ISO 15782-1:2009 金融服务的证书管理 第1部分：公钥证书

标准编号：ISO 15782-1:2009

中文名称：金融服务的证书管理 第1部分：公钥证书

英文名称：Certificate management for financial services — Part 1: Public key certificates

发布日期：2009-10

标准范围

ISO 15782-1:20 09定义了金融业法人和自然人使用的证书管理系统，其中包括凭证和证书内容，证书颁发机构系统，包括用于数字签名和用于加密密钥管理的证书，证书生成、分发、验证和更新，认证结构和认证路径，以及撤销和恢复程序。ISO 15782-1:20 09还推荐了一些有用的操作程序（例如分发机制、提交证书的接受标准）。ISO 15782-1:20 09的实施也将基于业务风险和法律要求。ISO 15782-1:20 09不包括证书管理过程中参与者之间使用的协议消息，公证和时间戳的要求，证书政策和认证实践要求，或属性证书。虽然ISO 15782-1:20 09规定生成可以包括用于加密密钥管理的公钥的证书，但它没有解决用于加密的密钥的生成或传输。

ISO 15782-1:2009 defines a certificate management system for financial industry use for legal and natural persons that includes

• credentials and certificate contents,
• Certification Authority systems, including certificates for digital signatures and for encryption key management,
• certificate generation, distribution, validation and renewal,
• authentication structure and certification paths, and
• revocation and recovery procedures.

ISO 15782-1:2009 also recommends some useful operational procedures (e.g. distribution mechanisms, acceptance criteria for submitted credentials).Implementation of ISO 15782-1:2009 will also be based on business risks and legal requirements.ISO 15782-1:2009 does not include

• the protocol messages used between the participants in the certificate management process,
• requirements for notary and time stamping,
• Certificate Policy and Certification Practices requirements, or
• Attribute Certificates.

While ISO 15782-1:2009 provides for the generation of certificates that could include a public key used for encryption key management, it does not address the generation or transport of keys used for encryption.

标准预览图