《07-30163932-DC.pdf》由会员分享,可在线阅读,更多相关《07-30163932-DC.pdf(14页珍藏版)》请在三一文库上搜索。
1、a Date: 19 September 2007 Origin: International Latest date for receipt of comments: 31 December 2007 Project no.: 2007/00713 Responsible committee: IST/17 Cards and personal identification Interested committees: Title: Draft BS ISO/IEC 7816-15:2004/AMD 2 Identification cards - Integrated circuit ca
2、rds - Part 15: Cryptographic information application Supersession information: If this document is published as a standard, the UK implementation of it will supersede NONE and partially supersede. NONE If you are aware of a current national standard which may be affected, please notify the secretary
3、 (contact details below). WARNING: THIS IS A DRAFT AND MUST NOT BE REGARDED OR USED AS A BRITISH STANDARD. THIS DRAFT IS NOT CURRENT BEYOND 31 December 2007. This draft is issued to allow comments from interested parties; all comments will be given consideration prior to publication. No acknowledgem
4、ent will normally be sent. See overleaf for information on commenting. No copying is allowed, in any form, without prior written permission from BSI except as permitted under the Copyright, Designs and Patent Act 1988 or for circulation within a nominating organization for briefing purposes. Electro
5、nic circulation is limited to dissemination by e-mail within such an organization by committee members. Further copies of this draft may be purchased from BSI Customer Services, Tel: +44(0) 20 8996 9001 or email ordersbsi-. British, International and foreign standards are also available from BSI Cus
6、tomer Services. British Standards on CD or Online are available from British Standards Publishing Sales Limited. Tel: 01344 404409 or email bsonlinetechindex.co.uk. Information on the co-operating organizations represented on the committees referenced above may be obtained from the responsible commi
7、ttee secretary. Cross-references The British Standards which implement International or European publications referred to in this draft may be found via the British Standards Online Service on the BSI web site http:/www.bsi-. Direct tel: 020 7711 6319 Responsible Committee Secretary: Ms Kathy Ryan (
8、BSI) Mercury House, Triton Court;14 Finsbury Square;London;EC1A 1LQ;GB E-mail: kathy.ryanapacs.org.uk Draft for Public Comment Head Office 389 Chiswick High Road London W4 4AL Telephone: +44(0)20 8996 9000 Fax: +44(0)20 8996 7001 Form 36 Version 7.0 DPC: 07/30163932 DC Licensed Copy: London South Ba
9、nk University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI b Introduction This draft standard is based on international discussions in which the UK has taken an active part. Your comments on this draft are welcome and will assist in the preparation of
10、 the consequent standard. If no comments are received to the contrary, then the UK will approve this draft. There is a high probability that this text could be adopted by CENELEC as a reference document for harmonization or as a European Standard. Recipients of this draft are requested to comment on
11、 the text bearing in mind this possibility. UK Vote Please indicate whether you consider the UK should submit a negative (with reasons) or positive vote on this draft. BSI Committee Responsibilities Whether or not the standard is published in its original (international) form, or as a formal British
12、 Standard Implementation, the BSI committees responsibilities are to: - aid enquirers to understand the text; - present to the responsible international committee any enquiries on interpretation, or proposals for change, and keep UK interests informed; - monitor related International and European de
13、velopments and promulgate them in the UK. Submission The guidance given below is intended to ensure that all comments receive efficient and appropriate attention by the responsible BSI committee. Annotated drafts are not acceptable and will be rejected. All comments must be submitted, preferably ele
14、ctronically, to the Responsible Committee Secretary at the address given on the front cover. Comments should be compatible with Version 6.0 or Version 97 of Microsoft Word for Windows, if possible; otherwise comments in ASCII text format are acceptable. Any comments not submitted electronically shou
15、ld still adhere to these format requirements. All comments submitted should be presented as given in the example below. Further information on submitting comments and how to obtain a blank electronic version of a comment form are available from the BSI web site at: http:/www.bsi- Template for commen
