1、 National Standard of CanadaCAN/CSA-ISO/IEC 16500-7:02(ISO/IEC 16500-7:1999)International Standard ISO/IEC 16500-7:1999 (first edition, 1999-12-15), has been adopted withoutmodification (IDT) as CSA Standard CAN/CSA-ISO/IEC 16500-7:02, which has been approved as a NationalStandard of Canada by the S
2、tandards Council of Canada.ISBN 1-55324-704-3 March 2002Information technology Generic digitalaudio-visual systems Part 7:Basic security toolsTechnologies de linformation Systmes audiovisuels numriquesgnriques Partie 7: Outils de scurit de baseReference numberISO/IEC 16500-7:1999(E) ISO/IEC 1999The
3、Canadian Standards Association (CSA), The Standards Council of Canada is theunder whose auspices this National Standard has been coordinating body of the National Standards system, produced, was chartered in 1919 and accredited by a federation of independent, autonomousthe Standards Council of Canad
4、a to the National organizations working towards the furtherStandards system in 1973. It is a not-for-profit, development and improvement of voluntarynonstatutory, voluntary membership association standardization in the national interest.engaged in standards development and certification The principa
5、l objects of the Council are to foster activities. and promote voluntary standardization as a means CSA standards reflect a national consensus of of advancing the national economy, benefiting theproducers and users including manufacturers, health, safety, and welfare of the public, assisting consume
6、rs, retailers, unions and professional and protecting the consumer, facilitating domestic organizations, and governmental agencies. The and international trade, and furthering internationalstandards are used widely by industry and commerce cooperation in the field of standards.and often adopted by m
7、unicipal, provincial, and A National Standard of Canada is a standard whichfederal governments in their regulations, particularly in has been approved by the Standards Council ofthe fields of health, safety, building and construction, Canada and one which reflects a reasonableand the environment. ag
8、reement among the views of a number of capableIndividuals, companies, and associations across individuals whose collective interests provide to theCanada indicate their support for CSAs standards greatest practicable extent a balance ofdevelopment by volunteering their time and skills to representat
9、ion of producers, users, consumers, andCSA Committee work and supporting the Associations others with relevant interests, as may be appropriateobjectives through sustaining memberships. The more to the subject in hand. It normally is a standardthan 7000 committee volunteers and the 2000 which is cap
10、able of making a significant and timelysustaining memberships together form CSAs total contribution to the national interest.membership from which its Directors are chosen. Approval of a standard as a National Standard ofSustaining memberships represent a major source of Canada indicates that a stan
11、dard conforms to theincome for CSAs standards development activities. criteria and procedures established by the StandardsThe Association offers certification and testing Council of Canada. Approval does not refer to theservices in support of and as an extension to its technical content of the stand
12、ard; this remains thestandards development activities. To ensure the continuing responsibility of the accreditedintegrity of its certification process, the Association standards-development organization.regularly and continually audits and inspects products Those who have a need to apply standards a
13、rethat bear the CSA Mark. encouraged to use National Standards of CanadaIn addition to its head office and laboratory complex whenever practicable. These standards are subject in Toronto, CSA has regional branch offices in major to periodic review; therefore, users are cautioned centres across Canad
14、a and inspection and testing to obtain the latest edition from the organizationagencies in eight countries. Since 1919, the preparing the standard.Association has developed the necessary expertise to The responsibility for approving National Standards meet its corporate mission: CSA is an independen
15、t of Canada rests with theservice organization whose mission is to provide an Standards Council of Canadaopen and effective forum for activities facilitating the 270 Albert Street, Suite 200exchange of goods and services through the use of Ottawa, Ontario, K1P 6N7standards, certification and related
