ISO 16609:2004 银行-采用对称性技术通知鉴定的要求

标准编号：ISO 16609:2004

中文名称：银行-采用对称性技术通知鉴定的要求

英文名称：Banking — Requirements for message authentication using symmetric techniques

发布日期：2004-03

标准范围

ISO 16609:2004规定了独立于传输过程的程序，用于保护传输的银行信息的完整性，以及验证信息是否源自授权来源。它还指定了一种方法，通过该方法，可以批准使用分组密码对银行消息进行身份验证。此外，由于通信对中的两个成员必须使用相同的数据表示方法，因此定义了一些数据表示方法。还提供了一份经批准用于计算消息认证码（MAC）的分组密码列表，以及用于批准其他分组密码的方法。它定义的身份验证方法适用于格式化和传输为编码字符集和二进制数据的消息。ISO 16609:2004设计用于发送方和接收方使用相同密钥的对称算法。它没有指定建立共享密钥的方法，也没有提供加密来保护消息不被未经授权的泄露。其应用程序不会保护用户免受发送方或接收方的内部欺诈，或接收方伪造MAC。

ISO 16609:2004 specifies procedures, independent of the transmission process, for protecting the integrity of transmitted banking messages and for verifying that a message has originated from an authorized source. It also specifies a method by which block ciphers can be approved for use in the authentication of banking messages. In addition, because of the necessity for both members in a communicating pair to use the same means for data representation, it defines some methods for data representation. A list of block ciphers approved for the calculation of a message authentication code (MAC), as well as the method to be used to approve additional block ciphers, is also provided. The authentication methods it defines are applicable to messages formatted and transmitted both as coded character sets and as binary data.ISO 16609:2004 is designed for use with symmetric algorithms where both sender and receiver use the same key. It does not specify methods for establishing the shared key, nor does it provide for encipherment for the protection of messages against unauthorized disclosure. Its application will not protect the user against internal fraud by sender or receiver, or forgery of a MAC by the receiver.

标准预览图