Improving the ISO/IEC 11770 standard for key management techniques

被引：0

作者：

Cas Cremers

Marko Horvat

机构：

[1] University of Oxford,

来源：

International Journal of Information Security | 2016年 / 15卷

关键词：

Formal analysis; ISO; Protocol standards; Security protocols;

D O I：

暂无

中图分类号：

学科分类号：

摘要：

We provide the first systematic analysis of the ISO/IEC 11770 standard for key management techniques (2009, 2009), which describes a set of key establishment, key agreement, and key transport protocols. We analyse the claimed security properties, as well as additional modern requirements on key management protocols, for over 30 protocols and their variants. Our formal, tool-supported analysis of the protocols uncovers several incorrect claims in the standard. We provide concrete suggestions for improving the standard.

引用

页码：659 / 673

页数：14

共 50 条

[1] Improving the ISO/IEC 11770 Standard for Key Management Techniques
Cremers, Cas
Horvat, Marko
[J]. SECURITY STANDARDISATION RESEARCH, SSR 2014, 2014, 8893 : 215 - 235
[2] Improving the ISO/IEC 11770 standard for key management techniques
Cremers, Cas
Horvat, Marko
[J]. INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2016, 15 (06) : 659 - 673
[3] 基于PCL的改进ISO/IEC 11770-2协议
刘守仁
余磊
[J]. 淮北师范大学学报(自然科学版)., 2024, 45 (04) - 72
[4] About Validity Checks of Augmented PAKE in IEEE 1363.2 and ISO/IEC 11770-4
Shin, SeongHan
Kobara, Kazukuni
[J]. IEICE TRANSACTIONS ON FUNDAMENTALS OF ELECTRONICS COMMUNICATIONS AND COMPUTER SCIENCES, 2014, E97A (01) : 413 - 417
[5] Documentation in the ISO/IEC 27701 Standard
Fal, O. M.
[J]. CYBERNETICS AND SYSTEMS ANALYSIS, 2021, 57 (05) : 796 - 802
[6] ISO/IEC 17025 standard adopted
Anon
[J]. Journal of Thermal Spray Technology, 2001, 10 (01)
[7] Documentation in the ISO/IEC 27701 Standard
O. M. Fal’
[J]. Cybernetics and Systems Analysis, 2021, 57 : 796 - 802
[8] Procedure for service level management based on the standard ISO/IEC 20000:2005
Dorado Romero, Sergio Ricardo
Santacruz Ortiz, Javier Mauricio
Pino, Francisco J.
[J]. SISTEMAS & TELEMATICA, 2014, 12 (29): : 67 - 84
[9] NEW STANDARD ISO/IEC 27001:2013 OF INFORMATION SECURITY MANAGEMENT SYSTEM
Drastich, Martin
[J]. KNOWLEDGE FOR MARKET USE 2014: MEDIA AND COMMUNICATION IN THE 21ST CENTURY, 2014, : 387 - 393
[10] AUTOMATION OF AN INFORMATION SECURITY MANAGEMENT SYSTEM BASED ON THE ISO/IEC 27001 STANDARD
de la Rosa Martin, Tonyse
[J]. REVISTA UNIVERSIDAD Y SOCIEDAD, 2021, 13 (05): : 495 - 506

← 1 2 3 4 5 →