1、 Reference numberISO/IEC 9798-4:1999(E)ISO/IEC 1999Information technology Securitytechniques Entity authentication Part 4:Mechanisms using a cryptographic checkfunctionTechnologies de linformation Techniques de scurit Authentificationdentit Partie 4: Mcanismes utilisant une fonction cryptographique
2、de vrificationNational Standard of CanadaCAN/CSA-ISO/IEC 9798-4:02(ISO/IEC 9798-4:1999)International Standard ISO/IEC 9798-4:1999 (second edition, 1999-12-15) has been adopted withoutmodification (IDT) as CSA Standard CAN/CSA-ISO/IEC 9798-4:02, which has been approved as a NationalStandard of Canada
3、 by the Standards Council of Canada.ISBN 1-55324-968-2 December 2002The Canadian Standards Association (CSA), The Standards Council of Canada is theunder whose auspices this National Standard has been coordinating body of the National Standards system, produced, was chartered in 1919 and accredited
4、by a federation of independent, autonomousthe Standards Council of Canada to the National organizations working towards the furtherStandards system in 1973. It is a not-for-profit, development and improvement of voluntarynonstatutory, voluntary membership association standardization in the national
5、interest.engaged in standards development and certification The principal objects of the Council are to foster activities. and promote voluntary standardization as a means CSA standards reflect a national consensus of of advancing the national economy, benefiting theproducers and users including man
6、ufacturers, health, safety, and welfare of the public, assisting consumers, retailers, unions and professional and protecting the consumer, facilitating domestic organizations, and governmental agencies. The and international trade, and furthering internationalstandards are used widely by industry a
7、nd commerce cooperation in the field of standards.and often adopted by municipal, provincial, and A National Standard of Canada is a standard whichfederal governments in their regulations, particularly in has been approved by the Standards Council ofthe fields of health, safety, building and constru
8、ction, Canada and one which reflects a reasonableand the environment. agreement among the views of a number of capableIndividuals, companies, and associations across individuals whose collective interests provide to theCanada indicate their support for CSAs standards greatest practicable extent a ba
9、lance ofdevelopment by volunteering their time and skills to representation of producers, users, consumers, andCSA Committee work and supporting the Associations others with relevant interests, as may be appropriateobjectives through sustaining memberships. The more to the subject in hand. It normal
10、ly is a standardthan 7000 committee volunteers and the 2000 which is capable of making a significant and timelysustaining memberships together form CSAs total contribution to the national interest.membership from which its Directors are chosen. Approval of a standard as a National Standard ofSustain
11、ing memberships represent a major source of Canada indicates that a standard conforms to theincome for CSAs standards development activities. criteria and procedures established by the StandardsThe Association offers certification and testing Council of Canada. Approval does not refer to theservices
12、 in support of and as an extension to its technical content of the standard; this remains thestandards development activities. To ensure the continuing responsibility of the accreditedintegrity of its certification process, the Association standards-development organization.regularly and continually
13、 audits and inspects products Those who have a need to apply standards arethat bear the CSA Mark. encouraged to use National Standards of CanadaIn addition to its head office and laboratory complex whenever practicable. These standards are subject in Toronto, CSA has regional branch offices in major
14、 to periodic review; therefore, users are cautioned centres across Canada and inspection and testing to obtain the latest edition from the organizationagencies in eight countries. Since 1919, the preparing the standard.Association has developed the necessary expertise to The responsibility for appro
15、ving National Standards meet its corporate mission: CSA is an independent of Canada rests with theservice organization whose mission is to provide an Standards Council of Canadaopen and effective forum for activities facilitating the 270 Albert Street, Suite 200exchange of goods and services through
16、 the use of Ottawa, Ontario, K1P 6N7standards, certification and related services to meet Canadanational and international needs.For further information on CSA services, write toCanadian Standards Association178 Rexdale BoulevardToronto, Ontario, M9W 1R3CanadaAlthough the intended primary applicatio
