ISO/IEC 9594-11:2020 信息技术 开放系统互连 第11部分：安全操作的协议规范

标准编号：ISO/IEC 9594-11:2020

中文名称：信息技术 开放系统互连 第11部分：安全操作的协议规范

英文名称：Information technology — Open systems interconnection directory — Part 11: Protocol specifications for secure operations

发布日期：2020-12

标准范围

本推荐国际标准的范围有三重。该推荐性国际标准就如何为密码算法迁移准备新旧协议提供了指导，并定义了用于迁移目的的辅助密码算法。本推荐国际标准规定了一种通用包装协议，为其他协议提供认证、完整性和机密性（加密）保护。该包装协议包括用于密码算法的迁移路径，允许随着这种需求的发展平滑地迁移到更强的密码算法。这将允许迁移到量子安全的加密算法。然后，可以在不考虑安全性和加密算法的情况下开发受保护的协议。该推荐国际标准还包括一些受包装协议保护的协议，主要用于支持公钥基础设施(PKI)。其他规范(例如，建议或国际标准)也可以开发被设计成由包装协议保护的协议。

The scope of this Recommendation | International Standard is threefold.
This Recommendation | International Standard provides guidance on how to prepare new and old protocols for cryptographic algorithm migration, and defines auxiliary cryptographic algorithms to be used for migration purposes.
This Recommendation | International Standard specifies a general wrapper protocol that provides authentication, integrity and confidentiality (encryption) protection for other protocols. This wrapper protocol includes a migration path for cryptographic algorithms allowing for smooth migration to stronger cryptographic algorithms as such requirements evolve. This will allow migration to quantum-safe cryptographic algorithms. Protected protocols can then be developed without taking security and cryptographic algorithms into consideration.
This Recommendation | International Standard also includes some protocols to be protected by the wrapper protocol primarily for support of public-key infrastructure (PKI). Other specifications, e.g., Recommendations or International Standards, may also develop protocols designed to be protected by the wrapper protocol.

标准预览图