BS ISO IEC 15944-1-2011 Information technology Business operational view Operational aspects of Open-edi for implementation《信息技术 商业操作图 实施用开放式电子数据交换的操作方面》.pdf

1、raising standards worldwide NO COPYING WITHOUT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAW BSI Standards Publication BS ISO/IEC 15944-1:2011 Information technology Business Operational View Part 1: Operational aspects of Open-edi for implementationBS ISO/IEC 15944-1:2011 BRITISH STANDARD Nat

2、ional foreword This British Standard is the UK implementation of ISO/IEC 15944-1:2011. It supersedes BS ISO/IEC 15944-1:2002 which is withdrawn. The UK participation in its preparation was entrusted to Technical Committee IST/40, Data management and interchange. A list of organizations represented o

3、n this committee can be obtained on request to its secretary. This publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application. BSI 2011 ISBN 978 0 580 73387 1 ICS 35.240.60 Compliance with a British Standard cannot confer imm

4、unity from legal obligations. This British Standard was published under the authority of the Standards Policy and Strategy Committee on 31 August 2011. Amendments issued since publication Date Text affectedBS ISO/IEC 15944-1:2011Reference number ISO/IEC 15944-1:2011(E) ISO/IEC 2011INTERNATIONAL STAN

5、DARD ISO/IEC 15944-1 Second edition 2011-08-01Information technology Business Operational View Part 1: Operational aspects of Open-edi for implementation Technologies de linformation Vue oprationnelle daffaires Partie 1: Aspects oprationnels de lEdi ouvert pour application BS ISO/IEC 15944-1:2011 IS

6、O/IEC 15944-1:2011(E) COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2011 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from e

7、ither ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO/IEC 2011 All rights reservedBS ISO/IEC 15944

8、-1:2011 ISO/IEC 15944-1:2011(E) ISO/IEC 2011 All rights reserved iiiContents Page Forewordxii 0 Introduction.xiii 0.1 Purpose and overviewxiii 0.2 Requirements on the business operational view aspects of Open-edi .xv 0.3 Business operational view (BOV), Open-edi and e-commerce, e-business, etc. .xvi

9、i 0.4 Use of “Person”, “person”, and “party” in the context of business transactions and commitment exchange.xviii 0.5 Organization and description of the document.xix 0.6 Registration aspects of Open-edi scenarios, scenario attributes and scenario components.xix 1 Scope 1 2 Normative references2 3

10、Terms and definitions .2 4 Symbols and abbreviated terms 12 5 Characteristics of Open-edi12 5.1 Actions based on following clear, predefined rules 13 5.2 Commitment of the parties involved .13 5.3 Communications among parties are automated 13 5.4 Parties control and maintain their states13 5.5 Parti

11、es act autonomously.14 5.6 Multiple simultaneous transactions can be supported .14 6 Components of a business transaction 14 6.1 Introduction14 6.1.1 Overview.14 6.1.2 Standard based on rules and guidelines 15 6.1.3 Business transaction: commitment exchange added to information exchange 16 6.1.4 Bus

12、iness transaction: unambiguous identification of entities.20 6.1.5 Business transaction model: key components23 6.1.6 Business transaction model: classes of constraints 23 6.2 Rules governing the Person component 26 6.2.1 Introduction26 6.2.2 Person, personae, identification and Person signature26 6

13、.2.3 Person - identity and authentication .31 6.2.4 Person and roles: buyer and seller34 6.2.5 Person and delegation to “agent” and/or “third party“.35 6.2.6 Person and external constraints: the “regulator“ 36 6.2.7 Person and external constraints: individual, organization, and public administration

14、 .36 6.2.8 Person and external constraints: consumer and vendor40 6.3 Rules governing the process component.41 6.3.1 Introduction41 6.3.2 Planning42 6.3.3 Identification 43 6.3.4 Negotiation .43 6.3.5 Actualization 44 6.3.6 Post-actualization 44 6.4 Rules governing the data component .45 6.4.1 Recor

