ISO/IEC 9798-6:2005

Information technology — Security techniques — Entity authentication — Part 6: Mechanisms using manual data transfer

Standard Details

ISO/IEC 9798-6:2005 specifies four entity authentication mechanisms based on manual data transfer between authenticating devices. Such mechanisms may be appropriate in a variety of circumstances. One such application occurs in Personal Area Networks, where the owner of two personal devices capable of wireless communications wishes them to perform an entity authentication procedure as part of the process of preparing them for use in the network. These mechanisms may also be used to support key management functions.

ISO/IEC 9798-6:2005 specifies mechanisms in which entity authentication is achieved by

manually transferring short data strings from one device to the other, or
manually comparing short data strings output by the two devices.

In ISO/IEC 9798-6:2005, the meaning of the term entity authentication is different to the meaning applied in other parts of ISO/IEC 9798. Instead of one device verifying that the other device has a claimed identity (and vice versa), both devices in possession of a user verify that they correctly share a data string with the other device at the time of execution of the mechanism. Of course, this data string could contain identifiers for one or both of the devices.

General Information

Status : WITHDRAWN

Standard Type: Main

Document No: ISO/IEC 9798-6:2005

Document Year: 2005

Pages: 20

Edition: 1

Section Volume:
ISO/IEC JTC 1/SC 27. IT Security techniques

ICS:
35.030 IT Security *Including encryption

Preview Document

Life Cycle

Published

ISO/IEC 9798-6:2010

Currently Viewing

WITHDRAWN

ISO/IEC 9798-6:2005

ISO/IEC 9798-6:2005

Standard Details

General Information

Life Cycle

Add Standards To Trackedge

Enquiry Form