The vision for 6G extends beyond mere communication, incorporating sensing capabilities to facilitate a diverse array of novel applications and services. However, the advent of joint communication and sensing (JCAS) technology introduces concerns regarding the handling of sensitive personally identifiable information (PII) pertaining to individuals and objects, along with external third-party data and disclosure. Consequently, JCAS-based applications are susceptible to privacy breaches, including location tracking, identity disclosure, profiling, and misuse of sensor data, raising significant implications under the European Union's general data protection regulation (GDPR) as well as other applicable standards. This paper critically examines emergent JCAS architectures and underscores the necessity for network functions to enable privacy-specific features in the 6G systems. We propose an enhanced JCAS architecture with additional network functions and interfaces, facilitating the management of sensing policies, consent information, and transparency guidelines, alongside the integration of sensing-specific functions and storage for sensing processing sessions. Furthermore, we conduct a comprehensive threat analysis for all interfaces, employing security threat model STRIDE and privacy threat model LINDDUN. We also summarise the identified threats using standard common weakness enumeration (CWE). Finally, we suggest the security and privacy controls as the mitigating strategies to counter the identified threats stemming from the JCAS architecture.

翻译：6G愿景超越了单纯的通信范畴，融入了感知能力以支持多样化的新型应用与服务。然而，通感一体化（JCAS）技术的出现引发了关于处理涉及个人与物体的敏感个人身份信息（PII）、外部第三方数据及其披露的担忧。因此，基于JCAS的应用易受隐私侵犯，包括位置追踪、身份泄露、用户画像构建以及传感器数据滥用，这给欧盟《通用数据保护条例》（GDPR）及其他适用标准带来了重大合规影响。本文批判性地审视了新兴的JCAS架构，并强调了在6G系统中实现隐私专项网络功能的必要性。我们提出了一种增强型JCAS架构，通过增加网络功能与接口，以支持感知策略、授权信息及透明度准则的管理，同时集成感知专用功能与感知处理会话存储。此外，我们采用安全威胁模型STRIDE与隐私威胁模型LINDDUN对所有接口进行了全面威胁分析，并利用标准通用缺陷枚举（CWE）对识别出的威胁进行了系统归纳。最后，我们提出了相应的安全与隐私控制措施，作为应对JCAS架构所衍生威胁的缓解策略。