17、n of this Standard is stated in its Scope, it is importantto note that it remains the responsibility of the users to judge its suitability for their particular purpose.Registered trade-mark of Canadian Standards AssociationInformation technology Security techniques Entity authentication Part 4: Mech
18、anisms using a cryptographic check functionTechnical Corrigendum 1:2010 (IDT) toNational Standard of CanadaCAN/CSA-ISO/IEC 9798-4-02(ISO/IEC 9798-4:1999, IDT)NOT FOR RESALE.PUBLICATION NON DESTINE LA REVENTE.CSA Standards Update ServiceTechnical Corrigendum 1:2010 toCAN/CSA-ISO/IEC 9798-4-02December
19、 2010Title: Information technology Security techniques Entity authentication Part 4: Mechanisms using a cryptographic check functionPagination:1 pageTo register for e-mail notification about any updates to this publicationgo to www.shopcsa.caclick on E-mail Services under MY ACCOUNTclick on CSA Stan
20、dards Update ServiceThe List ID that you will need to register for updates to this publication is 2415777.If you require assistance, please e-mail techsupportcsa.ca or call 416-747-2233.Visit CSAs policy on privacy at www.csagroup.org/legal to find out how we protect your personal information.ICS 35
21、.040 Ref. No. ISO/IEC 9798-4:1999/Cor.1:2009(E) ISO/IEC 2009 All rights reserved INTERNATIONAL STANDARD ISO/IEC 9798-4:1999 TECHNICAL CORRIGENDUM 1 Published 2009-09-15 INTERNATIONAL ORGANIZATION FOR STANDARDIZATION ORGANISATION INTERNATIONALE DE NORMALISATIONINTERNATIONAL ELECTROTECHNICAL COMMISSIO
22、N COMMISSION LECTROTECHNIQUE INTERNATIONALEInformation technology Security techniques Entity authentication Part 4: Mechanisms using a cryptographic check function TECHNICAL CORRIGENDUM 1 Technologies de linformation Techniques de scurit Authentification dentit Partie 4: Mcanismes utilisant une fonc
23、tion cryptographique de vrification RECTIFICATIF TECHNIQUE 1 Technical Corrigendum 1 to ISO/IEC 9798-4:1999 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 27, IT Security techniques. Page 1, Clause 3 Insert the following text at the end of this claus
24、e: As defined in ISO/IEC 9798-1, X |Y is used to mean the result of the concatenation of data items X and Y in the order specified. In cases where the result of concatenating two or more data items is input to a cryptographic check function as part of one of the mechanisms specified in this part of
25、ISO/IEC 9798, this result shall be composed so that it can be uniquely resolved into its constituent data strings, i.e. so that there is no possibility of ambiguity in interpretation. This latter property could be achieved in a variety of different ways, depending on the application. For example, it
26、 could be guaranteed by (a) fixing the length of each of the substrings throughout the domain of use of the mechanism, or (b) encoding the sequence of concatenated strings using a method that guarantees unique decoding, e.g. using the distinguished encoding rules defined in ISO/IEC 8825-1 1. Technic
27、al Corrigendum 1:2010 to CAN/CSA-ISO/IEC 9798-4-02ISO/IEC 9798-4:1999/Cor.1:2009(E) 2 ISO/IEC 2009 All rights reservedPage 7 Add a bibliography on a new page after Annex A, as follows: Bibliography 1 ISO/IEC 8825-1, Information technology ASN.1 encoding rules: Specification of Basic Encoding Rules (
28、BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER) Technical Corrigendum 1:2010 to CAN/CSA-ISO/IEC 9798-4-02Copyright NoticeThis Amendment to the International Standard contains information copyright protected by the International Organization for Standardization (ISO) and t
29、he International Electrotechnical Commission (IEC). Except as permitted under the laws of Canada, no extract of this Amendment to the International Standard may be reproduced, stored in any retrieval system, or transmitted in any form or by any means, electronic, photocopying, recording, or otherwis
30、e, without prior permission from the Standards Council of Canada (SCC). Requests for permission to reproduce this Amendment to the International Standard or parts thereof should be addressed to Manager, Technical Document Centre Standards Council of Canada 270 Albert Street, Suite 200 Ottawa, Ontari
31、o K1P 6N7 The Canadian adoption of this Amendment to the International Standard contains information copyright protected by the Canadian Standards Association. All rights reserved. No part of this adopted Amendment may be reproduced in any form whatsoever without the prior permission of the publishe
32、r. ISO/IEC material is reprinted with permission. Requests for permission to reproduce this adopted Amendment or parts thereof should be addressed to Manager, Sales Canadian Standards Association 5060 Spectrum Way, Suite 100 Mississauga, Ontario L4W 5N6Copyright violators will be prosecuted to the f
