ISO 20828:2006 道路车辆.安全性认证管理

标准编号：ISO 20828:2006

中文名称：道路车辆.安全性认证管理

英文名称：Road vehicles — Security certificate management

发布日期：2006-07

标准范围

ISO 20828:2006为公钥基础设施应用中使用的安全证书的颁发和管理建立了统一的实践。假设所有打算基于私钥和公钥与其他实体建立安全数据交换的实体都能够提供自己的证书，证书管理方案保证这些实体以简单统一的格式从单一来源获得建立对其他实体信任所需的所有附加信息。证书管理在证书颁发机构之间的关系方面是灵活的，不要求任何层次结构。它没有规定所有相关实体都可以访问的集中式目录等。利用这些特性，管理方案针对汽车领域的应用进行了优化。ISO 20828:2006详细说明了认证机构在证书颁发和分发方面的作用和责任。它指定如何处理证书有效性和证书策略。这是每个实体在打算与另一个实体交换特定类型数据时，确保其能够真正信任另一个实体的先决条件。

ISO 20828:2006 establishes a uniform practice for the issuing and management of security certificates for use in Public Key Infrastructure applications. Assuming that all entities, intending to set up a secure data exchange to other entities based on private and public keys, are able to provide their own certificate, the certificate management scheme guarantees that the entities get all additional information needed to establish trust to other entities, from a single source in a simple and unified format. The certificate management is flexible with respect to the relations between Certification Authorities, not requesting any hierarchical structure. It does not prescribe centralized directories or the like, being accessible by all entities involved. With these properties the management scheme is optimised for applications in the automotive domain.ISO 20828:2006 details the role and responsibilities of the Certification Authority relating to certificate issuing and distribution. It specifies how to handle certificate validity and certificate policies. This is the prerequisite for each entity to make sure it can actually trust another entity when intending to exchange data of a specific kind with it.

标准预览图