16、ts and secretariat observations Date: xx/xx/200x Document: ISO/DIS xxxxx 1 2 (3) 4 5 (6) (7) MB Clause No./ Subclause No./ Annex (e.g. 3.1) Paragraph/ Figure/Table/ Note (e.g. Table 1) Type of com- ment Comment (justification for change) by the MB Proposed change by the MB Secretariat observations o
17、n each comment submitted 3.1 Definition 1 ed Definition is ambiguous and needs clarifying. Amend to read . so that the mains connector to which no connection . 6.4 Paragraph 2 te The use of the UV photometer as an alternative cannot be supported as serious problems have been encountered in its use i
18、n the UK. Delete reference to UV photometer. Microsoft and MS-DOS are registered trademarks, and Windows is a trademark of Microsoft Corporation. Licensed Copy: London South Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI ISO/IEC 2007 All
19、 rights reserved Document type: International Standard Document subtype: Document stage: (30) Committee Document language: E O:STANDARDSC17Work In ProgressWG4070830 7816-15 AM 2.doc STD Version 2.1c ISO/IEC JTC 1/SC 17 N Date: 2007-08-30 ISO/IEC FPDAM 7816-15:2004/AM2 ISO/IEC JTC 1/SC 17/WG 4 Secret
20、ariat: AFNOR Identification cards Integrated circuit cards Part 15: Cryptograhpic information application AMENDMENT 2: Error corrections and extensions for multi application environments Cartes dientification Cartes circuit intgr Partie 15: Application des informations cryptographiques AMENDMENT 2:
21、Warning This document is not an ISO International Standard. It is distributed for review and comment. It is subject to change without notice and may not be referred to as an International Standard. Recipients of this draft are invited to submit, with their comments, notification of any relevant pate
22、nt rights of which they are aware and to provide supporting documentation. Licensed Copy: London South Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI ISO/IEC FPDAM 7816-15:2004/AM2 ii ISO/IEC 2007 All rights reserved Copyright notice Thi
23、s ISO document is a Draft International Standard and is copyright-protected by ISO. Except as permitted under the applicable laws of the users country, neither this ISO draft nor any extract from it may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electroni
24、c, photocopying, recording or otherwise, without prior written permission being secured. Requests for permission to reproduce should be addressed to either ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 2
25、2 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Reproduction may be subject to royalty payments or a licensing agreement. Violators may be prosecuted. Licensed Copy: London South Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled
26、 Copy, (c) BSI ISO/IEC FPDAM 7816-15:2004/AM2 ISO/IEC 2007 All rights reserved iii Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of
27、ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizati
28、ons, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. International Standards are drafted in accordance with the rules given in the ISO/IEC Dire
29、ctives, Part 2. The main task of technical committees is to prepare International Standards. Draft International Standards adopted by the technical committees are circulated to the member bodies for voting. Publication as an International Standard requires approval by at least 75 % of the member bod
30、ies casting a vote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Amendment 2 to ISO/IEC 7816-15:2004 was prepared by Joint Technical Committee ISO
31、/IEC JTC 1, Information technology, Subcommittee SC 17, Cards and personal identification ISO/IEC 7816 consists of the following parts, under the general title Identification cards Integrated circuit cards: Part 1: Cards with contacts: Physical characteristics Part 2: Cards with contacts: Dimensions
32、 and location of the contacts Part 3: Cards with contacts: Electrical interface and transmission protocols Part 4: Organization, security and commands for interchange Part 5: Registration of application providers Part 6: Interindustry data elements for interchange Part 7: Commands for Structured Car
33、d Query Language (SCQL) Part 8: Commands for security operations Part 9: Commands for card management Part 10: Cards with contacts: Electrical interface for synchronous cards Part 11: Personal verification through biometric methods Part 12: Cards with contacts: USB electrical interface and operating
