ISO/IEC 11770-4:2017 信息技术 安全技术 密钥管理程序 第4部分： 基于虚弱密钥的机械装置

标准编号：ISO/IEC 11770-4:2017

中文名称：信息技术 安全技术 密钥管理程序 第4部分： 基于虚弱密钥的机械装置

英文名称：Information technology — Security techniques — Key management — Part 4: Mechanisms based on weak secrets

发布日期：2017-11

标准范围

ISO/IEC 11770-4:20 17定义了基于弱秘密的密钥建立机制，即，人类可以容易地记住的秘密，因此，将从相对较小的可能性集合中选择的秘密。它指定了专门设计用于基于从记忆密码导出的弱秘密建立一个或多个秘密密钥的加密技术，同时防止与弱秘密相关联的离线暴力攻击。ISO/IEC 11770-4:20 17不适用于关键管理的以下方面:-弱秘密、强秘密、已建立秘密密钥的生命周期管理；-存储、存档、删除、销毁等弱秘密、强秘密和已建立的秘密密钥的机制。

ISO/IEC 11770-4:2017 defines key establishment mechanisms based on weak secrets, i.e. secrets that can be readily memorized by a human, and hence, secrets that will be chosen from a relatively small set of possibilities. It specifies cryptographic techniques specifically designed to establish one or more secret keys based on a weak secret derived from a memorized password, while preventing offline brute-force attacks associated with the weak secret. ISO/IEC 11770-4:2017 is not applicable to the following aspects of key management:
- life-cycle management of weak secrets, strong secrets, and established secret keys;
- mechanisms to store, archive, delete, destroy, etc. weak secrets, strong secrets, and established secret keys.

标准预览图