UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC 11770-4

Information technology - Security techniques - Key management - Part 4: Mechanisms based on weak secrets

active, Most Current
Buy Now
Organization: ISO
Publication Date: 1 November 2017
Status: active
Page Count: 56
ICS Code (IT Security): 35.030
scope:

This document defines key establishment mechanisms based on weak secrets, i.e. secrets that can be readily memorized by a human, and hence, secrets that will be chosen from a relatively small set of possibilities. It specifies cryptographic techniques specifically designed to establish one or more secret keys based on a weak secret derived from a memorized password, while preventing offline brute-force attacks associated with the weak secret. This document is not applicable to the following aspects of key management:

- life-cycle management of weak secrets, strong secrets, and established secret keys;

- mechanisms to store, archive, delete, destroy, etc. weak secrets, strong secrets, and established secret keys.

Document History

ISO/IEC 11770-4
February 1, 2021
Information technology — Security techniques — Key management — Part 4: Mechanisms based on weak secrets AMENDMENT 2: Leakage-resilient password-authenticated key agreement with additional stored secrets
A description is not available for this item.
ISO/IEC 11770-4
September 1, 2019
Information technology — Security techniques — Key management — Part 4: Mechanisms based on weak secrets AMENDMENT 1: Unbalanced Password- Authenticated Key Agreement with Identity-Based Cryptosystems (UPAKAIBC)
A description is not available for this item.
ISO/IEC 11770-4
November 1, 2017
Information technology - Security techniques - Key management - Part 4: Mechanisms based on weak secrets
This document defines key establishment mechanisms based on weak secrets, i.e. secrets that can be readily memorized by a human, and hence, secrets that will be chosen from a relatively small set of...
ISO/IEC 11770-4
September 15, 2009
Information technology - Security techniques - Key management - Part 4: Mechanisms based on weak secrets TECHNICAL CORRIGENDUM 1
A description is not available for this item.
ISO/IEC 11770-4
May 1, 2006
Information technology - Security techniques - Key management - Part 4: Mechanisms based on weak secrets
A description is not available for this item.

References

This document references:
ISO/IEC 10118-3 - IT Security techniques - Hashfunctions - Part 3: Dedicated hash-functions
Published by ISO on October 1, 2018
This document specifies dedicated hash-functions, i.e. specially designed hash-functions. The hashfunctions in this document are based on the iterative use of a round-function. Distinct...
This document references:
ISO/IEC 11770-3 - Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques AMENDMENT 1: Blinded Diffie-Hellman key agreement
Published by ISO on November 1, 2017
A description is not available for this item.
This document references:
ISO/IEC 15946-1 - Information technology - Security techniques - Cryptographic techniques based on elliptic curves - Part 1: General
Published by ISO on July 1, 2016
This part of ISO/IEC 15946 describes the mathematical background and general techniques necessary for implementing the elliptic curve cryptography mechanisms defined in ISO/IEC 15946-5, ISO/IEC...
This document references:
ISO/IEC 18031 - Information technology - Security techniques - Random bit generation TECHNICAL CORRIGENDUM 1
Published by ISO on October 1, 2014
A description is not available for this item.
This document references:
ISO/IEC 18032 - Information security — Prime number generation
Published by ISO on December 1, 2020
This document specifies methods for generating and testing prime numbers as required in cryptographic protocols and algorithms. Firstly, this document specifies methods for testing whether a given...
This document is referenced by:
BS EN 419212-1 - Application Interface for Secure Elements for Electronic Identification, Authentication and Trusted Services Part 1: Introduction and common definitions
Published by BSI on September 30, 2017
A description is not available for this item.
This document is referenced by:
ISO/IEC 11770-1:12 - Information technology — Security techniques — Key management — Part 1: Framework
Published by CSA on January 1, 2012
This part of ISO/IEC 11770 a) establishes the general model on which key management mechanisms are based, b) defines the basic concepts of key management which are common to all the parts of ISO/IEC...
This document is referenced by:
CSA ISO/IEC 9797-1 - Information technology - Security techniques - Message Authentication Codes (MACs) - Part 1: Mechanisms using a block cipher
Published by CSA on January 1, 2012
This part of ISO/IEC 9797 specifies six MAC algorithms that use a secret key and an n-bit block cipher to calculate an m-bit MAC. This part of ISO/IEC 9797 can be applied to the security services of...
This document is referenced by:
CSA ISO/IEC 18033-1 - Information technology - Security techniques - Encryption algorithms - Part 1: General
Published by CSA on January 1, 2016
This part of ISO/IEC 18033 is general in nature, and provides definitions that apply in subsequent parts of this International Standard. The nature of encryption is introduced, and certain general...
View Less
View All
Advertisement