BS-ISO-IEC-10181-6-1996.pdf
《BS-ISO-IEC-10181-6-1996.pdf》由会员分享,可在线阅读,更多相关《BS-ISO-IEC-10181-6-1996.pdf(22页珍藏版)》请在三一文库上搜索。
1、BRITISH STANDARD BS ISO/IEC: 10181-6:1996 Information technology Open Systems Interconnection Security frameworks for open systems: Integrity framework (ITU-T Rec. X.815 (1995)| ISO/IEC 10181-6:1996) ICS 35.100.01 Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 07:02:10 GMT+00:00 2006, Uncont
2、rolled Copy, (c) BSI BS ISO/IEC 10181-6:1996 This British Standard, having been prepared under the direction of the DISC Board, was published under the authority of the Standards Board and comes into effect on 15 March 1997 BSI 11-1998 ISBN 0 580 26596 X National foreword This British Standard repro
3、duces verbatim ISO/IEC 10181-6:1996 and implements it as the UK national standard. The UK participation in its preparation was entrusted to Technical Committee IST/21, Open Systems Interconnection, Data Management and Open Distributed Processing, which has the responsibility to: aid enquirers to und
4、erstand the text; present to the responsible international/European committee any enquiries on the interpretation, or proposals for change, and keep the UK interests informed; monitor related international and European developments and promulgate them in the UK. A list of organizations represented o
5、n this committee can be obtained on request. Cross-references The British Standards which implement international or European publications referred to in this document may be found in the BSI Standards Catalogue under the section entitled “International Standards Correspondence Index”, or using the
6、“Find” facility of the BSI Standards Electronic Catalogue. A British Standard does not purport to include all the necessary provisions of a contract. Users of British Standards are responsible for their correct application. Compliance with a British Standard does not of itself confer immunity from l
7、egal obligations. Summary of pages This document comprises a front cover, an inside front cover, the ISO/IEC title page, pages ii to iv, pages 1 to 14 and a back cover. This standard has been updated (see copyright date) and may have had amendments incorporated. This will be indicated in the amendme
8、nt table on the inside front cover. Amendments issued since publication Amd. No.DateComments Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 07:02:10 GMT+00:00 2006, Uncontrolled Copy, (c) BSI Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 07:02:10 GMT+00:00 2006, Uncontrolled Copy, (
9、c) BSI BS ISO/IEC 10181-6:1996 ii BSI 11-1998 Contents Page Forewordiii Introduction1 1Scope1 2Normative references2 2.1Identical Recommendations|International Standards2 2.2Paired Recommendations|International Standards equivalent in technical content2 2.3Additional References2 3Definitions2 4Abbre
10、viations3 5General discussion of integrity3 5.1Basic concepts4 5.2Types of integrity services4 5.3Types of integrity mechanisms5 5.4Threats to integrity5 5.5Types of integrity attacks5 6Integrity policies6 6.1Policy expression6 6.1.1Data characterization6 6.1.2Entity characterization6 6.1.2.1Identit
11、y based policies6 6.1.2.2Rule based policies6 7Integrity information and facilities6 7.1Integrity information7 7.1.1Shield integrity information7 7.1.2Modification detection integrity information7 7.1.3Unshield integrity information7 7.2Integrity facilities7 7.2.1Operational related facilities7 7.2.
12、2Management related facilities7 8Classification of integrity mechanisms7 8.1Integrity provision through cryptography7 8.1.1Integrity provision through sealing8 8.1.2Integrity provision through Digital Signatures8 8.1.3Integrity provision through encipherment of redundant data8 8.2Integrity provision
13、 through context9 8.2.1Data Replication9 8.2.2Pre-agreed context9 8.3Integrity provision through detection and acknowledgement9 8.4Integrity provision through prevention9 9Interactions with other security services and mechanisms10 9.1Access Control10 9.2Data origin authentication10 9.3Confidentialit
14、y10 Annex A Integrity in the OSI Basic Reference Model11 Annex B External Data Consistency12 Annex C Integrity Facilities Outline13 Descriptors: Data processing, information interchange, network interconnection, open systems interconnection, communication procedure, protection of information, securi
15、ty techniques. Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 07:02:10 GMT+00:00 2006, Uncontrolled Copy, (c) BSI BS ISO/IEC 10181-6:1996 BSI 11-1998iii Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the speciali
16、zed system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical commi
17、ttees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. Draft Intern
18、ational Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. International Standard ISO/IEC 10181-6 was prepared by Joint Technical Committee
19、 ISO/IEC JTC 1, Information technology, Subcommittee SC 21, Open Systems Interconnection, data management and open distributed processing, in collaboration with ITU-T. The identical text is published as ITU-T Recommendation X.815. ISO/IEC 10181 consists of the following parts, under the general titl
20、e Information technology Open Systems Interconnection Security frameworks for open systems: Part 1: Overview; Part 2: Authentication framework; Part 3: Access control framework; Part 4: Non-repudiation framework; Part 5: Confidentiality framework; Part 6: Integrity framework; Part 7: Security audit
21、framework. Annexes A to C of this part of ISO/IEC 10181 are for information only. Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 07:02:10 GMT+00:00 2006, Uncontrolled Copy, (c) BSI iv blank Licensed Copy: sheffieldun sheffieldun, na, Wed Nov 22 07:02:10 GMT+00:00 2006, Uncontrolled Copy, (c)
22、 BSI BS ISO/IEC 10181-6:1996 BSI 11-19981 Introduction Many open systems applications have security requirements which depend upon the integrity of data. Such requirements may include the protection of data used in the provision of other security services such as authentication, access control, conf
23、identiality, audit and non-repudiation, that, if an attacker could modify them, could reduce or nullify the effectiveness of those services. The property that data has not been altered or destroyed in an unauthorized manner is called integrity. This Recommendation|International Standard defines a ge
24、neral framework for the provision of integrity services. 1 Scope The Recommendation|International Standard on Security Frameworks for Open Systems addresses the application of security services in an Open Systems environment, where the term “Open System” is taken to include areas such as Database, D
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- BS ISO IEC 10181 1996
链接地址:https://www.31doc.com/p-3750098.html