标准摘要
[中文适用范围]: 本技术报告为系统设计人员提供指导,帮助他们确定 RFID 系统中标签和标签到阅读器通信的数据安全潜在威胁,以及提供数据安全(图 1 中标识为 1 和 2)的适当对策。虽然很重要,但本技术报告的范围不包括阅读器到主机和后端企业模块的安全方面(图 1 中标识为 4 到 7)。本技术报告并非旨在专门解决消费者隐私问题;然而,由于数据和个人隐私取决于使用适当的安全措施,因此以一般术语讨论了隐私。数据访问安全通过减轻标签上数据被未经授权读取的潜在可能性,提供了一定程度的个人隐私保护。然而,并非所有数据访问安全对策都提供相同水平的保护。 [外文原描述]: ISO/IEC TR 24729-4:2009 provides guidance to systems designers to help them determine potential threats to data security of the tag and tag-to-reader communication in an RFID system, and appropriate countermeasures to provide data security. Although important, it is beyond the scope of ISO/IEC TR 24729-4:2009 to address security aspects of the reader-to-host and back-end enterprise modules. ISO/IEC TR 24729-4:2009 is not intended to specifically address consumer privacy concerns; however, since data and personal privacy depend on the use of appropriate security measures, privacy is addressed in general terms. Data access security provides a measure of personal privacy protection by mitigating the potential for unauthorized reading of data on a tag. However, not all data access security countermeasures provide the same level of protection.
英文名称Information technology - Radio frequency identification for item management - Implementation guidelines - Part 4: Tag data security