ISO/IEC 9798-5:2009 信息技术 安全技术 实体鉴别 第5部分：使用零知识技术的机制

标准编号：ISO/IEC 9798-5:2009

中文名称：信息技术 安全技术 实体鉴别 第5部分：使用零知识技术的机制

英文名称：Information technology — Security techniques — Entity authentication — Part 5: Mechanisms using zero-knowledge techniques

发布日期：2009-12

标准范围

ISO/IEC 9798-5:20 09规定了使用零知识技术的实体认证机制:基于身份和提供单边认证的机制；基于整数分解和提供单边认证的机制；基于关于质数或合数的离散对数的机制，并提供单边认证；基于非对称加密系统并提供单边认证或相互认证的机制；基于椭圆曲线上离散对数并提供单边认证的机制。这些机制是使用零知识技术的原理构建的，但是根据每个参数选择的严格定义，它们不一定是零知识的。

ISO/IEC 9798-5:2009 specifies entity authentication mechanisms using zero-knowledge techniques:

• mechanisms based on identities and providing unilateral authentication;


• mechanisms based on integer factorization and providing unilateral authentication;


• mechanisms based on discrete logarithms with respect to numbers that are either prime or composite, and providing unilateral authentication;


• mechanisms based on asymmetric encryption systems and providing either unilateral authentication, or mutual authentication;


• mechanisms based on discrete logarithms on elliptic curves and providing unilateral authentication.

These mechanisms are constructed using the principles of zero-knowledge techniques, but they are not necessarily zero-knowledge according to the strict definition for every choice of parameters.

标准预览图