标准摘要
[中文适用范围]: 本技术规范解释了如何提供和使用时间戳服务,以便时间戳令牌在用于提供时效性、数据完整性和不可否认性服务(与其他机制结合使用时)时是有效的。它定义了: - 时间戳请求者应如何使用时间戳令牌生成服务; - 时间戳授权机构(TSA)应如何提供保证质量的服务; - TSA 应如何基于良好实践赢得信任; - 在 TST(时间戳令牌)生成和 TST 续期过程中应使用哪些算法和参数,以便 TST 在验证有效的期间内保持有效; - 时间戳验证者应如何使用时间戳令牌验证服务,包括验证单个 TST 和验证续期 TST 序列。 [外文原描述]: ISO/IEC TR 29149:2012 explains how to provide and use time-stamping services so that time-stamp tokens are effective when used to provide timeliness, data integrity, and non-repudiation services in conjunction with other mechanisms. It defines: how time-stamp requesters should use time-stamp token generation services; how TSAs (time-stamping authorities) should provide a service of guaranteed quality; how TSAs should deserve trust based on good practices; which algorithms and parameters should be used in TST (time-stamp token) generation and TST renewal, so that TSTs resist during the time period during which the TSTs can be verified as being valid; how time-stamp verifiers should use the time-stamp token verification services, both when validating individual TSTs, and when validating sequences of renewal TSTs.
英文名称Information technology - Security techniques - Best practices for the provision and use of time-stamping services