ISO 16609:2022 金融服务 用对称技术进行电文鉴别的要求

标准编号：ISO 16609:2022

中文名称：金融服务 用对称技术进行电文鉴别的要求

英文名称：Financial services — Requirements for message authentication using symmetric techniques

发布日期：2022-08

标准范围

本文件规定了独立于传输过程的程序，以保护传输的金融服务相关消息的完整性，并验证消息是否来自授权来源，或存储的数据是否保持完整性。批准用于计算消息验证码的分组密码列表还提供了（MAC）。本文件中定义的认证方法适用于存储的数据以及格式化并以编码字符集或二进制数据传输的消息。本文档设计用于发送方和接收方使用相同密钥的对称算法。它没有指定建立共享密钥的方法。其应用程序不会保护用户免受发送方或接收方实施的内部欺诈，也不会保护用户免于接收方伪造MAC。

This document specifies procedures, independent of the transmission process, for protecting the integrity of transmitted financial-service-related messages and for verifying that a message has originated from an authorized source, or that stored data has retained integrity. A list of block ciphers approved for the calculation of a message authentication code (MAC) is also provided. The authentication methods defined in this document are applicable to stored data and to messages formatted and transmitted both as coded character sets or as binary data.This document is designed for use with symmetric algorithms where both sender and receiver use the same key. It does not specify methods for establishing the shared key. Its application will not protect the user against internal fraud perpetrated by the sender or the receiver, nor against forgery of a MAC by the receiver.

标准预览图