International Standards for Intelligent Device Risk Control: IEEE DTX Architecture and ITU Anti‑Fraud Guidelines

In recent years, China has leveraged its mobile internet security risk‑control expertise to become a leader in international standards for intelligent terminal security, culminating in the publication of the first global standard for intelligent device risk control by IEEE and the initiation of an anti‑fraud standard by ITU.

IEEE, the world’s largest nonprofit technical association, maintains over 1,300 industry standards, while ITU, one of the three major international standardization bodies, represents more than 190 countries and over 900 companies and academic institutions.

With the surge of data and assets moving to smart devices and the rise of network attacks and information theft, business risks in mobile payments, e‑commerce, and smart healthcare have increased, creating a need for comprehensive risk‑control guidelines in the smart‑device domain.

The two newly released standards address this gap by presenting a systematic device‑edge fusion risk‑control solution called Device Trust Extension (DTX), which embeds system‑trust, application‑trust, and identity‑trust models into the device’s secure area before manufacturing, enabling on‑device privacy‑preserving risk control.

IEEE’s standard, "Device Trust Extension: Software Architecture," defines the DTX software architecture, covering device‑side risk grading, a generic DTX framework, model inputs, policies, and security requirements, providing guidance for secure intelligent‑device design and product evaluation.

ITU’s standard, "Technical Guide for Malware Fraud Risk Detection in Mobile Devices," offers a comprehensive guide on DTX‑based anti‑fraud applications, describing typical fraud scenarios, risk analysis, detection frameworks, and capabilities, and is expected to help combat telecom‑network fraud worldwide.

The DTX software framework also aligns with the internationally recognized "CC" security standard, commonly used to evaluate high‑security systems such as banking cards, smart devices, and autonomous vehicles.

Since 2015, Ant Group has been developing a hardware‑software integrated edge‑fusion security system, creating the DTX solution that is now deployed on approximately 90 million smartphones, filtering more than 30 000 potential risky transactions per day.