• There are no items in your cart

CAN/CSA-ISO/IEC 10181-4-00 (R2013)

Current
Current

The latest, up-to-date edition.

Information Technology - Open Systems Interconnection - Security Frameworks for Open Systems: Non-Repudiation Framework (Adopted ISO/IEC 10181-4:1997, first edition, 1997-04-01)
Available format(s)

Hardcopy , PDF

Language(s)

French, English

Published date

01-01-2000

1 Scope
2 Normative references
3 Definitions
4 Abbreviations
5 General discussion of Non-repudiation
6 Non-repudiation policies
7 Information and facilities
8 Non-repudiation mechanisms
9 Interactions with other security services and
  mechanisms
Annex A - Non-repudiation in OSI Basic Reference Model
Annex B - Non-repudiation Facilities Outline
Annex C - Non-repudiation in store and forward systems
Annex D - Recovery in a non-repudiation service
Annex E - Interaction with the Directory
Annex F - Bibliography

Scope This Recommendation / International Standard addresses the application of security services in an Open Systems environment, where the term \"Open Systems\" is taken to include areas such as Database, Distributed Applications, Open Distributed Processing and OSI. The Security Frameworks are concerned with defining the means of providing protection for systems and objects within systems, and with the interactions between systems. The Security Frameworks are not concerned with the methodology for construct ing systems or mechanisms. The Security Frameworks address both data elements and sequences of operations (but not protocol elements) which are used to obtain specific security services. These security services may apply to the communicating entities of systems as well as to data exchanged between systems, and to data managed by systems. This Recommendation / International Standard: defines the basic concepts of Non-repudiation defines general Non-repudiation services identifies possible mechanisms to provide the Non-repudiation services identifies general management requirements for Non-repudiation services and mechanisms. As with other security services, Non-repudiation can only be provided within the context of a defined security policy for a particular application. The definitions of security policies are outside the scope of this Recommendation / International Standard. The scope of this Recommendation / International Standard does not include specification of details of the protocol exchanges which need to be performed in order to achieve Non-repudiation. This Recommendation / International Standard does not describe in detail the particular mechanisms that can be used to support the Non-repudiation services nor does it give details of the supporting security management services and protocols. Some of the procedures described in this framework achieve security by the application of cryptographic techniques. This framework is not dependent on the use of a particular cryptographic or other algorithm or on particular cryptographic techniques (i.e. symmetric or asymmetric) although certain classes of Non-repudiation mechanisms may depend on particular algorithm properties. Indeed it is likely, in practice, that a number of different algorithms will be used. Two entities wishing to use cryptographically-protected data must support the same cryptographic algorithm. Note: Although ISO does not standardize cryptographic algorithms, it does standardize the procedures used to register them in ISO/IEC 9979. A number of different types of standard can use this framework including: (1) standards that incorporate the concept of Non-repudiation (2) standards that specify abstract services that include Non- repudiation (3) standards that specify uses of a Non-repudiation service (4) standards that specify the means of providing Non-repudiation within an open system architecture (5) standards that specify Non-repudiation mechanisms. Such standards can use this framework as follows: - standards of type (1), (2), (3), (4) or (5) can use the terminology of this framework; - standards of type (2), (3), (4) or (5) can use the facilities defined in clause 7; and - standards of type (5) can be based upon the classes of mechanism defined in clause 8.

Scope This Recommendation / International Standard addresses the application of security services in an Open Systems environment, where the term \"Open Systems\" is taken to include areas such as Database, Distributed Applications, Open Distributed Processing and OSI. The Security Frameworks are concerned with defining the means of providing protection for systems and objects within systems, and with the interactions between systems. The Security Frameworks are not concerned with the methodology for construct ing systems or mechanisms. The Security Frameworks address both data elements and sequences of operations (but not protocol elements) which are used to obtain specific security services. These security services may apply to the communicating entities of systems as well as to data exchanged between systems, and to data managed by systems. This Recommendation / International Standard: defines the basic concepts of Non-repudiation defines general Non-repudiation services identifies possible mechanisms to provide the Non-repudiation services identifies general management requirements for Non-repudiation services and mechanisms. As with other security services, Non-repudiation can only be provided within the context of a defined security policy for a particular application. The definitions of security policies are outside the scope of this Recommendation / International Standard. The scope of this Recommendation / International Standard does not include specification of details of the protocol exchanges which need to be performed in order to achieve Non-repudiation. This Recommendation / International Standard does not describe in detail the particular mechanisms that can be used to support the Non-repudiation services nor does it give details of the supporting security management services and protocols. Some of the procedures described in this framework achieve security by the application of cryptographic techniques. This framework is not dependent on the use of a particular cryptographic or other algorithm or on particular cryptographic techniques (i.e. symmetric or asymmetric) although certain classes of Non-repudiation mechanisms may depend on particular algorithm properties. Indeed it is likely, in practice, that a number of different algorithms will be used. Two entities wishing to use cryptographically-protected data must support the same cryptographic algorithm. Note: Although ISO does not standardize cryptographic algorithms, it does standardize the procedures used to register them in ISO/IEC 9979. A number of different types of standard can use this framework including: (1) standards that incorporate the concept of Non-repudiation (2) standards that specify abstract services that include Non- repudiation (3) standards that specify uses of a Non-repudiation service (4) standards that specify the means of providing Non-repudiation within an open system architecture (5) standards that specify Non-repudiation mechanisms. Such standards can use this framework as follows: - standards of type (1), (2), (3), (4) or (5) can use the terminology of this framework; - standards of type (2), (3), (4) or (5) can use the facilities defined in clause 7; and - standards of type (5) can be based upon the classes of mechanism defined in clause 8.

DocumentType
Standard
ISBN
1-55324-743-4
Pages
22
PublisherName
Canadian Standards Association
Status
Current
Supersedes

Standards Relationship
ISO/IEC 10181-4:1997 Identical

ISO/IEC 7498-1:1994 Information technology Open Systems Interconnection Basic Reference Model: The Basic Model
ISO/IEC 10181-1:1996 Information technology Open Systems Interconnection Security frameworks for open systems: Overview
ISO/IEC 9594-8:2017 Information technology Open Systems Interconnection The Directory Part 8: Public-key and attribute certificate frameworks
ISO 7498-2:1989 Information processing systems Open Systems Interconnection Basic Reference Model Part 2: Security Architecture
ISO/IEC 10021-2:2003 Information technology Message Handling Systems (MHS): Overall architecture Part 2:

View more information
US$125.00
Excluding Tax where applicable

Access your standards online with a subscription

Features

  • Simple online access to standards, technical information and regulations.

  • Critical updates of standards and customisable alerts and notifications.

  • Multi-user online standards collection: secure, flexible and cost effective.