15、ded information .45 6.4.2 Predefined and structured data elements.47 BS ISO/IEC 15944-1:2011 ISO/IEC 15944-1:2011(E) iv ISO/IEC 2011 All rights reserved6.5 Business requirements on the FSV (Business demands on Open-Edi Support Infrastructure).50 6.5.1 Introduction 50 6.5.2 Internal constraints (self

16、-imposed)51 6.5.3 External constraints 52 6.5.4 BOV requirements on the FSV for security methods and techniques .53 6.5.5 Liability of repositories .53 6.6 Primitive classification and identification of Open-edi scenarios54 6.6.1 Introduction 54 6.6.2 Classification of Open-edi scenarios.54 6.6.2.1

17、Requirements for classification of Open-edi scenarios.54 6.6.2.2 Market type on business boundary55 6.6.2.3 Settlement type in business process.55 6.6.2.4 Roles in business transactions: primitive or complex.55 6.6.3 Trade models based on three classification factors56 6.6.3.1 Trade models by market

18、 type: defined and undefined.56 6.6.3.2 Trade models by settlement type: immediate and separate57 6.6.3.3 Trade models by participation type: bilateral and mediated .58 6.6.4 Classification and scenario types of Open-edi scenarios.58 6.6.4.1 Classification on Open-edi scenarios58 6.6.4.2 Scenario ty

19、pes59 6.6.4.2.1 Basic primitive trade scenario: (a) .59 6.6.4.2.2 Basic complex trade scenario: (b)60 6.6.4.2.3 Defined primitive trade scenario: (i).60 6.6.4.2.4 Defined complex trade scenario: (j) .60 6.6.4.2.5 Primitive agreement scenario: (c) 61 6.6.4.2.6 Defined primitive agreement scenario: (k

20、) 61 6.6.4.2.7 Complex agreement scenario: (g) 61 6.6.4.2.8 Defined complex agreement scenario: (m)62 6.6.4.2.9 Separate delivery scenario: (d).62 6.6.4.2.10 Separate payment scenario: (e)62 6.6.4.2.11 Authentication scenario: (f) 62 6.6.4.2.12 Defined authentication scenario: (l).63 6.6.4.3 Remarks

21、 on scenario classification.63 6.6.4.3.1 Continuous transaction:63 6.6.4.3.2 Services transaction:.63 6.6.4.3.3 Auction transaction: 63 6.6.4.3.4 Bidding transaction: 63 6.6.4.3.5 Credit payment transaction: .63 6.6.4.3.6 Regulatory constraints:.63 7 Guidelines for scoping Open-edi scenarios .64 7.1

22、 Introduction and basic principles 64 7.2 Rules for scoping Open-edi scenarios65 7.3 Template for specifying scope of an Open-edi scenario.67 7.3.1 Introduction to template67 7.3.2 Template .68 8 Rules for specification of Open-edi scenarios and their components 71 8.1 Introduction and basic princip

23、les 71 8.2 OES demands on interoperability74 8.3 Rules for specification of Open-edi scenarios and scenario attributes 75 8.3.1 Open-edi scenario rules75 8.3.2 Open-edi scenario (OeS) attributes and associated rules.75 8.3.2.1 Scenario attribute: OeS identifier .76 8.3.2.2 Scenario attribute: OeS na

24、me(s) 76 8.3.2.3 Scenario attribute: OeS purpose 77 8.3.2.4 Scenario attribute: OeS set of roles.77 8.3.2.5 Scenario attribute: OeS set of Information Bundles 77 8.3.2.6 Scenario attribute: OeS set of requirements on Open-edi Parties 77 8.3.2.7 Scenario attribute: OeS set of external constraints on

25、business requirements, i.e., laws and regulations.78 BS ISO/IEC 15944-1:2011 ISO/IEC 15944-1:2011(E) ISO/IEC 2011 All rights reserved v8.3.2.8 Scenario attribute: OeS inheritance identifier(s) and cross-references.78 8.3.2.9 Scenario attribute: OeS security service requirements.78 8.3.2.10 Scenario

26、attribute: OeS communication - quality of service requirements.79 8.3.2.11 Scenario attribute: OeS role requirements and constraints79 8.3.2.12 Scenario attribute: OeS dependency among roles in a scenario .79 8.3.2.13 Scenario attribute: OeS dependency among Information Bundles in a scenario.79 8.3.

