Cookies
Potrebujeme váš súhlas na využitie jednotlivých dát, aby sa vám okrem iného mohli ukazovať informácie týkajúce sa vašich záujmov. Súhlas udelíte kliknutím na tlačidlo „OK“.
ISO/IEC 15945-ed.1.0
Information technology - Security techniques - Specification of TTP services to support the application of digital signatures
NORMA vydaná dňa 14.2.2002
Informácie o norme:
Označenie normy: ISO/IEC 15945-ed.1.0
Dátum vydania normy: 14.2.2002
Kód tovaru: NS-941560
Počet strán: 53
Približná hmotnosť: 159 g (0.35 libier)
Krajina: Medzinárodná technická norma
Kategória: Technické normy ISO
Kategórie - podobné normy:
Anotácia textu normy ISO/IEC 15945-ed.1.0 :
This Recommendation | International Standard will define those TTP services needed to support the application of digital signatures for the purpose of non-repudiation of creation of documents. This Recommendation | International Standard will also define interfaces and protocols to enable interoperability between entities associated with these TTP services. Definitions of technical services and protocols are required to allow for the implementation of TTP services and related commercial applications. This Recommendation | International Standard focuses on: ? implementation and interoperability; ? service specifications; and ? technical requirements. This Recommendation | International Standard does not describe the management of TTPs or other organizational, operational or personal issues. Those topics are mainly covered in ITU-T Rec. X.842 | ISO/IEC TR 14516, Information technology ? Security techniques ? Guidelines on the use and management of Trusted Third Party services. NOTE 1 ? Because interoperability is the main issue of this Recommendation | International Standard, the following restrictions hold: i) Only those services which may be offered by a TTP, either to end entities or to another TTP, are covered in this Recommendation | International Standard. ii) Only those services which may be requested and/or delivered by means of standardizable digital messages are covered. iii) Only those services for which widely acceptable standardized messages can be agreed upon at the time this Recommendation | International Standard is published are specified in detail. Further services will be specified in separate documents when widely acceptable standardized messages are available for them. In particular, time stamping services will be defined in a separate document. NOTE 2 ? The data structures and messages in this Recommendation | International Standard will be specified in accordance to RFC documents, RFC 2510 and RFC 2511 (for certificate management services) and to RFC 2560 (for OCSP services). The certificate request format also allows interoperability with PKCS#10. See Annex C for references to the documents mentioned in this Note. NOTE 3 ? Other standardization efforts for TTP services in specific environments and applications, like SET or EDIFACT, exist. These are outside of the scope of this Recommendation | International Standard. NOTE 4 ? This Recommendation | International Standard defines technical specifications for services. These specifications are independent of policies, specific legal regulations, and organizational models (which, for example, might define how duties and responsibilities are shared between Certification Authorities and Registration Authorities). Of course, the policy of TTPs offering the services described in this Recommendation | International Standard will need to specify how legal regulations and the other aspects mentioned before will be fulfilled by the TTP. In particular, the policy has to specify how the validity of digital signatures and certificates is determined. La presente Recommandation | Norme internationale definit les services TTP necessaires a la prise en charge des applications de signature numerique aux fins de non-repudiation de creation de documents. La presente Recommandation | Norme internationale definit egalement les interfaces et protocoles permettant linteroperabilite entre des entites associees a ces services TTP. Les definitions de services techniques et de protocoles sont necessaires pour permettre limplementation des services TTP et des applications commerciales associees. La presente Recommandation | Norme internationale est centree sur: . limplementation et linteroperabilite; . les specifications de services; . les prescriptions techniques. La presente Recommandation | Norme internationale ne decrit pas la gestion des tiers TTP ou dautres questions organisationnelles, dexploitation ou personnelles. Ces sujets sont principalement couverts dans la Rec. UIT-T X.842 | ISO/CEI TR 14516, Technologies de linformation . Techniques de securite . Lignes directrices pour lutilisation et la gestion des services de tiers de confiance. NOTE 1 . Puisque linteroperabilite est le sujet principal de la presente Recommandation | Norme internationale, les restrictions suivantes sappliquent: i) ne sont pris en consideration dans la presente Recommandation | Norme internationale que les services qui peuvent etre fournis par un TTP soit aux entites terminales soit a un autre TTP; ii) ne sont pris en consideration que les services qui peuvent etre demandes ou fournis au moyen de messages numeriques normalisables; iii) ne sont specifies en detail que les services pour lesquels des messages normalises acceptables a grande echelle peuvent etre adoptes au moment de la publication de la presente Recommandation | Norme internationale. Dautres services seront specifies dans des documents distincts lorsque des messages normalises acceptables a grande echelle seront disponibles pour eux. La definition des services horodateurs en particulier fera lobjet dun document separe. NOTE 2 . La structure des donnees et les messages figurant dans la presente Recommandation | Norme internationale seront specifies conformement aux documents RFC 2510 et 2511 (pour les services de gestion de certificats) et RFC 2560 (pour les services OCSP). Le format de la demande de certificat permet aussi linteroperabilite avec le systeme PKCS # 10. Voir lAnnexe C pour des references aux documents mentionnes dans la presente note. NOTE 3 . Il existe dautres tentatives de normalisation des services TTP dans des environnements et des applications specifiques, comme SET ou EDIFACT. Ils ne sinscrivent pas dans le cadre de la presente Recommandation | Norme internationale. NOTE 4 . La presente Recommandation | Norme internationale definit des specifications techniques pour les services. Ces specifications ne dependent pas des politiques, des reglements juridiques particu
Odporúčame:
Aktualizácia technických noriem
Chcete mať istotu, že používate len platné technické normy?
Ponúkame Vám riešenie, ktoré Vám zaistí mesačný prehľad o aktuálnosti noriem, ktoré používate.
Chcete vedieť viac informácií ? Pozrite sa na túto stránku.
