ENC Data Protection

Introduction

The IHO Data Protection Scheme defines security constructs and operating procedures that must be followed by Data Servers (providers of data) Data Clients (systems that use the data).

The purpose of data protection scheme is to provide:

1. Piracy Protection: i.e. to prevent unauthorised use of data by encrypting the ENC information.
2. Selective Access: i.e. to restrict access to ENC information to only those cells that a customer has been licenced for.
3. Authentication: i.e to provide assurance that the ENC data has come from approved sources

There are currently two IHO security schemes. The S-63 Scheme, is used for ENC's and ECDIS based on the S-57 Standard. The S-100 Scheme (currently being implemented for testing), is intended for S-100 based products (e.g. S-101, S-102 etc).

S-63 Documents and Resources

The main S-63 Documents are available in English and French and can be downloaded from the IHO Publications Download page.

  • OEM and Data Servers applications should use the joint S-63 and S-100 Request Forms and Agreements listed below.

Annex A - Data Server Certificate request documents, for both the S-63 and S-100 schemes;

Annex B - Manufacturer information request documents, for both the S-63 and S-100 schemes;

Please note; all submissions should include two printed copies of the Agreement documents. Both copies should include relevant signatures on the signature page (last page), and all other pages (at bottom right corner). (Both paper copies of the OEM Agreement document must be original signatures).   
Please send all paper document to:
International Hydrographic Organization
4b, Quai Antoine I-er
B.P. 445
MC 98011 Monaco Cedex
Principauté de Monaco

IHO Top Level Certificates

Other Resources

 

S-100 Scheme Documents and Resources

The S-100 Security Scheme is describe in Part 15 of the latest S-100 IHO Universal Hydrographic Data Model document, which is available from the IHO Publications Download page.

The OEM and Data Server Application Form and Agreement documents (for both schemes) are provided above;

Test Datasets - the S-100 Security Scheme testdata (which are based on the S-64 testdata) are included in the following zip files:

  • 1.ZIP (ref datacontent of S64 test 2.1.1) exchange set containing cells, text and picture files
  • 2.ZIP (ref datacontent of S64 test 2.2.2) exchange set containing updates to one of the cells in 1.ZIP
  • PERMITS.ZIP contains the permit file applicable for all the cells in above exchange sets with a separate signature file for the permit file.

Note: the consolidated signature file S63_SIGNATURES.XML is located in the INFO folder for 1.ZIP and 2.ZIP exchange sets.

 

Choose a subject


Share this page:

Last modified: 25/06/2020 - 09:37