ISO/IEC 19772:2009 信息技术 安全技术 认证加密

标准编号：ISO/IEC 19772:2009

中文名称：信息技术 安全技术 认证加密

英文名称：Information technology — Security techniques — Authenticated encryption

发布日期：2009-02

标准范围

ISO/IEC 19772:2009规定了六种认证加密方法，即定义的处理数据串的方法，其安全目标如下:数据保密性，即防止未经授权的数据披露；数据完整性，即使数据接收方能够验证其未被修改的保护；数据来源身份验证，即使数据接收方能够验证数据发起者身份的保护。ISO/IEC 19772:2009中规定的所有六种方法都要求受保护数据的发起者和接收者共享密钥。关键管理不在ISO/IEC 19772:2009的范围内；ISO/IEC 11770中定义了关键管理技术。

ISO/IEC 19772:2009 specifies six methods for authenticated encryption, i.e. defined ways of processing a data string with the following security objectives: data confidentiality, i.e. protection against unauthorized disclosure of data; data integrity, i.e. protection that enables the recipient of data to verify that it has not been modified; data origin authentication, i.e. protection that enables the recipient of data to verify the identity of the data originator. All six methods specified in ISO/IEC 19772:2009 require the originator and the recipient of the protected data to share a secret key. Key management is outside the scope of ISO/IEC 19772:2009; key management techniques are defined in ISO/IEC 11770.

标准预览图