• There are no items in your cart
We noticed you’re not on the correct regional site. Switch to our AMERICAS site for the best experience.
Dismiss alert

BS ISO/IEC 9798-5:2009

Current
Current

The latest, up-to-date edition.

Information technology. Security techniques. Entity authentication Mechanisms using zero knowledge techniques
Available format(s)

Hardcopy , PDF

Language(s)

English

Published date

28-02-2010

Foreword
Introduction
1 Scope
2 Terms and definitions
3 Notation, symbols and abbreviated terms
4 Mechanisms based on identities
5 Mechanisms based on integer factorization
6 Mechanisms based on discrete logarithms with respect
  to prime numbers
7 Mechanisms based on discrete logarithms with respect
  to composite numbers
8 Mechanisms based on asymmetric encryption systems
9 Mechanism based on discrete logarithms with respect
  to elliptic curves
Annex A (normative) - Object identifiers
Annex B (informative) - Principles of zero-knowledge techniques
Annex C (informative) - Guidance on parameter choice and
        comparison of the mechanisms
Annex D (informative) - Numerical examples
Bibliography

Describes entity authentication mechanisms using zero-knowledge techniques: - mechanisms based on identities and providing unilateral authentication; - mechanisms based on integer factorization and providing unilateral authentication; - mechanisms based on discrete logarithms with respect to numbers that are either prime or composite, and providing unilateral authentication; - mechanisms based on asymmetric encryption systems and providing either unilateral authentication, or mutual authentication; - mechanisms based on discrete logarithms on elliptic curves and providing unilateral authentication.

This part of ISO/IEC9798 specifies entity authentication mechanisms using zero-knowledge techniques:

  • mechanisms based on identities and providing unilateral authentication;

  • mechanisms based on integer factorization and providing unilateral authentication;

  • mechanisms based on discrete logarithms with respect to numbers that are either prime or composite, and providing unilateral authentication;

  • mechanisms based on asymmetric encryption systems and providing either unilateral authentication, or mutual authentication;

  • mechanisms based on discrete logarithms on elliptic curves and providing unilateral authentication.

These mechanisms are constructed using the principles of zero-knowledge techniques, but they are not necessarily zero-knowledge according to the strict definition for every choice of parameters.

Committee
IST/33/2
DevelopmentNote
Supersedes 97/643502 DC (05/2005) Supersedes 08/30169502 DC. (02/2010)
DocumentType
Standard
Pages
64
PublisherName
British Standards Institution
Status
Current
Supersedes

Standards Relationship
ISO/IEC 9798-5:2009 Identical

ISO/IEC 18033-1:2015 Information technology Security techniques Encryption algorithms Part 1: General
ISO/IEC 18032:2005 Information technology Security techniques Prime number generation
ISO/IEC 15946-1:2016 Information technology Security techniques Cryptographic techniques based on elliptic curves Part 1: General
ISO/IEC 8825-1:2015 Information technology ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER) Part 1:
ISO/IEC 18033-2:2006 Information technology — Security techniques — Encryption algorithms — Part 2: Asymmetric ciphers
ISO/IEC 10118-3:2004 Information technology Security techniques Hash-functions Part 3: Dedicated hash-functions
ISO/IEC 14888-2:2008 Information technology Security techniques Digital signatures with appendix Part 2: Integer factorization based mechanisms
ISO/IEC 11770-3:2015 Information technology Security techniques Key management Part 3: Mechanisms using asymmetric techniques
ISO/IEC 9798-1:2010 Information technology Security techniques Entity authentication Part 1: General

View more information
£276.00
Excluding VAT

Access your standards online with a subscription

Features

  • Simple online access to standards, technical information and regulations.

  • Critical updates of standards and customisable alerts and notifications.

  • Multi-user online standards collection: secure, flexible and cost effective.