UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC 11770-3

Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques

active, Most Current
Buy Now
Organization: ISO
Publication Date: 1 August 2015
Status: active
Page Count: 88
ICS Code (Information coding): 35.040
scope:

This part of ISO/IEC 11770 defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals.

a) Establish a shared secret key for use in a symmetric cryptographic technique between two entities A and B by key agreement. In a secret key agreement mechanism, the secret key is computed as the result of a data exchange between the two entities A and B. Neither of them should be able to predetermine the value of the shared secret key.

b) Establish a shared secret key for use in a symmetric cryptographic technique between two entities A and B via key transport. In a secret key transport mechanism, the secret key is chosen by one entity A and is transferred to another entity B, suitably protected by asymmetric techniques.

c) Make an entity's public key available to other entities via key transport. In a public key transport mechanism, the public key of entity A shall be transferred to other entities in an authenticated way, but not requiring secrecy.

Some of the mechanisms of this part of ISO/IEC 11770 are based on the corresponding authentication mechanisms in ISO/IEC 9798-3.[6] This part of ISO/IEC 11770 does not cover certain aspects of key management, such as

- key lifecycle management,

- mechanisms to generate or validate asymmetric key pairs, and

- mechanisms to store, archive, delete, destroy, etc. keys.

While this part of ISO/IEC 11770 does not explicitly cover the distribution of an entity's private key (of an asymmetric key pair) from a trusted third party to a requesting entity, the key transport mechanisms described can be used to achieve this. A private key can in all cases be distributed with these mechanisms where an existing, non-compromised key already exists. However, in practice the distribution of private keys is usually a manual process that relies on technological means such as smart cards, etc.

This part of ISO/IEC 11770 does not specify the transformations used in the key management mechanisms.

NOTE To provide origin authentication for key management messages, it is possible to make provisions for authenticity within the key establishment protocol or to use a public key signature system to sign the key exchange messages

Document History

ISO/IEC 11770-3
October 1, 2021
Information security — Key management — Part 3: Mechanisms using asymmetric techniques
This document defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals. a) Establish...
ISO/IEC 11770-3
November 1, 2017
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques AMENDMENT 1: Blinded Diffie-Hellman key agreement
A description is not available for this item.
ISO/IEC 11770-3
May 15, 2016
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques TECHNICAL CORRIGENDUM 1
A description is not available for this item.
ISO/IEC 11770-3
August 1, 2015
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques
This part of ISO/IEC 11770 defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals....
ISO/IEC 11770-3
September 15, 2009
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques TECHNICAL CORRIGENDUM 1
This part of ISO/IEC 11770 defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals....
ISO/IEC 11770-3
July 15, 2008
Information technology - Security techniques - Key management - Part 3: Mechanisms using asymmetric techniques
This part of ISO/IEC 11770 defines key management mechanisms based on asymmetric cryptographic techniques. It specifically addresses the use of asymmetric techniques to achieve the following goals....
ISO/IEC 11770-3
November 1, 1999
Information Technology - Security Techniques - Key Management - Part 3: Mechanisms Using Asymmetric Techniques
A description is not available for this item.
View Less
View All

References

This document references:
ISO/IEC 14888-2 - Information technology - Security techniques - Digital signatures with appendix Part 2: Integer factorization based mechanisms
Published by ISO on April 15, 2008
This part of ISO/IEC 14888 specifies digital signatures with appendix whose security is based on the difficulty of factoring the modulus in use. For each signature scheme, it specifies: a) the...
This document references:
IEEE 1363 - Standard Specifications for Public-Key Cryptography
Published by IEEE on January 30, 2000
A description is not available for this item.
This document references:
ISO/IEC 7498-2 - Information Processing Systems - Open Systems Interconnection - Basic Reference Model - Part 2: Security Architecture
Published by ISO on February 15, 1989
Scope and field of application This part of ISO 7498: a) provides a general description of security services and related mechanisms, which may be provided by the Reference Model; and b) defines the...
This document references:
ISO/IEC 10181-1 - Information Technology - Open Systems Interconnection - Security Frameworks for Open Systems: Overview
Published by ISO on August 1, 1996
A description is not available for this item.
This document references:
ISO/IEC 14888-2 - Information technology - Security techniques - Digital signatures with appendix Part 2: Integer factorization based mechanisms
Published by ISO on April 15, 2008
This part of ISO/IEC 14888 specifies digital signatures with appendix whose security is based on the difficulty of factoring the modulus in use. For each signature scheme, it specifies: a) the...
This document is referenced by:
ISO/IEC 27033-1 - Information technology - Security techniques - Network security - Part 1: Overview and concepts
Published by ISO on August 15, 2015
This part of ISO/IEC 27033 provides an overview of network security and related definitions. It defines and describes the concepts associated with, and provides management guidance on, network...
This document is referenced by:
ECMA 386 - NFC-SEC-01: NFC-SEC Cryptography Standard using ECDH and AES
Published by ECMA on June 1, 2015
This Standard specifies the message contents and the cryptographic methods for PID 01. This Standard specifies cryptographic mechanisms that use the Elliptic Curves Diffie-Hellman (ECDH) protocol for...
This document is referenced by:
ECMA 409 - NFC-SEC-02: NFC-SEC Cryptography Standard using ECDH-256 and AES-GCM
Published by ECMA on June 1, 2015
This Standard specifies the message contents and the cryptographic methods for PID 02. This Standard specifies cryptographic mechanisms that use the Elliptic Curves Diffie-Hellman (ECDH) protocol...
This document is referenced by:
ECMA 411 - NFC-SEC-04: NFC-SEC Entity Authentication and Key Agreement using Symmetric Cryptography
Published by ECMA on June 1, 2017
This Standard specifies the message contents and the cryptographic mechanisms for PID 04. This Standard specifies key agreement and confirmation mechanisms providing mutual authentication, using...
This document is referenced by:
ECMA 410 - NFC-SEC-03: NFC-SEC Entity Authentication and Key Agreement using Asymmetric Cryptography
Published by ECMA on June 1, 2017
This Standard specifies the message contents and the cryptographic mechanisms for PID 03. This Standard specifies key agreement and confirmation mechanisms providing mutual authentication, using...
This document is referenced by:
ISO/IEC 11770-1 - Information technology - Security techniques - Key management - Part 1: Framework
Published by ISO on December 1, 2010
This part of ISO/IEC 11770 a) establishes the general model on which key management mechanisms are based, b) defines the basic concepts of key management which are common to all the parts of ISO/IEC...
This document is referenced by:
ISO/IEC 11770-1 - Information technology - Security techniques - Key management - Part 1: Framework
Published by ISO on December 1, 2010
This part of ISO/IEC 11770 a) establishes the general model on which key management mechanisms are based, b) defines the basic concepts of key management which are common to all the parts of ISO/IEC...
View Less
View All
Advertisement