16、 services to meet Canadanational and international needs.For further information on CSA services, write toCanadian Standards Association178 Rexdale BoulevardToronto, Ontario, M9W 1R3CanadaAlthough the intended primary application of this Standard is stated in its Scope, it is importantto note that i
17、t remains the responsibility of the users to judge its suitability for their particular purpose.Registered trade-mark of Canadian Standards AssociationInformation technology Generic digital audio-visualCAN/CSA-ISO/IEC 16500-7:02 systems Part 7: Basic security tools March 2002 Canadian Standards Asso
18、ciation CSA/1CAN/CSA-ISO/IEC 16500-7:02Information technology Genericdigital audio-visual systems Part 7: Basic security toolsCSA PrefaceStandards development within the Information Technology sector is harmonized with international standardsdevelopment. Through the CSA Technical Committee on Inform
19、ation Technology (TCIT), Canadians serve asthe Canadian Advisory Committee (CAC) on ISO/IEC Joint Technical Committee 1 on Information Technology(ISO/IEC JTC1) for the Standards Council of Canada (SCC), the ISO member body for Canada and sponsor ofthe Canadian National Committee of the IEC. Also, as
20、 a member of the International TelecommunicationUnion (ITU), Canada participates in the International Telegraph and Telephone Consultative Committee(ITU-T).This International Standard was reviewed by the CSA TCIT under the jurisdiction of the Strategic SteeringCommittee on Information Technology and
21、 deemed acceptable for use in Canada. (A committee membershiplist is available on request from the CSA Project Manager.) From time to time, ISO/IEC may publish addenda,corrigenda, etc. The CSA TCIT will review these documents for approval and publication. For a listing, refer tothe CSA Information P
22、roducts catalogue or CSA Info Update or contact a CSA Sales representative. ThisStandard has been formally approved, without modification, by these Committees and has been approved as aNational Standard of Canada by the Standards Council of Canada.March 2002 Canadian Standards Association 2002All ri
23、ghts reserved. No part of this publication may be reproduced in any form whatsoever without the prior permission of thepublisher. ISO/IEC material is reprinted with permission. Where the words “this International Standard” appear in the text, theyshould be interpreted as “this National Standard of C
24、anada”. Inquiries regarding this National Standard of Canada should be addressed to Canadian Standards Association 178 Rexdale Boulevard, Toronto, Ontario, Canada M9W 1R31-800-463-6727 416-747-4044www.csa.caReference numberISO/IEC 16500-7:1999(E)ISO/IEC 1999INTERNATIONALSTANDARDISO/IEC16500-7First e
25、dition1999-12-15Information technology Generic digitalaudio-visual systems Part 7:Basic security toolsTechnologies de linformation Systmes audiovisuels numriquesgnriques Partie 7: Outils de scurit de baseISO/IEC 16500-7:1999(E)PDF disclaimerThis PDF file may contain embedded typefaces. In accordance
26、 with Adobes licensing policy, this file may be printed or viewed but shall notbe edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading thisfile, parties accept therein the responsibility of not infringing Adobes licensing
27、 policy. The ISO Central Secretariat accepts no liability in thisarea.Adobe is a trademark of Adobe Systems Incorporated.Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creation parameterswere optimized for printing. Every
28、care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely eventthat a problem relating to it is found, please inform the Central Secretariat at the address given below. ISO/IEC 1999All rights reserved. Unless otherwise specified, no part of this publicatio
29、n may be reproduced or utilized in any form or by any means, electronicor mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member bodyin the country of the requester.ISO copyright officeCase postale 56 Gb7 CH-1211 Geneva 20T
30、el. + 41 22 749 01 11Fax + 41 22 734 10 79E-mail copyrightiso.chWeb www.iso.chii ISO/IEC 1999 All rights reservedISO/IEC 16500-7:1999(E) ISO/IEC 1999 - All rights reserved DAVIC 1.3.1a Part 10 (1999) iiiContents PageForeword . viiIntroductionviii1. Scope. 12. Normative references 13. Definitions 24.
31、 Acronyms and abbreviations . 35. Conventions . 46. Overview of Security System . 47. Security Tools 57.1 S1 Scrambling. 57.1.1 Scrambled Elements 57.1.2 Control Word Synchronization . 67.2 S2/S3 Authentication 77.2.1 Authentication Protocol. 77.2.2 Syntax of Authentication Messages. 87.2.3 Key Use.
