BS-ISO-IEC-10736-1995.pdf
《BS-ISO-IEC-10736-1995.pdf》由会员分享,可在线阅读,更多相关《BS-ISO-IEC-10736-1995.pdf(62页珍藏版)》请在三一文库上搜索。
1、BRITISH STANDARD BS ISO/IEC 10736:1995 Implementation of ISO/IEC 10736:1995 Information technology Telecommunications and information exchange between systems Transport layer security protocol Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 06:51:22 GMT+00:00 2006, Uncontrolled Copy, (c) BSI
2、BS ISO/IEC 10736:1995 This British Standard, having been prepared under the direction of the Information Systems Technology Assembly, was published under the authority of the Standards Board and comes into effect on 15 September 1995 BSI 01-2000 The following BSI references relate to the work on thi
3、s standard: Committee reference IST/6 Draft for comment 91/69325 DC ISBN 0 580 24459 8 Committees responsible for this British Standard The preparation of this British Standard was entrusted to Technical Committee IST/6 Data communications, upon which the following bodies were represented: British C
4、omputer Society British Telecommunications CCTA (Government Centre for Information Systems) Digital Equipment Co. Ltd. IBM United Kingdom Ltd. Institution of Electrical Engineers International Computers Limited Logica UK Ltd. Nine Tiles Computer Systems Ltd. Rank Xerox (UK) Ltd. Amendments issued si
5、nce publication Amd. No.DateComments Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 06:51:22 GMT+00:00 2006, Uncontrolled Copy, (c) BSI BS ISO/IEC 10736:1995 BSI 01-2000i Contents Page Committees responsibleInside front cover National forewordii Forewordvii Text of ISO/IEC 107361 Licensed Co
6、py: sheffieldun sheffieldun, na, Wed Nov 22 06:51:22 GMT+00:00 2006, Uncontrolled Copy, (c) BSI BS ISO/IEC 10736:1995 ii BSI 01-2000 National foreword This British Standard reproduces verbatim ISO/IEC 10736:1995 and implements it as the UK national standard. This British Standard is published under
7、the direction of the Information Systems Technology Assembly whose Technical Committee IST/6, Data communications, has the responsibility to: aid enquirers to understand the text; present to the responsible international committee any enquiries on interpretation, or proposals for change, and keep UK
8、 interests informed; monitor related international and European developments and promulgate them in the UK. NOTEInternational and European Standards, as well as overseas standards, are available from Customer Services, BSI, 389 Chiswick High Road, London W4 4AL. A British Standard does not purport t
9、o include all the necessary provisions of a contract. Users of British Standards are responsible for their correct application. Compliance with a British Standard does not of itself confer immunity from legal obligations. Summary of pages This document comprises a front cover, an inside front cover,
10、 pages i and ii, the ISO/IEC title page, pages ii to viii, pages 1 to 48 and a back cover. This standard has been updated (see copyright date) and may have had amendments incorporated. This will be indicated in the amendment table on the inside front cover. Licensed Copy: sheffieldun sheffieldun, na
11、, Wed Nov 22 06:51:22 GMT+00:00 2006, Uncontrolled Copy, (c) BSI Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 06:51:22 GMT+00:00 2006, Uncontrolled Copy, (c) BSI ISO/IEC 10736:1995(E) ii BSI 01-2000 Contents Page Forewordvii Introduction1 1Scope1 2Normative references2 2.1Identical Recomme
12、ndations|International Standards2 2.2Paired Recommendations|International Standards equivalent in technical content2 2.3Additional references2 3Definitions3 3.1Security reference model definitions3 3.2Additional definitions3 4Symbols and abbreviations4 5Overview of the Protocol5 5.1Introduction5 5.2
