contributingtopolicyrelating tion ofEUpolicies In parallel,thepriorityistoaccelerateimplementa- of thetechnologies. wards largepilotscaleandto expand the market uptake the transitionofICTtechnologiesandstandardsto- a prietary ones.Themainactionistofoster thecreationof tocols and interoperable (open) interfaces instead of pro- promoting commonmeta-datastructures,standardpro- should less akey enablingfactorfor smartwatersolutionsthat needs, thedevelopmentofsystemstandardsisneverthe- izational andfinancialresourcestomatchpriorities tation ofthewatersectoraswelllackorgan- Although thiscouldbeattributedpartlytothefragmen- the relatedimplementationinlegislativeframework. tion ofICTtechnology,theirbusinessprocessesand turity concerningtheintegrationandstandardiza- water domainischaracterizedby alow level of - ma Despite apromisingtechnologicalscenario,currently, the 56 next decade. isations toensuresmoothdigitisationofwaterservices ordinated withrelevantstakeholders andstandardorgan- adoption ofsmartwatertechnologies.Itneedstobeco- and definealongtermregulatorystrategyaboutthe The EuropeanCommissionisexpectedtoworktowards 57 REFERENCES REFERENCES REPORT EC PERSPECTIVE AND PROGRESS • • Digital SingleMarket for waterservicestopromote the internalmarket andamending. ity, placeofresidenceorestablishmentwithin forms ofdiscriminationbasedoncustomers’national- COM/2016/289: for theDigitalSingleMarket COM/2016/0176 final:ICTStandardisationPriorities http://ec.europa.eu/environment/water/index_en.htm and EIP Water: http://ec.europa.eu/environment/water/innovationpartnership/ https://www.eip-water.eu/about through ensure interoperability of solutions through 56

and initiatives Addressing geo-blocking and other Addressing geo-blockingandother

57 relating to water and relatingtowaterand

• COM/2015/627: Ensuring the cross-border portability works, which contributes to implementing smart water of online content services in the internal market. best practices and an interoperability framework for • COM/2015/120: The Water Framework Directive and smart water services. Making special emphasis on key the Floods Directive: Actions towards the ‘good status’ aspects of a big data platform such as integration, of EU water and to reduce flood risks. analytics, visualisation, development, workload optimisation, security and governance. ICT4Water Cluster At European level, the Water Framework Directive (WFD) may use the testbeds established in the scope of the and associated water legislation are addressing water running projects to prove working concepts related to protection. A Commission Proposal for a revised Drinking this action. There is a need of coordination with other Water Directive (098/83/EC) has been adopted in 1 Febru- sector programmes supported by EC. ary 2018, and subsequently to be published and submit- • ACTION 3 Selection and integration of the widely ted to the Council and European Parliament. A roadmap accepted technologies (or technologies at the SoA) in on the Fitness Check (evaluation) of the Water Framework each class among all the range of suitable standards Directive (2000/60/EC) and the Floods Directive (2007/60/ and ontologies ensuring the interoperability at data EC), and a roadmap on the evaluation of the Urban Waste and communication level as SAREF for example. Stan- Water Treatment Directive (91/271/EEC) had been pub- dard organisations like ETSI and CEN/CENELEC have lished in October 2017. DG ENV launches several public to define the framework that will allow the producers, consultations e.g. regarding the minimum quality require- providers, stakeholders and end-users to develop the ments for reused water in the EU and the strategic ap- smart water services next decade. The process should proach to pharmaceuticals in the environment. be based on the policy set by the Commission. • ACTION 4 Definition of open models and open data • STUDY 2013: European Parliament: Ubiquitous through interoperable platforms. The first steps as a Development of the Digital Single Market. policy decision are made by the EC. Then, standard • COM/2011/202: Smart Grids: from innovation to organisations like ETSI have to define the architectures deployment and data models. • COM/2007/414: Addressing the challenge of water • ACTION 5 Incentives for the adoption of Open Data scarcity and droughts standards, in order to be able to provide information • Directive 2002/21/EC: common regulatory frame- in a transparent and up to date manner. This action

work for electronic communications networks and is related to the policy of the EC but need to be services (Framework Directive) developed taking into account the security. Citizen’s awareness is an important issue and is related to the developed open data models by standard REQUESTED ACTIONS organisations in ACTION 4.