32、 97.2.4 Certificates 97.2.5 Integration with Protocols for S2 97.3 S2/S3 Confidentiality and Integrity. 97.3.1 Negotiation of Confidentiality and Integrity Algorithms. 107.3.2 Definition of the SPI value 107.3.3 Signaling . 107.3.4 Replay Protection on S2 107.4 S2 Digital Signatures 107.5 DSM-CC Com
33、mands for S1 Security Management . 107.5.1 Security Association Configuration. 107.5.2 Key Retrieval 127.6 Secure Download 137.6.1 Format of Security DownloadInfoRequest 137.6.2 Format of Security DownloadInfoResponse 147.6.3 Format of Security Module . 147.6.4 Download Reasons in DownloadDataRespon
34、se 157.7 Parental Control 157.7.1 Introduction. 157.7.2 Retrieval Services 157.7.3 Distribution Services. 158. Flows and Protocol Stacks 168.1 Sample Flow: Scrambled Video on Demand (Informative) 16ISO/IEC 16500-7:1999(E)iv DAVIC 1.3.1a Part 10 (1999) ISO/IEC 1999 - All rights reserved9. Security In
35、terfaces 1910. Security Interface CA0 . 2010.1 Introduction. 2010.2 Additional DAVIC Requirements for CA0. 2010.2.1 Host to Security Device Authentication 2010.2.2 Security Services. 2011. Profiles/Contours. 2112. Security Interface CA1 . 2112.1 Introduction and scope 2112.1.1 Introduction. 2112.1.2
36、 CA1 reference model 2112.2 Notation. 2312.3 Physical characteristics of the CA1 security device 2312.4 Electronic signals and transmission protocols on the CA1 interface 2312.4.1 Additions and restrictions to ISO/IEC 7816-3 2312.4.2 Logical channels 2412.5 CA message format and filter specification
37、 2412.5.1 CA message mechanism and format 2412.5.2 Filtering of a CA message . 2412.5.3 Filter specification. 2512.5.4 Filter programming . 2512.5.5 Filter objects 2712.5.6 Response objects from smart card. 3112.5.7 Filter conditions 3212.5.8 Further filter requirements. 3212.6 Initialization of the
38、 smart card and application. 3312.6.1 Answer-to-Reset 3312.6.2 Conditional PTS procedure. 3512.6.3 The ATR and/or DIR file 3512.6.4 Card identification and initialization data . 3512.6.5 Application identification and selection 3612.6.6 Application-independent card services 3712.7 Smart card securit
39、y functions 3712.7.1 Access conditions 3712.7.2 Commands and access conditions . 3812.7.3 Password management 3912.7.4 Authentication. 3912.8 Data structures in the smart card. 4012.8.1 Introduction. 4012.8.2 File organization 4012.8.3 Data structure headers . 4212.8.4 EF file content. 45ISO/IEC 165
40、00-7:1999(E) ISO/IEC 1999 - All rights reserved DAVIC 1.3.1a Part 10 (1999) v12.8.5 Overview of DAVIC data objects . 4612.9 Basic data objects 4712.9.1 Introduction. 4712.9.2 Application_related_data 4712.9.3 System_related_data 4812.9.4 Service_provider_related_data 4912.9.5 Filtering. 4912.9.6 Par
41、ental_rating 5012.9.7 Entitlement data 5012.9.8 Response messages . 5112.10 Smart card commands. 5312.10.1 Introduction. 5312.10.2 Coding of the commands. 5312.10.3 Select_file 5312.10.4 Read_binary 5412.10.5 Read_record 5512.10.6 Seek. 5612.10.7 Verify_password . 5712.10.8 Change_password 5712.10.9
42、 Disable_password . 5812.10.10 Enable_password. 5912.10.11 Write_binary . 5912.10.12 Write_record . 6012.10.13 Update_binary. 6112.10.14 Update_record. 6112.10.15 Get_response. 6212.10.16 Get_data 6312.10.17 Put_data. 6412.10.18 Get_application_status 6512.10.19 Perform_security_operation 6612.10.20
43、 Status Conditions returned by the smart card 6612.11 Man machine interface 6912.11.1 Introduction. 6912.11.2 MMI objects 7012.12 Tag allocation 7212.12.1 General 7212.12.2 Tag allocation for DAVIC application 7313. Additional Resources for the DAVIC CA0 Interface 7913.1 Host-provided Resources 7913
44、.1.1 TCP/IP Socket Resource. 7913.1.2 HTML MMI Display. 8613.2 PC card-provided Resources. 8713.2.1 Authentication Support . 8713.2.2 IP Security Support . 89ISO/IEC 16500-7:1999(E)vi DAVIC 1.3.1a Part 10 (1999) ISO/IEC 1999 - All rights reserved14. Informative Methodology. 9114.1 Procedure 9114.2 L
45、ogical Business Model 9114.3 Systems Review 9214.4 Threat Analysis . 9214.4.1 Threat Classes . 9214.4.2 Threats for Content Flow S1 . 9314.4.3 Threats for Application Control Flow S2 9414.5 Risk Assessment . 9414.5.1 S1 Flow . 9614.5.2 S2 Flow . 9714.6 Requirements Resulting from the Risk Analysis 9
46、714.6.1 S1 Flow 9714.6.2 S2 Flow 9814.6.3 Legislatory And Regulatory Requirements 9814.7 Security Services. 9914.7.1 General Security Services . 9914.8 Security Mechanisms 100Bibliography 101ISO/IEC 16500-7:1999(E) ISO/IEC 1999 - All rights reserved DAVIC 1.3.1a Part 10 (1999) viiForewordISO (the In
47、ternational Organization for Standardization) and IEC (the International Electrotechnical Commission)form the specialized system for worldwide standardization. National bodies that are members of ISO or IECparticipate in the development of International Standards through technical committees establi
48、shed by therespective organization to deal with particular fields of technical activity. ISO and IEC technical committeescollaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, inliaison with ISO and IEC, also take part in the work.Internationa
49、l Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 3.In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting.Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote.Attention is drawn to the possibility that some of the elements of this part of ISO/IE
