ISO/IEC 11770-2:2018 IT 安全技术 密钥管理 第2部分：采用对称技术的机制

标准编号：ISO/IEC 11770-2:2018

中文名称：IT 安全技术 密钥管理 第2部分：采用对称技术的机制

英文名称：IT Security techniques — Key management — Part 2: Mechanisms using symmetric techniques

发布日期：2018-10

标准范围

ISO/IEC 11770-2:20 18本文件定义了使用对称加密技术的密钥建立机制。本文档讨论了建立密钥的三种环境:点对点、密钥分发中心（KDC）和密钥转换中心（KTC）。它描述了携带键控材料的消息的所需内容，或者是建立可以建立键控材料的条件所必需的。本文档不指示消息中可能包含的其他信息，也不指定其他消息，如错误消息。消息的显式格式不在本文档的范围内。该文档没有指定用于建立初始密钥的方法；也就是说，本文档中指定的所有机制都要求实体与至少一个其他实体(例如。g.TTP）。有关密钥生命周期的一般指导，请参见ISO/IEC 11770-1。本文档没有明确解决域间密钥管理的问题。该文件也没有定义关键管理机制的实施；符合本文档的产品不一定兼容。

ISO/IEC 11770-2:2018 This document defines key establishment mechanisms using symmetric cryptographic techniques.
This document addresses three environments for the establishment of keys: Point-to-Point, Key Distribution Centre (KDC), and Key Translation Centre (KTC). It describes the required content of messages which carry keying material or are necessary to set up the conditions under which the keying material can be established.
This document does not indicate other information which can be contained in the messages or specify other messages such as error messages. The explicit format of messages is not within the scope of this document.
This document does not specify the means to be used to establish initial secret keys; that is, all the mechanisms specified in this document require an entity to share a secret key with at least one other entity (e.g. a TTP). For general guidance on the key lifecycle, see ISO/IEC 11770-1. This document does not explicitly address the issue of inter-domain key management. This document also does not define the implementation of key management mechanisms; products complying with this document are not necessarily compatible.

标准预览图