34、 procedures Part 13: Commands for application management in a multi-application environment Part 15: Cryptographic information application Licensed Copy: London South Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI Licensed Copy: London S
35、outh Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI FINAL PROPOSED DRAFT AMENDMENT ISO/IEC FPDAM 7816-15:2004/AM2 ISO/IEC 2007 All rights reserved 1 Identification cards Integrated circuit cards Part 15: Cryptograhpic information applica
36、tion AMENDMENT 2: Error corrections and extensions for multi application environments 1) Page 9 of ISO/IEC 7816-15:2004, 7.3, Figure 3 Replace the existing figure with the following: EF.OD EF.CIAInfo EF.PrKD EF.CD EF.AOD EF.PuKD MF EF.DIR EF.SKD EF.DCOD DF.CIA NOTE 1 For the purpose of this part of
37、ISO/IEC 7816, EF.DIR is needed on card that do not support application selection using AID as DF name as defined in ISO/IEC 7816-4 or when multiple CIAs reside on a single card NOTE 2 Square element files are mandatory for this standard (see Table 1). MF may not be seen at the interface (see ISO/IEC
38、 7816-4). Figure 3 Example contents of DF.CIA 2) Page 9 of ISO/IEC 7816-15:2004, 7.4 Replace the existing text of the first sentence with the following: This file (file identifier: 2F00) shall, if present, contain one or several application templates as defined in ISO/IEC 7816-4. 3) Page 10 of ISO/I
39、EC 7816-15:2004, 7.4 Add followings in the end of the clause 7.3. Licensed Copy: London South Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI ISO/IEC FPDAM 7816-15:2004/AM2 2 ISO/IEC 2007 All rights reserved If within the application temp
40、late for a CIA one or more nested application templates (tag 61) are present, they may contain the application identifier (tag 4F). Each application template corresponds to an application to which this CIA applies. 4) Page 10 of ISO/IEC 7816-15:2004, 7.5.2 Replace the existing text of the second das
41、h with the following: card characteristics (e.g. read only) 5) Page 13 of ISO/IEC 7816-15:2004, 8.2.4 Replace the existing text of KeyIdentifiers with the following: KeyIdentifiers KEY-IDENTIFIER := issuerAndSerialNumber | issuerAndSerialNumberHash | subjectKeyId | subjectKeyHash | issuerKeyHash | i
42、ssuerNameHash | subjectNameHash | pgp2KeyId | openPGPKeyId | certificateHolderReference, . 6) Page 14 of ISO/IEC 7816-15:2004, 8.2.4 Add the following text in the end of the clause as the explanation of certificateHolderReference: certificateHolderReference: An OCTET STRING that denotes the holder o
43、f an ISO/IEC 7816-8 card verifiable certificate and that is used as subject key identifier to reference the public key of the certificate holder. 7) Page 14 of ISO/IEC 7816-15:2004, 8.2.5 Replace the existing text of Path with the following: Path := SEQUENCE CHOICE efidOrPath OCTET STRING, TagRef 0
44、SEQUENCE tag OCTET STRING, efidOrPath OCTET STRING OPTIONAL Licensed Copy: London South Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI ISO/IEC FPDAM 7816-15:2004/AM2 ISO/IEC 2007 All rights reserved 3 AppFileRef 1 SEQUENCE aid APPLICATIO
45、N 15 OCTET STRING, efidOrpath OCTET STRING AppTagRef 2 SEQUENCE aid APPLICATION 15 OCTET STRING, tag OCTET STRING, efidOrPath OCTET STRING OPTIONAL Index INTEGER (0 cia-ub-index) OPTIONAL, Length 0 INTEGER (0 cia-ub-index) OPTIONAL ( WITH COMPONENTS ., index PRESENT, length PRESENT| WITH COMPONENTS
46、., index ABSENT, length ABSENT ) 8) Page 15 of ISO/IEC 7816-15:2004, 8.2.5 Add followings in the end of the second paragraph of clause 8.2.5 which is explaining path. aid and tag are used for referencing from CIA of logical data structures located in application context. 9) Page 15 of ISO/IEC 7816-1
47、5:2004, 8.2.5 Replace the existing text of the last sentence of the last paragraph with the following: In the urlWithDigest case, assuming that the CIO card is protected against unauthorized data modifications, the digest component will protect the externally protected object against unauthorized mo
48、difications too. 10) Page 16 of ISO/IEC 7816-15:2004, 8.2.8 Replace the existing definition of AccessMode with the following : AccessMode := BIT STRING read (0), update (1), execute (2), delete (3), attribute (4), pso_cds (5), pso_verif (6), pso_dec (7), pso_enc (8), int_auth (9), ext_auth (10) 11)
49、Page 16 of ISO/IEC 7816-15:2004, 8.2.8 Replace the existing text of AuthMode with the following: Licensed Copy: London South Bank University, London South Bank University, Fri Oct 05 02:10:27 GMT+00:00 2007, Uncontrolled Copy, (c) BSI ISO/IEC FPDAM 7816-15:2004/AM2 4 ISO/IEC 2007 All rights reserved AuthMethod := BIT STR