BS ISO IEC 10181-4-1997 Information technology - Open systems interconnection - Security frameworks for open systems - Non-repudiation framework《信息技术 开放系统互连 开放系统用安全帧 非废弃帧》.pdf
《BS ISO IEC 10181-4-1997 Information technology - Open systems interconnection - Security frameworks for open systems - Non-repudiation framework《信息技术 开放系统互连 开放系统用安全帧 非废弃帧》.pdf》由会员分享,可在线阅读,更多相关《BS ISO IEC 10181-4-1997 Information technology - Open systems interconnection - Security frameworks for open systems - Non-repudiation framework《信息技术 开放系统互连 开放系统用安全帧 非废弃帧》.pdf(32页珍藏版)》请在麦多课文档分享上搜索。
1、BRITISH STANDARD BS ISO/IEC 10181-4:1997 Information technology Open Systems Interconnection Security frameworks for open systems: Non-repudiation framework (ITU-T Rec. X.813 (1996)| ISO/IEC10181-4:1997) ICS35.100.01BSISO/IEC10181-4:1997 This British Standard, having been prepared under the directio
2、nof the DISC Board, waspublished under the authorityof the Standards Boardand comes into effect on 15 September1997 BSI09-1999 ISBN 0 580 27864 6 National foreword This British Standard reproduces verbatim ISO/IEC10181-4:1997 and implements it as the UK national standard. The UK participation in its
3、 preparation was entrusted to Technical Committee IST/21, Open Systems Interconnection, Data Management and Open Distributed Processing, which has the responsibility to: aid enquirers to understand the text; present to the responsible international/European committee any enquiries on the interpretat
4、ion, or proposals for change, and keep the UKinterests informed; monitor related international and European developments and promulgate them in the UK. A list of organizations represented on this committee can be obtained on request to its secretary. From1 January1997, all IEC publications have the
5、number60000 added to the old number. For instance, IEC27-1 has been renumbered as IEC60027-1. For a period of time during the change over from one numbering system to the other, publications may contain identifiers from both systems. Cross-references The British Standards which implement internation
6、al or European publications referred to in this document may be found in the BSI Standards Catalogue under the section entitled “International Standards Correspondence Index”, or using the “Find” facility of the BSI Standards Electronic Catalogue. A British Standard does not purport to include all t
7、he necessary provisions of a contract. Users of British Standards are responsible for their correct application. Compliance with a British Standard does not of itself confer immunity from legal obligations. Summary of pages This document comprises a front cover, an inside front cover, pages i and ii
8、, theISO/IEC title page, pagesii toiv, pages1 to22 and a back cover. This standard has been updated (see copyright date) and may have had amendments incorporated. This will be indicated in the amendment table on the inside front cover. Amendments issued since publication Amd. No. Date CommentsBSISO/
9、IEC10181-4:1997 BSI 09-1999 i Contents Page National foreword Inside front cover Foreword iii Text of ISO/IEC10181-4 1ii blankBSISO/IEC10181-4:1997 ii BSI 09-1999 Contents Page Foreword iii Introduction 1 1 Scope 1 2 Normative references 2 2.1 Identical Recommendations | International Standards 2 2.