The requested actions towards digitisation of the water sector and implementation of ICT are defined in the scope ACTIVITIES AND of the ICT4Water Cluster. Some of them are related to SUSTAINABLE GROWTH the policy of the European Commission and other relevant ADDITIONAL INFORMATION bodies like standard organization: 2019 RELATED STANDARDISATION • • ACTION 1 Guidelines for the definition of Smart Wa- ACTIVITIES ter Grids, powered by IoT technologies and standards, which contributes to decentralised, circular water and CEN/CENELEC/ETSI information flow. The concept of the Smart Water Functional reference architecture for communications in smart Grid is expected to be developed in the framework of metering systems. A European standard comprising a software and ICT4Water Cluster58 running projects. Many standard hardware open architecture for utility meters that supports secure organizations like ETSI, CEN/CENELEC, AIOTI and ex- bidirectional communication upstream and downstream through standardised interfaces and data exchange formats and allows pected to contribute in coordination with the EC. advanced information and management and control systems for • ACTION 2 Guidelines and collaborative work among consumers and service suppliers key actors (associations, alliances, SDOs, etc.) for the ftp://ftp.cen.eu/cen/Sectors/List/Measurement/Smartmeters/ definition of Water Big Data standardisation frame- CENCLCETSI_TR50572.pdf ftp://ftp.cencenelec.eu/EN/EuropeanStandardization/ ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING 58 ICT4Water cluster: www.ict4water.eu/ , Action Plan for a DSM for Water Fields/EnergySustainability/Management/SmartMeters/ Services on the discussion platform Futurium: https://ec.europa.eu/futuri- Workprogramme2017.pdf um/en/content/ict4water-roadmaps-action-plan 151 152 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH • • • • • • • • • • http://inspire.ec.europa.eu between EUcountries. INSPIRE Directive.Reference EUarchitecturefor datasets sharing INSPIRE drive-by andfixedinstallations. unlicensed telemetrybandsandtoencompass systemsfor walk-by, meters. Theprimaryfocus istousetheShortRangeDevice(SRD) physical andthelinklayerfor systemsusingradio toreadremote M-Bus’, whichspecifiestherequirementsofparameters for the 13757-4 ‘Communicationsystemsfor meters -Part 4:Wireless Meters. CEN/TC 294willfurtherdevelopin2019therevision of EN are bothactiveintheCEN-CLC-ETSI CoordinationGrouponSmart systems for Meters’areresponsible for Water Management;they CEN/TC 92‘Water Meters’andCEN/TC 294‘Communication CEN DG_Approved_20171011.pdf https://portal.etsi.org/Portals/0/TBpages/CDP/Docs/ISG_CDP_ToR_ Initial crossdomaincityapplicationswillinclude: group visionis: Industry SpecificationGroup“CityDigitalProfile”(ISGCDP).That ETSI https://goo.gl/324EyW existing datamodels. the Water domainbasedonasetofusecasesandfromavailable Determining therequirementsfor aninitialsemanticmodelfor SAREF Investigationfor Water (DTR/SmartM2M-103547) ETSI http://www.opengeospatial.org/projects/groups/waterml2.0swg standards. of suchdatasetsacrossinformation systems,usingexistingOGC water observationsdata,withtheintentofallowing theexchange WaterML2.0. Standardinformation modelfor therepresentationof http://www.opengeospatial.org/projects/groups/hydrofeatswg domain defined by semanticsandnetworktopology and thewaytheyrelatetoeachotheraccordinghydro-science HY_FEATURES. Reference modeldefiningreal-worldwater-objects OGC® Infrastructure management. optimization. Environmental issuessuchaspollutionandresource Transportation andmobility. Water andwastemanagementenergy Urban lighting Building managementandconnectedhomes. rent payment;housingcondition,assistedlivingandvulnerability). Health andsocialcare(disabilityentitlement;housingbenefit systems’ integrationthroughoutpilotprojects. to acceleratethedeployment ofinnovative cityservicesand technology stack,thatmaybeusedby cityandnationalleaders To layoutasmartcitystandardsroadmapacrossthewhole interoperable withsimilarservicesfromothercities. that theywillbeintegrable,extendable,configurableand To enablecitiestoprocuresmartsolutionswithconfidence use ofstandardsinareplicablesolutionstack. provide atechnologyroadmapfor cityleaders,by promotingthe To acceleratethedeliveryofintegratedcitizenservicesand

https://www.iso.org/committee/4856734.html ways. including thewaterre-useinrepeated,cascaded,andrecycled drainage, andotheractionsrelatedtothehandlingofwastewater, conveyance, processing,storage,distribution,consumption, a sequenceofthestagesandoperationsinvolvedinuptaking, and societalaspectsofwaterre-use.Water re-usecomprises unintentional ones.Itincludestechnical,economic,environmental, water re-uses,directandindirectonesaswellintentional any purpose.Itcovers bothcentralisedanddecentralisedoron-site ISO/TC 282.Standardisationofwaterre-useanykindandfor ISO/TC https://www.itu.int/rec/T-REC-F.747.6-201410-I/en 200912-I!!PDF-E&type=items https://www.itu.int/rec/dologin_pub.asp?lang=e&id=T-REC-F.744- ubiquitous sensornetworkmiddleware. (F.744 standard). Servicedescriptionandrequirementsfor Ubiquitous sensornetworkmiddleware,applications,identification ITU-T https://www.iso.org/standard/53248.html pdf https://webstore.iec.ch/preview/info_isoiec30128%7Bed1.0%7Den. applications. capabilities, andmandatoryoptionalinterfacesbetweenthe generic sensornetworkapplications,descriptionof International Standardthatdepictsoperationalrequirementsfor Generic SensornetworksApplicationInterfaces(ISO/IEC30128). ISO/IEC https://www.w3.org/ infrastructures. modelling IoTentitieswithfocus onenergy, transport,andwater Iot-Schema.org. Extensionofschema.orgdatamodeltowards Smart City. corresponding APIstoenablesemanticinteroperabilitywithinthe Moreover, thisgroupisalsofocused onproviding bestpracticesand to reducethefragmentationgeneratedinIoTdevices. Web ofThingWorking Group.RDFandLinked Datavocabularies W3C AIOTI-HLA-R3-June-2017.pdf https://aioti.eu/wp-content/uploads/2017/06/ transversal toseveraldomainsincludingwater representing IoTentitiesandservices.Thisreference architectureis semantic datamodelbasedontheISO/IEC/IEEE42010standardfor High LevelReference Architecture.Reference ICTarchitectureand AIOTI http://www.witsprotocol.org specific functionalrequirements. by usingfeatures oftheDNP3protocoltosatisfywaterindustry makes interoperableequipmentfromdifferent manufacturers industry telemetrycontrolandmonitoring.Thisstandardprotocol WITS StandardProtocol.methoddedicatedtowater PSA

