UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

CSA - CAN/CSA-ISO/IEC-11577

Information Technology - Open Systems Interconnection - Network Layer Security Protocol

inactive
Organization: CSA
Publication Date: 1 May 1997
Status: inactive
Page Count: 121
scope:

This ITU-T Recommendation|International Standard specifies a protocol to be used by End Systems and Intermediate Systems in order to provide security services in the Network layer, which is defined by CCITT Rec. X.213 | ISO/IEC 8348, and ISO 8648. The protocol defined in this ITU-T Recommendation|International Standard is called the Network Layer Security Protocol (NLSP).

This ITU-T Recommendation|International Standard specifies:

1) Support for the following security services defined in CCITT Rec. X.800|ISO 7498-2:

a) peer entity authentication;

b) data origin authentication;

c) access control;

d) connection confidentiality;

e) connectionless confidentiality;

f) traffic flow confidentiality;

g) connection integrity without recovery (including Data Unit Integrity, in which individual SDUs on a connection are integrity protected);

h) connectionless integrity.

2) The functional requirements for implementations that claim conformance to this ITU-T Recommendation|International Standard.

The procedures of this protocol are defined in terms of:

a) requirements on the cryptographic techniques that can be used in an instance of this protocol;

b) requirements on the information carried in the security association used in an instance of communication.

Although the degree of protection afforded by some security mechanisms depends on the use of some specific cryptographic techniques, correct operation of this protocol is not dependent on the choice of any particular encipherment or decipherment algorithm. This is a local matter for the communicating systems.

Furthermore, neither the choice nor the implementation of a specific security policy are within the scope of this ITU-T Recommendation|International Standard. The choice of a specific security policy, and hence the degree of protection that will be achieved, is left as a local matter among the systems that are using a single instance of secure communications. This ITU-T Recommendation|International Standard does not require that multiple instances of secure communications involving a single open system must use the same security protocol.

Annex D provides the PICS proforma for the Network Layer Security Protocol in compliance with the relevant guidance given in ISO/IEC 9646-2.

Document History

CAN/CSA-ISO/IEC-11577
May 1, 1997
Information Technology - Open Systems Interconnection - Network Layer Security Protocol
This ITU-T Recommendation|International Standard specifies a protocol to be used by End Systems and Intermediate Systems in order to provide security services in the Network layer, which is defined...
CAN/CSA-ISO/IEC-11577
May 1, 1997
Information Technology - Open Systems Interconnection - Network Layer Security Protocol
This ITU-T Recommendation I International Standard specifies a protocol to be used by End Systems and Intermediate Systems in order to provide security services in the Network layer, which is defined...
CAN/CSA-ISO/IEC 11577-97
May 1, 1997
Information Technology - Open Systems Interconnection - Network Layer Security Protocol
This JTU-T Recommendation I International Standard specifies a protocol to be used by End Systems and Intermediate Systems in order to provide security services in the Network layer, which is defined...
CSA ISO/IEC 11577
January 1, 1997
Information technology - Open Systems Interconnection - Network layer security protocol
This JTU-T Recommendation I International Standard specifies a protocol to be used by End Systems and Intermediate Systems in order to provide security services in the Network layer, which is defined...

References

This document references:
ISO/IEC 7498-2 - Information Processing Systems - Open Systems Interconnection - Basic Reference Model - Part 2: Security Architecture
Published by ISO on February 15, 1989
Scope and field of application This part of ISO 7498: a) provides a general description of security services and related mechanisms, which may be provided by the Reference Model; and b) defines the...
This document references:
ISO/IEC 10731 - Information Technology - Open Systems Interconnection - Basic Reference Model - Conventions for the Definition of OSI Services
Published by ISO on December 15, 1994
A description is not available for this item.
This document references:
ISO/IEC 10745 - Information Technology - Open Systems Interconnection - Upper Layers Security Model First Edition
Published by ISO on August 15, 1995
A description is not available for this item.
This document references:
ISO/IEC 7498-1 - Information Technology - Open Systems Interconnection - Basic Reference Model: the Basic Model
Published by ISO on November 15, 1994
The purpose of this Reference Model of Open Systems Interconnection is to provide a common basis for the coordination of standards development for the purpose of systems interconnection. while...
This document references:
ISO/IEC 8208 - Information Technology - Data Communications - X.25 Packet Layer Protocol for Data Terminal Equipment
Published by ISO on November 1, 2000
A description is not available for this item.
View Less
View All
Advertisement