🔍
Purchase the full subscription package now and enjoy a 40% discount, along with free updates for future editions.
AS/NZS ISO/IEC 27551:2024
$177.61
Information security, cybersecurity and privacy protection – Requirements for attribute-based unlinkable entity authentication
AS/NZS ISO/IEC 27551:2024 identically adopts ISO/IEC 27551:2021, which provides a framework and establishes requirements for attribute-based unlinkable entity authentication
Table of contents
Header
About this publication
Preface
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviated terms
5 General objectives of attribute-based entity authentication
6 Properties of attribute-based entity authentication protocols
6.1 Correctness
6.2 Unforgeability
6.2.1 General
6.2.2 Replay protections
7 Unlinkability properties of attribute-based entity authentication protocols
7.1 General
7.2 Generic definition of unlinkability
7.3 Specific definitions of unlinkability
7.3.1 General
7.3.2 Passive outsider unlinkability (anti-tracking from passive outsiders)
7.3.3 Active outsider unlinkability (anti-tracking from active outsiders)
7.3.4 RP-U unlinkability (“anonymous visits” to an RP)
7.3.5 AP-U unlinkability
7.3.6 RP+AP-U unlinkability (anti-RP-AP-collusion)
7.3.7 AP-RP unlinkability (anti-tracking of RP from AP)
7.3.8 AP-RP+U unlinkability
7.3.9 RP+RP’-U unlinkability (anti-tracking of U from a set of colluding RPs)
7.4 Relationships between notions of unlinkability
7.5 Unlinkability levels for attribute-based entity authentication
7.6 Models
8 Attributes
8.1 Categories of attributes
8.1.1 Personal attributes
8.1.2 Self-claimed attributes
8.1.3 Verified attributes
8.1.4 Static attributes
8.1.5 Semi-static attributes
8.1.6 Dynamic attributes
8.1.7 Computed attributes
8.1.8 Identifying attributes
8.1.9 Supporting attributes
8.2 Verified attribute expiry and revocation
8.3 Attribute assurance
9 Requirements for level N attribute-based unlinkable entity authentication
Annex A
A.1 General
A.2 Unforgeability
A.3 Passive Outsider (PO-U) unlinkability
A.4 Active Outsider (AO-U) unlinkability
A.5 RP-U unlinkability
A.6 AP-U unlinkability
A.7 RP+AP-U unlinkability
A.8 AP-RP unlinkability
A.9 AP-RP+U unlinkability
A.10 RP+RP’-U unlinkability (anti-tracking of U from a set of colluding RPs)
Annex B
B.1 General
B.2 Protocol 1
B.2.1 General
B.2.2 Setup phase
B.2.3 User registration phase
B.2.4 Authentication phase
B.2.5 Analysis and UL classification
B.3 Protocol 2
B.3.1 General
B.3.2 Description
B.3.3 Analysis and UL classification
B.4 Protocol 3
B.4.1 General
B.4.2 Setup phase
B.4.3 User registration phase
B.4.4 Authentication phase
B.4.5 Analysis and UL classification
Annex C
C.1 General
C.2 Implementing ABUEA with OpenID Connect self-issued OP
C.2.1 General
C.2.2 Setup phase
C.2.3 User registration phase
C.2.4 Authentication phase
C.2.5 Analysis and UL classification
C.3 Implementing ABUEA with FIDO
C.3.1 General
C.3.2 Setup phase
C.3.3 User registration phase
C.3.4 Authentication phase
C.3.5 Analysis and UL classification
Annex D
D.1 Overage verification
D.2 Underage verification
D.3 Registered domicile verification
Bibliography
Cited references in this standard
Please select a variation to view its description.
| Published | 15/03/2024 |
|---|---|
| Pages | 33 |
Please select a variation to view its pdf.