EC PERSPECTIVEAND PROGRESS SINGLE EUROPEAN REPORT

SKY The SESAR Joint Undertaking (SJU) investigated performance issues afflicting data link services used in support of Air Traffic Management (ATM) and produced the POLICY AND LEGISLATION report “Enhanced Large Scale ATN deployment (ELSA)”. POLICY OBJECTIVES The report identifies incompatibilities between airborne and ground systems, probably caused by inconsistencies The EU’s Single European Sky (SES) initiative has at its in the interpretation of standards but also lack of stand- heart the reform of the Air Traffic Management (ATM) in ardisation of important system elements. The report also Europe in order to cope with sustained air traffic growth identified the need for “end-to-end” service tests in order and operations under the safest, most cost- and flight-ef- for the data link services to meet the interoperability and ficient and environmentally friendly conditions. This im- performance requirements. plies (re-)designing the European airspace to support air traffic flows in alignment with technological capabilities and operational functionalities, reducing delays, increas- REFERENCES ing safety standards and flight efficiency to reduce the aviation environmental footprint, and reducing costs relat- • Single European Sky initiative - https://ec.europa.eu/ ed to service provision. Achievements have already been transport/modes/air/single_european_sky_en made at operational, technological and institutional levels • Single European Sky Interoperability Regulation EC and efforts are ongoing to maximise the benefits of activ- 552/2004 - https://eur-lex.europa.eu/legal-content/EN/ ities initiated under the SES framework. TXT/HTML/?uri=LEGISSUM:l24070&from=EN • Commission Regulation (EC) No 29/2009 - The Single European Sky (SES) Interoperability Regulation https://eur-lex.europa.eu/legal-content/EN/ EC 552/2004 has been one of the pillars of SES and sets ALL/?uri=CELEX%3A32009R0029 out requirements for constituents and testing of ground- • Commission Implementing Regulation (EU) based ATM systems. This Regulation was repealed but 2015/310 - https://eur-lex.europa.eu/legal-content/en/

the interoperability requirements are still valid and will be ALL/?uri=CELEX:32015R0310 transposed in the next revision of the Commission Imple- • Enhanced Large Scale ATN deployment (ELSA) - https:// menting Regulation 2017/373. www.datalinkservices.eu/wp-content/uploads/2016/06/ elsa_vdlm2_final_data_link_study.pdf Commission Regulation (EC) No 29/2009 as amended • Commission Regulation (EC) No. 2018/1139 - by Commission Implementing Regulation (EU) 2015/310 https://eur-lex.europa.eu/legal-content/EN/TXT/ lays down requirements on data link services for the Sin- PDF/?uri=CELEX:32018R1139&rid=1 gle European Sky. ETSI EN 303 214 “Data Link Services (DLS) System; Community Specification for application SUSTAINABLE GROWTH under the Single European Sky Interoperability Regulation REQUESTED ACTIONS

EC 552/2004 requirements for ground constituents and 2019 • system testing” is the standard supporting data link ser- Data communication in aviation for Air Traffic Manage- vices. ment (ATM) is rather new. However, since the 1970’s airlines have used datalinks to optimise their operations, in Efficient data link services are fundamental cornerstones particular to exchange administrative information sup- of the Single European Sky Operational Concept that is porting regularity of flight and technical data from on- to be developed and implemented through the European board systems. This so called Airline Operational Com- ATM Master Plan. Timely implementation of the envisaged munications (AOC) is a commercial service to airlines that new services, particularly Trajectory Based Operations, is runs on the datalink network provided globally by ARINC being jeopardised by lack of performant data link between and SITA. aircraft and ground Air Traffic Management systems. The modernisation of the European Air Traffic management is dependent on data link based services. Hence, implemen-