13、Security Associations and attributes6 5.2.1Security services for connection-oriented Transport protocol9 5.2.2Security Service for connectionless Transport protocol9 5.3Service assumed of the Network Layer9 5.4Security management requirements9 5.5Minimum algorithm characteristics10 5.6Security encap
14、sulation function10 5.6.1Data encipherment function10 5.6.2Integrity function10 5.6.3Security label function11 5.6.4Security padding function11 5.6.5Peer Entity Authentication function11 5.6.6SA Function using in band SA-P11 6Elements of procedure11 6.1Concatenation and separation12 6.2Confidentiali
15、ty12 6.2.1Purpose12 6.2.2TPDUs and parameters used12 6.2.3Procedure12 6.3Integrity processing13 6.3.1Integrity Check Value (ICV) processing13 6.3.1.1Purpose13 6.3.1.2TPDUs and parameters used13 6.3.1.3Procedure13 6.3.2Direction indicator processing15 6.3.2.1Purpose15 6.3.2.2TPDUs and parameters used
16、15 6.3.2.3Procedure15 6.3.3Connection integrity sequence number processing15 6.3.3.1Unique sequence numbers15 6.3.3.2Purpose16 6.3.3.3Procedure16 6.4Peer address check processing16 6.4.1Purpose16 6.4.2Procedure16 6.5Security labels for Security Associations16 Licensed Copy: sheffieldun sheffieldun,
17、na, Wed Nov 22 06:51:22 GMT+00:00 2006, Uncontrolled Copy, (c) BSI ISO/IEC 10736:1995(E) BSI 01-2000iii Page 6.5.1Purpose16 6.5.2TPDUs and parameters used16 6.5.3Procedure17 6.6Connection release17 6.7Key replacement17 6.8Unprotected TPDUs17 6.9Protocol identification17 6.10Security Association-Prot
18、ocol17 7Use of elements of procedure18 8Structure and encoding of TPDUs18 8.1Structure of TPDU18 8.2Security encapsulation TPDU19 8.2.1Clear header19 8.2.1.1PDU clear header length19 8.2.1.2PDU type19 8.2.1.3SA-ID19 8.2.2Crypto sync19 8.2.3Protected contents20 8.2.3.1Structure of protected contents
19、field20 8.2.3.2Content length20 8.2.3.3Flags21 8.2.3.4Label21 8.2.3.5Protected data21 8.2.3.6Integrity PAD21 8.2.4ICV22 8.2.5Encipherment PAD22 8.3Security Association PDU22 8.3.1LI22 8.3.2PDU Type22 8.3.3SA-ID22 8.3.4SA-P Type22 8.3.5SA PDU Contents22 9Conformance23 9.1General23 9.2Common static co
20、nformance requirements23 9.3TLSP with ITU-T Rec. X.234|ISO 8602 static conformance requirements23 9.4TLSP with ITU-T Rec. X.224|ISO/IEC 8073 static conformance requirements23 9.5Common dynamic conformance requirements23 9.6TLSP with ITU-T Rec. X.234|ISO 8602 dynamic conformance requirements23 9.7TLS
21、P with ITU-T Rec. X.224|ISO/IEC 8073 dynamic conformance requirements23 10Protocol implementation conformance statement (PICS)23 Annex A PICS proforma24 A.1Introduction24 A.1.1Background24 A.1.2Approach24 Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 06:51:22 GMT+00:00 2006, Uncontrolled Co
22、py, (c) BSI ISO/IEC 10736:1995(E) iv BSI 01-2000 Page A.2Implementation identification24 A.3General statement of conformance25 A.4Protocol implementation25 A.5Security services supported25 A.6Supported functions27 A.7Supported Protocol Data Units (PDUs)29 A.7.1Supported Transport PDUs (TPDUs)29 A.7.
23、2Supported parameters of issued TPDUs30 A.7.3Supported parameters of received TPDUs30 A.7.4Allowed values of issued TPDU parameters31 A.8Service, function, and protocol relationships31 A.8.1Relationship between services and functions31 A.8.2Relationship between services and protocol32 A.9Supported a
24、lgorithms32 A.10Error handling33 A.10.1Security errors33 A.10.2Protocol errors33 A.11Security Association33 A.11.1SA Generic Fields33 A.11.2Content Fields Specific to Key Exchange SA-P35 Annex B Security Association Protocol Using Key Token Exchange and Digital Signatures36 B.1Overview36 B.2Key Toke
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- BS ISO IEC 10736 1995
链接地址:https://www.31doc.com/p-3748770.html