BS ISO/IEC ISP 15125-7-1998 信息技术.国际标准数据区ADYn.开放式系统互连(OSI)姓名地址录.ADY43.DSA到DSA鉴定
作者:标准资料网 时间:2024-05-28 10:21:18 浏览:8006
来源:标准资料网
下载地址: 点击此处下载
【英文标准名称】:Informationtechnology-InternationalStandardizedProfilesADYnn-OSIDirectory-ADY43-DSAtoDSAauthentication
【原文标准名称】:信息技术.国际标准数据区ADYn.开放式系统互连(OSI)姓名地址录.ADY43.DSA到DSA鉴定
【标准号】:BSISO/IECISP15125-7-1998
【标准状态】:现行
【国别】:英国
【发布日期】:1999-04-15
【实施或试行日期】:1999-04-15
【发布单位】:英国标准学会(GB-BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:真实性试验;数据处理;人名地址录;信息交换;信息技术;起动功能;网络互连;开放系统互连;记录;标准界面
【英文主题词】:Authenticitytest;Dataprocessing;Directories;Informationinterchange;Informationtechnology;Initiationfunction;Networkinterconnection;OSI;Records;Standardizedprofiles
【摘要】:1GeneralTheDirectoryStandardsdefinevariousmeansofauthenticationbetweenDUAsandDSAsandalsobetweentwoDSAs.AsspecifiedbytheDirectoryStandards,themeansofauthenticationatthetimeofestablishmentofanassociation(i.e.atBind-time),forDAP,DSP,DOP,andDISP,are:·None-nocredentialsaresupplied·Simpleunprotectedauthentication,withorwithoutpassword:eachauthenticatingpartysuppliesanameandoptionallyapassword·Simpleprotectedauthentication:eachauthenticatingpartysuppliesanameandapasswordwhoseinformationistransmittedinhashedformtopreservepasswordconfidentialityandtopreventreplay·StrongauthenticationinwhicheachauthenticatingpartysuppliesatokensignedwithadigitalsignaturewhichcanbeverifiedbytheotherTheDirectorystandardsalsopermitotherformsofauthenticationatthetimeofassociationestablishment,wherebycredentialsarepassedby"external"elements.SuchmeansareoutsidethescopeofthispartofISO/IECISP15125.Inaddition,theDirectoryStandardsdefineamethodwherebycertainDAP,DSP,orDISPenquiriesandresultscanbeauthenticatedandsealedbymeansofadigitalsignature.ThispartofISO/IECISP15125profiles:·Simpleunprotectedauthentication,withorwithoutpassword,betweentwoDSAs·SimpleprotectedauthenticationbetweentwoDSAs·StrongauthenticationbetweentwoDSAs·SignedDSPandDISPinvokesandreturn-resultsexchangedbetweentwoDSAsItalsoprofilesthebehaviourofaDSAincombiningsigneduncorrelatedlistandsearchinformationasreturnedbyDSPreturnresults.ItalsoprofilestheuseoftheoriginatorelementtoconveyinformationabouttheoriginatoroftheDAPassociationwithinwhichanoperationiscreated.Sincetherearemanyoptionsandpossibilitiesintheuseofthesetechniques,thispartofISO/IECISP15125doesnotattempttospecifyhoweachfacilityshallbeused.Thisresultsincertainfeatures(e.g.thedouble-hashingtechniquedescribedinthelastparagraphof[ISO/IEC9594-8:1995IITU-TRec.X.509(1993)]subclause6.2)beingconsideredasout-of-scope.DSAsarealsopermittedtobindtoeachotherusingnocredentialsatall.However,thispossibilityisoutsidethescopeofthispartofISO/IECISP15125.2PositionwithinthetaxonomyThispartofISO/IECISP15125isidentifiedinISO/IECTR10000-2as"ADY43?DSAtoDSAAuthentication".3ScenarioThispartofISO/IECISP15125profilessimpleandstrongauthenticationbetweenDSAs(BINDdialogueinFigure1)intheestablishmentofDSP,DOPandDISPAssociations,andsignedoperationsbetweenDSAs(OPERATIONdialogueinFigure1)withintheseAssociations.Italsoprofilesthehandlingofuncorrelatedlistandsearchresults(seeright-hand-sideofdiagram)withinDSP(thereisnoanalogueforthiswithinDOPandDISP).note:1Whenoperationsarenotsigned,authenticationfromusertoDSAoccursonlywhentheDUAbindstoaDSAusingDAP.Thereafter,theauthenticatedidentityoftheoriginatorofanoperationispassedfromoneDSAtoanotherasappropriate.ThereisnoobligationonareceivingDSAtoregardtheoriginatorvaluesuppliedasvalid,andinparticular,anoriginatorvaluesuppliedoveraDSPassociationcanbetreatedasifnoauthenticationhadtakenplace.TheDirectoryStandardsalsopermitDSAstoperformanassessmentof"Authentication-Level"toreflecttheperceivedreliabilityoftheauthenticationmethod(9594-2Subclause16.4.2.3).