tation of alternative air-ground communication technol- STANDARDISATION ICT FOR PLAN ROLLING ogies must be accelerated for operations in mid-2020s. 153 154 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH as expected. overall responsibilitytoensurethattheservices perform ments. Itisnotpossibletoidentify oneentitythathasthe different businessmodelsareresponsible for theinvest- the serviceprovision. Severalstakeholders applyingvery ating witheachother. Severalstakeholders areinvolvedin developed by independententitiesnotnecessarilycooper- expected. Thischainisdefinedthroughvariousstandards fic Control (ATC) on the ground would functionproperly as er thetotalchainfromcockpitinanaircrafttoAir Traf- action wastoperform “end-to-end”teststoverifywheth- the situationandtoproposecorrectiveactions.Onesuch missioned theELSAstudytoidentifyreasonsbehind services for ATM didnotprogressasexpected.ECcom- tiatives”, itwasnotedthattheestablishmentofdatalink Despite theECDLSRegulationandvarious“incentiveini- aviation. mass-market principlesarenotapplicableinthecaseof er, thesecharacteristicscreateasituationwherenormal ulations andthesystemshavealonglife time.Togeth- it hasextremelydemandingrequirementsbasedonreg- tion telecommunicationsystemsmarket israthersmall, ufacturing industryperspective,thevolumeofavia- by the mobiletelecommunicationsindustry. From aman- tion totake advantageofservicesprovided, for example, reserved to“safety-of-life services”,whichpreventsavia- thus thesystemsshouldoperateinprotectedspectrum ecommunication servicesarerelatedtosafety offlight, solution. Furthermore,itshouldbenotedthatthesetel- of telecommunication”intooneframeworkandsystem shows thatitisverydifficulttomergethesetwo“worlds lated andbasedoncommercialagreements.Experience and liabilitytostakeholders, whileAOC istotallyunregu- lated by stringentlawsthatassignlegalresponsibilities sound businessmodel.Furthermore,ATM ishighlyregu- AOC notwithATM, whichmakes itchallengingtoapplya vider perspective,thefinancialvolumelayscurrentlywith requirements. From atelecommunicationsservicepro- terised by shortmessageswithstringentperformance relaxed performance requirementswhileATM ischarac- different. AOC ischaracterised by longmessageswith characteristics ofATM andAOC datalinkservicesarevery work services provided by ARINC, SITA andENAV. The -Regulation) isbasedonthealreadyavailable VDLnet- lation (EC)No29/2009(theDatalinkServices-orDLS in support of the first initial services, Commission Regu- der tohaveanoperationallyfunctionalservice.Therefore mental tohavea“criticalmass”ofaircraftequippedinor- the groundandon-boardaircraftitwouldbeinstru- investments by stakeholders wouldberequired bothon To createadedicateddatalinkservicefor ATM, significant ACTION 1 Based ontheabove, thefollowing actionscanbe defined: d) c) b) a) chitecture. between the different groups of components in each ar- infrastructure. Focusshouldespeciallybeoninterfaces EC DLSRegulationbasedonVDLMode2andexisting To documentthepresentarchitectureasrequiredby the DELIVERABLES: tem (SMS). owner’s/operator´s (ANSP) Safety Management Sys- ATM system.LocalATM Systemsaregoverned by the es toairtrafficcontrollersand tootherfunctionsinthe are fullystandardised.Datalink serviceshaveinterfac- local conditions,whichmeansthatnotallcomponents on a set of components that areextensively tailored to (Indra, ThalesandLeonardo).Theirproductsarebased are threemajorATM systemmanufacturersinEurope ATM SystemDatalinkArchitectureSpecification:There sis of ServiceLevelAgreements. other services,alsocanbeusedby aviationontheba- on commerciallyavailabletechnologiesthat,amongst supporting SWIMservices.Thesenetworksarebased ed. PCP includes the establishment of aninfrastructure ation, the“NewPENS”or“PENSII”isbeingimplement- backbone network used for ATM today. Thenext gener- Ground NetworkArchitectureSpecification:PENSisthe ongoing todefinethebesttargetsolution. be implemented.Additionalstudies(e.g.SJUIP1)are ture supporting ATM datalinkcommunicationsshould ELSA study recommendsthatonesingleRFinfrastruc- sub-contractors toANSPs.Itshouldbenotedthatthe viding ATM datalinkservices theyareconsideredtobe tified CommunicationServiceProviders sowhenpro- nicate intheirnetworks.ARINCandSITA arenotcer- tests onalltypesofunitsthatareallowed tocommu- should benotedthatbothARINCandSITA perform unit tary systemsanddetailsarenotpublicallyavailable.It ecommunications serviceprovider. Theseareproprie- talink managementsystemsestablishedby eachtel- ENAV. Components are the ground radios and the da- three radionetworksestablishedby ARINC,SITA and RF Architecture Specification: for operationandconsideredtomeetallrequirements. board systemsare“certified”andtherefore approved as theFlightManagementSystem(FMS),etc.Allon- and interfaces to pilots and the on-board systems such data busses,CommunicationManagementUnit(CMU) CAE/RTCA andAEEC.Componentsaretheradioitself, standards andspecificationsdeveloped by ICAO, EURO- Airborne ArchitectureSpecification:Basedonexisting Architecture Definition Architecture Based on the existing Based on the existing ACTION 2 Test Environment Definition ACTION 5 Test Report Template Definition To define the environment to be used in the test To define how results from tests should be documented events based on the architectures specified in Action 1. in a harmonised way in support of possible regulatory ac- The total “end-to-end” environment should cover the tions and deployment. Based on the deliverables from Ac- on-board interfaces (to pilots and airborne systems) to tions 1 to 5, it is expected that any certified test house ground interfaces (air traffic controllers and ATM system would be able to perform the tests and deliver objective components). Based on experience from the initial datal- and neutral reports. ink deployment, end-to-end testing should be performed in a sufficiently realistic test environment to allow thor- DELIVERABLES: ough stress testing of the system. a) Test Report Templates: Well-defined templates should be used to guide the testing entity on how to document DELIVERABLES: and present the results. a) Test Environment Specification: The total “end-to-end” environment should be broken down into logical/func- ACTION 6 Generic Datalink Test Definition tional components connected with well-defined inter- Actions 1 to 5 are all focused on what is required by the faces and a clear set of performance requirements. EC DLS Regulation based on VDL Mode 2 and existing infrastructure. It is well-known that this system only sup- ACTION 3 Test Procedure Definition ports the initial ATM datalink services. The SESAR Concept To define the procedures to be used in the test of Operation requires datalinks that can support larger events based on the test environment specified in Action volumes of data with deterministic performance. Before 2. If a piece of equipment is going to be tested in the “da- the existing datalink system based on VDL Mode 2 can talink environment” it would be connected to a testbed so be replaced, there will probably be a number of comple- the actual performance of that piece of equipment can be mentary datalinks that would have to be included in the tested and verified. architecture defined in Action 1 and that would benefit from the testing in Actions 2 to 5. DELIVERABLES: a) Test Procedure Specification: All logical/functional com- DELIVERABLES: ponents in the datalink architecture defined in Action 1 a) Generic Datalink Architecture Specification.

should be included. Tests should be defined to cover all b) Generic Test Environment Specification. included logical/functional components. c) Generic Test Procedure Specification. d) Generic Test Bed Specification. ACTION 4 Test Bed Definition e) Generic Test Report Template Specification.

To define how a testbed can be set up supporting the tests ACTION 7 Future activities in the environment to be used in the test events based on Depending on how ATM datalink services will develop in the architectures specified in Action 1. Each logical/func- the future, the generic material from Action 6 should be tional component is in principle a“black box” with well-de- adapted to the particular solutions that are going to be SUSTAINABLE GROWTH fined interfaces and requirements on inputs and outputs. tested. Undertake activities to explore the accelerated

A black-box is in principle a model implemented in a com- implementation of alternative air-ground communication 2019 • puter that simulates the actual component/function. technologies for operations by mid-2020s in support of a performant new datalink enabling full Trajectory Based DELIVERABLES: Operations wherein the trajectory is shared and used as a) Test Bed Specification: The total “end-to-end” environ- a bi-directional safety-, time- and mission-critical-ser- ment should be broken down into logical/functional vice-link between air and ground. components connected with well-defined interfaces and a clear set of performance requirements. All components should be modelled. As several test setups exist within the industry today, it should be possible to reuse these elements and take advantage of gained experience. ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

