ISO/IEC 11770-3-1999 信息技术安全技术密钥管理第3部分:用非对称技术的机制
作者:标准资料网
时间:2024-04-30 00:54:02
浏览:8796
来源:标准资料网
下载地址: 点击此处下载
【英文标准名称】:Informationtechnology-Securitytechniques-Keymanagement-Part3:Mechanismsusingasymmetrictechniques
【原文标准名称】:信息技术安全技术密钥管理第3部分:用非对称技术的机制
【标准号】:ISO/IEC11770-3-1999
【标准状态】:作废
【国别】:国际
【发布日期】:1999-11
【实施或试行日期】:
【发布单位】:国际标准化组织(IX-ISO)
【起草单位】:ISO/IECJTC1
【标准类型】:()
【标准水平】:()
【中文主题词】:信息交换;数据保护;代号系统;安全工程;校验;数据传输;算法;定义;信息技术;数据处理
【英文主题词】:Algorithms;Authentication;Codesystems;Dataprocessing;Dataprotection;Datatransmission;Definition;Definitions;Informationinterchange;Informationtechnology;Safetyengineering
【摘要】:ThispartofISO/IEC11770defineskeymanagementmechanismsbasedonasymmetriccryptographictech-niques.Itspecificallyaddressestheuseofasymmetrictechniquestoachievethefollowinggoals:1.EstablishasharedsecretkeyforasymmetriccryptographictechniquebetweentwoentitiesAandBbykeyagreement.Inasecretkeyagreementmechanismthesecretkeyisthere-sultofadataexchangebetweenthetwoenti-tiesAandB.Neitherofthemcanprede-terminethevalueofthesharedsecretkey.2.EstablishasharedsecretkeyforasymmetriccryptographictechniquebetweentwoentitiesAandBbykeytransport.InasecretkeytransportmechanismthesecretkeyischosenbyoneentityAandistransferredtoanotherentityB,suitablyprotectedbyasymmetrictechniques.3.Makeanentity'spublickeyavailabletootherentitiesbykeytransport.Inapublickeytransportmechanism,thepublickeyofanen-tityAmustbetransferredtootherentitiesinanauthenticatedway,butnotrequiringse-crecy.SomeofthemechanismsofthispartofISO/IEC11770arebasedonthecorrespondingauthenticationmecha-nismsinISO/IEC9798-3.ThispartofISO/IEC11770doesnotcoveraspectsofkeymanagementsuchas-keylifecyclemanagement,-mechanismstogenerateorvalidateasymmet-rickeypairs,-mechanismstostore,archive,delete,destroy,etc.keys.WhilethispartofISO/IEC11770doesnotexplicitlycoverthedistributionofanentity'sprivatekey(ofanasymmetrickeypair)fromatrustedthirdpartytoarequestingentity,thekeytransportmechanismsde-scribedcanbeusedtoachievethis.ThispartofISO/IEC11770doesnotcovertheimple-mentationsofthetransformationsusedinthekeyman-agementmechanisms.NOTE-Toachieveauthenticityofkeymanage-mentmessagesitispossibletomakeprovisionsforauthenticitywithinthekeyestablishmentprotocolortouseapublickeysignaturesystemtosignthekeyexchangemessages.
【中国标准分类号】:L04
【国际标准分类号】:35_040
【页数】:35P.;A4
【正文语种】:英语
【原文标准名称】:信息技术安全技术密钥管理第3部分:用非对称技术的机制
【标准号】:ISO/IEC11770-3-1999
【标准状态】:作废
【国别】:国际
【发布日期】:1999-11
【实施或试行日期】:
【发布单位】:国际标准化组织(IX-ISO)
【起草单位】:ISO/IECJTC1
【标准类型】:()
【标准水平】:()
【中文主题词】:信息交换;数据保护;代号系统;安全工程;校验;数据传输;算法;定义;信息技术;数据处理
【英文主题词】:Algorithms;Authentication;Codesystems;Dataprocessing;Dataprotection;Datatransmission;Definition;Definitions;Informationinterchange;Informationtechnology;Safetyengineering
【摘要】:ThispartofISO/IEC11770defineskeymanagementmechanismsbasedonasymmetriccryptographictech-niques.Itspecificallyaddressestheuseofasymmetrictechniquestoachievethefollowinggoals:1.EstablishasharedsecretkeyforasymmetriccryptographictechniquebetweentwoentitiesAandBbykeyagreement.Inasecretkeyagreementmechanismthesecretkeyisthere-sultofadataexchangebetweenthetwoenti-tiesAandB.Neitherofthemcanprede-terminethevalueofthesharedsecretkey.2.EstablishasharedsecretkeyforasymmetriccryptographictechniquebetweentwoentitiesAandBbykeytransport.InasecretkeytransportmechanismthesecretkeyischosenbyoneentityAandistransferredtoanotherentityB,suitablyprotectedbyasymmetrictechniques.3.Makeanentity'spublickeyavailabletootherentitiesbykeytransport.Inapublickeytransportmechanism,thepublickeyofanen-tityAmustbetransferredtootherentitiesinanauthenticatedway,butnotrequiringse-crecy.SomeofthemechanismsofthispartofISO/IEC11770arebasedonthecorrespondingauthenticationmecha-nismsinISO/IEC9798-3.ThispartofISO/IEC11770doesnotcoveraspectsofkeymanagementsuchas-keylifecyclemanagement,-mechanismstogenerateorvalidateasymmet-rickeypairs,-mechanismstostore,archive,delete,destroy,etc.keys.WhilethispartofISO/IEC11770doesnotexplicitlycoverthedistributionofanentity'sprivatekey(ofanasymmetrickeypair)fromatrustedthirdpartytoarequestingentity,thekeytransportmechanismsde-scribedcanbeusedtoachievethis.ThispartofISO/IEC11770doesnotcovertheimple-mentationsofthetransformationsusedinthekeyman-agementmechanisms.NOTE-Toachieveauthenticityofkeymanage-mentmessagesitispossibletomakeprovisionsforauthenticitywithinthekeyestablishmentprotocolortouseapublickeysignaturesystemtosignthekeyexchangemessages.
【中国标准分类号】:L04
【国际标准分类号】:35_040
【页数】:35P.;A4
【正文语种】:英语
下载地址:
点击此处下载