UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC 11770-7

Information security — Key management — Part 7: Cross-domain password-based authenticated key exchange

active, Most Current
Organization: ISO
Publication Date: 1 July 2021
Status: active
Page Count: 34
ICS Code (IT Security): 35.030
scope:

This document specifies mechanisms for cross-domain password-based authenticated key exchange, all of which are four-party password-based authenticated key exchange (4PAKE) protocols. Such protocols let two communicating entities establish a shared session key using just the login passwords that they share with their respective domain authentication servers. The authentication servers, assumed to be part of a standard public key infrastructure (PKI), act as ephemeral certification authorities (CAs) that certify key materials that the users can subsequently use to exchange and agree on as a session key.

This document does not specify the means to be used to establish a shared password between an entity and its corresponding domain server. This document also does not define the implementation of a PKI and the means for two distinct domain servers to exchange or verify their respective public key certificates.

Document History

ISO/IEC 11770-7
July 1, 2021
Information security — Key management — Part 7: Cross-domain password-based authenticated key exchange
This document specifies mechanisms for cross-domain password-based authenticated key exchange, all of which are four-party password-based authenticated key exchange (4PAKE) protocols. Such protocols...

References

This document references:
ISO/IEC 10118-3 - IT Security techniques - Hashfunctions - Part 3: Dedicated hash-functions
Published by ISO on October 1, 2018
This document specifies dedicated hash-functions, i.e. specially designed hash-functions. The hashfunctions in this document are based on the iterative use of a round-function. Distinct...
This document references:
ISO/IEC 10181-1 - Information Technology - Open Systems Interconnection - Security Frameworks for Open Systems: Overview
Published by ISO on August 1, 1996
A description is not available for this item.
This document references:
ISO/IEC 11770-1 - Information technology - Security techniques - Key management - Part 1: Framework
Published by ISO on December 1, 2010
This part of ISO/IEC 11770 a) establishes the general model on which key management mechanisms are based, b) defines the basic concepts of key management which are common to all the parts of ISO/IEC...
This document references:
ISO/IEC 11770-2 - IT Security techniques - Key management - Part 2: Mechanisms using symmetric techniques
Published by ISO on October 1, 2018
This document defines key establishment mechanisms using symmetric cryptographic techniques. This document addresses three environments for the establishment of keys: Point-to-Point, Key Distribution...
This document references:
ISO/IEC 11770-3 - Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques AMENDMENT 1: Blinded Diffie-Hellman key agreement
Published by ISO on November 1, 2017
A description is not available for this item.
This document is referenced by:
ISO/IEC 29192-8 - Information security — Lightweight cryptography — Part 8: Authenticated encryption
Published by ISO on September 1, 2022
This document specifies one method for authenticated encryption suitable for applications requiring lightweight cryptographic mechanisms. This method processes a data string with the following...
This document is referenced by:
ISO/IEC 18033-1 - Information technology - Security techniques - Encryption algorithms - Part 1: General
Published by ISO on August 1, 2015
This part of ISO/IEC 18033 is general in nature, and provides definitions that apply in subsequent parts of this International Standard. The nature of encryption is introduced, and certain general...
This document is referenced by:
NEN-ISO/IEC 18033-1 - Information security - Encryption algorithms - Part 1: General
Published by NEN on September 1, 2021
This document is general in nature and provides definitions that apply in subsequent parts of the ISO/IEC 18033 series. It introduces the nature of encryption and describes certain general aspects of...
This document is referenced by:
ISO/IEC 27002 - Information technology - Security techniques - Code of practice for information security controls TECHNICAL CORRIGENDUM 2
Published by ISO on November 15, 2015
A description is not available for this item.
This document is referenced by:
CSA ISO/IEC 18033-2 - Information technology - Security techniques - Encryption algorithms - Part 2: Asymmetric ciphers
Published by CSA on January 1, 2006
This part of ISO/IEC 18033 specifies several asymmetric ciphers. These specifications prescribe the functional interfaces and correct methods of use of such ciphers in general, as well as the precise...
View Less
View All
Advertisement