BS ISO/IEC 15945-2002 信息技术.安全性技术.对数字签字进行支持的TTP服务业务的规范
作者:标准资料网 时间:2024-05-11 23:33:45 浏览:8460
来源:标准资料网
下载地址: 点击此处下载
【英文标准名称】:Informationtechnology-Securitytechniques-SpecificationofTTPservicestosupporttheapplicationofdigitalsignatures
【原文标准名称】:信息技术.安全性技术.对数字签字进行支持的TTP服务业务的规范
【标准号】:BSISO/IEC15945-2002
【标准状态】:现行
【国别】:英国
【发布日期】:2002-03-15
【实施或试行日期】:2002-03-15
【发布单位】:英国标准学会(BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:数据传输;数据处理;数字签名;数字签名;签字;定义;定义;安全;信息技术;识别;数字的;信息交换;数据安全;数据交换
【英文主题词】:Dataexchange;Dataprocessing;Datasecurity;Datatransmission;Definition;Definitions;Digital;Digitalsignature;Digitalsignatures;Identification;Informationinterchange;Informationtechnology;Safety;Signatures
【摘要】:ThisRecommendation|InternationalStandardwilldefinethoseTTPservicesneededtosupporttheapplicationofdigitalsignaturesforthepurposeofnon-repudiationofcreationofdocuments.ThisRecommendation|InternationalStandardwillalsodefineinterfacesandprotocolstoenableinteroperabilitybetweenentitiesassociatedwiththeseTTPservices.DefinitionsoftechnicalservicesandprotocolsarerequiredtoallowfortheimplementationofTTPservicesandrelatedcommercialapplications.ThisRecommendation|InternationalStandardfocuseson:-implementationandinteroperability;-servicespecifications;and-technicalrequirements.ThisRecommendation|InternationalStandarddoesnotdescribethemanagementofTTPsorotherorganizational,operationalorpersonalissues.ThosetopicsaremainlycoveredinITU-TRec.X.842|ISO/IECTR14516,Informationtechnology-Securitytechniques-GuidelinesontheuseandmanagementofTrustedThirdPartyservices.NOTE1-BecauseinteroperabilityisthemainissueofthisRecommendation|InternationalStandard,thefollowingrestrictionshold:i)OnlythoseserviceswhichmaybeofferedbyaTTP,eithertoendentitiesortoanotherTTP,arecoveredinthisRecommendation|InternationalStandard.ii)Onlythoseserviceswhichmayberequestedand/ordeliveredbymeansofstandardizabledigitalmessagesarecovered.iii)OnlythoseservicesforwhichwidelyacceptablestandardizedmessagescanbeagreeduponatthetimethisRecommendation|InternationalStandardispublishedarespecifiedindetail.Furtherserviceswillbespecifiedinseparatedocumentswhenwidelyacceptablestandardizedmessagesareavailableforthem.Inparticular,timestampingserviceswillbedefinedinaseparatedocument.NOTE2-ThedatastructuresandmessagesinthisRecommendation|InternationalStandardwillbespecifiedinaccordancetoRFCdocuments,RFC2510andRFC2511(forcertificatemanagementservices)andtoRFC2560(forOCSPservices).ThecertificaterequestformatalsoallowsinteroperabilitywithPKCS#10.SeeAnnexCforreferencestothedocumentsmentionedinthisNote.NOTE3-OtherstandardizationeffortsforTTPservicesinspecificenvironmentsandapplications,likeSETorEDIFACT,exist.TheseareoutsideofthescopeofthisRecommendation|InternationalStandard.NOTE4-ThisRecommendation|InternationalStandarddefinestechnicalspecificationsforservices.Thesespecificationsareindependentofpolicies,specificlegalregulations,andorganizationalmodels(which,forexample,mightdefinehowdutiesandresponsibilitiesaresharedbetweenCertificationAuthoritiesandRegistrationAuthorities).Ofcourse,thepolicyofTTPsofferingtheservicesdescribedinthisRecommendation|InternationalStandardwillneedtospecifyhowlegalregulationsandtheotheraspectsmentionedbeforewillbefulfilledbytheTTP.Inparticular,thepolicyhastospecifyhowthevalidityofdigitalsignaturesandcertificatesisdetermined.