155 156 ROLLING PLAN FOR ICT STANDARDISATION • 2019 SUSTAINABLE GROWTH rity for organisationssupportingcivilaviationoperations’. 16495:2014 ‘AirTraffic Management-Information secu- CEN/TC 377 ‘Air-traffic management’isrevisingEN EUSCG (EuropeanUASStandardsCoordinationGroup). (European ATM Standards CoordinationGroup)andthe CEN cooperateswithEUROCAEandETSIwithintheEASCG ADDITIONAL INFORMATION ACTIVITIES RELATED STANDARDISATION ADDITIONAL INFORMATION ACTIVITIES AND and subsequentdeployment ofthedatalinkservices. recommendations oftheELSAstudyandleadcorrectiveactions (SDM) todevelopa“DataLinkServicesRecovery Plan”basedonthe DG MOVE issuedamandatetotheSESARDeployment Manager Commission Rule MakingGroup(RMT.0524). ETSI, EUROCAEandEASA.Findings arereportedtotheEASADLS Coordinating apossiblearrangementfor “end-to-end”testingwith SDM recommendations. ground DLSequipmenttobecomecompliantwiththeELSA ETSI isexaminingtheneedtoupdatestandardsfor ETSI coordinated withETSI. assumptions ongroundnetworkbehaviour. Thisactivityneedstobe companion document,plannedtobeavailablein2019,providing by RTCA andAEEC.EUROCAEhasalsostartedtodevelopanED are coordinatedwiththeequivalentAmericanstandardspublished 92C), plannedtobeavailableby theendof2018.Thesechanges related specifications/standards for airborneDLSequipment(ED- In linewiththefindingsofELSAstudy, EUROCAEisupdatingthe EUROCAE

SUSTAINABLE SUSTAINABLE GROWTH 2019 • ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

157 158 ROLLING PLAN FOR ICT STANDARDISATION • 2019 HORIZONTAL BUILDING BLOCKS BUILDING BLOCKS HORIZONTAL

The combinatorial effect of more powerful gener- ICT DRIVES al purpose computing platforms, an unprecedented abundance of digital data, including sensor data, and INNOVATION IN connectivity of all kinds of devices and objects are re- defining other industries by transforming businesses ALL ECONOMIC and society. Thus, ICT drives innovation in all sectors, from the smart home to the smart city, from the smart SECTORS grid to smart transportation, from smart healthcare to smart manufacturing in all kinds of industry sectors. The disruptive potential of ICT results from its nature as a general purpose technology. It is all about communicating and processing of digital data. Digital data may represent all kinds of information, including num- NEW WAVE OF bers, symbols, voice, audio, pictures, video, etc. Digital data are therefore exchanged and processed for many CONVERGENCE different purposes. Major applications include making phone calls, watching films, calculating and simulating A second wave of convergence is under way and building physical world phenomena, and publishing knowledge speed. It is based on the integration of distributed processing and news, to name a few. of information and operation of equipment.

In the 90s the first wave of ICT based convergence of While the first wave of ICT based convergence revolutionized industries has blurred the boundaries of the telecom- mainly consumer markets, the second wave of convergence munication, the computer, and the broadcasting sec- will heavily impact critical infrastructure, industry, and busi- tors. Today, consumers take this convergence as a giv- ness-to-business markets. The activities of economic actors in en and expect to watch news on their smartphone, to all sectors, whether manufacturers, service providers, adminis- make voice calls using a notebook or tablet, and to surf trations and their customers will be dramatically altered, some the Internet with their television set. examples are:

Distributed processing of digitized voice, moving pic- • interfaces between product and service suppliers and their tures and other information on networked computers customers, whether these are other businesses, Government has driven the first wave of convergence and disrupt- or end-consumers will change profoundly. In this process, ed prior separate vertical consumer markets. However, particularly close attention will be needed to the over-arching these previously separated vertical markets for teleph- issues such as security, data protection and privacy and ony, computing and television have not converged into sometimes accessibility in order to make these changes a single much larger market. The opposite holds true, fully acceptable and manageable for those outside the ICT ICT based technology convergence resulted in accel- industries themselves. HORIZONTAL BUILDING BLOCKS BLOCKS BUILDING HORIZONTAL erated market segmentation. Today many alternative • in the case of industrial companies, many must rely on time products and services coexist for telephony and TV, not sensitive local area networks operated as private networks mentioning the many new services never anticipated in order to ensure highly available and reliable closed loop 2019 • like social networks or online shops. control operating side-by-side with less critical information services. Operation of all kinds of systems, including utilities, The processing power has continued to grow exponen- will be increasingly automated and will be more and more tially according to Moore’s Law. The amount of data autonomous - mainly by adding Artificial Intelligence (AI); is exploding at unprecedented speed since whatever • regarding data value chains, common, semantically enriched can be digitized has been and is digitized. Moreover, data formats as well as common semantics are critical to connecting what can be connected further boosts the enable the free flow of data both vertically and horizontally exponential, self-amplifying, combined potential of ICT within industry domains and across industry sectors. This is at large to embrace new application areas. needed as an accelerator for digitisation, e.g. in the context of the Internet of Things (IoT), for digitising industry, for smart cities and for digitisation in public services; ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

159 160 ROLLING PLAN FOR ICT STANDARDISATION • 2019 HORIZONTAL BUILDING BLOCKS tures isknown as‘DigitalTransformation’. vertically integratedindustrydomain specificinfrastruc- zontal ICTtechnologiesasintegralpartofby now tightly nology. Theprocessofapplyingmoreandsuchhori- spect ICTmayberegardedasacommonhorizontaltech- transportation tomanufacturingagriculture.Inthisre- extracted fromdataare applicable in manysectors,from data, toanalyzedecideandactuponknowledge try domains.Genericstandardizedsolutionstoexchange be usedaspartofasolutionfor variousdifferent indus- These may be integrated into domain specific platforms or products andservicesareavailablefor in acombinatorialmanner. Moreandmorepowerful ICT ing ageneralpurposetechnologyadvancingexponentially The power anddisruptivepotentialofICTresultsfrombe- digitizing Europeanindustryandindeedsocietyasawhole. of theEuropeanDigitalSingleMarket andthekey enablerfor means toreachcrucialEuropeanpolicygoals.ICTisthebasis Enhanced ICTenablesasmarterworldandisaninevitable DOMAINS INDUSTRY FOR DIFFERENT SOLUTIONS INTEGRATED • • • • symbolic computingandmachinelearning data management digitizing analoginformation to beadapted. infrastructure. Regulatoryrequirementsmaychangeorhave ethical principles.Trust isinevitablefor theadoptionofsmart with humansinalignment,notonlylaws,butalso They needtosmoothlyintegrateintosocietiesandinteract ner, beingmoreandautonomousintheiroperation. make decisionsandactaccordinglyinanunsupervisedman- kets. Software,appliances,machines,androbotsincreasingly care aremoreregulatedthanvarioussegmentsofICTmar- transportation, utilities,manufacturing,agriculture,orhealth- many ofthesemoreconventionaleconomicsectorslike