10、2 Paired Recommendations|International Standards equivalent in technical content 2 3 Definitions 3 3.1 Basic Reference Model definitions 3 3.2 Security Architecture definitions 3 3.3 Security Frameworks Overview definitions 3 3.4 Additional definitions 4 4 Abbreviations 5 5 General discussion of Non
11、-repudiation 5 5.1 Basic concepts of Non-repudiation 5 5.2 Roles of a Trusted Third Party 5 5.3 Phases of Non-repudiation 6 5.4 Some forms of Non-repudiation services 8 5.5 Examples of OSI Non-repudiation evidence 9 6 Non-repudiation policies 9 7 Information and facilities 10 7.1 Information 10 7.2
12、Non-repudiation facilities 10 8 Non-repudiation mechanisms 13 8.1 Non-repudiation using a TTP security token (secure envelope) 13 8.2 Non-repudiation using security tokens and tamper-resistant modules 13 8.3 Non-repudiation using a digital signature 13 8.4 Non-repudiation using Time Stamping 14 8.5
13、Non-repudiation using an in-line Trusted Third Party 14 8.6 Non-repudiation using a Notary 15 8.7 Threats to Non-repudiation 15 9 Interactions with other security services and mechanisms 17 9.1 Authentication 17 9.2 Access Control 17 9.3 Confidentiality 17 9.4 Integrity 17 9.5 Audit 17 Annex A Non-r
14、epudiation in OSI Basic Reference Model 18 Annex B Non-repudiation Facilities Outline 19 Annex C Non-repudiation in store and forward systems 19 Annex D Recovery in a Non-repudiation service 20 Annex E Interaction with the Directory 21 Annex F Bibliography 22 Figure 1 Entities involved in the genera
15、tion, transfer, storage/retrieval and verification phases 7 Figure 2 Dispute Resolution phase of a Non-repudiation process 7 Descriptors: Data processing, information interchange, network interconnection, open systems interconnection, communication procedure, protection of information, security tech
16、niques.BSISO/IEC10181-4:1997 BSI 09-1999 iii Foreword ISO (the International Organization for Standardization) and IEC (theInternational Electrotechnical Commission) form the specialized system forworldwide standardization. National bodies that are members of ISO or IEC participate in the developmen
17、t of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental,
18、in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC1. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as
19、 an International Standard requires approval by at least75% of the national bodies casting a vote. International Standard ISO/IEC10181-4 was prepared by Joint Technical Committee ISO/IEC JTC1, Information technology, Subcommittee SC21, Open systems interconnection, data management and open distribut
20、ed processing, in collaboration with ITU-T. The identical text is published as ITU-T Recommendation X.813. ISO/IEC10181 consists of the following parts, under the general title Information technology Open Systems Interconnection Security frameworks for open systems: Part1: Overwiew; Part2: Authentic
21、ation framework; Part3: Access control framework; Part4: Non-repudiation framework; Part5: Confidentiality framework; Part6: Integrity framework; Part7: Security audit and alarms framework. Annex A to Annex F of this part of ISO/IEC10181 are for information only.iv blankBSISO/IEC10181-4:1997 BSI 09-
22、1999 1 Introduction The goal of the Non-repudiation service is to collect, maintain, make available and validate irrefutable evidence concerning a claimed event or action in order to resolve disputes about the occurrence or non-occurrence of the event or action. The Non-repudiation service can be ap
23、plied in a number of different contexts and situations. The service can apply to the generation of data, the storage of data, or the transmission of data. Non-repudiation involves the generation of evidence that can be used to prove that some kind of event or action has taken place, so that this eve
24、nt or action cannot be repudiated later. In an OSI environment (see CCITT Rec. X.800 and ISO7498-2) the Non-repudiation service has two forms: Non-repudiation with proof of origin which is used to counter false denial by a sender that the data or its contents has been sent. Non-repudiation with proo
- 1.请仔细阅读文档,确保文档完整性,对于不预览、不比对内容而直接下载带来的问题本站不予受理。
- 2.下载的文档,不会出现我们的网址水印。
- 3、该文档所得收入(下载+内容+预览)归上传者、原创作者;如果您是本文档原作者,请点此认领!既往收益都归您。
下载文档到电脑,查找使用更方便
5000 积分 0人已下载
下载 | 加入VIP,交流精品资源 |
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- BSISOIEC1018141997INFORMATIONTECHNOLOGYOPENSYSTEMSINTERCONNECTIONSECURITYFRAMEWORKSFOROPENSYSTEMSNONREPUDIATIONFRAMEWORK

链接地址:http://www.mydoc123.com/p-396182.html