27、2.14 Scenario attribute: OeS dependency among Semantic Components of different Information Bundles 79 8.3.2.15 Scenario attribute: OeS demands on Open-edi Parties.79 8.3.2.16 Scenario attribute: OeS demands on Open-edi infrastructure .80 8.4 Rules for specification of Open-edi roles and role attribu

28、tes.80 8.4.1 Rules governing roles.80 8.4.2 Role attributes and associated rules.81 8.4.2.1 Role attribute: role identifier (ID)82 8.4.2.2 Role attribute: role name(s) 82 8.4.2.3 Role attribute: role purpose82 8.4.2.4 Role attribute: role business goal(s)83 8.4.2.5 Role attribute: role business rule

29、s and constraints.83 8.4.2.6 Role attribute: role inheritance identifiers and cross-references .83 8.4.2.7 Role attribute: role external constraints on business requirements84 8.4.2.8 Role attribute: role security service requirements.84 8.4.2.9 Role attribute: role communications and quality of ser

30、vice requirements .85 8.4.2.10 Role attribute: Role demands on Open-edi Support Infrastructure (OeSI)85 8.4.3 Role demands on Open-edi Parties .85 8.4.4 Interoperability demands among roles .86 8.4.5 Role states86 8.4.6 Role transitions86 8.4.7 Role events.87 8.4.8 Role actions .88 8.4.9 Role intern

31、al function88 8.4.10 Role demand on Open-edi Support Infrastructure (OeSI).88 8.5 Rules for specification of Open-edi Information Bundles (IBs) and IB attributes 89 8.5.1 Rules governing Information Bundles (IBs) .89 8.5.2 Information Bundle (IB) attributes and associated rules 90 8.5.2.1 Informatio

32、n Bundle attribute: IB identifier.90 8.5.2.2 Information Bundle attribute: IB name(s)90 8.5.2.3 Information Bundle attribute: IB purpose91 8.5.2.4 Information Bundle attribute: business rules controlling content of IBs 91 8.5.2.5 Information Bundle attribute: IB external constraints on business requ

33、irements governing content or concept(s) of an IB 91 8.5.2.6 Information Bundle attribute: IB contents.91 8.5.2.7 Information Bundle attribute: IB security service requirements.91 8.5.2.8 Information Bundle attribute: IB recorded information retention business rules and constraints92 8.5.2.9 Informa

34、tion Bundle attribute: IB recorded information retention - external constraints on business requirements92 8.5.2.10 Information Bundle attribute: IB time validity characteristics 92 8.5.3 IB information for interoperability .93 8.5.4 IB demands on Open-edi Support Infrastructure (OeSI) .93 8.5.5 Rul

35、es for the specification of Semantic Components and Semantic Component attributes93 8.5.5.1 Rules governing Semantic Components.93 8.5.5.2 Rules governing Semantic Component attributes .95 8.5.5.2.1 Semantic Component attribute: SC identifier .95 8.5.5.2.2 Semantic Component attribute: SC name(s).95

36、 8.5.5.2.3 Semantic Component attribute: SC definition 95 8.5.5.2.4 Semantic Component attribute: SC security service requirements .96 8.6 Business requirements on FSV (business demands on Open-edi Support Infrastructure)96 9 Primitive Open-edi scenario template .97 9.1 Purpose.97 BS ISO/IEC 15944-1

37、:2011 ISO/IEC 15944-1:2011(E) vi ISO/IEC 2011 All rights reserved9.2 Template structure and content.97 9.2.1 IT-interface needs perspective.98 9.2.2 Human interface needs perspective 98 9.2.3 Consolidated template of attributes of Open-edi scenarios, roles and Information Bundles.98 10 Requirements

