【英文标准名称】:Informationtechnology-Securitytechniques-Keymanagement-Mechanismsusingasymmetrictechniques
【原文标准名称】:信息技术.安全技术.关键管理.使用不对称技术的机构
【标准号】:BSISO/IEC11770-3-1999
【标准状态】:作废
【国别】:英国
【发布日期】:2000-01-15
【实施或试行日期】:2000-01-15
【发布单位】:英国标准学会(BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:数据处理;数据安全;信息交流;键(密码);密码;标记(数据传输);算法;数据存储保护;编码(程序设计);数据管理;专利;不对称的
【英文主题词】:Algorithms;Authentication;Codesystems;Dataprocessing;Dataprotection;Datatransmission;Definition;Definitions;Informationinterchange;Informationtechnology;Safetyengineering
【摘要】:ThispartofISO/IEC11770defineskeymanagementmechanismsbasedonasymmetriccryptographictech-niques.Itspecificallyaddressestheuseofasymmetrictechniquestoachievethefollowinggoals:1.EstablishasharedsecretkeyforasymmetriccryptographictechniquebetweentwoentitiesAandBbykeyagreement.Inasecretkeyagreementmechanismthesecretkeyisthere-sultofadataexchangebetweenthetwoenti-tiesAandB.Neitherofthemcanprede-terminethevalueofthesharedsecretkey.2.EstablishasharedsecretkeyforasymmetriccryptographictechniquebetweentwoentitiesAandBbykeytransport.InasecretkeytransportmechanismthesecretkeyischosenbyoneentityAandistransferredtoanotherentityB,suitablyprotectedbyasymmetrictechniques.3.Makeanentity'spublickeyavailabletootherentitiesbykeytransport.Inapublickeytransportmechanism,thepublickeyofanen-tityAmustbetransferredtootherentitiesinanauthenticatedway,butnotrequiringse-crecy.SomeofthemechanismsofthispartofISO/IEC11770arebasedonthecorrespondingauthenticationmecha-nismsinISO/IEC9798-3.ThispartofISO/IEC11770doesnotcoveraspectsofkeymanagementsuchas-keylifecyclemanagement,-mechanismstogenerateorvalidateasymmet-rickeypairs,-mechanismstostore,archive,delete,destroy,etc.keys.WhilethispartofISO/IEC11770doesnotexplicitlycoverthedistributionofanentity'sprivatekey(ofanasymmetrickeypair)fromatrustedthirdpartytoarequestingentity,thekeytransportmechanismsde-scribedcanbeusedtoachievethis.ThispartofISO/IEC11770doesnotcovertheimple-mentationsofthetransformationsusedinthekeyman-agementmechanisms.NOTE-Toachieveauthenticityofkeymanage-mentmessagesitispossibletomakeprovisionsforauthenticitywithinthekeyestablishmentprotocolortouseapublickeysignaturesystemtosignthekeyexchangemessages.
【中国标准分类号】:L70
【国际标准分类号】:35_040
【页数】:42P.;A4
【正文语种】:英语