ISO-ISP-10608-8-1998.pdf
《ISO-ISP-10608-8-1998.pdf》由会员分享,可在线阅读,更多相关《ISO-ISP-10608-8-1998.pdf(20页珍藏版)》请在三一文库上搜索。
1、INTERNATIONAL STANDARDIZED PROFILE ISOhEC ISP 10608-8 First edition 1998-08-01 Information technology - International Stanciardized Profile TAnnnn - Connection-mode Transport Service over Connectionless-mode Network Service - Part 8: Security employing the Network Layer Security Protocol - Connectio
2、n-mode with SDT-PDU based protection over X.25 packet switched data networks using virtual calls, for TA1 11 l/TA1 121 profiles Technologies de I informa tion - Pro fil normalise international TAnnnn - Service de transport en mode connexion sur service de reseau en mode sans connexion - Partie 8: Se
3、curite employant le protocole de securite de la couche reseau - Mode connexion avec protection basee SDT-PDU sur reseaux de don - European Workshop for Open Systems (EWOS); - Open Systems Environment Implementors Workshop (OIW). ISO/IEC ISP 10608 consists of the following parts, under the general ti
4、tle Information technology - International Standardized Profile TAnnnn - Connection-mode Transport Service over Connectionless-mode Network Service: - Part I: General overview and subnetwork-independent requirements - Part 2: TA51 profile including subnetwork-dependent requirements for CSiWVCD Local
5、 Area Networks (LANs) - Part 4: Definition of profile TA53, operation over a Token Ring LAN subnetwork - Part 5: TAIIII/TAl121 profiles including subnetwork-dependent requirements for X.25 packet-switched data networks using virtual calls - Part 6: Definition of profile TA54, operation over an FDDI
6、LAN subnetwork - Part 7: Security employing the Network Layer Security Protocol - Connectionless-mode for TAnnnn profiles iv Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=NASA Technical Standards 1/9972545001 Not for Resale, 04/19/2007 22:30
7、:52 MDTNo reproduction or networking permitted without license from IHS -,-,- 0 iSO/IEC ISO/IEC ISP 10608-S: 1998(E) - Part 8: Security employing the Network Layer Security Protocol - Connection-mode with SDT-PDU based protection over X.25 packet switched data networks using virtual calls, for TA I
8、I I I/TA1 121 profiles - Part 12: MAC sublayer and physical layer dependent requirements for a CSMAlCD LAN subnetwork - Part 13: MAC sublayer and physical layer dependent requirements for a Token Ring LAN subnetwork - Part 14: MAC, PHY and PMD sublayer dependent and Station Management requirements o
9、ver an FDDI LAN subnetwork Annex A forms an integral part of this part of ISO/IEC ISP 10608. Annex B is for information only. Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=NASA Technical Standards 1/9972545001 Not for Resale, 04/19/2007 22:3
10、0:52 MDTNo reproduction or networking permitted without license from IHS -,-,- ISO/IEC ISP 10608-S: 1998(E) Introduction 0 ISO/IEC ISO/IEC ISP 10608 is defined in accordance with the principles specified by ISO/IEC Technical Report 10000. The context of Functional Standardization is one area in the
11、overall field of Information Technology (IT) standardization activities, covering base standards, profiles, and registration mechanisms. A profile defines a combination of base standards that collectively perform a specific well-defined IT function. Profiles standardize the use of options and other
12、variations in the base standards, and provide a basis for the development of uniform, internationally recognized system tests. ISPs are produced not simply to legitimize a particular choice of base standards and options, but to promote real system interoperability. One of the most important roles fo
13、r an ISP is to serve as the basis for the development (by organizations other than IS0 and IEC) of internationally recognized tests. The development and widespread acceptance of tests based on this and other ISPs is crucial to the successful realization of this goal. ISO/IEC ISP 10608 consists of se
14、veral parts of which this is part 8. This part of ISO/IEC 10608 specifies the security profile requirements employing the Network Layer Security Protocol (ITU-T X.273 1 ISO/IEC 11577) connection-mode with SDT-PDU based protection over an X.25 packet- switched data network using virtual calls. This p
15、art extends existing TA 1111 or TA1 12 1 profiles adding security protection. vi Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=NASA Technical Standards 1/9972545001 Not for Resale, 04/19/2007 22:30:52 MDTNo reproduction or networking permitt
16、ed without license from IHS -,-,- INTERNATIONAL STANDARDIZED PROFILE ISO/IEC ISO/IEC ISP 10608-8: 1998(E) Information technology - International Standardized Profile TAnnnn - Connection-mode Transport Service over Connectionless-mode Network Service - Part 8: Security employing the Network Layer Sec
17、urity Protocol - Connection-mode with SDT-PDU based protection over X.25 packet switched data networks using virtual calls, for TA1 11 l/TA1 121 profiles 1 Scope 1 .I General ISO/IEC ISP 10608 is applicable to End Systems concerned with operating in the Open Systems Interconnection (OSI) environment
18、. It specifies a combination of OS1 standards which collectively provide the connection-mode Transport Service using the connection-mode Network Service. ISO/IEC ISP 10608-5 specifies subnetwork type dependent requirements for end system operation when the end system is attached to an X.25 packet sw
19、itched data network by a dedicated (permanent) access line and using virtual calls. This part of ISO/IEC 10608 specifies the profile requirements for the provision of security services using cryptographic techniques with Network Layer Security Protocol connection-mode and SDT-PDU based protection fo
20、r use with X.25 packet switched data networks as specified in ISO/IEC 10608-5. 1.2 Position within the Taxonomy The taxonomy of profiles is specified in ISO/IEC TR 10000-2. This part of ISO/IEC ISP 10608 supports security services for TA 1111 and TA 112 1 profiles as specified in ISO/IEC ISP 10608-5
21、. Note: ISO/IEC TR 10000 currently does not identify security sub-profiles. Profiles based on this part of ISO/IEC ISP 10608 may be referred to as TA1 lnlS2, or TA1 lnlS2C if confidentiality is selected. 1 Copyright International Organization for Standardization Provided by IHS under license with IS
22、O Licensee=NASA Technical Standards 1/9972545001 Not for Resale, 04/19/2007 22:30:52 MDTNo reproduction or networking permitted without license from IHS -,-,- ISO/IEC ISP 10608-8: 1998(E) 0 ISO/IEC 1.3 Scenario Connectionless Mode Network Protcol Connection Mode NLSP X.25 End System 1.4 Security Ser
23、vices The following security services are within the scope of this part of ISO/IEC ISP 10608: a) Peer entity authentication b) Connection integrity without recovery (including replay protection) c) Access control using security labels Note: Where label based access control is not enforced by a syste
24、m a null label may be employed. d) Connection confidentiality (optional) e) Traffic flow confidentiality (optional) 1.5 Security Mechanisms This part of ISO/IEC ISP 10608 provides no assurance as to the strength of the security mechanisms employed. This part of ISO/IEC ISP 10608 does not specify the
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- ISO ISP 10608 1998
链接地址:https://www.31doc.com/p-3782549.html