than arevolutionfromthestart. ments. Itisanevolutionwithrevolutionaryresultsrather elements dependingonindustrydomainspecificrequire- about aprocessofadoptionoff-the-shelfICTsolution according totheneedsofaparticularindustry. Itisall duced inonego,butusedandintegratedstep-by-step Common horizontal ICT building blocks will not be intro- domains. turing, transportation,agriculture,healthcare,orinother or partsthereoftosolvespecificproblemsinmanufac- It isnotobvious how toapplystandardizedICTplatforms is aninnovation racetogaincompetitiveadvantages. to companyneedswillcoexist.Thedigitaltransformation standardized systemsolutionbutmanyinstancestailored ital transformation. Therewillnotbeasingleend-to-end It is,however, notstraightforward how tobenefitfromdig- following: Business driversfor thedigitaltransformation includethe • • 6. 5. 4. 3. 2. 1. innovations. lenge istoreusestandardizedICTasenablersfor From averticalindustrysectorviewpointthechal- on commonsolutionelements. ble novel solutionsfor variousverticalindustriesbased From anICTindustryviewpointthechallengeistoena- mass productionofpersonalizedproducts economies ofscale less vendorlock-in productivity gains new services(easydeployment) cost reduction(OPEXmainly) App1 App2 App3 App4 App5 App6 (+ sSE) (+ sSE) (+ sSE) (+ sSE)

Common service enabler 5

Common service enabler 4

Common service enabler 3

Common service Common service enabler 2 enabler24

Connectivity/Common service enabler 1 (cSE 1)

PAN LAN MAN WAN

FIGURE 1: EXAMPLES FOR HORIZONTALLY VERSUS VERTICALLY INTEGRATED SOLUTIONS FOR DIFFERENT INDUSTRY DOMAINS (CSE=COMMON SERVICE ENABLER, SSE=SPECIFIC SERVICE ENABLER)

Various combinations of integrated horizontal and vertical In these processes, the standardisation system will be building blocks for diverse industries will coexist, as is il- challenged. lustrated in Figure 1. The challenge, however, persists how to combine as many common horizontal building blocks • ICT standardization is characterised by its fragmen- as possible with as many vertical building blocks as nec- tation, with the involvement of multiple organisations essary to maximize benefits. both formal and informal. • On the other hand, in the other sectors that will be Provided the digital transformation of industries works out more and more influenced by ICT, standardization is as a smooth transition process, economy and society at typically a slow and formal process. large will benefit from achieving policy goals like • Ways need to be found to ensure collaboration HORIZONTAL BUILDING BLOCKS BLOCKS BUILDING HORIZONTAL between the involved SDOs, and that participants 1. customer choice in standardisation committees have the necessary

2. protection of consumers and SME users of ICT solu- competences. 2019 • tions, both to ensure (physical and electronic) security and data protection and in the sense of ensuring citizens’ rights, service quality etc. 3. vibrant innovative eco-system 4. business opportunities for new entrants 5. economic growth ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

161 162 ROLLING PLAN FOR ICT STANDARDISATION • 2019 HORIZONTAL BUILDING BLOCKS rent snapshot. does notclaimcompletenessandonlyrepresentsacur- turing inMemberStates.Thislistisfor reference only. It several linksdependingontherespectivedocumentstruc- available intheMemberStates,sometimescomprising policies and work plans on ICT standardisation that are This Annexprovides alistoflinkstostrategydocuments, PLANS AND STRATEGIES MEMBER STATES’ WORK ANNEX I - LIST OF https://www.da2020.nl/ Digital Agenda2020for Municipalities: https://www.forumstandaardisatie.nl Dutch StandardisationForum/openstandardspolicy: https://www.noraonline.nl/wiki/NORA_online Dutch NationalInteroperabilityFramework: NL DIGIbeter:AgendaDigitaleOverheid|RapportRijksoverheid.nl Digital Government Agenda,NLDigiBeter (July2018): het. Hiergebeurthet|RapportRijksoverheid.nl Nederlandse Digitaliseringsstrategie:Nederlanddigitaal-Hierkan Dutch DigitizationStrategy (June2018): Testing securewebsites: https://www.da2020.nl/ Digital Agenda2020for Municipalities: https://www.forumstandaardisatie.nl Dutch StandardisationForum/openstandardspolicy: https://www.noraonline.nl/wiki/NORA_online Dutch NationalInteroperabilityFramework: https://www.digitaleoverheid.nl/dossiers/gdi-voorzieningen Generic DigitalInfrastructure: versnellen.pdf vertrouwenversnellen/digitale-agenda-vernieuwen-vertrouwen- rapporten/2016/07/05/digitale-agenda-vernieuwen- https://www.rijksoverheid.nl/binaries/rijksoverheid/documenten/ Digital Agendafor theNetherlands: http://www.agid.gov.it/agenda-digitale Agenda Digitalefor Italy: http://www.digital-made-in.de German digitalstrategy: http://references.modernisation.gouv.fr/rgi-interoperabilite Framework for interoperabilityandsecurity: numerique http://www.redressement-productif.gouv.fr/feuille-de-route-pour-le- French digitalstrategy: NETHERLANDS: ITALY GERMANY FRANCE

