BS ISO/IEC 13888-2-1998 信息技术.安全性技术.非脱离.使用对称性技术的机构
作者:标准资料网 时间:2024-05-23 18:56:32 浏览:9656
来源:标准资料网
下载地址: 点击此处下载
【英文标准名称】:Informationtechnology-Securitytechniques-Non-repudiation-Mechanismsusingsymmetrictechniques
【原文标准名称】:信息技术.安全性技术.非脱离.使用对称性技术的机构
【标准号】:BSISO/IEC13888-2-1998
【标准状态】:作废
【国别】:英国
【发布日期】:1998-10-15
【实施或试行日期】:1998-10-15
【发布单位】:英国标准学会(GB-BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:通信规程;数据处理;验证;保密技术(软件);计算机应用;安全性(信息系统);对称的;软件技术;数据安全;数据布置;数据存储保护;信息交流;协议
【英文主题词】:Communicationprocesses;Dataprocessing;Dataprotection;Guidelines;Informationinterchange;Informationtechnology;Networkinterconnection;OSI;Safety
【摘要】:Thegoalofthenon-repudiationserviceistogenerate,col-lect,maintain,makeavailableandvalidateevidencecon-cerningaclaimedeventoractioninordertoresolvedis-putesabouttheoccurrenceornonoccurrenceoftheeventoraction.ThispartofISO/IEC13888providesdescriptionsofgenericstructuresthatcanbeusedfornon-repudiationservices,andofsomespecific,communicationrelatedmechanismswhichcanbeusedtoprovidenon-repudiationoforigin(NRO),non-repudiationofdelivery{NRD),non-repudiationofsubmission(NRS),andnon-repudiationoftransport(NRT)services.Othernon-repudiationservicescanbebuiltusingthegenericstructuresdescribedinClause8inordertomeettherequirementsdefinedbythesecuritypolicy.ThispartofISO/IEC13888reliesontheexistenceofatrustedthirdparty(TTP)topreventfraudulentrepudiation.Usuallyanon-linetrustedthirdpartyisneeded.Non-repudiationmechanismsprovideprotocolsfortheex-changeofnon-repudiationtokensspecifictoeachnon-re-pudiationservice.Non-repudiationtokensusedinthispartconsistofSecureEnvelopesandadditionaldata.Non-repudiationtokensshallbestoredasnon-repudiationinfor-mationthatmaybeusedsubsequentlyincaseofdisputes.Dependingonthenon-repudiationpolicyineffectforaspe-cificapplication,andthelegalenvironmentwithinwhichtheapplicationoperates,additionalinformationmayberequiredtocompletethenon-repudiationinformation,e.g.,-evidenceincludingatrustedtimestampprovidedbyaTimeStampingAuthority,-evidenceprovidedbyanotarywhichprovidesas-suranceabouttheactionoreventperformedbyoneormoreentities.Non-repudiationcanonlybeprovidedwithinthecontextofaclearlydefinedsecuritypolicyforaparticularapplicationanditslegalenvironment.Non-repudiationpoliciesarede-scribedinISO/IEC10181-4.
【中国标准分类号】:L70
【国际标准分类号】:35_040
【页数】:16P;A4
【正文语种】:英语
【原文标准名称】:信息技术.安全性技术.非脱离.使用对称性技术的机构
【标准号】:BSISO/IEC13888-2-1998
【标准状态】:作废
【国别】:英国
【发布日期】:1998-10-15
【实施或试行日期】:1998-10-15
【发布单位】:英国标准学会(GB-BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:通信规程;数据处理;验证;保密技术(软件);计算机应用;安全性(信息系统);对称的;软件技术;数据安全;数据布置;数据存储保护;信息交流;协议
【英文主题词】:Communicationprocesses;Dataprocessing;Dataprotection;Guidelines;Informationinterchange;Informationtechnology;Networkinterconnection;OSI;Safety
【摘要】:Thegoalofthenon-repudiationserviceistogenerate,col-lect,maintain,makeavailableandvalidateevidencecon-cerningaclaimedeventoractioninordertoresolvedis-putesabouttheoccurrenceornonoccurrenceoftheeventoraction.ThispartofISO/IEC13888providesdescriptionsofgenericstructuresthatcanbeusedfornon-repudiationservices,andofsomespecific,communicationrelatedmechanismswhichcanbeusedtoprovidenon-repudiationoforigin(NRO),non-repudiationofdelivery{NRD),non-repudiationofsubmission(NRS),andnon-repudiationoftransport(NRT)services.Othernon-repudiationservicescanbebuiltusingthegenericstructuresdescribedinClause8inordertomeettherequirementsdefinedbythesecuritypolicy.ThispartofISO/IEC13888reliesontheexistenceofatrustedthirdparty(TTP)topreventfraudulentrepudiation.Usuallyanon-linetrustedthirdpartyisneeded.Non-repudiationmechanismsprovideprotocolsfortheex-changeofnon-repudiationtokensspecifictoeachnon-re-pudiationservice.Non-repudiationtokensusedinthispartconsistofSecureEnvelopesandadditionaldata.Non-repudiationtokensshallbestoredasnon-repudiationinfor-mationthatmaybeusedsubsequentlyincaseofdisputes.Dependingonthenon-repudiationpolicyineffectforaspe-cificapplication,andthelegalenvironmentwithinwhichtheapplicationoperates,additionalinformationmayberequiredtocompletethenon-repudiationinformation,e.g.,-evidenceincludingatrustedtimestampprovidedbyaTimeStampingAuthority,-evidenceprovidedbyanotarywhichprovidesas-suranceabouttheactionoreventperformedbyoneormoreentities.Non-repudiationcanonlybeprovidedwithinthecontextofaclearlydefinedsecuritypolicyforaparticularapplicationanditslegalenvironment.Non-repudiationpoliciesarede-scribedinISO/IEC10181-4.
【中国标准分类号】:L70
【国际标准分类号】:35_040
【页数】:16P;A4
【正文语种】:英语
下载地址: 点击此处下载