Definition
A security standard defines a set of features that provide one or more security service, including data integrity, authentication, non-repudiation, data confidentiality, and access control. Some security standards are embedded within a data protocol, others are defined separately for use with many different data protocols, and still others define infrastructure.
Background
This entry describes a number of highly visible security standards activities. It cannot be exhaustive, but it does include many standards bodies that are influencing the security industry and product development. Many of the standards are interrelated; for example, X.509 public-key certificates have been profiled for use in the Internet by the PKIX working group of the Internet Engineering Task Force (IETF), and that profile has been augmented for Qualified Certificates, which are used to identify human beings involved in electronic commerce.
Activities
X.509
ITU-T Recommendation X.509 defines public-key certificates...
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Recommended Reading
ITU-T (1997) Recommendation X.509: The Directory—Authentication Framework
ITU-T (2000) Recommendation X.509: The Directory—Public Key and Attribute Certificate Frameworks
Housley R, Ford W, Polk W, Solo D (1999) Internet X.509 Public Key Infrastructure Certificate and CRL Profile. RFCÂ 2459
Housley R, Polk W, Ford W, Solo D (2002) Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFCÂ 3280
Cooper D, Santesson S, Farrell S, Boeyen S, Housley R, Polk W (2008) Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFCÂ 5280
Yergeau F (1998) UTF-8, a Transformation Format of ISO 10646. RFC 2279
Santesson S, Polk W, Barzin P, Nystrom M (2001) Internet X.509 Public Key Infrastructure Qualified Certificates Profile. RFCÂ 3039
Santesson S, Nystrom M, Polk W (2004) Internet X.509 Public Key Infrastructure Qualified Certificates Profile. RFCÂ 3739
Farrell S, Housley R (2002) An Internet Attribute Certificate Profile for Authorization. RFC 3281
Adams C, Farrell S (1999) Internet X.509. Public Key Infrastructure Certificate Management Protocols. RFCÂ 2510
Myers M, Liu X, Schaad J, Weinstein J (2000) Certificate Management Messages over CMS. RFC 2797
Adams C, Farrell S, Kause T, Mononen T (2005) Internet X.509. Public Key Infrastructure Certificate Management Protocol (CMP). RFCÂ 4210
Schaad J, Myers M (2008) Certificate Management Messages over CMS (CMC). RFC 5272
Housley R, Hoffman P (1999) Internet X.509 Public Key Infrastructure Operational Protocols: FTP and HTTP. RFCÂ 2585
Gutmann P (2006) Internet X.509 Public Key Infrastructure Operational Protocols: Certificate Store Access via HTTP. RFCÂ 4387
Boeyen S, Howes T, Richard P (1999) Internet X.509 Public Key Infrastructure Operational Protocols—LDAPv2. RFC 2559
Boeyen S, Howes T, Richard P (1999) Internet X.509 Public Key Infrastructure LDAPv2 Schema. RFCÂ 2587
Myers M, Ankney R, Malpani A, Galperin S, Adams C (1999) X.509 Internet Public Key Infrastructure Online Certificate Status Protocol—OCSP. RFC 2560
Chokhani S, Ford W (1999) Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework. RFCÂ 2527
Chokhani SW. Ford, Sabett R, Merrill C, Wu S (2003) Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework. RFCÂ 3647
Adams C, Cain P, Pinkas D, Zuccherato R (2001) Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP). RFCÂ 3161
Howes T, Smith M (1997) LDAP: Programming Directory-Enabled Applications with Lightweight Directory Access Protocol. Macmillan Technical Publishing, Indianapolis
Yeong W, Howes T, Kille S (1995) Lightweight Directory Access Protocol. RFC 1777
Wahl M, Howes T, Kille S (1997) Lightweight Directory Access Protocol (v3). RFC 2251
Zeilenga K (2006) Lightweight Directory Access Protocol (LDAP) Schema Definitions for X.509 Certificates. RFCÂ 4523
Dusse S, Hoffman P, Ramsdell B, Lundblade L, Repka L (1998) S/MIME Version 2 Message Specification. RFCÂ 2311
Dusse S, Hoffman P, Ramsdell B, Weinstein J (1998) S/MIME Version 2 Certificate Handling. RFC 2312
Housley R (1999) Cryptographic Message Syntax. RFC 2630
Rescorla E (1999) Diffie-Hellman Key Agreement Method. RFC 2631
Ramsdell B (ed) (1999) S/MIME Version 3 Certificate Handling. RFC 2632
Ramsdell B (ed) (1999) S/MIME Version 3 Message Specification. RFC 2633
Hoffman P (ed) (1999) Enhanced Security Services for S/MIME. RFC 2634
Housley R (2004) Cryptographic Message Syntax. RFC 3852
Housley R (2007) Cryptographic Message Syntax (CMS) Multiple Signer Clarification. RFC 4853
Ramsdell B (ed) (1999) S/MIME Version 3.1 Certificate Handling. RFC 3850
Ramsdell B (ed) (1999) S/MIME Version 3.1 Message Specification. RFC 3851
Kent S (2005) IP Authentication Header. RFC 4302
Kent S (2005) IP Encapsulating Security Payload (ESP). RFC 4303
Harkins D, Carrel D (1998) The Internet Key Exchange (IKE). RFC 2409
Kaufman C (ed) (2005) Internet Key Exchange (IKEv2) Protocol. RFC 4306
Dierks T, Allen C (1999) The TLS Protocol Version 1.0. RFC 2246
Dierks T, Rescorla E (2006) The Transport Layer Security (TLS) Protocol Version 1.1. RFC 4346
Rescorla E, NModadugu N (2006) Datagram Transport Layer Security. RFC 4347
Ylonen T, Lonvick C (ed) (2006) The Secure Shell (SSH) Protocol architecture. RFC 4251
Harrington D, Salowey J, Hardaker W (2009) Secure Shell Transport Model for the Simple Network Management Protocol (SNMP). RFCÂ 5592
Rigney C, Willens S, Rubens A, Simpson W (2000) Remote Authentication Dial in User Service (RADIUS). RFCÂ 2865
Rigney C (2000) RADIUS Accounting. RFC 2866
Rigney C, Willats W, Calhoun P (2000) RADIUS Extensions. RFC 2869
Mitton D, St.Johns M, Barkley S, Nelson D, Patil B, Stevens M, Wolff B (2001) Authentication, Authorization, and Accounting: Protocol Evaluation. RFCÂ 3127
Mitton D (2000) Network Access Servers Requirements: Extended RADIUS Practices. RFC 2882
Callas J, Donnerhacke L, Finney H, Shaw D, Thayer R (2007) OpenPGP Message Format. RFCÂ 4880
National Institute of Standards and Technology (2001) FIPS Pub 197: Advanced Encryption Standard (AES). 26 November 2001.
Freeman T, Housley R, Malpani A, Cooper D, Polk W (2007) Server-Based Certificate Validation Protocol (SCVP). RFCÂ 5055
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer Science+Business Media, LLC
About this entry
Cite this entry
Housley, R. (2011). Security Standards Activities. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_96
Download citation
DOI: https://doi.org/10.1007/978-1-4419-5906-5_96
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5905-8
Online ISBN: 978-1-4419-5906-5
eBook Packages: Computer ScienceReference Module Computer Science and Engineering