ISO/IEC TR 24729-4:2009 信息技术 项目管理的射频识别 实施指南 第4部分：标签数据安全

标准编号：ISO/IEC TR 24729-4:2009

中文名称：信息技术 项目管理的射频识别 实施指南 第4部分：标签数据安全

英文名称：Information technology — Radio frequency identification for item management — Implementation guidelines — Part 4: Tag data security

发布日期：2009-03

标准范围

ISO/IEC TR 24729-4:20 09为系统设计者提供指导，帮助他们确定RFID系统中标签和标签到阅读器通信的数据安全的潜在威胁，以及提供数据安全的适当对策。尽管很重要，但解决读取器到主机和后端企业模块的安全方面超出了ISO/IEC TR 24729-4:20 09的范围。ISO/IEC TR 24729-4:20 09不打算专门解决消费者隐私问题；然而，由于数据和个人隐私取决于适当安全措施的使用，隐私是笼统地处理的。数据访问安全性通过减轻未经授权读取标签上的数据的可能性来提供个人隐私保护的措施。然而，并非所有数据访问安全对策都提供相同级别的保护。

ISO/IEC TR 24729-4:2009 provides guidance to systems designers to help them determine potential threats to data security of the tag and tag-to-reader communication in an RFID system, and appropriate countermeasures to provide data security. Although important, it is beyond the scope of ISO/IEC TR 24729-4:2009 to address security aspects of the reader-to-host and back-end enterprise modules.

ISO/IEC TR 24729-4:2009 is not intended to specifically address consumer privacy concerns; however, since data and personal privacy depend on the use of appropriate security measures, privacy is addressed in general terms. Data access security provides a measure of personal privacy protection by mitigating the potential for unauthorized reading of data on a tag. However, not all data access security countermeasures provide the same level of protection.

标准预览图