China Financial Certification Center Technical Standard

zhaozj2021-02-16  59

In the system of CFCA, various cryptographic algorithms, key formats, plus intercourse methods, messaging methods, and certification formats, etc. should comply with domestic or international standards. If there is no standard, adopting internationally versatile business standards or recognized facts.

The relevant standards followed by the CFCA system are now published as follows:

· SET 1.0 (Secure Electronic Transaction): Defines all payment data, formats, and process standards within the set system, and is responsible for revisions by Setcc.

· ASN.1 (Abstract Syntax Notation): Abstract syntax symbol standard, used to represent various messages, in line with the ITU-T X.208 standard.

DER (DISTINGUISHED Encoding Rules): Unique coding rules to encode the protocol data in the payment message and integer in a clear format, which is in line with the ITU-T X.680 standard.

· DES (Data Encryption Standard): Data Encryption Standard.

· RSA: Asymmetric encryption mode, mainly for digital signatures.

· Cast: Packet password, in line with Internet RFC 2144.

• PKCS (Public-Key Cryptography Standards): The public key standard developed by RSA.

· PKCS # 1 (RSA Encryption Standard): RSA encryption standard format.

• PKCS # 3: (Diffie-Hellman Key Agreement Standard): Describes how the Diffie-Hellman key protocol is applied to both parties that have no protocol.

• PKCS # 5 (Password-based Encryption Standard): Parameters of the key and algorithm from the password.

· PKCS # 6: (Extended-Certificate Syntax Standard): The syntax definition of the certificate.

· PKCS # 7 (Cryptographic Message Syntax Standard): Defines the encrypted message syntax.

• PKCS # 8 (Private-Key Information Syntax Standard): Defines the private key information syntax.

• PKCS # 9: (SELECTED Attribute Types): Defines the use of options in the extended certificate, digital signature information, and private key information.

· PKCS # 10 (Certification Request Syntax Standard): Certificate application syntax format.

· X.509: ITU-T X.509 Recommendation (1997) The format and identification process of the public key certificate. The certificate format supported in the CFCA system is defined in the X.509 version 3, and the CRL format is in line X.509 V2 standard.

· SHS (Secure Hash Standard): Safe Hash Algorithm Standard, in line with FIPS PUB 180 standards.

· TCP / IP: A series of protocols for supporting Internet communication.

· HTTP: Hypertext Transfer Protocol. The World Wide Web Transfer Protocol supporting WWW browser and servers.

· S / MIME: Multipurpose Internet messaging. Used to encode the envelope of the payment message, enable the browser to identify payment messages, support business transactions based on email.

· PEM (Privacy-Enhance Mail): Improved mail format is defined in RFC 1421-1424.

· RFC 1766: Language tag standard.

· HMAC: Hash mechanism for the key, for information integrity check, in line with RFC 2104 standard.

· Triple-des: Triple Digital Encryption Standard. Perform three conventional DES encryption steps for encryption of data. · MD5: Packet summary algorithm, in line with Internet RFC 1321.

· SPKM: Suitable for the simple public key mechanism for GSS-API, used in the transmission of public keys in the Non-Set system, in line with RFC 2025 standards.

· LDAP: Light directory access protocol, in line with RFC 1777. Us only in the Non-Set system.

· SEP (Secure Exchange Protocol): Safety Exchange Protocol, in line with ITU-T X.830, X.831, X.832 and ISO / IEC 11856-1, 11856-2, 11856-3. This protocol is only used for the Non-Set system.

· ISO 3166: The code used to represent the name of the country.

· ISO 4217: The code used to represent currency.

· ISO 7812: identity card number system and registration procedures.

· ISO 8583: Financial transaction card message, interchange message specification.

· ISO 9594-8: ITU-T X.509 Recommendation, Information Technology - Development System Interconnection. Set protocol supports this certificate format.

· ISO 9834-7: Provided an international registration organ.

转载请注明原文地址:https://www.9cbs.com/read-15153.html

New Post(0)