Difference between revisions of "M2M Regulation"

Issues

Machina Resarch identifed the following themes

Permanent roaming

The ability to offer services globally is a critical one for supporting many vertical sectors including automotive and consumer electronics. Regulatory prohibition of permanent roaming will fundamentally influence how connectivity is provided.

National roaming

The ability to make use of multiple networks within a territory will be useful for many M2M and IoT applications. However, regulatory positions vary with some countries prohibiting the use of national roaming.

Spectrum licensing

Technology choices for delivering M2M and IoT services may depend on what, how, and how much, spectrum is made available. The availability of White Space might have an influence of how M2M/IoT evolves, while there are licensing issues related to the use of alternative technologies such as Low Power Wide Area (LPWA).

Numbering

Several regulators have opted to allocate a dedicated number range for M2M. ITU has a E.164 numbering plan. This provides for geograhic based as well as international services and networks.

Data sovereignty

Different countries have starkly different rules about how data needs to be managed, for instance restrictions on whether the data can leave the country.

Data privacy

There have been some very high-profile instances of regulation relating to personal data (e.g. the ‘right to be forgotten’ in the EU). Many of these issues relating to personal data privacy will have implications also for M2M and IoT.

Other regulatory issues: There are a number of other regulatory issues, including subscriber registration and taxation that will have an impact on M2M and IoT.

DNS mapping of E.164 numbers

From Wikipedia Some national telephone bodies or telephone companies have implemented an Internet-based database for their numbering spaces. E.164 numbers may be used in the Domain Name System (DNS) of the Internet in which the second-level domain e164.arpa has been reserved for telephone number mapping (ENUM). In the system, any phone number may be mapped into a domain name using a reverse sequence of subdomains for each digit. For example, the telephone number +19995550123 translates to the domain name 3.2.1.0.5.5.5.9.9.9.1.e164.arpa.[3]

Bodies

TRAI

=Types of license

M2M Service Providers

TRAI as a result of consultation launched 2013 came out with a draft recommendation in 2015 which requires M2M service providers registration.

The illustrative list of M2M services are <ref> Annexure 1 M2M Service Providers Registration (Draft Guidelines May 2016)</ref>

List of specified M2M Services

1. Automotive
2. Fleet management
3. Supply chain management
4. Smart Utilities including Power, Water, GAS, Garbage disposal
5. Healthcare
6. Agriculture
7. Smart cities
8. Smart Home/ Building
9. Safety and surveillance
10. PoS- Fiscal Register
11. Portable consumer Electronics/ Wearable devices

Internet and Cellular only approach

The regulation require a registration of each provider of such services and a fee has to be paid. Medianama has a good summary which is reproduced below. Note the following

• TRAI assumes a SIM card based connectivity and KYC
• TRAI requires Internet based last mile connectivity

There has been some feedback at TRAI needing to be open to innovation as the last mile is undergoing significant change with low power wide area network LPWAN,and even 3GPP the cellular body realizing the need for narrow band IoT appropriate protocols like NB-IOT. Some rethink is likely

Medianma Summary

The policy and regulatory guidelines laid out by the DoT:

Registration of M2M service providers with DoT

All M2M service providers using telecom facilities from Telecom Service Providers (TSPs) should have MSP (M2M service provider) registrations which will let the DoT address issues of KYC, interface issues with TSPs, security and encryption for lawful interception of data. MSPs will be governed by DoT guidelines related to communication infrastructure and regulations of the industry vertical they operate in. The terms, conditions and guidelines of the MSP registration process are yet to be released.

KYC norms for M2M services

M2M service providers will only get SIMs issued from TSPs after fulfilling requisite KYC norms as required in case of corporate connections. The ownership of all such SIM cards will be with the M2M service provider and the details of all the customers of the M2M service which are in physical possession of machines fitted with these SIMs, will be maintained by the M2M provider. The M2M service provider will also be required to maintain updated info regarding details of end devices, make, model, registration number etc of the machines, and the address of the physical custodian of the machine, to TSPs, which will ensure traceability of M2M SIMs.

Permanent International Roaming

The DoT mentions that imported cars for example, with foreign telecom operators SIM, will ensure the SIM is in permanent roaming and the KYC details of the car will never get updated with Indian TSPs. As a workaround, the DoT suggests a reasonable notice time be given to those selling devices or vehicles fitted with foreign SIMs, to enable them to enter into commercial arrangements with Indian TSPs. Other than this, the agency suggests the overall foreign SIM cards should not be permitted in the devices to be used in India.

SIM transfer

As mentioned in the KYC norms section above, M2M service providers will be in charge of the SIM cards handed over to end users. However, there is a possibility that end-users could remove the SIM and use their own. The DoT suggests that M2M service providers also be MVNO with separate IMSI loc of their own, which will let end-users change the TSP without needing to physically change the SIM. Such an arrangement is currently implemented in Brazil. The DoT suggests the use of soft or virtual SIMs, as it will facilitate the change of TSPs at consumer discretion.

Security issues

The DoT addresses security concerns at three levels, namely

• the M2M data within a telecom operator’s domain: For this, TSPs are already limited to providing data transfer mechanism from end devices to M2M and hence existing security and encryption related regulation currently in place are enough.
• the M2M data within M2M service provider’s domain: For data in the service provider’s domain, the data collections rules will be regulated by architecture standards, on which One M2M alliance and TEC working groups are currently deliberating. These standards in conjunction with IT Act governing current data service will be enough for ensuring security among service providers.
• and security at sensor/device level: At the sensor/device level, only genuine IMEIs should be used like in existing handsets and IMEIs guidelines for handsets will be applicable for M2M devices as well.

Health/Safety regulations and environmental guidelines

According to the DoT, with millions of devices connected mostly via wireless, it may have an impact on human health. The agency makes the following suggestions to address the issue:

• M2M device’s RF and radio emission standards have to be under safe zones including compliance to standard levels of SAR- Specific Absorption Rate, CE, Radiation norms for mobile handsets etc.
• M2M devices shall have lower power consumption and shall be targeted to meet highest energy ratings published by relevant standardization bodies.
• Technical specifications for M2M sensors shall be referenced from existing guidelines applicable for mobile handsets, consumer electronics safety requirements etc.
• M2M Devices should be made of biodegradable material which can be recycled easily.
• M2M devices must adhere to industry and standards body specifications for emission, safety and integrity of services.
• Efforts should be made to meet global standards on environmental guidelines for the ICT sector including Dow Jones Sustainability Index (DJSI), GHG Protocol Corporate Standard, Global Reporting Initiative (GRI), ISO TC 207, ISO 14031, ISO 14064-1, and IEC TC 111.

Location and connectivity guidelines

As for these guidelines, all M2M services will have to be based on IP (internet protocol) only so as to encourage adoption of a common standard. Additionally, all M2M gateways and application servers, servicing customers in India will need to be located in India

See Also

http://www.trai.gov.in/

Spectrum