Norm

ISO/IEC DIS 20248:2017 en

Information technology - Automatic identification and data capture techniques - Data structures - Digital signature meta structure

  • Deze norm is niet direct leverbaar vanuit de NEN-shop.
    Wilt u dit product bestellen neemt u dan contact op met NEN-klantenservice: (015) 2 690 391 of klantenservice@nen.nl

Over deze norm

Status Ontwerp
Aantal pagina's 84
Commissie Automatische Identificatie
Gepubliceerd op 11-04-2017
Taal Engels
This international standard is an ISO/IEC 9594-8 (Public Key Infrastructure: digital signatures and certificates) application specification for automated identification services. It specifies a method whereby data stored within a barcode and/or RFID tag is structured, encoded and digitally signed. ISO/IEC 9495-8 is used to provide a standard method for key and data description management and distribution. It should be noted that the data capacity and/or data transfer capacity of Automated Identification Data Carriers are restricted. This restricts the normal use of a Digital Signature as specified in ISO/IEC 9594-8 within automated identification services. The scope of this International Standard is to provide an open and interoperable method, between automated identification services and data carriers, to read data, verify data originality and data integrity in an offline use case. This international standard specifies: the meta data structure, the DigSig, which contains the digital signature and encoded structured data; the public key certificate parameter and extension use, the DigSig Certificate, which contains the certified associated public key, the structured data description, the read methods and private containers;  the method to specify, read, describe, sign, verify, encode and decode the structured data, the DigSig Data Description; the DigSig EncoderGenerator which generates the relevant asymmetric key pairs, keeps the Private Key secret and generates the DigSigs; the DigSig DecoderVerifier which, by using to the DigSig Certificate, reads the DigSig from the set of Data Carriers, verifies the DigSig and extracts the structured data from the DigSig. A successful verification of the DigSig signifies the following: the data was not tampered with; the source of the data is as indicated on the DigSig Certificate used to verify the DigSig with; if a secured identifier of the data carrier is included in the DigSig it contains, then the data stored on the data carrier may be considered as the original issued copy of the data; the secure identifier must be able to guarantee that the data carrier is authentic. This international standard does not specify: cryptographic methods; nor key management methods. This international standard should be used in conjunction with standard standard risk assessments of the use

Details

ICS-code 35.040.50
Nederlandse titel Information technology - Automatic identification and data capture techniques - Data structures - Digital signature meta structure
Engelse titel Information technology - Automatic identification and data capture techniques - Data structures - Digital signature meta structure

Winkelwagen

Subtotaal:

Ga naar winkelwagen