33、ull extent of the law.PRINTED IN CANADAIMPRIMEAU CANADA100%The Canadian Standards Association (CSA) prints its publications on Rolland Enviro100, which contains 100% recycled post-consumer fibre, is EcoLogo and Processed Chlorine Free certified, and was manufactured using biogas energy.CAN/CSA-ISO/I
34、EC 9798-4:02 Part 4: Mechanisms using a cryptographic check functionInformation technology Security techniques Entity authentication December 2002 Canadian Standards Association CSA/1CAN/CSA-ISO/IEC 9798-4:02Information technology Securitytechniques Entityauthentication Part 4: Mechanisms using a cr
35、yptographiccheck functionCSA PrefaceStandards development within the Information Technology sector is harmonized with internationalstandards development. Through the CSA Technical Committee on Information Technology (TCIT),Canadians serve as the Canadian Advisory Committee (CAC) on ISO/IEC Joint Tec
36、hnical Committee 1 onInformation Technology (ISO/IEC JTC1) for the Standards Council of Canada (SCC), the ISO memberbody for Canada and sponsor of the Canadian National Committee of the IEC. Also, as a member of theInternational Telecommunication Union (ITU), Canada participates in the International
37、 Telegraph andTelephone Consultative Committee (ITU-T).This Standard supersedes CAN/CSA-ISO/IEC 9798-4-98 (adoption of ISO/IEC 9798-4:1995).This International Standard was reviewed by the CSA TCIT under the jurisdiction of the StrategicSteering Committee on Information Technology and deemed acceptab
38、le for use in Canada. (Acommittee membership list is available on request from the CSA Project Manager.) From time to time,ISO/IEC may publish addenda, corrigenda, etc. The CSA TCIT will review these documents for approvaland publication. For a listing, refer to the CSA Information Products catalogu
39、e or CSA Info Update orcontact a CSA Sales representative. This Standard has been formally approved, without modification, bythe Technical Committee and has been approved as a National Standard of Canada by the StandardsCouncil of Canada.December 2002 Canadian Standards Association 2002All rights re
40、served. No part of this publication may be reproduced in any form whatsoever without the priorpermission of the publisher. ISO/IEC material is reprinted with permission. Where the words “thisInternational Standard” appear in the text, they should be interpreted as “this National Standard ofCanada”.
41、Inquiries regarding this National Standard of Canada should be addressed to Canadian Standards Association 178 Rexdale Boulevard, Toronto, Ontario, Canada M9W 1R31-800-463-6727 416-747-4044www.csa.caReference numberISO/IEC 9798-4:1999(E)ISO/IEC 1999INTERNATIONALSTANDARDISO/IEC9798-4Second edition199
42、9-12-15Information technology Securitytechniques Entity authentication Part 4:Mechanisms using a cryptographic checkfunctionTechnologies de linformation Techniques de scurit Authentificationdentit Partie 4: Mcanismes utilisant une fonction cryptographique de vrificationISO/IEC 9798-4:1999(E)PDF disc
43、laimerThis PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall notbe edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading thisfile, parties acc
44、ept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in thisarea.Adobe is a trademark of Adobe Systems Incorporated.Details of the software products used to create this PDF file can be found in the General Info relative to the fil
45、e; the PDF-creation parameterswere optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely eventthat a problem relating to it is found, please inform the Central Secretariat at the address given below. ISO/IEC 1999All rights
46、 reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronicor mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member bodyin the country of the req
47、uester.ISO copyright officeCase postale 56 c159 CH-1211 Geneva 20Tel. + 41 22 749 01 11Fax + 41 22 734 10 79E-mail copyrightiso.chWeb www.iso.chPrinted in Switzerlandii ISO/IEC 1999 All rights reserved ISO/IEC 1999 All rights reserved iiiAnnex A Use of text fields.7Contents5.2.2 Three passauthentica
48、tion.55.2.1 Two pass authentication45.2 Mutual authentication45.1.2 Two pass authentication35.1.1 One passauthentication25.1 Unilateral authentication25 Mechanisms24 Requirements13 Definitions and notation12 Normative references.11 Scope.1ISO/IEC9798-4:1999(E)ISO/IEC 9798-4:1999(E)ivForewordISO (the
49、 International Organization for Standardization) and IEC (the International Electrotechnical Commission)form the specialized system for worldwide standardization. National bodies that are members of ISO or IECparticipate in the development of International Standards through technical committees established by therespective organization to deal with particular fields of tec