ISO/IEC 13888-2:2010
Information technology - Security techniques - Non-repudiation - Part 2: Mechanisms using symmetric techniques

Standard No.

ISO/IEC 13888-2:2010

Release Date

2010

Published By

International Organization for Standardization (ISO)

Status

Be replaced

Replace By

ISO/IEC 13888-2:2010/Cor 1:2012

Latest

ISO/IEC 13888-2:2010/Cor 1:2012

Scope

The goal of the non-repudiation service is to generate, collect, maintain, make available and validate evidence concerning a claimed event or action in order to resolve disputes about the occurrence or non-occurrence of the event or action. This part of ISO/IEC 13888 provides descriptions of generic structures that can be used for non-repudiation services, and of some specific communication-related mechanisms which can be used to provide non-repudiation of origin (NRO) and non-repudiation of delivery (NRD). Other non-repudiation services can be built using the generic structures described in this part of ISO/IEC 13888 in order to meet the requirements defined by the security policy. This part of ISO/IEC 13888 relies on the existence of a trusted third party (TTP) to prevent fraudulent repudiation or accusation. Usually, an online TTP is needed. Non-repudiation can only be provided within the context of a clearly defined security policy for a particular application and its legal environment. Non-repudiation policies are defined in ISO/IEC 10181-4.

ISO/IEC 13888-2:2010 history

• 2012 ISO/IEC 13888-2:2010/Cor 1:2012 Corrigendum 1 - Information technology -- Security techniques -- Non-repudiation -- Part 2: Mechanisms using symmetric techniques -
• 2010 ISO/IEC 13888-2:2010 Information technology - Security techniques - Non-repudiation - Part 2: Mechanisms using symmetric techniques
• 1998 ISO/IEC 13888-2:1998 Information technology - Security techniques - Non-repudiation - Part 2: Mechanisms using symmetric techniques