38、on Open-edi description techniques 101 10.1 General requirements on Open-edi description techniques.101 10.2 Requirements on OeDTs for roles .102 10.3 Requirements on OeDTs for Information Bundles.103 11 References104 Annex A (normative) Consolidated list of terms and definitions with cultural adapt

39、ability: ISO English and ISO French language equivalency105 A.1 Introduction 105 A.2 ISO English and ISO French .105 A.3 Cultural adaptability and quality control.105 A.4 Organization of Annex A - Consolidated List in Matrix Form .106 A.5 Consolidated List of ISO/IEC 15944-1 Terms and Definitions.10

40、7 Annex B (normative) Codes representing presence-type attributes: mandatory, conditionals, optionals, and not applicable .130 Annex C (informative) Unambiguous identification of entities in (electronic) business transactions.133 C.1 Introduction 133 C.2 Key issues 133 C.3 Basic assumptions: Entitie

41、s, objects and Persons 133 C.4 “Unambiguous” .135 C.5 “Identification”.136 C.6 Identification versus designation (or “identifiers” versus “names”).140 Annex D (informative) Existing standards for the unambiguous identification of Persons in business transactions (organizations and individuals) and s

42、ome common policy and implementation considerations .143 D.1 Introduction 143 D.1.1 Note on compliance with privacy/data protection, consumer protection, etc. .144 D.1.2 Standards referenced in this Annex 144 D.2 Purpose.145 D.3 Approach and overview 146 D.4 Existing standards for the unambiguous id

43、entification of Persons 146 D.4.1 Introduction 146 D.4.2 Key existing standards147 D.4.2.1 Specific standards already identified.147 D.4.2.2 (Global) Unambiguous identification of “organizations“ - ISO/IEC 6523 .148 D.4.2.2.1 ISO/IEC 6523 and the identification of “roles” in scenarios and scenario c

44、omponents152 D.4.2.3 (Global) Unambiguous identification of “buyers and sellers“ - ISO/IEC 7812.153 D.4.2.4 (Global) Unambiguous identification of individuals - ISO/IEC 7501 .154 D.4.3 Conclusions .155 D.5 Some common policy and implementation considerations for the unambiguous identification of Per

45、sons as individuals .156 D.5.1 Introduction 156 D.5.2 Anonymity 157 D.5.3 Privacy/data protection .158 D.5.4 What is an “individual“ and what are criteria for an “identifiable individual”? 160 D.5.5 Role of a natural person in a business transaction as “individual or organization“ (or “organization

46、Person“)? .161 D.5.6 Unambiguous identification of individuals - two basic options .162 Annex E (informative) Business transaction model: Person component .165 E.1 Introduction 165 E.2 Purpose.167 E.3 “Person“ in a business transaction.168 E.4 Personae, identification and Person signature 170 BS ISO

47、/IEC 15944-1:2011 ISO/IEC 15944-1:2011(E) ISO/IEC 2011 All rights reserved viiE.4.1 Personae and identification170 E.4.2 Person signature .178 E.5 Person - identification and authentication181 E.6 Person and roles: buyer and seller185 E.7 Person and delegation of commitment to agent and/or third par

48、ties 187 E.7.1 Introduction187 E.7.2 Agents.188 E.7.3 Third parties .190 E.8 Person and external constraints: regulator191 E.9 Person and external constraints: individual, organization, and public administration .192 E.9.1 Introduction192 E.9.2 Individual 195 E.9.3 Organization, organization part an

49、d organization Person 196 E.9.4 Organization part .198 E.9.5 Organization Person198 E.9.6 Public administration 201 E.9.7 Summary overview of the three sub-types of Persons and the three roles201 E.10 Person and external constraints: consumer and vendor202 Annex F (informative) Business transaction model: process component205 F.1 Introduction205 F.1.1 Purpose.205 F.1.2 Sources of contents 207 F.2 Process component 208 F.2.1 General rules208 F.2.2 Planning phase 209 F.2.3 Identification phase.210 F.2.4 Negotiation phase211 F.2.5 Actualizatio