【中国标准分类号】:M11
【国际标准分类号】:35_040
【页数】:62P;A4
【正文语种】:英语
【原文标准名称】:信息技术.安全性技术.对数字签字进行支持的TTP服务业务的规范
【标准号】:BSISO/IEC15945-2002
【标准状态】:现行
【国别】:英国
【发布日期】:2002-03-15
【实施或试行日期】:2002-03-15
【发布单位】:英国标准学会(BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:数据传输;数据处理;数字签名;数字签名;签字;定义;定义;安全;信息技术;识别;数字的;信息交换;数据安全;数据交换
【英文主题词】:Dataexchange;Dataprocessing;Datasecurity;Datatransmission;Definition;Definitions;Digital;Digitalsignature;Digitalsignatures;Identification;Informationinterchange;Informationtechnology;Safety;Signatures
【摘要】:ThisRecommendation|InternationalStandardwilldefinethoseTTPservicesneededtosupporttheapplicationofdigitalsignaturesforthepurposeofnon-repudiationofcreationofdocuments.ThisRecommendation|InternationalStandardwillalsodefineinterfacesandprotocolstoenableinteroperabilitybetweenentitiesassociatedwiththeseTTPservices.DefinitionsoftechnicalservicesandprotocolsarerequiredtoallowfortheimplementationofTTPservicesandrelatedcommercialapplications.ThisRecommendation|InternationalStandardfocuseson:-implementationandinteroperability;-servicespecifications;and-technicalrequirements.ThisRecommendation|InternationalStandarddoesnotdescribethemanagementofTTPsorotherorganizational,operationalorpersonalissues.ThosetopicsaremainlycoveredinITU-TRec.X.842|ISO/IECTR14516,Informationtechnology-Securitytechniques-GuidelinesontheuseandmanagementofTrustedThirdPartyservices.NOTE1-BecauseinteroperabilityisthemainissueofthisRecommendation|InternationalStandard,thefollowingrestrictionshold:i)OnlythoseserviceswhichmaybeofferedbyaTTP,eithertoendentitiesortoanotherTTP,arecoveredinthisRecommendation|InternationalStandard.ii)Onlythoseserviceswhichmayberequestedand/ordeliveredbymeansofstandardizabledigitalmessagesarecovered.iii)OnlythoseservicesforwhichwidelyacceptablestandardizedmessagescanbeagreeduponatthetimethisRecommendation|InternationalStandardispublishedarespecifiedindetail.Furtherserviceswillbespecifiedinseparatedocumentswhenwidelyacceptablestandardizedmessagesareavailableforthem.Inparticular,timestampingserviceswillbedefinedinaseparatedocument.NOTE2-ThedatastructuresandmessagesinthisRecommendation|InternationalStandardwillbespecifiedinaccordancetoRFCdocuments,RFC2510andRFC2511(forcertificatemanagementservices)andtoRFC2560(forOCSPservices).ThecertificaterequestformatalsoallowsinteroperabilitywithPKCS#10.SeeAnnexCforreferencestothedocumentsmentionedinthisNote.NOTE3-OtherstandardizationeffortsforTTPservicesinspecificenvironmentsandapplications,likeSETorEDIFACT,exist.TheseareoutsideofthescopeofthisRecommendation|InternationalStandard.NOTE4-ThisRecommendation|InternationalStandarddefinestechnicalspecificationsforservices.Thesespecificationsareindependentofpolicies,specificlegalregulations,andorganizationalmodels(which,forexample,mightdefinehowdutiesandresponsibilitiesaresharedbetweenCertificationAuthoritiesandRegistrationAuthorities).Ofcourse,thepolicyofTTPsofferingtheservicesdescribedinthisRecommendation|InternationalStandardwillneedtospecifyhowlegalregulationsandtheotheraspectsmentionedbeforewillbefulfilledbytheTTP.Inparticular,thepolicyhastospecifyhowthevalidityofdigitalsignaturesandcertificatesisdetermined.
【中国标准分类号】:M11
【国际标准分类号】:35_040
【页数】:62P;A4
【正文语种】:英语
下载地址: 点击此处下载