YD/T 4404.1-2023
Trusted IoT Cloud Platform Capability Assessment Method Part 1: General Requirements (English Version)
- Standard No.
- YD/T 4404.1-2023
- Language
- Chinese, Available in English version
- Release Date
- 2023
- Published By
- Professional Standard - Post and Telecommunication CN / YD
- Latest
- YD/T 4404.1-2023
- Introduction
Analysis of the Standard Core Framework
Evaluation dimensions Core indicators Technical requirements Test methods Basic trust requirements Service availability ≥ 99.9% Unplanned downtime ≤ 43.2 minutes/month Log audit + stress testing Device management Concurrent connections ≥ 1000 Support 5 protocols including MQTT/CoAP Simulated device cluster test Data management Persistence ≥ 99.99% JSON/binary format support Data integrity check
Detailed explanation of key technical requirements
1. Basic trust requirements of cloud platform
Chapter 7 of the standard clearly requires:
- Data destructibility: Physical deletion is required when the device is deactivated, and demagnetization is required when the storage device is scrapped
- Resource allocation: The response time for expanding computing resources should be ≤ 5 minutes (SSD storage expansion case)
- Fault recovery: A three-level alarm mechanism needs to be established (15-minute response for P0-level faults)
2. Device management capabilities
NB-IoT water meterAccess case:
- LWM2M protocol is used to achieve low-power connection
- Data reporting frequency is 1 time/hour (meet the data persistence requirements of Article 7.3)
- OTA upgrade needs to pass SHA-256 signature verification
Standard evolution and implementation suggestions
Technology evolution trend
Compared with the 2015 version of the national standard for cloud computing, this standard adds:
- Device access delay ≤100ms (Article 8.7)
- Rule engine configuration requirements (Article 9.4)
- API permission granularity control (Article 10.5)
Enterprise implementation path
- Compliance construction stage: Complete 7.1-7.11 basic trusted item certification
- Capability enhancement phase: Realizing full life cycle management of equipment (8.1-8.7)
- Service optimization phase: Building a data flow analysis platform (9.1-9.4)
YD/T 4404.1-2023 Referenced Document
- GB/T 32399-2015 Information technology.Cloud computing.Reference architecure
- GB/T 32400-2015 Information technology.Cloud computing.Overview and vocabulary
YD/T 4404.1-2023 history
- 2023 YD/T 4404.1-2023 Trusted IoT Cloud Platform Capability Assessment Method Part 1: General Requirements
Topics on standards and specifications
Standard and Specification
GSO ISO/IEC 11889-1:2015 Information technology - Trusted Platform Module – Part 1: Overview
ISO/IEC 11889-1:2009 Information technology - Trusted Platform Module - Part 1: Overview
ETSI TS 119 403 V2.1.1 (2014-11)-2014 Electronic Signatures and Infrastructures (ESI); Trust Service Provider Conformity Assessment - Requirements for conformity assessment bodies assessing Trust
DIN EN 17927:2023-01 Security Evaluation Standard for IoT Platforms (SESIP) - An effective methodology for applying cybersecurity assessment and re-use for connected products
BS ISO 19626-1:2020 Processes, data elements and documents in commerce, industry and administration. Trusted communication platforms for electronic documents - Fundamentals
ISO/IEC 11889-1:2015/Amd 1:2016 Information technology Trusted Platform Module Library Part 1: Architecture
DS/ISO/IEC 11889-2:2009 Information technology - Trusted Platform Module - Part 2: Design principles
DS/ISO/IEC 11889-3:2009 Information technology - Trusted Platform Module - Part 3: Structures
DS/ISO/IEC 11889-4:2009 Information technology - Trusted Platform Module - Part 4: Commands
CAN/CSA-ISO/IEC 11889-1:2016 Information technology — Trusted Platform Module Library — Part 1: Architecture