SPAIN: SWITZERLAND:

Digital Agenda for Spain: eGovernment Strategy Switzerland: http://www.agendadigital.gob.es/digital-agenda/Paginas/digital- https://www.egovernment.ch/en/umsetzung/e-government-strategie/ agenda-spain.aspx Switzerland National Cyberstrategy 2018-2022: Spanish National Cybersecurity Strategy: https://www.isb.admin.ch/isb/en/home/themen/cyber_risiken_ncs/ http://www.lamoncloa.gob.es/ ncs_strategie.html documents/20131332estrategiadeciberseguridadx.pdf Switzerland Information Society Strategy-Digital Switzerland Spanish National Interoperability Framework, English version: Strategy http://administracionelectronica.gob.es/pae_Home/dms/pae_Home/ https://www.bakom.admin.ch/bakom/en/homepage/digital- documentos/Estrategias/pae_Interoperabilidad_Inicio/pae_ switzerland-and-internet/strategie-digitale-schweiz/strategy.html Esquema_Nacional_de_Interoperabilidad/ENI_INTEROPERABILITY_ ENGLISH_3.pdf UNITED KINGDOM:

Original Spanish version: UK government policy on standardisation: https://www.boe.es/boe/dias/2010/01/29/pdfs/ http://www.gov.uk/innovation-standardisation--4 BOE-A-2010-1331.pdf Strategy on ICT: Strategy on Technical Interoperability Standards: http://www.gov.uk/government/publications/ http://administracionelectronica.gob.es/pae_Home/pae_Estrategias/ information-economy-strategy pae_Interoperabilidad_Inicio/pae_Normas_tecnicas_de_ Strategy on spectrum: interoperabilidad.html#.UnI2QlPFnzs https://www.gov.uk/government/publications/spectrum-strategy Technical Interoperability Standard for the Catalogue of Standards, ICT infrastructure consultation: English version: http://www.gov.uk/government/consultations/digital- http://administracionelectronica.gob.es/pae_Home/dms/ communications-infrastructure-strategy-consultation pae_Home/documentos/Estrategias/pae_Interoperabilidad_Inicio/ LEGISLACION_2012_BOE-A-2012-13501_Catalogue_of_ Internet of Things development standards_ENI_publicacion_oficial_2012/Catalogue%20of%20 http://www.gov.uk/government/collections/internet-of-things-review Standards%20NIF%20Spain.pdf Plans and progress on theNational Cybersecurity Strategy (NCSP) Official Spanish version: http://www.gov.uk/government/publications/national-cyber-security-

https://www.boe.es/diario_boe/txt.php?id=BOE-A-2012-13501 plus strategy-2-years-on https://www.boe.es/diario_boe/txt.php?id=BOE-A-2013-455 Government ICT procurement and the use of standards http://www.gov.uk/government/publications/open-standards- SWEDEN: principles/open-standards-principles Digitalisation Strategy: http://standards.data.gov.uk/ https://www.regeringen.se/regeringens-politik/ digitaliseringsstrategin/ eGovernment Strategy: https://www.regeringen.se/informationsmaterial/2015/04/ med-medborgaren-i-centrum/ HORIZONTAL BUILDING BLOCKS BLOCKS BUILDING HORIZONTAL

2019 • ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

163 164 ROLLING PLAN FOR ICT STANDARDISATION • 2019 HORIZONTAL BUILDING BLOCKS and mayincrementallybeincreased. orities canbefound. Thelistdoesnotclaimcompleteness projects andongoingworkrelevanttotheEUpolicypri- ards development organisations where information on This Annexprovides alistoflinkstorepositoriesstand- ONGOING WORK DATE INFORMATION ON WEB SITES WITH UP-TO- TO STANDARDS BODIES’ ANNEX II - LIST OF LINKS https://www.w3.org/Consortium/activities Current listofW3CactiveGroups: https://www.oasis-open.org/committees/tc_cat.php Standards projectsby topicalcategory: https://www.oasis-open.org/committees/ Current standardsprojects: https://www.itu.int/en/ITU-T/Pages/default.aspx ITU Telecommunication StandardizationSector: https://www.iso.org/isoiec-jtc-1.html Platform http://trac.tools.ietf.org/group/iab/trac/wiki/Multi-Stake-Holder- IETF entrytostandardisationactivitiesrelevanttheRollingPlan: http://standards.ieee.org/develop/msp/index.html IEEE entrytostandardisationactivitiesrelevanttheRollingPlan: http://www.etsi.org/about/etsi-work-programme ETSI workprogramme: Informationandcommunicationtechnology.html http://www.cenelec.eu/aboutcenelec/whatwedo/technologysectors/ http://www.cen.eu/cen/Sectors/Sectors/ISSS/Pages/default.aspx W3C: OASIS ITU-T: JTC1: ISO/IEC IETF: IEEE: ETSI CENELEC CEN

ANNEX III - TERMS DEFINITIONS AND ABBREVIATIONS DEFINITIONS TERMS EUROPEAN STANDARDS ANNUAL UNION WORK ORGANISATIONS (ESO) PROGRAMME ON EUROPEAN

The three European standards organisations are listed in STANDARDISATION (AUWP) Annex I to Regulation 1025/2012/EU, i.e. CEN, Cenelec and The AUWP is a formal document adopted by the Commission ETSI. Among other activities, they adopt European standards. identifying the strategic priorities for European standardisation, taking into account Union long-term strategies for growth. http://ec.europa.eu/growth/single-market/european-stan- EUROPEAN MULTI-STAKEHOLDER dards/policy/index_en.htm PLATFORM ON ICT STANDARDISATION (MSP) The MSP is an advisory group to the Commission on matters relating to the implementation of standardisation policy for information and communications technology (ICT), including its work programme, priority-setting in support of legislation and policies, and identification of specifications developed by global ICT standard development organisations. It is composed of members of the national authorities of Member States and EFTA countries, industry associations, societal stakeholders and organisations representing ICT standardisation stakeholders. http://ec.europa.eu/transparency/regexpert/index. cfm?do=groupDetail.groupDetail&groupID=2758 HORIZONTAL BUILDING BLOCKS BLOCKS BUILDING HORIZONTAL

