Improving the ISO/IEC 11770 standard for key management techniques

被引:0
|
作者
Cas Cremers
Marko Horvat
机构
[1] University of Oxford,
来源
International Journal of Information Security | 2016年 / 15卷
关键词
Formal analysis; ISO; Protocol standards; Security protocols;
D O I
暂无
中图分类号
学科分类号
摘要
We provide the first systematic analysis of the ISO/IEC 11770 standard for key management techniques (2009, 2009), which describes a set of key establishment, key agreement, and key transport protocols. We analyse the claimed security properties, as well as additional modern requirements on key management protocols, for over 30 protocols and their variants. Our formal, tool-supported analysis of the protocols uncovers several incorrect claims in the standard. We provide concrete suggestions for improving the standard.
引用
收藏
页码:659 / 673
页数:14
相关论文
共 50 条
  • [1] Improving the ISO/IEC 11770 standard for key management techniques
    Cremers, Cas
    Horvat, Marko
    INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2016, 15 (06) : 659 - 673
  • [2] AUTOMATION OF AN INFORMATION SECURITY MANAGEMENT SYSTEM BASED ON THE ISO/IEC 27001 STANDARD
    de la Rosa Martin, Tonyse
    REVISTA UNIVERSIDAD Y SOCIEDAD, 2021, 13 (05): : 495 - 506
  • [3] A Learning Tool for the ISO/IEC 29110 Standard: Understanding the Project Management of Basic Profile
    Sanchez-Gordon, Mary-Luz
    O'Connor, Rory V.
    Colomo-Palacios, Ricardo
    Sanchez-Gordon, Sandra
    SOFTWARE PROCESS IMPROVEMENT AND CAPABILITY DETERMINATION (SPICE 2016), 2016, 609 : 270 - 283
  • [4] Experimenting Design and Implementation of an Educational Services Management System Based on ISO/IEC 20000 Standard
    Lezcano, Jean-Marc
    Adachihara, Hatsuo
    Prunier, Marc
    TECHNOLOGY ENHANCED LEARNING: QUALITY OF TEACHING AND EDUCATIONAL REFORM, 2010, 73 : 55 - +
  • [5] A Gap Analysis of the ISO/IEC 27000 Standard Implementation in Namibia
    Tjirare, Diana Jogbeth
    Bhunu Shava, Fungai
    2017 IST-AFRICA WEEK CONFERENCE (IST-AFRICA), 2017,
  • [6] The ISO/IEC 27001 Information Security Management Standard: How to Extract Value from Data in the IT Sector
    Kitsios, Fotis
    Chatzidimitriou, Elpiniki
    Kamariotou, Maria
    SUSTAINABILITY, 2023, 15 (07)
  • [7] Management review checklist for ISO/IEC 17025 and ISO 15189 quality-management systems
    Theodorou, Dimitris G.
    Anastasakis, Panagiotis C.
    ACCREDITATION AND QUALITY ASSURANCE, 2009, 14 (02) : 107 - 110
  • [8] ADOPTION OF STANDARD FOR INFORMATION SECURITY ISO/IEC 27001 IN BOSNIA AND HERZEGOVINA
    Skopak, Anis
    Sakanovic, Semir
    INTERNATIONAL CONFERENCE ON ECONOMIC AND SOCIAL STUDIES (ICESOS'16): REGIONAL ECONOMIC DEVELOPMENT: ENTREPNEURSHIP AND INNOVATION, 2016, : 35 - 42
  • [9] The ISO/IEC 27001 information security management standard: literature review and theory-based research agenda
    Culot, Giovanna
    Nassimbeni, Guido
    Podrecca, Matteo
    Sartor, Marco
    TQM JOURNAL, 2021, 33 (07) : 76 - 105
  • [10] Improving Exposure Assessment Using Non-Targeted and Suspect Screening: The ISO/IEC 17025: 2017 Quality Standard as a Guideline
    Monteiro Bastos da Silva, Juliana
    Chaker, Jade
    Martail, Audrey
    Costa Moreira, Josino
    David, Arthur
    Le Bot, Barbara
    JOURNAL OF XENOBIOTICS, 2021, 11 (01) : 1 - 15
12345