【中国标准分类号】:L79
【国际标准分类号】:35_100_05
【页数】:54P.;A4
【正文语种】:英语
【原文标准名称】:信息技术.国际标准数据区ADYn.开放式系统互连(OSI)姓名地址录.ADY43.DSA到DSA鉴定
【标准号】:BSISO/IECISP15125-7-1998
【标准状态】:现行
【国别】:英国
【发布日期】:1999-04-15
【实施或试行日期】:1999-04-15
【发布单位】:英国标准学会(GB-BSI)
【起草单位】:BSI
【标准类型】:()
【标准水平】:()
【中文主题词】:真实性试验;数据处理;人名地址录;信息交换;信息技术;起动功能;网络互连;开放系统互连;记录;标准界面
【英文主题词】:Authenticitytest;Dataprocessing;Directories;Informationinterchange;Informationtechnology;Initiationfunction;Networkinterconnection;OSI;Records;Standardizedprofiles
【摘要】:1GeneralTheDirectoryStandardsdefinevariousmeansofauthenticationbetweenDUAsandDSAsandalsobetweentwoDSAs.AsspecifiedbytheDirectoryStandards,themeansofauthenticationatthetimeofestablishmentofanassociation(i.e.atBind-time),forDAP,DSP,DOP,andDISP,are:·None-nocredentialsaresupplied·Simpleunprotectedauthentication,withorwithoutpassword:eachauthenticatingpartysuppliesanameandoptionallyapassword·Simpleprotectedauthentication:eachauthenticatingpartysuppliesanameandapasswordwhoseinformationistransmittedinhashedformtopreservepasswordconfidentialityandtopreventreplay·StrongauthenticationinwhicheachauthenticatingpartysuppliesatokensignedwithadigitalsignaturewhichcanbeverifiedbytheotherTheDirectorystandardsalsopermitotherformsofauthenticationatthetimeofassociationestablishment,wherebycredentialsarepassedby"external"elements.SuchmeansareoutsidethescopeofthispartofISO/IECISP15125.Inaddition,theDirectoryStandardsdefineamethodwherebycertainDAP,DSP,orDISPenquiriesandresultscanbeauthenticatedandsealedbymeansofadigitalsignature.ThispartofISO/IECISP15125profiles:·Simpleunprotectedauthentication,withorwithoutpassword,betweentwoDSAs·SimpleprotectedauthenticationbetweentwoDSAs·StrongauthenticationbetweentwoDSAs·SignedDSPandDISPinvokesandreturn-resultsexchangedbetweentwoDSAsItalsoprofilesthebehaviourofaDSAincombiningsigneduncorrelatedlistandsearchinformationasreturnedbyDSPreturnresults.ItalsoprofilestheuseoftheoriginatorelementtoconveyinformationabouttheoriginatoroftheDAPassociationwithinwhichanoperationiscreated.Sincetherearemanyoptionsandpossibilitiesintheuseofthesetechniques,thispartofISO/IECISP15125doesnotattempttospecifyhoweachfacilityshallbeused.Thisresultsincertainfeatures(e.g.thedouble-hashingtechniquedescribedinthelastparagraphof[ISO/IEC9594-8:1995IITU-TRec.X.509(1993)]subclause6.2)beingconsideredasout-of-scope.DSAsarealsopermittedtobindtoeachotherusingnocredentialsatall.However,thispossibilityisoutsidethescopeofthispartofISO/IECISP15125.2PositionwithinthetaxonomyThispartofISO/IECISP15125isidentifiedinISO/IECTR10000-2as"ADY43?DSAtoDSAAuthentication".3ScenarioThispartofISO/IECISP15125profilessimpleandstrongauthenticationbetweenDSAs(BINDdialogueinFigure1)intheestablishmentofDSP,DOPandDISPAssociations,andsignedoperationsbetweenDSAs(OPERATIONdialogueinFigure1)withintheseAssociations.Italsoprofilesthehandlingofuncorrelatedlistandsearchresults(seeright-hand-sideofdiagram)withinDSP(thereisnoanalogueforthiswithinDOPandDISP).note:1Whenoperationsarenotsigned,authenticationfromusertoDSAoccursonlywhentheDUAbindstoaDSAusingDAP.Thereafter,theauthenticatedidentityoftheoriginatorofanoperationispassedfromoneDSAtoanotherasappropriate.ThereisnoobligationonareceivingDSAtoregardtheoriginatorvaluesuppliedasvalid,andinparticular,anoriginatorvaluesuppliedoveraDSPassociationcanbetreatedasifnoauthenticationhadtakenplace.TheDirectoryStandardsalsopermitDSAstoperformanassessmentof"Authentication-Level"toreflecttheperceivedreliabilityoftheauthenticationmethod(9594-2Subclause16.4.2.3).
【中国标准分类号】:L79
【国际标准分类号】:35_100_05
【页数】:54P.;A4
【正文语种】:英语
下载地址: 点击此处下载