2019 • ROLLING PLAN FOR ICT STANDARDISATION STANDARDISATION ICT FOR PLAN ROLLING

165 166 ROLLING PLAN FOR ICT STANDARDISATION • 2019

DSRC DSM DOA DECT CSI CSCG CSCC CSC CSA CPS CORE COC COAP CMS CITS CISE CIS CIP CII CERIF CEF CCEV CBOR BSI BIM AMQP AMNPO AM AIOTI AG ADMS AAL MAIN ABBREVIATIONS

Digital objectarchitecture Digital enhancedcordlesstelecommunications Cities StandardsInstitute Cloud StandardsCustomerCouncil Cyber-physical systems Constrained RestfulEnvironments Constrained ApplicationProtocol Content managementsystems Collaboration onITSCommunicationStandards Common Information Sharing Environment Consent &information sharing framework programme Competitiveness andinnovation Dedicated short-rangecommunications Digital singlemarket Cybersecurity CoordinationGroup Cloud StandardsCoordination Coordination andsupportaction Code ofconduct Cross-Industry Invoice Common Europeanresearchinformation format Connecting EuropeFacility Concise BinaryObjectRepresentation Building information modelling Asian Pacific Telecommunication Program Office Advanced ManufacturingNational Alliance for InternetofThingsInnovation Amsterdam Group Core Criteria/EvidenceVocabulary British StandardsInstitution Advanced messagequeuingprotocol APT Additive manufacturing Asset DescriptionMetadataSchema Active assistedliving

administrations ESMA ESEF ERPB ERN EPS EPC EFFRA EFC EETS EEAP ECEP ECC GICTF GDC FIBO EXEP EV EUPP ESPD ESOP ESO EMSFEI HTG HRM HON HMI HAN ICT IBOPS IAB IDM ITS ITLET ISMS ISA IOT INSPIRE IMF IFRS IFM IFC IDMP

Human-Machine-Interaction

European Reference Networks on e-Invoicing European ElectronicToll Service European singleelectronicreportingformat Euro retailpaymentsboard Electric Power System European Payment Council Electronic fee collection European electronicaccesspoint European commonenforcement priorities Electronic CommunicationsCommittee GREEN DIGITAL CHARTER Expert groupone-Procurement Electric vehicles Energy usingandproducingproducts European standardsorganisations European securitiesandmarket authority European Multi-Stakeholder Forum Research Association European Factories oftheFuture Financial industrybusinessontology European singleprocurementdocument European StatementofPrinciples Human resourcesmanagement Home automationnetworks Global Inter-CloudTechnology Forum Health OntheNet exchange protocolspecification Identity-based attestationandopen Internet architectureboard Harmonisation Task Groups Information andcommunication technologies Education andTraining Interoperability solutionsfor public in theEuropean Infrastructure for SpatialInformation Interoperable masterformat International financialreportingstandards Interoperable faremanagement Information deliverymanual Intelligent Transport Systems Information Technology for Learning, Information securitymanagementsystems Internet ofThings Industry foundation classes Identification ofmedicinalproducts

Framework R&TTE QSC QOS QOE QKD PSI PSAP PSA PPS PPP POS SEPA SEIF SCIM SBR SAML SAGA RTS RES REEIF RE RDA RAS RAN PO PMRM PLC PII PCHA PACS OMG OGF OGC OCC OASC OAM NSF NFC MQTT MOU MOOC LSP LOD KTN KPI KMIP KET JISC

Quantum safe cryptography Quality ofexperience Public sectorinformation Public safety answering point Programme SupportAction Production planning&scheduling Public-Private Partnership Radio EquipmentandTelecommunications Quality ofservice Quantum key distribution Point ofsale Publications Office Semantic energy information framework System for Cross-domainIdentityManagement Standard businessreporting Security assertionmarkuplanguage Strategic AdvisoryGrouponAccessibility Regulatory technicalstandards Renewable energysources Research DataAlliance Radio accessnetworks Terminal Equipment Privacy managementreference model Personally identifiableinformation Object ManagementGroup Open GridForum Open GeospitalConsortium Network securityfunction Near fieldcommunication Large scalepilot Knowledge Transfer Network Key performance indicators Key enablingtechnologies Single europayments area Refined eHealthEuropeanInteroperability Renewable Energy Robotics andautonomoussystems Power linecommunication Personal ConnectedHealthAlliance Picture archiveandcommunicationsystems Open CloudConsortium Open &AgileSmartCities Officially appointedmechanisms Message QueuingTelemetry Transport Memorandums ofunderstanding Massive openonlinecourse Linked opendata Key managementinteroperabilityprotocol Japanese IndustrialStandardsCommittee

SGCC SLA SIP STA SSP SNIA SMPTE SME STIR TOSCA TGF TC TARV VIN UPS ULE UAAG TSP TS TR XDI WCPS WCAG WAVE VRU VOT

State GridCorporationofChina Strategic ImplementationPlan Smart SecurePlatform Storage NetworkingIndustryAssociation Television Engineers Service levelagreement Small andmedium-sizedenterprises Smart Ticketing Alliance Society ofMotionPictureand Transformational Government Framework commercial freightvehicles Telematics applicationsfor regulated Secure Telephone IdentityRevisited Technical committee Uninterruptible power sources Technical specification Technical Report for CloudApplications Topology andOrchestrationSpecification Ultra-low energy User AgentAccessibilityGuidelines Trust serviceproviders Web coverage processingservice Wireless AccessinVehicular Environments Vehicle IdentificationNumber XRI datainterchange Web ContentAccessibilityGuidelines Vulnerable RoadUsers Vectors ofTrust

167 ROLLING PLAN FOR ICT STANDARDISATION - 2019