UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC 11770-3

Information security — Key management — Part 3: Mechanisms using asymmetric techniques

active, Most Current
Organization: ISO
Publication Date: 1 October 2021
Status: active
Page Count: 98
ICS Code (IT Security): 35.030
scope:

This document defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals.

a) Establish a shared secret key for use in a symmetric cryptographic technique between two entities A and B by key agreement. In a secret key agreement mechanism, the secret key is computed as the result of a data exchange between the two entities A and B. Neither of them is able to predetermine the value of the shared secret key.

b) Establish a shared secret key for use in a symmetric cryptographic technique between two entities A and B via key transport. In a secret key transport mechanism, the secret key is chosen by one entity A and is transferred to another entity B, suitably protected by asymmetric techniques.

c) Make an entity's public key available to other entities via key transport. In a public key transport mechanism, the public key of entity A is transferred to other entities in an authenticated way, but not requiring secrecy.

Some of the mechanisms of this document are based on the corresponding authentication mechanisms in ISO/IEC 9798-3.

This document does not cover certain aspects of key management, such as:

- key lifecycle management;

- mechanisms to generate or validate asymmetric key pairs; and

- mechanisms to store, archive, delete, destroy, etc., keys.

While this document does not explicitly cover the distribution of an entity's private key (of an asymmetric key pair) from a trusted third party to a requesting entity, the key transport mechanisms described can be used to achieve this. A private key can in all cases be distributed with these mechanisms where an existing, non-compromised key already exists. However, in practice the distribution of private keys is usually a manual process that relies on technological means such as smart cards, etc.

This document does not specify the transformations used in the key management mechanisms.

NOTE To provide origin authentication for key management messages, it is possible to make provisions for authenticity within the key establishment protocol or to use a public key signature system to sign the key exchange messages.

Document History

ISO/IEC 11770-3
October 1, 2021
Information security — Key management — Part 3: Mechanisms using asymmetric techniques
This document defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals. a) Establish...
ISO/IEC 11770-3
November 1, 2017
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques AMENDMENT 1: Blinded Diffie-Hellman key agreement
A description is not available for this item.
ISO/IEC 11770-3
May 15, 2016
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques TECHNICAL CORRIGENDUM 1
A description is not available for this item.
ISO/IEC 11770-3
August 1, 2015
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques
This part of ISO/IEC 11770 defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals....
ISO/IEC 11770-3
September 15, 2009
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques TECHNICAL CORRIGENDUM 1
This part of ISO/IEC 11770 defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals....
ISO/IEC 11770-3
July 15, 2008
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques
This part of ISO/IEC 11770 defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals....
ISO/IEC 11770-3
November 1, 1999
Information Technology - Security Techniques - Key Management - Part 3: Mechanisms Using Asymmetric Techniques
A description is not available for this item.
View Less
View All

References

This document references:
ISO/IEC 7498-2 - Information Processing Systems - Open Systems Interconnection - Basic Reference Model - Part 2: Security Architecture
Published by ISO on February 15, 1989
Scope and field of application This part of ISO 7498: a) provides a general description of security services and related mechanisms, which may be provided by the Reference Model; and b) defines the...
This document references:
ISO/IEC 10118-1 - Information technology - Security techniques - Hash-functions - Part 1: General
Published by ISO on October 15, 2016
ISO/IEC 10118 (all parts) specifies hash-functions and is therefore applicable to the provision of authentication, integrity and non-repudiation services. Hash-functions map strings of bits of...
This document references:
ISO/IEC 11770-1 - Information technology - Security techniques - Key management - Part 1: Framework
Published by ISO on December 1, 2010
This part of ISO/IEC 11770 a) establishes the general model on which key management mechanisms are based, b) defines the basic concepts of key management which are common to all the parts of ISO/IEC...
This document references:
ISO/IEC 11770-6 - Information technology - Security techniques - Key management - Part 6: Key derivation
Published by ISO on October 1, 2016
This document specifies key derivation functions, i.e. functions which take secret information and other (public) parameters as input and output one or more “derived” secret keys. Key derivation...
This document references:
ISO/IEC 15946-1 - Information technology - Security techniques - Cryptographic techniques based on elliptic curves - Part 1: General
Published by ISO on July 1, 2016
This part of ISO/IEC 15946 describes the mathematical background and general techniques necessary for implementing the elliptic curve cryptography mechanisms defined in ISO/IEC 15946-5, ISO/IEC...
This document is referenced by:
BS ISO/IEC 24713-2 - Information technology - Biometric profiles for interoperability and data interchange - Part 2: Physical access control for employees at airports
Published by BSI on July 31, 2008
A description is not available for this item.
This document is referenced by:
X9.24-2 - Retail Financial Services Symmetric Key Management Part 2: Using Asymmetric Techniques for the Distribution of Symmetric Keys
Published by ANSI on September 30, 2021
This part of ANS X9.24 covers the establishment of device initial trust and management of keying material used for financial services such as point of sale (POS) transactions, automatic teller...
This document is referenced by:
BS ISO/IEC 11770-6 - Information technology — Security techniques — Key management Part 6: Key derivation
Published by BSI on October 31, 2016
A description is not available for this item.
This document is referenced by:
BS ISO/IEC 15946-1 - Information technology - Security techniques - Cryptographic techniques based on elliptic curves - Part 1: General
Published by BSI on July 31, 2016
A description is not available for this item.
This document is referenced by:
BS ISO/IEC 29167-16 - Information technology — Automatic identification and data capture techniques Part 16: Crypto suite ECDSA-ECDH security services for air interface communications
Published by BSI on February 28, 2023
A description is not available for this item.
View Less
View All
Advertisement